Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   defogger nach Betätigung von "disable" reagiert nicht mehr (https://www.trojaner-board.de/157587-defogger-betaetigung-disable-reagiert-mehr.html)

nullcheckeri 14.08.2014 15:13
defogger nach Betätigung von "disable" reagiert nicht mehr
 
Hallo,
mutig habe ich versucht, meinen neuen Laptop fit zu bekommen, nachdem ich über keinen Browser mehr surfen konnte. Erst mit einem Wiederherstellungspunkt klappte es wieder.

Nun hab ich Defogger über den PC laufen lassen, weil ich bei malwarebytes antimalware gesehen, das Rootkit deaktiviert ist und wollte damit sicher den PC überprüfen - aber leider bleibt nur das Fenster mit disable un-enable stehen und es bewegt sich nichts.

Ich habe die gewünschten files angehängt und hoffe, es ist so richtig - bin da noch sehr unbedarft. Können Sie mir bitte sagen, was ich machen soll? Kann ich defogger einfach deinstallieren?

Mein Forschergeist ist erschöpft...
Danke!

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlauf Datum: 14.08.2014
Suchlauf-Zeit: 09:24:09
Logdatei: anti-malware.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.08.14.03
Rootkit Datenbank: v2014.08.04.01
Lizenz: Testversion
Malware Schutz: Aktiviert
Bösartiger Webseiten Schutz: Aktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Annette_2

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 334586
Verstrichene Zeit: 24 Min, 54 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)
AWcleaner[so]
Code:
Schlüssel Gelöscht : HKCU\Software\Classes\pokki
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Pokki]
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{A75BE48D-BF58-4A8B-B96C-F9A09DFB9844}
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\Pokki
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17037


-\\ Mozilla Firefox v31.0 (x86 de)

[ Datei : C:\Users\Annette\AppData\Roaming\Mozilla\Firefox\Profiles\phi927uh.default\prefs.js ]


[ Datei : C:\Users\Annette_2\AppData\Roaming\Mozilla\Firefox\Profiles\0b02batd.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [1929 octets] - [14/08/2014 10:49:53]
AdwCleaner[S0].txt - [1755 octets] - [14/08/2014 10:56:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1815 octets] ##########
Code:
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=6db2c65fae50a44ea21e429bf93c3ab3
# engine=19652
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-08-14 11:29:20
# local_time=2014-08-14 01:29:20 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='Avira Desktop'
# compatibility_mode=1810 16777213 100 99 9005 3716559 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 143703 25332057 0 0
# scanned=226519
# found=1
# cleaned=0
# scan_time=2456
sh=A981E3D6F03D3BD57D1472F33A4093A01533F8A8 ft=1 fh=7aaf7b3d0491af48 vn="Variante von MSIL/AdvancedSystemProtector.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Annette_2\Downloads\wzmp_8.exe"
[/CODE]
Code:
Avira Free Antivirus
Erstellungsdatum der Reportdatei: Donnerstag, 14. August 2014  15:11


Das Programm läuft als uneingeschränkte Vollversion.
Online-Dienste stehen zur Verfügung.

Lizenznehmer  : Avira Antivirus Free
Seriennummer  : 0000149996-AVHOE-0000001
Plattform      : Windows 8.1
Windowsversion : (plain)  [6.2.9200]
Boot Modus    : Normal gebootet
Benutzername  : SYSTEM
Computername  : WUNDERTÜTE

Versionsinformationen:
BUILD.DAT      : 14.0.6.552    92022 Bytes  23.07.2014 13:29:00
AVSCAN.EXE    : 14.0.6.548  1046608 Bytes  05.08.2014 08:53:17
AVSCANRC.DLL  : 14.0.6.522    62544 Bytes  05.08.2014 08:53:17
LUKE.DLL      : 14.0.6.522    57936 Bytes  05.08.2014 08:53:31
AVSCPLR.DLL    : 14.0.6.548    92752 Bytes  05.08.2014 08:53:17
AVREG.DLL      : 14.0.6.522    262224 Bytes  05.08.2014 08:53:16
avlode.dll    : 14.0.6.526    603728 Bytes  05.08.2014 08:53:16
avlode.rdf    : 14.0.4.42      65114 Bytes  28.07.2014 00:14:55
XBV00009.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:58
XBV00010.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:58
XBV00011.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00012.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00013.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00014.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00015.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00016.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00017.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00018.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00019.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00020.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00021.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00022.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00023.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00024.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00025.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00026.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00027.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00028.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00029.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00030.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00031.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00032.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:04:59
XBV00033.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:05:00
XBV00034.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:05:00
XBV00035.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:05:00
XBV00036.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:05:00
XBV00037.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:05:00
XBV00038.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:05:00
XBV00039.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:05:00
XBV00040.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:05:00
XBV00041.VDF  : 8.11.165.190    2048 Bytes  07.08.2014 21:05:00
XBV00090.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:02
XBV00091.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:02
XBV00092.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:02
XBV00093.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00094.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00095.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00096.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00097.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00098.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00099.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00100.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00101.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00102.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00103.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00104.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00105.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00106.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00107.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00108.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00109.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00110.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00111.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00112.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00113.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00114.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00115.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00116.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00117.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00118.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00119.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00120.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00121.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00122.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00123.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00124.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00125.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00126.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:03
XBV00127.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00128.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00129.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00130.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00131.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00132.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00133.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00134.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00135.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00136.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00137.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00138.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00139.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00140.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00141.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00142.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00143.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00144.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00145.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00146.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00147.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00148.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00149.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00150.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00151.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:04
XBV00152.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00153.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00154.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00155.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00156.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00157.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00158.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00159.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00160.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00161.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00162.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00163.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00164.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00165.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00166.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00167.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00168.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00169.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00170.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00171.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00172.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00173.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00174.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00175.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00176.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00177.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00178.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00179.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00180.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00181.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00182.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00183.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00184.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:05
XBV00185.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00186.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00187.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00188.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00189.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00190.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00191.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00192.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00193.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00194.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00195.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00196.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00197.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00198.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00199.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00200.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00201.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00202.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00203.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00204.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00205.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:06
XBV00206.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00207.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00208.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00209.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00210.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00211.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00212.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00213.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00214.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00215.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00216.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00217.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00218.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00219.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00220.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00221.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00222.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00223.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00224.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00225.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00226.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00227.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00228.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00229.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00230.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00231.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00232.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00233.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00234.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00235.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00236.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00237.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:07
XBV00238.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00239.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00240.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00241.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00242.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00243.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00244.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00245.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00246.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00247.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00248.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00249.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00250.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00251.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00252.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00253.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00254.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00255.VDF  : 8.11.165.192    2048 Bytes  07.08.2014 21:05:08
XBV00000.VDF  : 7.11.70.0  66736640 Bytes  04.04.2013 11:06:47
XBV00001.VDF  : 7.11.74.226  2201600 Bytes  30.04.2013 11:06:47
XBV00002.VDF  : 7.11.80.60  2751488 Bytes  28.05.2013 11:06:47
XBV00003.VDF  : 7.11.85.214  2162688 Bytes  21.06.2013 11:06:47
XBV00004.VDF  : 7.11.91.176  3903488 Bytes  23.07.2013 11:06:47
XBV00005.VDF  : 7.11.98.186  6822912 Bytes  29.08.2013 11:06:47
XBV00006.VDF  : 7.11.139.38 15708672 Bytes  27.03.2014 11:06:47
XBV00007.VDF  : 7.11.152.100  4193792 Bytes  02.06.2014 11:06:47
XBV00008.VDF  : 8.11.165.192  4251136 Bytes  07.08.2014 21:04:58
XBV00042.VDF  : 8.11.165.218  217600 Bytes  07.08.2014 21:05:00
XBV00043.VDF  : 8.11.165.246  262656 Bytes  07.08.2014 21:05:00
XBV00044.VDF  : 8.11.165.250    20480 Bytes  07.08.2014 21:05:00
XBV00045.VDF  : 8.11.165.252    2048 Bytes  07.08.2014 21:05:00
XBV00046.VDF  : 8.11.165.254    7168 Bytes  07.08.2014 21:05:00
XBV00047.VDF  : 8.11.166.4      5120 Bytes  08.08.2014 21:05:00
XBV00048.VDF  : 8.11.166.16    6144 Bytes  08.08.2014 21:05:00
XBV00049.VDF  : 8.11.166.20    28160 Bytes  08.08.2014 21:05:00
XBV00050.VDF  : 8.11.166.22    2048 Bytes  08.08.2014 21:05:00
XBV00051.VDF  : 8.11.166.24    20480 Bytes  08.08.2014 21:05:00
XBV00052.VDF  : 8.11.166.28    33280 Bytes  08.08.2014 21:05:01
XBV00053.VDF  : 8.11.166.32  214016 Bytes  08.08.2014 21:05:01
XBV00054.VDF  : 8.11.166.34    5120 Bytes  08.08.2014 21:05:01
XBV00055.VDF  : 8.11.166.58  216576 Bytes  09.08.2014 21:05:01
XBV00056.VDF  : 8.11.166.78    15872 Bytes  09.08.2014 21:05:01
XBV00057.VDF  : 8.11.166.98    37888 Bytes  10.08.2014 21:05:01
XBV00058.VDF  : 8.11.166.100    2048 Bytes  10.08.2014 21:05:01
XBV00059.VDF  : 8.11.166.102    45568 Bytes  10.08.2014 21:05:01
XBV00060.VDF  : 8.11.166.104    2048 Bytes  10.08.2014 21:05:01
XBV00061.VDF  : 8.11.166.106    16384 Bytes  11.08.2014 21:05:01
XBV00062.VDF  : 8.11.166.108    3072 Bytes  11.08.2014 21:05:01
XBV00063.VDF  : 8.11.166.110    8192 Bytes  11.08.2014 21:05:01
XBV00064.VDF  : 8.11.166.112    10240 Bytes  11.08.2014 21:05:01
XBV00065.VDF  : 8.11.166.114    24576 Bytes  11.08.2014 21:05:01
XBV00066.VDF  : 8.11.166.118  215552 Bytes  11.08.2014 21:05:02
XBV00067.VDF  : 8.11.166.138    2048 Bytes  11.08.2014 21:05:02
XBV00068.VDF  : 8.11.166.158    2048 Bytes  11.08.2014 21:05:02
XBV00069.VDF  : 8.11.166.180    8704 Bytes  11.08.2014 19:55:04
XBV00070.VDF  : 8.11.166.202    11264 Bytes  12.08.2014 19:55:04
XBV00071.VDF  : 8.11.166.206    4096 Bytes  12.08.2014 19:55:04
XBV00072.VDF  : 8.11.166.208    5632 Bytes  12.08.2014 19:55:04
XBV00073.VDF  : 8.11.166.210    6656 Bytes  12.08.2014 19:55:04
XBV00074.VDF  : 8.11.166.212  215040 Bytes  12.08.2014 19:55:05
XBV00075.VDF  : 8.11.166.216    29184 Bytes  12.08.2014 19:55:05
XBV00076.VDF  : 8.11.166.222    22528 Bytes  12.08.2014 07:39:03
XBV00077.VDF  : 8.11.166.226    10752 Bytes  13.08.2014 07:39:03
XBV00078.VDF  : 8.11.166.228    2048 Bytes  13.08.2014 07:39:03
XBV00079.VDF  : 8.11.166.230    12288 Bytes  13.08.2014 07:39:03
XBV00080.VDF  : 8.11.166.232  223232 Bytes  13.08.2014 07:39:04
XBV00081.VDF  : 8.11.166.234    10752 Bytes  13.08.2014 07:39:04
XBV00082.VDF  : 8.11.166.236    2048 Bytes  13.08.2014 07:39:04
XBV00083.VDF  : 8.11.166.238  224256 Bytes  13.08.2014 07:39:04
XBV00084.VDF  : 8.11.166.240    11264 Bytes  13.08.2014 07:39:04
XBV00085.VDF  : 8.11.166.242    2048 Bytes  13.08.2014 07:39:04
XBV00086.VDF  : 8.11.166.244    41472 Bytes  13.08.2014 07:39:04
XBV00087.VDF  : 8.11.166.250    8704 Bytes  13.08.2014 07:39:04
XBV00088.VDF  : 8.11.167.16  209920 Bytes  14.08.2014 07:39:05
XBV00089.VDF  : 8.11.167.34  203776 Bytes  14.08.2014 07:39:05
LOCAL000.VDF  : 8.11.167.34 108578816 Bytes  14.08.2014 07:39:31
Engineversion  : 8.3.24.6 
AEVDF.DLL      : 8.3.1.2      133024 Bytes  12.08.2014 19:55:04
AESCRIPT.DLL  : 8.2.0.14      428032 Bytes  05.08.2014 08:53:13
AESCN.DLL      : 8.3.2.2      139456 Bytes  28.07.2014 00:14:54
AESBX.DLL      : 8.2.20.24    1409224 Bytes  02.07.2014 11:06:41
AERDL.DLL      : 8.2.0.138    704888 Bytes  02.07.2014 11:06:41
AEPACK.DLL    : 8.4.0.50      792488 Bytes  12.08.2014 19:55:03
AEOFFICE.DLL  : 8.3.0.16      213192 Bytes  28.07.2014 17:56:20
AEHEUR.DLL    : 8.1.4.1210  7380008 Bytes  12.08.2014 19:55:02
AEHELP.DLL    : 8.3.1.0      278728 Bytes  02.07.2014 11:06:41
AEGEN.DLL      : 8.1.7.28      450752 Bytes  02.07.2014 11:06:41
AEEXP.DLL      : 8.4.2.22      244584 Bytes  05.08.2014 08:53:14
AEEMU.DLL      : 8.1.3.4      399264 Bytes  12.08.2014 19:54:53
AEDROID.DLL    : 8.4.2.24      442568 Bytes  02.07.2014 11:06:41
AECORE.DLL    : 8.3.2.6      243712 Bytes  12.08.2014 19:54:53
AEBB.DLL      : 8.1.2.0        60448 Bytes  12.08.2014 19:54:53
AVWINLL.DLL    : 14.0.6.522    24144 Bytes  05.08.2014 08:53:11
AVPREF.DLL    : 14.0.6.522    50256 Bytes  05.08.2014 08:53:16
AVREP.DLL      : 14.0.6.522    219216 Bytes  05.08.2014 08:53:16
AVARKT.DLL    : 14.0.5.368    226384 Bytes  02.07.2014 11:06:42
AVEVTLOG.DLL  : 14.0.6.522    182352 Bytes  05.08.2014 08:53:15
SQLITE3.DLL    : 14.0.6.522    452176 Bytes  05.08.2014 08:53:34
AVSMTP.DLL    : 14.0.6.522    76368 Bytes  05.08.2014 08:53:17
NETNT.DLL      : 14.0.6.522    13392 Bytes  05.08.2014 08:53:32
RCIMAGE.DLL    : 14.0.6.544  4863568 Bytes  05.08.2014 08:53:11
RCTEXT.DLL    : 14.0.6.536    74320 Bytes  05.08.2014 08:53:11

Konfiguration für den aktuellen Suchlauf:
Job Name..............................: Vollständige Systemprüfung
Konfigurationsdatei...................: C:\Program Files (x86)\Avira\AntiVir Desktop\sysscan.avp
Protokollierung.......................: standard
Primäre Aktion........................: Interaktiv
Sekundäre Aktion......................: Ignorieren
Durchsuche Masterbootsektoren.........: ein
Durchsuche Bootsektoren...............: ein
Bootsektoren..........................: C:, D:,
Durchsuche aktive Programme...........: ein
Laufende Programme erweitert..........: ein
Durchsuche Registrierung..............: ein
Suche nach Rootkits...................: ein
Integritätsprüfung von Systemdateien..: aus
Prüfe alle Dateien....................: Alle Dateien
Durchsuche Archive....................: ein
Rekursionstiefe einschränken..........: 20
Archiv Smart Extensions...............: ein
Makrovirenheuristik...................: ein
Dateiheuristik........................: erweitert

Beginn des Suchlaufs: Donnerstag, 14. August 2014  15:11

Der Suchlauf über die Bootsektoren wird begonnen:
Bootsektor 'HDD0(C:, D:)'
    [INFO]      Es wurde kein Virus gefunden!

Der Suchlauf nach versteckten Objekten wird begonnen.
Fehler in der ARK Library

Der Suchlauf über gestartete Prozesse wird begonnen:
Durchsuche Prozess 'svchost.exe' - '47' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '29' Modul(e) wurden durchsucht
Durchsuche Prozess 'dwm.exe' - '39' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '103' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '164' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '70' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '115' Modul(e) wurden durchsucht
Durchsuche Prozess 'STacSV64.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '74' Modul(e) wurden durchsucht
Durchsuche Prozess 'spoolsv.exe' - '87' Modul(e) wurden durchsucht
Durchsuche Prozess 'sched.exe' - '63' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '88' Modul(e) wurden durchsucht
Durchsuche Prozess 'avguard.exe' - '119' Modul(e) wurden durchsucht
Durchsuche Prozess 'btwdins.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'ETDService.exe' - '19' Modul(e) wurden durchsucht
Durchsuche Prozess 'HeciServer.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'dashost.exe' - '57' Modul(e) wurden durchsucht
Durchsuche Prozess 'mbamscheduler.exe' - '40' Modul(e) wurden durchsucht
Durchsuche Prozess 'mbamservice.exe' - '49' Modul(e) wurden durchsucht
Durchsuche Prozess 'NitroPDFDriverService8x64.exe' - '16' Modul(e) wurden durchsucht
Durchsuche Prozess 'NLSSRV32.EXE' - '16' Modul(e) wurden durchsucht
Durchsuche Prozess 'RichVideo64.exe' - '23' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '56' Modul(e) wurden durchsucht
Durchsuche Prozess 'VfConnectorService.exe' - '27' Modul(e) wurden durchsucht
Durchsuche Prozess 'Avira.OE.ServiceHost.exe' - '105' Modul(e) wurden durchsucht
Durchsuche Prozess 'ETDCtrl.exe' - '62' Modul(e) wurden durchsucht
Durchsuche Prozess 'mbam.exe' - '81' Modul(e) wurden durchsucht
Durchsuche Prozess 'Explorer.EXE' - '209' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskhostex.exe' - '49' Modul(e) wurden durchsucht
Durchsuche Prozess 'avshadow.exe' - '29' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '54' Modul(e) wurden durchsucht
Durchsuche Prozess 'WUDFHost.exe' - '22' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '51' Modul(e) wurden durchsucht
Durchsuche Prozess 'igfxtray.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'ETDCtrlHelper.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'hkcmd.exe' - '30' Modul(e) wurden durchsucht
Durchsuche Prozess 'ETDIntelligent.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'igfxsrvc.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'igfxpers.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'ICCProxy.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'sttray64.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'Energy Management.exe' - '39' Modul(e) wurden durchsucht
Durchsuche Prozess 'utility.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'PDVD10Serv.EXE' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'BTTray.exe' - '59' Modul(e) wurden durchsucht
Durchsuche Prozess 'NOTEPAD.EXE' - '75' Modul(e) wurden durchsucht
Durchsuche Prozess 'VM331STI.EXE' - '42' Modul(e) wurden durchsucht
Durchsuche Prozess 'avgnt.exe' - '97' Modul(e) wurden durchsucht
Durchsuche Prozess 'Avira.OE.Systray.exe' - '107' Modul(e) wurden durchsucht
Durchsuche Prozess 'BtStackServer.exe' - '63' Modul(e) wurden durchsucht
Durchsuche Prozess 'DllHost.exe' - '24' Modul(e) wurden durchsucht
Durchsuche Prozess 'RunDll32.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'jhi_service.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'LMS.exe' - '59' Modul(e) wurden durchsucht
Durchsuche Prozess 'firefox.exe' - '151' Modul(e) wurden durchsucht
Durchsuche Prozess 'rundll32.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'armsvc.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchIndexer.exe' - '62' Modul(e) wurden durchsucht
Durchsuche Prozess 'Defogger.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'conhost.exe' - '21' Modul(e) wurden durchsucht
Durchsuche Prozess 'plugin-container.exe' - '78' Modul(e) wurden durchsucht
Durchsuche Prozess 'FlashPlayerPlugin_14_0_0_145.exe' - '49' Modul(e) wurden durchsucht
Durchsuche Prozess 'FlashPlayerPlugin_14_0_0_145.exe' - '58' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'NOTEPAD.EXE' - '75' Modul(e) wurden durchsucht
Durchsuche Prozess 'iexplore.exe' - '86' Modul(e) wurden durchsucht
Durchsuche Prozess 'IEXPLORE.EXE' - '96' Modul(e) wurden durchsucht
Durchsuche Prozess 'avcenter.exe' - '103' Modul(e) wurden durchsucht
Durchsuche Prozess 'avscan.exe' - '106' Modul(e) wurden durchsucht
Durchsuche Prozess 'wmiprvse.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'vssvc.exe' - '39' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '30' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchProtocolHost.exe' - '31' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchFilterHost.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'wininit.exe' - '15' Modul(e) wurden durchsucht
Durchsuche Prozess 'winlogon.exe' - '30' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsass.exe' - '64' Modul(e) wurden durchsucht

Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen:
Die Registry wurde durchsucht ( '1470' Dateien ).


Der Suchlauf über die ausgewählten Dateien wird begonnen:

Beginne mit der Suche in 'C:\' <Windows8_OS>
C:\swapfile.sys
  [WARNUNG]  Die Datei konnte nicht geöffnet werden!
Beginne mit der Suche in 'D:\' <LENOVO>


Ende des Suchlaufs: Donnerstag, 14. August 2014  16:01
Benötigte Zeit: 50:04 Minute(n)

Der Suchlauf wurde vollständig durchgeführt.

  37296 Verzeichnisse wurden überprüft
 536273 Dateien wurden geprüft
      0 Viren bzw. unerwünschte Programme wurden gefunden
      0 Dateien wurden als verdächtig eingestuft
      0 Dateien wurden gelöscht
      0 Viren bzw. unerwünschte Programme wurden repariert
      0 Dateien wurden in die Quarantäne verschoben
      0 Dateien wurden umbenannt
      1 Dateien konnten nicht durchsucht werden
 536272 Dateien ohne Befall
  4280 Archive wurden durchsucht
      1 Warnungen
      0 Hinweise
    83 Objekte wurden beim Rootkitscan durchsucht
      0 Versteckte Objekte wurden gefunden

schrauber 14.08.2014 17:10
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


nullcheckeri 14.08.2014 18:53
Hallo Schrauber,
vielen Dank für Deine Hilfe.
Kann ich die Frst-software dann schließen?

Addition.txt
Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-08-2014 01
Ran by Annette_2 at 2014-08-14 19:39:52
Running from C:\Users\Annette_2\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 20.2.1245.53580 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 20.2.1245.53580 - Alcor Micro Corp.) Hidden
Avira (HKLM-x32\...\{9590977b-7b6f-467e-a11a-efa1fae804da}) (Version: 1.1.18.30000 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.18.30000 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.6.552 - Avira)
Benutzerhandbuch (x32 Version: 1.0.0.17 - Lenovo) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5000 - CDBurnerXP)
Cliqz (HKLM-x32\...\{5A0C0737-6AFE-4DC6-A8B4-6DFE509ACD75}_is1) (Version: 0.5.0.1 - Cliqz.com)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.4107 - CyberLink Corp.)
CyberLink PhotoDirector 3 (x32 Version: 3.0.1.4107 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
Dolby Digital Plus Advanced Audio (HKLM\...\{B0BFC63F-EA07-419E-960B-3FB2ED5DD0B2}) (Version: 7.3.2.2 - Dolby Laboratories Inc)
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 8.0.2.14 - Lenovo)
Energy Management (x32 Version: 8.0.2.14 - Lenovo) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6490.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3282 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.7800 - Broadcom Corporation)
Lenovo EasyCamera (HKLM-x32\...\{ADE16A9D-FBDC-4ecc-B6BD-9C31E51D0332}) (Version: 3.13.829.1 - Vimicro)
Lenovo Experience Improvement (HKLM\...\LenovoExperienceImprovement) (Version: 1.0.4.0 - Lenovo)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo Photos (HKLM-x32\...\Lenovo Photos) (Version: 4.8.7 - CEWE COLOR AG u Co. OHG)
Lenovo pointing device (HKLM\...\Elantech) (Version: 11.4.25.1 - ELAN Microelectronic Corp.)
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5630.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.5630.52 - CyberLink Corp.) Hidden
Lenovo Solution Center (HKLM\...\{2F45A217-E9C7-4984-B0AC-5BE31FF4712B}) (Version: 2.4.003.00 - Lenovo Group Limited)
Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo)
Lenovo_Wireless_Driver (HKLM-x32\...\{5D642A72-8194-4A22-80DA-11FE610CCA8E}) (Version: 6.30.223.143 - Lenovo)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 31.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
Nitro Pro 8 (HKLM\...\{84DAF9F1-513C-49F8-89D2-63CB3F4A7E39}) (Version: 8.5.7.1 - Nitro)
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.10525 - CyberLink Corp.)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.17 - Lenovo)
Windows-Treiberpaket - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid  (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
YouTube for Pokki (HKCU\...\Pokki_d25e316a7812ebb3c4f8e18291ce53ba535b8659) (Version: 1.0.10.1 - Pokki)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

14-08-2014 12:02:05 Installed Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0222FF12-6EA5-4E6D-95C5-BF95357543B6} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\lenovo\lenovo solution center\App\LSCService.exe [2014-05-06] (Lenovo)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {22D686C9-55A3-46D6-8EEB-23D8A09F8FEE} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2014-05-06] ()
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2F26BEBD-F308-489A-B017-DFB30D5D01F8} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {353ECA9F-08B5-4760-A113-A65BCB12E10A} - System32\Tasks\Abelssoft\Updater scan => C:\Program Files (x86)\CHIP Updater\CHIPUpdater.exe [2014-08-07] (CHIP)
Task: {37ED3198-297C-443B-A9A4-935584FC3BD8} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2014-05-06] (Lenovo)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3F9CED4B-83FB-4BED-BAAE-D9D7E71A7F36} - System32\Tasks\Lenovo\Experience Improvement => C:\Program Files\Lenovo\ExperienceImprovement\LenovoExperienceImprovement.exe [2013-06-03] (Lenovo)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {71D4106B-28C1-4D78-B130-1EEF33A22208} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {742EEF18-D39B-44E9-89FB-1D50D4A1F9D6} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {77DB2991-C0E0-476E-B8D8-89313D398420} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2014-05-06] (Lenovo)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {988479A4-73C1-4866-B16E-AE2E7F0DB223} - System32\Tasks\PDVDServ Task => C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.EXE [2013-03-08] (CyberLink Corp.)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A47F5ECD-48BE-473B-9F54-3737A65CC3CB} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {B600794B-6C0A-45A5-9561-19459E74BCA8} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {B87F091D-A60C-45DC-B920-53BBE47453B3} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-08-14] (Microsoft Corporation)
Task: {CF65B11D-B5DF-4D21-A835-5F44D4602386} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-05-06] (Lenovo)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {D994376D-4087-4B67-8516-6D8AAD07F6F3} - System32\Tasks\OFFICE2013ACT => C:\ProgramData\Office2013\OFFICEICON.vbs [2013-06-03] ()
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F9FD4B89-E438-4B2D-B70C-71E8842EFCAC} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-28] (Adobe Systems Incorporated)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2013-08-19 16:03 - 2013-08-19 16:03 - 00049368 _____ () C:\Program Files\Lenovo\Bluetooth Software\btwleapi.dll
2014-04-21 14:49 - 2012-04-24 12:43 - 00390632 ____N () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-04-21 14:53 - 2014-04-21 14:53 - 00068368 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
2014-04-21 14:53 - 2014-04-21 14:53 - 00669288 _____ () C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfDataStorageInterface.dll
2014-04-21 07:48 - 2013-08-13 04:52 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-08-14 11:55 - 2014-08-14 11:55 - 00050477 _____ () C:\Users\Annette_2\Downloads\Defogger.exe
2014-07-24 11:50 - 2014-07-24 11:50 - 00137296 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.NativeCore.dll
2014-07-24 11:49 - 2014-07-24 11:49 - 00065104 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.AvConnectorNative.dll
2014-08-14 09:48 - 2014-07-24 11:50 - 00049744 _____ () C:\Users\Annette_2\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
2014-04-21 14:28 - 2013-09-04 01:53 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-07-27 15:40 - 2014-07-17 07:42 - 03800688 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\Annette\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (08/14/2014 04:47:01 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (08/14/2014 04:33:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (08/14/2014 04:28:36 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (08/14/2014 01:36:40 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (08/14/2014 01:31:11 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (08/14/2014 00:45:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (08/14/2014 00:45:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (08/14/2014 00:45:11 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (08/14/2014 00:45:11 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (08/12/2014 10:00:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1252) SRUJet: Fehler -1811 (0xfffff8ed) beim Öffnen von Protokolldatei C:\WINDOWS\system32\SRU\SRU0001E.log.


System errors:
=============
Error: (08/14/2014 04:47:53 PM) (Source: DCOM) (EventID: 10010) (User: Wundertüte)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (08/14/2014 04:47:23 PM) (Source: DCOM) (EventID: 10010) (User: Wundertüte)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (08/14/2014 04:27:11 PM) (Source: DCOM) (EventID: 10010) (User: Wundertüte)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (08/14/2014 04:26:41 PM) (Source: DCOM) (EventID: 10010) (User: Wundertüte)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (08/14/2014 01:31:13 PM) (Source: DCOM) (EventID: 10010) (User: Wundertüte)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (08/14/2014 01:30:43 PM) (Source: DCOM) (EventID: 10010) (User: Wundertüte)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (08/14/2014 00:10:18 PM) (Source: DCOM) (EventID: 10010) (User: Wundertüte)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (08/14/2014 00:09:48 PM) (Source: DCOM) (EventID: 10010) (User: Wundertüte)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (08/14/2014 11:36:18 AM) (Source: DCOM) (EventID: 10010) (User: Wundertüte)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (08/14/2014 11:35:48 AM) (Source: DCOM) (EventID: 10010) (User: Wundertüte)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}


Microsoft Office Sessions:
=========================
Error: (08/14/2014 04:47:01 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (08/14/2014 04:33:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (08/14/2014 04:28:36 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (08/14/2014 01:36:40 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (08/14/2014 01:31:11 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (08/14/2014 00:45:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Annette_2\Downloads\esetsmartinstaller_deu.exe

Error: (08/14/2014 00:45:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Annette_2\Downloads\esetsmartinstaller_deu.exe

Error: (08/14/2014 00:45:11 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Annette_2\Downloads\esetsmartinstaller_deu.exe

Error: (08/14/2014 00:45:11 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\Annette_2\Downloads\esetsmartinstaller_deu.exe

Error: (08/12/2014 10:00:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost1252SRUJet: C:\WINDOWS\system32\SRU\SRU0001E.log-1811 (0xfffff8ed)

nullcheckeri 14.08.2014 18:57
Der zweite Teil:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-08-2014 01
Ran by Annette_2 (administrator) on WUNDERTÜTE on 14-08-2014 19:38:58
Running from C:\Users\Annette_2\Downloads
Platform: Windows 8.1 (Update 1) (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Users\Annette_2\Downloads\Defogger.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avscan.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2894664 2013-08-08] (ELAN Microelectronics Corp.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-08-11] (IDT, Inc.)
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17111056 2014-04-21] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [193008 2014-04-21] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [552960 2013-05-14] (Vimicro)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-06] (CyberLink Corp.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-05] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [190032 2014-07-24] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe (Broadcom Corporation.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
SearchScopes: HKLM - {3ED2E160-BC9F-4F6B-A9D0-E22755607982} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=LCJB
SearchScopes: HKLM-x32 - {3ED2E160-BC9F-4F6B-A9D0-E22755607982} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=LCJB
SearchScopes: HKCU - DefaultScope {3ED2E160-BC9F-4F6B-A9D0-E22755607982} URL =
SearchScopes: HKCU - {3ED2E160-BC9F-4F6B-A9D0-E22755607982} URL =
Tcpip\Parameters: [DhcpNameServer] 82.212.62.62 78.42.43.62

FireFox:
========
FF ProfilePath: C:\Users\Annette_2\AppData\Roaming\Mozilla\Firefox\Profiles\0b02batd.default
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Annette_2\AppData\Roaming\Mozilla\Firefox\Profiles\0b02batd.default\searchplugins\google-images.xml
FF SearchPlugin: C:\Users\Annette_2\AppData\Roaming\Mozilla\Firefox\Profiles\0b02batd.default\searchplugins\google-maps.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Avira Browser Safety - C:\Users\Annette_2\AppData\Roaming\Mozilla\Firefox\Profiles\0b02batd.default\Extensions\abs@avira.com [2014-08-05]
FF Extension: Cliqz Beta - C:\Users\Annette_2\AppData\Roaming\Mozilla\Firefox\Profiles\0b02batd.default\Extensions\cliqz@cliqz.com.xpi [2014-08-14]
FF HKCU\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Annette_2\AppData\Roaming\Mozilla\Firefox\Profiles\0b02batd.default\extensions\cliqz@cliqz.com

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-08-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-05] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [141392 2014-07-24] (Avira Operations GmbH & Co. KG)
S2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2252504 2013-08-08] (Broadcom Corporation.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [976600 2013-08-19] (Broadcom Corporation.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [92160 2013-07-29] (ELAN Microelectronics Corp.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [1663880 2014-05-06] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2013-08-17] (Nitro PDF Software)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [338944 2013-08-11] (IDT, Inc.) [File not signed]
R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2014-04-21] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [348392 2013-10-31] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2013-10-31] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-07-02] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [130584 2014-07-02] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2014-07-02] (Avira Operations GmbH & Co. KG)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-08-08] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [7474864 2013-08-07] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-14] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew00.sys [3344352 2013-07-08] (Intel Corporation)
R3 vm331avs; C:\Windows\System32\Drivers\vm331avs.sys [1065472 2013-08-30] (Vimicro Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124760 2013-10-31] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-14 19:38 - 2014-08-14 19:39 - 00013235 _____ () C:\Users\Annette_2\Downloads\FRST.txt
2014-08-14 19:38 - 2014-08-14 19:38 - 00000000 ____D () C:\FRST
2014-08-14 19:37 - 2014-08-14 19:37 - 02100224 _____ (Farbar) C:\Users\Annette_2\Downloads\FRST64.exe
2014-08-14 14:13 - 2014-08-14 15:24 - 00000000 ____D () C:\Users\Annette_2\Documents\trojaner-forum
2014-08-14 14:12 - 2014-08-14 14:12 - 00000000 ____D () C:\Users\Annette\virenbeheber-trijaneronlineforum
2014-08-14 14:05 - 2014-08-14 14:05 - 00001132 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2014-08-14 14:05 - 2014-08-14 14:05 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
2014-08-14 14:05 - 2014-08-14 14:05 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\OpenOffice
2014-08-14 14:04 - 2014-08-14 14:05 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-08-14 14:02 - 2014-08-14 14:02 - 00000000 ____D () C:\Users\Annette_2\Desktop\OpenOffice 4.1.0 (de) Installation Files
2014-08-14 13:56 - 2014-08-14 13:56 - 01101648 _____ () C:\Users\Annette_2\Downloads\OpenOffice - CHIP-Installer.exe
2014-08-14 13:42 - 2014-08-14 13:42 - 00047104 ___SH () C:\Users\Annette_2\Desktop\Thumbs.db
2014-08-14 13:42 - 2014-08-14 13:42 - 00001198 _____ () C:\Users\Annette_2\Desktop\Internet Explorer - Verknüpfung.lnk
2014-08-14 12:45 - 2014-08-14 12:45 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-08-14 12:44 - 2014-08-14 12:44 - 02347384 _____ (ESET) C:\Users\Annette_2\Downloads\esetsmartinstaller_deu.exe
2014-08-14 11:59 - 2014-08-14 12:22 - 00000480 _____ () C:\Users\Annette_2\Downloads\defogger_disable.log
2014-08-14 11:59 - 2014-08-14 11:59 - 00000000 _____ () C:\Users\Annette_2\defogger_reenable
2014-08-14 11:55 - 2014-08-14 11:55 - 00050477 _____ () C:\Users\Annette_2\Downloads\Defogger.exe
2014-08-14 11:15 - 2014-08-14 11:15 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-14 11:15 - 2014-08-14 11:15 - 00002050 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-14 10:49 - 2014-08-14 10:57 - 00000000 ____D () C:\AdwCleaner
2014-08-14 10:49 - 2014-08-14 10:49 - 01356107 _____ () C:\Users\Annette_2\Downloads\adwcleaner_3.305.exe
2014-08-14 10:08 - 2014-08-14 10:08 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-08-14 09:53 - 2014-08-14 09:53 - 00001164 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-08-14 09:52 - 2014-08-14 09:52 - 00001972 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-08-14 09:52 - 2014-08-14 09:52 - 00001922 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2014-08-14 09:52 - 2014-08-14 09:52 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Canneverbe Limited
2014-08-14 09:52 - 2014-08-14 09:52 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2014-08-14 09:51 - 2014-08-14 09:52 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-08-14 09:47 - 2014-08-14 09:47 - 05412944 _____ (Canneverbe Limited ) C:\Users\Annette_2\Downloads\cdbxp_setup_4.5.4.5000_minimal.exe
2014-08-12 22:30 - 2014-08-14 19:30 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-08-12 22:29 - 2014-08-12 22:29 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-12 22:29 - 2014-08-12 22:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-12 22:29 - 2014-08-12 22:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-12 22:29 - 2014-08-12 22:29 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-12 22:29 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-08-12 22:29 - 2014-05-12 07:26 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-08-12 22:29 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-08-12 22:25 - 2014-08-14 14:11 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D1A1C433-6E14-4D85-A113-47BFE589DB2F}
2014-08-12 22:22 - 2014-08-14 10:00 - 00000000 ____D () C:\Program Files (x86)\CHIP Updater
2014-08-12 22:22 - 2014-08-12 22:22 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Abelssoft
2014-08-12 22:22 - 2014-08-12 22:22 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Abelssoft
2014-08-12 22:22 - 2014-08-12 22:22 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\Abelssoft
2014-08-12 22:22 - 2014-08-12 22:22 - 00000000 ____D () C:\ProgramData\XDMessagingv4
2014-08-12 22:22 - 2011-05-13 12:16 - 00493056 _____ ( datenhaus GmbH) C:\WINDOWS\SysWOW64\dhRichClient3.dll
2014-08-12 22:22 - 2011-03-25 20:42 - 00338432 _____ () C:\WINDOWS\SysWOW64\sqlite36_engine.dll
2014-08-12 22:20 - 2014-08-12 22:20 - 01101648 _____ () C:\Users\Annette_2\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer(1).exe
2014-08-12 22:18 - 2014-08-12 22:18 - 04892480 _____ (WinZip International LLC ) C:\Users\Annette_2\Downloads\wzmp_8.exe
2014-08-12 22:16 - 2014-08-12 22:17 - 01101648 _____ () C:\Users\Annette_2\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2014-08-12 21:36 - 2014-01-19 09:38 - 00270496 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-08-12 14:17 - 2014-08-12 14:17 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Nico Mak Computing
2014-08-12 14:14 - 2014-08-12 21:18 - 00000000 ____D () C:\Program Files (x86)\WinZip Malware Protector
2014-08-12 14:14 - 2014-08-12 14:17 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-08-12 12:56 - 2014-08-12 12:56 - 00000000 __SHD () C:\Users\Annette_2\AppData\Local\EmieUserList
2014-08-12 12:56 - 2014-08-12 12:56 - 00000000 __SHD () C:\Users\Annette_2\AppData\Local\EmieSiteList
2014-08-12 01:03 - 2014-08-12 01:06 - 00000000 ____D () C:\Nutzer
2014-08-05 14:28 - 2014-08-14 09:54 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-05 12:44 - 2014-08-05 12:48 - 00000000 ____D () C:\Users\Annette_2\Documents\My Digital Editions
2014-08-05 12:44 - 2014-08-05 12:44 - 00001495 _____ () C:\Users\Annette_2\Downloads\URLLink.acsm
2014-08-05 10:59 - 2014-08-05 10:59 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Nitro
2014-08-05 10:59 - 2014-08-05 10:59 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\FileOpen
2014-08-05 10:59 - 2014-08-05 10:59 - 00000000 ____D () C:\ProgramData\FileOpen
2014-07-28 20:37 - 2014-03-06 09:22 - 16875520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-07-28 20:36 - 2014-03-20 06:19 - 01291200 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-07-28 20:36 - 2014-03-20 05:48 - 21232792 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-07-28 20:36 - 2014-03-20 05:41 - 02013016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2014-07-28 20:36 - 2014-03-20 05:41 - 00376152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2014-07-28 20:36 - 2014-03-20 05:40 - 01112536 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-07-28 20:36 - 2014-03-20 03:29 - 04268544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-07-28 20:36 - 2014-03-20 03:20 - 18679216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-07-28 20:36 - 2014-03-20 02:53 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-07-28 20:36 - 2014-03-20 02:48 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2014-07-28 20:36 - 2014-03-20 01:55 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2014-07-28 20:36 - 2014-03-20 01:39 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2014-07-28 20:36 - 2014-03-20 01:36 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReInfo.dll
2014-07-28 20:36 - 2014-03-19 09:13 - 00836096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-07-28 20:36 - 2014-03-19 07:57 - 00621568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-07-28 20:36 - 2014-03-19 07:50 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe
2014-07-28 20:36 - 2014-03-19 07:31 - 01656832 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2014-07-28 20:36 - 2014-03-19 07:20 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe
2014-07-28 20:36 - 2014-03-19 07:08 - 01351168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2014-07-28 20:36 - 2014-03-19 06:41 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-07-28 20:36 - 2014-03-19 06:17 - 00872448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-07-28 20:36 - 2014-03-13 14:35 - 00157016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wof.sys
2014-07-28 20:36 - 2014-03-12 15:45 - 00387210 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-07-28 20:36 - 2014-03-11 17:45 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2014-07-28 20:36 - 2014-03-11 17:18 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll
2014-07-28 20:36 - 2014-03-11 17:02 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2014-07-28 20:36 - 2014-03-11 16:28 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aclui.dll
2014-07-28 20:36 - 2014-03-11 16:25 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2014-07-28 20:36 - 2014-03-11 16:05 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2014-07-28 20:36 - 2014-03-11 16:03 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-07-28 20:36 - 2014-03-11 16:00 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-07-28 20:36 - 2014-03-11 15:21 - 00918528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-07-28 20:36 - 2014-03-11 15:02 - 00629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-07-28 20:36 - 2014-03-11 14:42 - 02641920 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-07-28 20:36 - 2014-03-11 14:35 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-07-28 20:36 - 2014-03-08 22:47 - 00565536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-07-28 20:36 - 2014-03-08 22:47 - 00180056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-07-28 20:36 - 2014-03-08 22:40 - 00136024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2014-07-28 20:36 - 2014-03-08 22:38 - 01542768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2014-07-28 20:36 - 2014-03-08 22:35 - 00467800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-07-28 20:36 - 2014-03-08 22:35 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2014-07-28 20:36 - 2014-03-08 17:29 - 01339240 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-07-28 20:36 - 2014-03-08 17:29 - 00356848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-07-28 20:36 - 2014-03-08 13:34 - 01095488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2014-07-28 20:36 - 2014-03-08 11:34 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2014-07-28 20:36 - 2014-03-08 11:02 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxproxy.dll
2014-07-28 20:36 - 2014-03-08 10:44 - 00731648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2014-07-28 20:36 - 2014-03-08 10:33 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\spp.dll
2014-07-28 20:36 - 2014-03-08 10:25 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SetNetworkLocation.dll
2014-07-28 20:36 - 2014-03-08 10:12 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxproxy.dll
2014-07-28 20:36 - 2014-03-08 09:53 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-07-28 20:36 - 2014-03-08 09:51 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2014-07-28 20:36 - 2014-03-08 09:47 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spp.dll
2014-07-28 20:36 - 2014-03-08 09:12 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-07-28 20:36 - 2014-03-08 09:09 - 01411584 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-07-28 20:36 - 2014-03-08 09:04 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2014-07-28 20:36 - 2014-03-08 09:03 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-07-28 20:36 - 2014-03-08 09:01 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-07-28 20:36 - 2014-03-08 08:50 - 01066496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2014-07-28 20:36 - 2014-03-08 08:48 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-07-28 20:36 - 2014-03-08 08:46 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-07-28 20:36 - 2014-03-08 08:41 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2014-07-28 20:36 - 2014-03-08 08:40 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2014-07-28 20:36 - 2014-03-08 08:37 - 00755712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-07-28 20:36 - 2014-03-08 08:31 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-07-28 20:36 - 2014-03-08 08:30 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-07-28 20:36 - 2014-03-08 08:25 - 00264192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2014-07-28 20:36 - 2014-03-08 08:09 - 00958464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-07-28 20:36 - 2014-03-08 08:04 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2014-07-28 20:36 - 2014-03-08 08:02 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2014-07-28 20:36 - 2014-03-08 07:58 - 00567296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2014-07-28 20:36 - 2014-03-08 07:41 - 01306624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-07-28 20:36 - 2014-03-08 07:11 - 00924160 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-07-28 20:36 - 2014-03-06 16:35 - 01466864 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-07-28 20:36 - 2014-03-06 16:34 - 02331000 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2014-07-28 20:36 - 2014-03-06 16:34 - 00113648 _____ (Microsoft Corporation) C:\WINDOWS\system32\userenv.dll
2014-07-28 20:36 - 2014-03-06 14:53 - 02141912 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-07-28 20:36 - 2014-03-06 14:53 - 00518552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-07-28 20:36 - 2014-03-06 14:51 - 01557848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-07-28 20:36 - 2014-03-06 14:51 - 00488280 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2014-07-28 20:36 - 2014-03-06 14:51 - 00379224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-07-28 20:36 - 2014-03-06 14:42 - 07425368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-07-28 20:36 - 2014-03-06 14:40 - 00492256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-07-28 20:36 - 2014-03-06 14:40 - 00467504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-07-28 20:36 - 2014-03-06 14:40 - 00463264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-07-28 20:36 - 2014-03-06 14:40 - 00364640 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-07-28 20:36 - 2014-03-06 14:40 - 00244888 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-07-28 20:36 - 2014-03-06 14:39 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2014-07-28 20:36 - 2014-03-06 13:20 - 01200296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-07-28 20:36 - 2014-03-06 13:19 - 00390488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2014-07-28 20:36 - 2014-03-06 13:19 - 00094016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\userenv.dll
2014-07-28 20:36 - 2014-03-06 13:13 - 01779800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-07-28 20:36 - 2014-03-06 13:13 - 00406912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-07-28 20:36 - 2014-03-06 12:46 - 01679128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2014-07-28 20:36 - 2014-03-06 12:35 - 00406512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2014-07-28 20:36 - 2014-03-06 12:35 - 00388408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2014-07-28 20:36 - 2014-03-06 12:35 - 00326024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2014-07-28 20:36 - 2014-03-06 12:35 - 00305768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2014-07-28 20:36 - 2014-03-06 11:29 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2014-07-28 20:36 - 2014-03-06 11:24 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2014-07-28 20:36 - 2014-03-06 11:24 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2014-07-28 20:36 - 2014-03-06 11:24 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2014-07-28 20:36 - 2014-03-06 11:22 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2014-07-28 20:36 - 2014-03-06 11:22 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2014-07-28 20:36 - 2014-03-06 11:22 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2014-07-28 20:36 - 2014-03-06 11:20 - 00443392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2014-07-28 20:36 - 2014-03-06 11:20 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-07-28 20:36 - 2014-03-06 11:20 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2014-07-28 20:36 - 2014-03-06 11:19 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2014-07-28 20:36 - 2014-03-06 11:19 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll
2014-07-28 20:36 - 2014-03-06 11:19 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvcfg.exe
2014-07-28 20:36 - 2014-03-06 11:19 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpipreg.sys
2014-07-28 20:36 - 2014-03-06 11:19 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2014-07-28 20:36 - 2014-03-06 11:08 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2014-07-28 20:36 - 2014-03-06 11:08 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll
2014-07-28 20:36 - 2014-03-06 10:41 - 00115200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevPropMgr.dll
2014-07-28 20:36 - 2014-03-06 10:38 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2014-07-28 20:36 - 2014-03-06 10:37 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2014-07-28 20:36 - 2014-03-06 10:28 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanhlp.dll
2014-07-28 20:36 - 2014-03-06 10:20 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Shell.Search.UriHandler.dll
2014-07-28 20:36 - 2014-03-06 10:10 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\l2gpstore.dll
2014-07-28 20:36 - 2014-03-06 10:09 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvinst.exe
2014-07-28 20:36 - 2014-03-06 10:00 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2014-07-28 20:36 - 2014-03-06 09:47 - 01057280 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2014-07-28 20:36 - 2014-03-06 09:46 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2014-07-28 20:36 - 2014-03-06 09:44 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2014-07-28 20:36 - 2014-03-06 09:16 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2014-07-28 20:36 - 2014-03-06 09:08 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2014-07-28 20:36 - 2014-03-06 09:02 - 00834560 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2014-07-28 20:36 - 2014-03-06 08:59 - 12732416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-07-28 20:36 - 2014-03-06 08:57 - 00443904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2014-07-28 20:36 - 2014-03-06 08:51 - 02900992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-07-28 20:36 - 2014-03-06 08:39 - 02133504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-07-28 20:36 - 2014-03-06 08:34 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-07-28 20:36 - 2014-03-06 08:33 - 13286400 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-07-28 20:36 - 2014-03-06 08:32 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-07-28 20:36 - 2014-03-06 08:31 - 02479616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2014-07-28 20:36 - 2014-03-06 08:29 - 11791360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-07-28 20:36 - 2014-03-06 08:29 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netlogon.dll
2014-07-28 20:36 - 2014-03-06 08:27 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2014-07-28 20:36 - 2014-03-06 08:24 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlangpui.dll
2014-07-28 20:36 - 2014-03-06 08:23 - 02270208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-07-28 20:36 - 2014-03-06 08:23 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWfdProvider.dll
2014-07-28 20:36 - 2014-03-06 08:21 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2014-07-28 20:36 - 2014-03-06 08:21 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2014-07-28 20:36 - 2014-03-06 08:16 - 01527296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-07-28 20:36 - 2014-03-06 08:16 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-07-28 20:36 - 2014-03-06 08:13 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2014-07-28 20:36 - 2014-03-06 08:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2014-07-28 20:36 - 2014-03-06 08:11 - 02030080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2014-07-28 20:36 - 2014-03-06 08:09 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-07-28 20:36 - 2014-03-06 08:06 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlangpui.dll
2014-07-28 20:36 - 2014-03-06 08:05 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2014-07-28 20:36 - 2014-03-06 08:04 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2014-07-28 20:36 - 2014-03-06 08:04 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2014-07-28 20:36 - 2014-03-06 08:01 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
2014-07-28 20:36 - 2014-03-06 07:54 - 01023488 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-07-28 20:36 - 2014-03-06 07:54 - 00888320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2014-07-28 20:36 - 2014-03-06 07:51 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Scanners.dll
2014-07-28 20:36 - 2014-03-06 07:47 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2014-07-28 20:36 - 2014-03-06 07:42 - 01129472 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-07-28 20:36 - 2014-03-06 07:42 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2014-07-28 20:36 - 2014-03-06 07:35 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2014-07-28 20:36 - 2014-03-06 07:33 - 00839168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-07-28 20:36 - 2014-03-06 07:32 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2014-07-28 20:36 - 2014-03-06 07:28 - 08653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-07-28 20:36 - 2014-03-06 07:27 - 05833728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-07-28 20:36 - 2014-03-06 07:21 - 05770752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-07-28 20:36 - 2014-03-06 07:20 - 06641152 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-07-28 20:36 - 2014-03-04 14:25 - 02373784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-07-28 20:36 - 2014-03-04 14:15 - 02519384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-07-28 20:36 - 2014-03-04 14:15 - 00428888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-07-28 20:36 - 2014-03-04 14:14 - 00360512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2014-07-28 20:36 - 2014-03-04 13:16 - 02088160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-07-28 20:36 - 2014-03-04 13:10 - 00355832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2014-07-28 20:36 - 2014-03-04 09:16 - 00655360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2014-07-28 20:36 - 2014-03-04 09:13 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2014-07-28 20:36 - 2014-03-04 09:08 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\pdh.dll
2014-07-28 20:36 - 2014-03-04 09:00 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2014-07-28 20:36 - 2014-03-04 08:56 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\RMapi.dll
2014-07-28 20:36 - 2014-03-04 08:50 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2014-07-28 20:36 - 2014-03-04 08:42 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2014-07-28 20:36 - 2014-03-04 08:39 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pdh.dll
2014-07-28 20:36 - 2014-03-04 08:32 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2014-07-28 20:36 - 2014-03-04 08:15 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2014-07-28 20:36 - 2014-03-04 08:05 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2014-07-28 20:36 - 2014-03-04 08:03 - 00669696 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2014-07-28 20:36 - 2014-03-04 08:03 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-07-28 20:36 - 2014-03-04 07:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-07-28 20:36 - 2014-03-04 07:52 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2014-07-28 20:36 - 2014-02-07 00:59 - 00425984 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-07-28 20:36 - 2014-02-06 23:26 - 00313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2014-07-28 20:36 - 2013-12-24 01:28 - 00262656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2014-07-28 20:36 - 2013-12-24 01:26 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2014-07-28 20:35 - 2014-03-02 12:20 - 23549952 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-07-28 20:35 - 2014-03-02 11:33 - 17387008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-07-28 20:35 - 2014-02-26 08:29 - 02678784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-07-28 20:34 - 2014-04-09 14:00 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-07-28 20:34 - 2014-04-09 05:32 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-07-28 20:34 - 2014-04-09 05:31 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-07-28 20:34 - 2014-04-09 05:23 - 01705984 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-07-28 20:34 - 2014-04-09 05:21 - 03408896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-07-28 20:32 - 2014-02-22 17:53 - 03394384 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-07-28 20:32 - 2014-02-22 13:00 - 05784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-07-28 20:32 - 2014-02-22 12:34 - 11742720 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2014-07-28 20:32 - 2014-02-08 03:08 - 00139600 _____ () C:\WINDOWS\system32\systemsf.ebd
2014-07-28 20:31 - 2014-02-22 18:59 - 01519520 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-07-28 20:31 - 2014-02-22 18:59 - 01290688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2014-07-28 20:31 - 2014-02-22 18:59 - 00526304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2014-07-28 20:31 - 2014-02-22 18:15 - 01929608 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2014-07-28 20:31 - 2014-02-22 18:15 - 01206000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2014-07-28 20:31 - 2014-02-22 18:00 - 00249688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2014-07-28 20:31 - 2014-02-22 17:55 - 01435304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2014-07-28 20:31 - 2014-02-22 17:55 - 00388408 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2014-07-28 20:31 - 2014-02-22 17:50 - 02588168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2014-07-28 20:31 - 2014-02-22 17:50 - 00645104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2014-07-28 20:31 - 2014-02-22 17:50 - 00555736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2014-07-28 20:31 - 2014-02-22 17:49 - 00280920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2014-07-28 20:31 - 2014-02-22 17:48 - 02574240 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2014-07-28 20:31 - 2014-02-22 17:46 - 01927600 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-07-28 20:31 - 2014-02-22 17:46 - 01445616 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2014-07-28 20:31 - 2014-02-22 17:46 - 01000424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2014-07-28 20:31 - 2014-02-22 17:46 - 00669896 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2014-07-28 20:31 - 2014-02-22 17:44 - 00539992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2014-07-28 20:31 - 2014-02-22 17:44 - 00424280 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-07-28 20:31 - 2014-02-22 17:43 - 01727760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-07-28 20:31 - 2014-02-22 17:43 - 01659056 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-07-28 20:31 - 2014-02-22 17:43 - 01519592 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-07-28 20:31 - 2014-02-22 17:43 - 01487520 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-07-28 20:31 - 2014-02-22 17:43 - 01356360 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-07-28 20:31 - 2014-02-22 17:41 - 02142976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-07-28 20:31 - 2014-02-22 17:41 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-07-28 20:31 - 2014-02-22 17:41 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-07-28 20:31 - 2014-02-22 17:41 - 01215832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2014-07-28 20:31 - 2014-02-22 17:41 - 00881616 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2014-07-28 20:31 - 2014-02-22 17:41 - 00800552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2014-07-28 20:31 - 2014-02-22 17:41 - 00609456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2014-07-28 20:31 - 2014-02-22 17:41 - 00391008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2014-07-28 20:31 - 2014-02-22 17:40 - 01118552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-07-28 20:31 - 2014-02-22 16:52 - 01767440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2014-07-28 20:31 - 2014-02-22 16:51 - 01063976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2014-07-28 20:31 - 2014-02-22 16:42 - 01017936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2014-07-28 20:31 - 2014-02-22 16:42 - 00422968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2014-07-28 20:31 - 2014-02-22 16:38 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-07-28 20:31 - 2014-02-22 16:38 - 01077944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2014-07-28 20:31 - 2014-02-22 16:25 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2014-07-28 20:31 - 2014-02-22 16:18 - 00477744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2014-07-28 20:31 - 2014-02-22 16:18 - 00419928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2014-07-28 20:31 - 2014-02-22 16:08 - 01474104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-07-28 20:31 - 2014-02-22 16:04 - 02144984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-07-28 20:31 - 2014-02-22 16:04 - 01011280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2014-07-28 20:31 - 2014-02-22 16:04 - 00707048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2014-07-28 20:31 - 2014-02-22 16:04 - 00650736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2014-07-28 20:31 - 2014-02-22 16:04 - 00518552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2014-07-28 20:31 - 2014-02-22 16:04 - 00296448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2014-07-28 20:31 - 2014-02-22 14:24 - 02825216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2014-07-28 20:31 - 2014-02-22 14:22 - 01163264 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2014-07-28 20:31 - 2014-02-22 14:15 - 04192768 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-07-28 20:31 - 2014-02-22 14:14 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2014-07-28 20:31 - 2014-02-22 14:08 - 00630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\OobeFldr.dll
2014-07-28 20:31 - 2014-02-22 14:07 - 00545792 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2014-07-28 20:31 - 2014-02-22 13:44 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-07-28 20:31 - 2014-02-22 13:28 - 02428928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2014-07-28 20:31 - 2014-02-22 13:17 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-07-28 20:31 - 2014-02-22 13:17 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OobeFldr.dll
2014-07-28 20:31 - 2014-02-22 13:16 - 00617472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2014-07-28 20:31 - 2014-02-22 12:54 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-07-28 20:31 - 2014-02-22 12:44 - 02178048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-07-28 20:31 - 2014-02-22 12:41 - 00878592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenter.dll
2014-07-28 20:31 - 2014-02-22 12:38 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DfpCommon.dll
2014-07-28 20:31 - 2014-02-22 12:36 - 04254720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-07-28 20:31 - 2014-02-22 12:36 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2014-07-28 20:31 - 2014-02-22 12:33 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-07-28 20:31 - 2014-02-22 12:25 - 01428480 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2014-07-28 20:31 - 2014-02-22 12:18 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2014-07-28 20:31 - 2014-02-22 12:09 - 01224192 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2014-07-28 20:31 - 2014-02-22 12:08 - 00997888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-07-28 20:31 - 2014-02-22 12:06 - 02943488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2014-07-28 20:31 - 2014-02-22 12:02 - 08946688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2014-07-28 20:31 - 2014-02-22 12:01 - 02648064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2014-07-28 20:31 - 2014-02-22 12:01 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2014-07-28 20:31 - 2014-02-22 12:00 - 02043904 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-07-28 20:31 - 2014-02-22 11:57 - 00710656 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2014-07-28 20:31 - 2014-02-22 11:53 - 00825344 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2014-07-28 20:31 - 2014-02-22 11:52 - 01132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2014-07-28 20:31 - 2014-02-22 11:48 - 00427520 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-07-28 20:31 - 2014-02-22 11:47 - 01192448 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2014-07-28 20:31 - 2014-02-22 11:45 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2014-07-28 20:31 - 2014-02-22 11:39 - 13551104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-07-28 20:31 - 2014-02-22 11:38 - 00753664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2014-07-28 20:31 - 2014-02-22 11:37 - 02220032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2014-07-28 20:31 - 2014-02-22 11:35 - 00968704 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2014-07-28 20:31 - 2014-02-22 11:35 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WofTasks.dll
2014-07-28 20:31 - 2014-02-22 11:34 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2014-07-28 20:31 - 2014-02-22 11:33 - 11745792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-07-28 20:31 - 2014-02-22 11:33 - 01967104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-07-28 20:31 - 2014-02-22 11:33 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DismApi.dll
2014-07-28 20:31 - 2014-02-22 11:28 - 02643456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2014-07-28 20:31 - 2014-02-22 11:26 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2014-07-28 20:31 - 2014-02-22 11:26 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2014-07-28 20:31 - 2014-02-22 11:23 - 03494912 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2014-07-28 20:31 - 2014-02-22 11:23 - 02843136 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-07-28 20:31 - 2014-02-22 11:23 - 01576960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2014-07-28 20:31 - 2014-02-22 11:23 - 00628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2014-07-28 20:31 - 2014-02-22 11:23 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2014-07-28 20:31 - 2014-02-22 11:21 - 01287168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-07-28 20:31 - 2014-02-22 11:16 - 11776000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2014-07-28 20:31 - 2014-02-22 11:14 - 00584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2014-07-28 20:31 - 2014-02-22 11:13 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2014-07-28 20:31 - 2014-02-22 11:11 - 02395136 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2014-07-28 20:31 - 2014-02-22 11:11 - 02262016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-07-28 20:31 - 2014-02-22 11:11 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-07-28 20:31 - 2014-02-22 11:10 - 00569856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-07-28 20:31 - 2014-02-22 11:04 - 01107456 _____ (Microsoft Corporation) C:\WINDOWS\system32\perftrack.dll
2014-07-28 20:31 - 2014-02-22 11:04 - 01029120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-07-28 20:31 - 2014-02-22 11:01 - 13933568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2014-07-28 20:31 - 2014-02-22 11:00 - 01341440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2014-07-28 20:31 - 2014-02-22 11:00 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2014-07-28 20:31 - 2014-02-22 10:59 - 01621504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2014-07-28 20:31 - 2014-02-22 10:59 - 01403392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2014-07-28 20:31 - 2014-02-22 10:59 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-07-28 20:31 - 2014-02-22 10:59 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2014-07-28 20:31 - 2014-02-22 10:54 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-07-28 20:31 - 2014-02-22 10:53 - 12027904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2014-07-28 20:31 - 2014-02-22 10:51 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RacEngn.dll
2014-07-28 20:31 - 2014-02-22 10:49 - 08874496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2014-07-28 20:31 - 2014-02-22 10:49 - 01400832 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-07-28 20:31 - 2014-02-22 10:47 - 00517120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-07-28 20:31 - 2014-02-22 10:45 - 00845824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2014-07-28 20:31 - 2014-02-22 10:44 - 00721408 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2014-07-28 20:31 - 2014-02-22 10:40 - 02368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2014-07-28 20:31 - 2014-02-22 10:40 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2014-07-28 20:31 - 2014-02-22 10:38 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-07-28 20:31 - 2014-02-22 10:37 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2014-07-28 20:31 - 2014-02-22 10:34 - 02100736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2014-07-28 20:31 - 2014-02-22 10:32 - 01789440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-07-28 20:31 - 2014-02-22 10:27 - 01143808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-07-28 20:31 - 2014-02-22 10:24 - 02760704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2014-07-28 20:31 - 2014-02-22 10:22 - 00777728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-07-28 20:31 - 2014-02-22 10:21 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-07-28 20:31 - 2014-02-22 10:21 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-07-28 20:31 - 2014-02-22 10:19 - 00698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-07-28 20:31 - 2014-02-22 10:06 - 01640960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-07-28 20:31 - 2014-02-22 10:04 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-07-28 20:31 - 2014-02-22 10:03 - 01496576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2014-07-28 20:31 - 2014-02-22 10:01 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2014-07-28 20:31 - 2014-02-22 10:00 - 00514560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2014-07-28 20:31 - 2014-02-22 06:33 - 00262335 _____ () C:\WINDOWS\system32\dfpinc.dat
2014-07-28 20:31 - 2014-02-02 16:48 - 00307304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2014-07-28 20:31 - 2014-01-29 10:53 - 01653352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-07-28 20:31 - 2014-01-29 09:44 - 01369736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2014-07-28 20:31 - 2014-01-27 17:38 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2014-07-28 20:30 - 2014-02-22 18:59 - 00461176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-07-28 20:30 - 2014-02-22 18:59 - 00407536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2014-07-28 20:30 - 2014-02-22 18:59 - 00289752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqmapi.dll
2014-07-28 20:30 - 2014-02-22 18:59 - 00209160 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll
2014-07-28 20:30 - 2014-02-22 18:59 - 00139464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2014-07-28 20:30 - 2014-02-22 18:59 - 00123448 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2014-07-28 20:30 - 2014-02-22 18:15 - 00531128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2014-07-28 20:30 - 2014-02-22 18:15 - 00275312 _____ (Microsoft Corporation) C:\WINDOWS\system32\powrprof.dll
2014-07-28 20:30 - 2014-02-22 18:15 - 00188464 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2014-07-28 20:30 - 2014-02-22 18:15 - 00071888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2014-07-28 20:30 - 2014-02-22 18:02 - 00170952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2014-07-28 20:30 - 2014-02-22 18:02 - 00083120 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2014-07-28 20:30 - 2014-02-22 18:02 - 00080048 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2014-07-28 20:30 - 2014-02-22 18:00 - 00590168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2014-07-28 20:30 - 2014-02-22 18:00 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-07-28 20:30 - 2014-02-22 18:00 - 00151384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-07-28 20:30 - 2014-02-22 18:00 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fileinfo.sys
2014-07-28 20:30 - 2014-02-22 17:59 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-07-28 20:30 - 2014-02-22 17:55 - 00244848 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2014-07-28 20:30 - 2014-02-22 17:55 - 00162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2014-07-28 20:30 - 2014-02-22 17:55 - 00152848 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2014-07-28 20:30 - 2014-02-22 17:55 - 00131168 _____ (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2014-07-28 20:30 - 2014-02-22 17:55 - 00105864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-07-28 20:30 - 2014-02-22 17:50 - 00761792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2014-07-28 20:30 - 2014-02-22 17:50 - 00258784 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2014-07-28 20:30 - 2014-02-22 17:50 - 00101216 _____ (Microsoft Corporation) C:\WINDOWS\system32\RestoreOptIn.exe
2014-07-28 20:30 - 2014-02-22 17:50 - 00054816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wpcfltr.sys
2014-07-28 20:30 - 2014-02-22 17:50 - 00043408 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudNotifications.exe
2014-07-28 20:30 - 2014-02-22 17:50 - 00032544 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserAccountBroker.exe
2014-07-28 20:30 - 2014-02-22 17:49 - 00384856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-07-28 20:30 - 2014-02-22 17:49 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2014-07-28 20:30 - 2014-02-22 17:49 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-07-28 20:30 - 2014-02-22 17:49 - 00148824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-07-28 20:30 - 2014-02-22 17:49 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-07-28 20:30 - 2014-02-22 17:49 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2014-07-28 20:30 - 2014-02-22 17:48 - 01791752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2014-07-28 20:30 - 2014-02-22 17:48 - 00210736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVol.exe
2014-07-28 20:30 - 2014-02-22 17:44 - 00924504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2014-07-28 20:30 - 2014-02-22 17:44 - 00360792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2014-07-28 20:30 - 2014-02-22 17:44 - 00311640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-07-28 20:30 - 2014-02-22 17:43 - 00142576 _____ (Microsoft Corporation) C:\WINDOWS\system32\smss.exe
2014-07-28 20:30 - 2014-02-22 17:43 - 00094560 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcd.dll
2014-07-28 20:30 - 2014-02-22 17:41 - 00372360 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2014-07-28 20:30 - 2014-02-22 17:41 - 00324896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2014-07-28 20:30 - 2014-02-22 16:52 - 00251504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powrprof.dll
2014-07-28 20:30 - 2014-02-22 16:51 - 00140456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscapi.dll
2014-07-28 20:30 - 2014-02-22 16:42 - 00410568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2014-07-28 20:30 - 2014-02-22 16:42 - 00369288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2014-07-28 20:30 - 2014-02-22 16:42 - 00232896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqmapi.dll
2014-07-28 20:30 - 2014-02-22 16:42 - 00137344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2014-07-28 20:30 - 2014-02-22 16:42 - 00098072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2014-07-28 20:30 - 2014-02-22 16:38 - 00506120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2014-07-28 20:30 - 2014-02-22 16:38 - 00336232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2014-07-28 20:30 - 2014-02-22 16:38 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2014-07-28 20:30 - 2014-02-22 16:25 - 00180240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVol.exe
2014-07-28 20:30 - 2014-02-22 16:18 - 00089848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RestoreOptIn.exe
2014-07-28 20:30 - 2014-02-22 16:18 - 00041320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudNotifications.exe
2014-07-28 20:30 - 2014-02-22 16:18 - 00029912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserAccountBroker.exe
2014-07-28 20:30 - 2014-02-22 16:11 - 00490136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2014-07-28 20:30 - 2014-02-22 16:08 - 00079496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcd.dll
2014-07-28 20:30 - 2014-02-22 16:04 - 01206000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-07-28 20:30 - 2014-02-22 16:04 - 00317584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2014-07-28 20:30 - 2014-02-22 16:04 - 00285144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFCaptureEngine.dll
2014-07-28 20:30 - 2014-02-22 14:20 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2014-07-28 20:30 - 2014-02-22 14:20 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-07-28 20:30 - 2014-02-22 14:14 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\luafv.sys
2014-07-28 20:30 - 2014-02-22 14:14 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2014-07-28 20:30 - 2014-02-22 14:11 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-07-28 20:30 - 2014-02-22 14:09 - 00663040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2014-07-28 20:30 - 2014-02-22 14:07 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WofUtil.dll
2014-07-28 20:30 - 2014-02-22 14:07 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\clrhost.dll
2014-07-28 20:30 - 2014-02-22 14:06 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-07-28 20:30 - 2014-02-22 14:02 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll
2014-07-28 20:30 - 2014-02-22 13:57 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\slc.dll
2014-07-28 20:30 - 2014-02-22 13:54 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2014-07-28 20:30 - 2014-02-22 13:50 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\fsutil.exe
2014-07-28 20:30 - 2014-02-22 13:47 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsbas.dll
2014-07-28 20:30 - 2014-02-22 13:46 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-07-28 20:30 - 2014-02-22 13:41 - 00196608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PkgMgr.exe
2014-07-28 20:30 - 2014-02-22 13:34 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmdskmgr.dll
2014-07-28 20:30 - 2014-02-22 13:30 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-07-28 20:30 - 2014-02-22 13:27 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dot3mm.dll
2014-07-28 20:30 - 2014-02-22 13:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\recimg.exe
2014-07-28 20:30 - 2014-02-22 13:25 - 00307712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wusa.exe
2014-07-28 20:30 - 2014-02-22 13:22 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2014-07-28 20:30 - 2014-02-22 13:17 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAMM.dll
2014-07-28 20:30 - 2014-02-22 13:16 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2014-07-28 20:30 - 2014-02-22 13:15 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll
2014-07-28 20:30 - 2014-02-22 13:14 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\cleanmgr.exe
2014-07-28 20:30 - 2014-02-22 13:06 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slc.dll
2014-07-28 20:30 - 2014-02-22 13:05 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\RASMM.dll
2014-07-28 20:30 - 2014-02-22 13:05 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2014-07-28 20:30 - 2014-02-22 13:03 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2014-07-28 20:30 - 2014-02-22 13:02 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2014-07-28 20:30 - 2014-02-22 13:01 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fsutil.exe
2014-07-28 20:30 - 2014-02-22 13:00 - 00453120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-07-28 20:30 - 2014-02-22 12:59 - 01283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2014-07-28 20:30 - 2014-02-22 12:58 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-07-28 20:30 - 2014-02-22 12:56 - 02862592 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2014-07-28 20:30 - 2014-02-22 12:56 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\srchadmin.dll
2014-07-28 20:30 - 2014-02-22 12:56 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2014-07-28 20:30 - 2014-02-22 12:52 - 02288640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2014-07-28 20:30 - 2014-02-22 12:52 - 00331264 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2014-07-28 20:30 - 2014-02-22 12:51 - 00444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwizeng.dll
2014-07-28 20:30 - 2014-02-22 12:47 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfp.exe
2014-07-28 20:30 - 2014-02-22 12:41 - 00320000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2014-07-28 20:30 - 2014-02-22 12:41 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\netid.dll
2014-07-28 20:30 - 2014-02-22 12:39 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2014-07-28 20:30 - 2014-02-22 12:37 - 00912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll
2014-07-28 20:30 - 2014-02-22 12:33 - 00402944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2014-07-28 20:30 - 2014-02-22 12:31 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-07-28 20:30 - 2014-02-22 12:30 - 00213504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cleanmgr.exe
2014-07-28 20:30 - 2014-02-22 12:28 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-07-28 20:30 - 2014-02-22 12:27 - 00397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\sharemediacpl.dll
2014-07-28 20:30 - 2014-02-22 12:22 - 00606208 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2014-07-28 20:30 - 2014-02-22 12:21 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srclient.dll
2014-07-28 20:30 - 2014-02-22 12:18 - 00722432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeui.exe
2014-07-28 20:30 - 2014-02-22 12:17 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2014-07-28 20:30 - 2014-02-22 12:17 - 00367616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-07-28 20:30 - 2014-02-22 12:16 - 00308224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srchadmin.dll
2014-07-28 20:30 - 2014-02-22 12:15 - 01543680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2014-07-28 20:30 - 2014-02-22 12:14 - 02811392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themeui.dll
2014-07-28 20:30 - 2014-02-22 12:14 - 02165760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2014-07-28 20:30 - 2014-02-22 12:14 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2014-07-28 20:30 - 2014-02-22 12:13 - 00897024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdclt.exe
2014-07-28 20:30 - 2014-02-22 12:13 - 00307200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\newdev.dll
2014-07-28 20:30 - 2014-02-22 12:12 - 00797696 _____ (Microsoft Corporation) C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2014-07-28 20:30 - 2014-02-22 12:09 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2014-07-28 20:30 - 2014-02-22 12:09 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-07-28 20:30 - 2014-02-22 12:05 - 01757184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-07-28 20:30 - 2014-02-22 12:04 - 00935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasgcw.dll
2014-07-28 20:30 - 2014-02-22 12:04 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2014-07-28 20:30 - 2014-02-22 12:03 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2014-07-28 20:30 - 2014-02-22 12:02 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2014-07-28 20:30 - 2014-02-22 12:01 - 01227776 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2014-07-28 20:30 - 2014-02-22 12:01 - 00832512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenter.dll
2014-07-28 20:30 - 2014-02-22 12:00 - 00217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2014-07-28 20:30 - 2014-02-22 11:59 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-07-28 20:30 - 2014-02-22 11:56 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2014-07-28 20:30 - 2014-02-22 11:55 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-07-28 20:30 - 2014-02-22 11:54 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\authz.dll
2014-07-28 20:30 - 2014-02-22 11:54 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-07-28 20:30 - 2014-02-22 11:49 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2014-07-28 20:30 - 2014-02-22 11:48 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-07-28 20:30 - 2014-02-22 11:46 - 00528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2014-07-28 20:30 - 2014-02-22 11:45 - 00512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2014-07-28 20:30 - 2014-02-22 11:45 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2014-07-28 20:30 - 2014-02-22 11:45 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2014-07-28 20:30 - 2014-02-22 11:44 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2014-07-28 20:30 - 2014-02-22 11:44 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2014-07-28 20:30 - 2014-02-22 11:43 - 00107008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2014-07-28 20:30 - 2014-02-22 11:40 - 02537472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2014-07-28 20:30 - 2014-02-22 11:40 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-07-28 20:30 - 2014-02-22 11:36 - 01392640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-07-28 20:30 - 2014-02-22 11:36 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2014-07-28 20:30 - 2014-02-22 11:36 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WLanConn.dll
2014-07-28 20:30 - 2014-02-22 11:36 - 00275456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dism.exe
2014-07-28 20:30 - 2014-02-22 11:34 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2014-07-28 20:30 - 2014-02-22 11:32 - 01162752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2014-07-28 20:30 - 2014-02-22 11:31 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-07-28 20:30 - 2014-02-22 11:28 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authz.dll
2014-07-28 20:30 - 2014-02-22 11:25 - 01361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2014-07-28 20:30 - 2014-02-22 11:25 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2014-07-28 20:30 - 2014-02-22 11:25 - 00399872 _____ (Microsoft Corporation) C:\WINDOWS\system32\das.dll
2014-07-28 20:30 - 2014-02-22 11:25 - 00269824 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-07-28 20:30 - 2014-02-22 11:25 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2014-07-28 20:30 - 2014-02-22 11:25 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscinterop.dll
2014-07-28 20:30 - 2014-02-22 11:24 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2014-07-28 20:30 - 2014-02-22 11:22 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2014-07-28 20:30 - 2014-02-22 11:18 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-07-28 20:30 - 2014-02-22 11:15 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Dism.exe
2014-07-28 20:30 - 2014-02-22 11:14 - 00752640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2014-07-28 20:30 - 2014-02-22 11:12 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DismApi.dll
2014-07-28 20:30 - 2014-02-22 11:10 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-07-28 20:30 - 2014-02-22 11:09 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2014-07-28 20:30 - 2014-02-22 11:07 - 00718336 _____ (Microsoft Corporation) C:\WINDOWS\system32\swprv.dll
2014-07-28 20:30 - 2014-02-22 11:07 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2014-07-28 20:30 - 2014-02-22 11:07 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscinterop.dll
2014-07-28 20:30 - 2014-02-22 11:06 - 01035264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-07-28 20:30 - 2014-02-22 11:02 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2014-07-28 20:30 - 2014-02-22 11:02 - 00052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2014-07-28 20:30 - 2014-02-22 10:55 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2014-07-28 20:30 - 2014-02-22 10:54 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdbui.dll
2014-07-28 20:30 - 2014-02-22 10:54 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2014-07-28 20:30 - 2014-02-22 10:54 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2014-07-28 20:30 - 2014-02-22 10:54 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2014-07-28 20:30 - 2014-02-22 10:53 - 00876544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2014-07-28 20:30 - 2014-02-22 10:52 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-07-28 20:30 - 2014-02-22 10:52 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2014-07-28 20:30 - 2014-02-22 10:51 - 00716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntshrui.dll
2014-07-28 20:30 - 2014-02-22 10:51 - 00159744 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2014-07-28 20:30 - 2014-02-22 10:49 - 00755200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2014-07-28 20:30 - 2014-02-22 10:48 - 01144320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2014-07-28 20:30 - 2014-02-22 10:48 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BioCredProv.dll
2014-07-28 20:30 - 2014-02-22 10:47 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMM.dll
2014-07-28 20:30 - 2014-02-22 10:47 - 00505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2014-07-28 20:30 - 2014-02-22 10:47 - 00108032 _____ (Microsoft Corporation) C:\WINDOWS\system32\AltTab.dll
2014-07-28 20:30 - 2014-02-22 10:46 - 03312128 _____ (Microsoft Corporation) C:\WINDOWS\system32\bootux.dll
2014-07-28 20:30 - 2014-02-22 10:46 - 00824832 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-07-28 20:30 - 2014-02-22 10:45 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2014-07-28 20:30 - 2014-02-22 10:44 - 00510976 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2014-07-28 20:30 - 2014-02-22 10:44 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provsvc.dll
2014-07-28 20:30 - 2014-02-22 10:44 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2014-07-28 20:30 - 2014-02-22 10:43 - 00644608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntshrui.dll
2014-07-28 20:30 - 2014-02-22 10:43 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2014-07-28 20:30 - 2014-02-22 10:43 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-07-28 20:30 - 2014-02-22 10:43 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2014-07-28 20:30 - 2014-02-22 10:42 - 00943104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WlanMM.dll
2014-07-28 20:30 - 2014-02-22 10:42 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2014-07-28 20:30 - 2014-02-22 10:42 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VAN.dll
2014-07-28 20:30 - 2014-02-22 10:41 - 00662528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2014-07-28 20:30 - 2014-02-22 10:40 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2014-07-28 20:30 - 2014-02-22 10:39 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2014-07-28 20:30 - 2014-02-22 10:38 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2014-07-28 20:30 - 2014-02-22 10:38 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-07-28 20:30 - 2014-02-22 10:37 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2014-07-28 20:30 - 2014-02-22 10:36 - 00232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputSwitch.dll
2014-07-28 20:30 - 2014-02-22 10:35 - 00704512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-07-28 20:30 - 2014-02-22 10:34 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\stobject.dll
2014-07-28 20:30 - 2014-02-22 10:33 - 00609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2014-07-28 20:30 - 2014-02-22 10:31 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2014-07-28 20:30 - 2014-02-22 10:29 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputSwitch.dll
2014-07-28 20:30 - 2014-02-22 10:24 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2014-07-28 20:30 - 2014-02-22 10:22 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2014-07-28 20:30 - 2014-02-22 10:21 - 00518144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2014-07-28 20:30 - 2014-02-22 10:18 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2014-07-28 20:30 - 2014-02-22 10:17 - 00459264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2014-07-28 20:30 - 2014-02-22 10:01 - 00978944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2014-07-28 20:30 - 2014-02-22 09:54 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SndVolSSO.dll
2014-07-28 20:30 - 2014-02-02 15:33 - 00230808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2014-07-28 20:30 - 2014-01-31 14:08 - 01200640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2014-07-28 20:30 - 2014-01-31 13:59 - 00191488 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2014-07-28 20:30 - 2014-01-31 11:55 - 03596800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2014-07-28 20:30 - 2014-01-31 11:35 - 03085824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2014-07-28 20:30 - 2014-01-31 11:15 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2014-07-28 20:30 - 2014-01-31 11:10 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-07-28 20:30 - 2014-01-31 11:08 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2014-07-28 20:30 - 2014-01-31 11:04 - 00409600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2014-07-28 20:30 - 2014-01-31 10:18 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2014-07-28 20:30 - 2014-01-29 10:52 - 00551256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2014-07-28 20:30 - 2014-01-29 02:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2014-07-28 20:30 - 2014-01-29 02:17 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2014-07-28 20:30 - 2014-01-27 21:53 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll
2014-07-28 20:30 - 2014-01-27 19:04 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2014-07-28 20:30 - 2014-01-17 19:24 - 00388096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ninput.dll
2014-07-28 20:30 - 2014-01-17 19:04 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ninput.dll
2014-07-28 20:30 - 2014-01-08 03:30 - 00745328 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-07-28 20:30 - 2014-01-08 02:33 - 00552632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-07-28 20:30 - 2013-12-10 09:35 - 00530944 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2014-07-28 20:30 - 2013-12-04 20:41 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthLEEnum.sys
2014-07-28 20:30 - 2013-12-04 17:54 - 00660480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2014-07-28 20:30 - 2013-12-04 17:16 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2014-07-28 20:30 - 2013-12-04 15:53 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2014-07-28 20:30 - 2013-11-11 01:41 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2014-07-28 20:30 - 2013-11-08 06:04 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2014-07-28 20:29 - 2014-02-22 18:58 - 00036200 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2014-07-28 20:29 - 2014-02-22 17:59 - 00027480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2014-07-28 20:29 - 2014-02-22 17:49 - 00189784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2014-07-28 20:29 - 2014-02-22 17:41 - 00028416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2014-07-28 20:29 - 2014-02-22 16:41 - 00033056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2014-07-28 20:29 - 2014-02-22 14:17 - 00902144 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2014-07-28 20:29 - 2014-02-22 14:17 - 00890880 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2014-07-28 20:29 - 2014-02-22 14:17 - 00874496 _____ (Microsoft Corporation) C:\WINDOWS\system32\autofmt.exe
2014-07-28 20:29 - 2014-02-22 14:17 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\f3ahvoas.dll
2014-07-28 20:29 - 2014-02-22 14:17 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-1.dll
2014-07-28 20:29 - 2014-02-22 14:17 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-session-winsta-l1-1-0.dll
2014-07-28 20:29 - 2014-02-22 14:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-ntuser-private-l1-1-0.dll
2014-07-28 20:29 - 2014-02-22 14:17 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\system32\ext-ms-win-kernel32-package-l1-1-1.dll
2014-07-28 20:29 - 2014-02-22 14:14 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\watchdog.sys
2014-07-28 20:29 - 2014-02-22 14:08 - 00173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\syncui.dll
2014-07-28 20:29 - 2014-02-22 14:08 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2014-07-28 20:29 - 2014-02-22 14:08 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2014-07-28 20:29 - 2014-02-22 14:08 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2014-07-28 20:29 - 2014-02-22 14:08 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2014-07-28 20:29 - 2014-02-22 14:07 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2014-07-28 20:29 - 2014-02-22 14:04 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2014-07-28 20:29 - 2014-02-22 14:03 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2014-07-28 20:29 - 2014-02-22 14:03 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\spbcd.dll
2014-07-28 20:29 - 2014-02-22 14:01 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\spcompat.dll
2014-07-28 20:29 - 2014-02-22 14:00 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-07-28 20:29 - 2014-02-22 14:00 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2014-07-28 20:29 - 2014-02-22 14:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-07-28 20:29 - 2014-02-22 13:59 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgrade.exe
2014-07-28 20:29 - 2014-02-22 13:57 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-07-28 20:29 - 2014-02-22 13:50 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionQueue.dll
2014-07-28 20:29 - 2014-02-22 13:48 - 00162816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ocsetapi.dll
2014-07-28 20:29 - 2014-02-22 13:47 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsdyn.dll
2014-07-28 20:29 - 2014-02-22 13:47 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdboot.exe
2014-07-28 20:29 - 2014-02-22 13:46 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-07-28 20:29 - 2014-02-22 13:45 - 00214016 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2014-07-28 20:29 - 2014-02-22 13:45 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhevents.dll
2014-07-28 20:29 - 2014-02-22 13:42 - 00038680 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2014-07-28 20:29 - 2014-02-22 13:39 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvcctl.dll
2014-07-28 20:29 - 2014-02-22 13:37 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\diskpart.exe
2014-07-28 20:29 - 2014-02-22 13:32 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2014-07-28 20:29 - 2014-02-22 13:29 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\RelPost.exe
2014-07-28 20:29 - 2014-02-22 13:25 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2014-07-28 20:29 - 2014-02-22 13:25 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppnp.dll
2014-07-28 20:29 - 2014-02-22 13:25 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\f3ahvoas.dll
2014-07-28 20:29 - 2014-02-22 13:25 - 00008192 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-1.dll
2014-07-28 20:29 - 2014-02-22 13:25 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-ntuser-private-l1-1-0.dll
2014-07-28 20:29 - 2014-02-22 13:24 - 00800256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2014-07-28 20:29 - 2014-02-22 13:24 - 00792576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autochk.exe
2014-07-28 20:29 - 2014-02-22 13:24 - 00780288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autofmt.exe
2014-07-28 20:29 - 2014-02-22 13:24 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SSShim.dll
2014-07-28 20:29 - 2014-02-22 13:24 - 00005632 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-session-winsta-l1-1-0.dll
2014-07-28 20:29 - 2014-02-22 13:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-networking-wcmapi-l1-1-0.dll
2014-07-28 20:29 - 2014-02-22 13:24 - 00003584 ____H (Microsoft Corporation) C:\WINDOWS\SysWOW64\ext-ms-win-kernel32-package-l1-1-1.dll
2014-07-28 20:29 - 2014-02-22 13:22 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2014-07-28 20:29 - 2014-02-22 13:17 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2014-07-28 20:29 - 2014-02-22 13:16 - 00527360 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2014-07-28 20:29 - 2014-02-22 13:16 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2014-07-28 20:29 - 2014-02-22 13:16 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2014-07-28 20:29 - 2014-02-22 13:16 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clrhost.dll
2014-07-28 20:29 - 2014-02-22 13:13 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2014-07-28 20:29 - 2014-02-22 13:11 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spbcd.dll
2014-07-28 20:29 - 2014-02-22 13:09 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2014-07-28 20:29 - 2014-02-22 13:09 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgentc.exe
2014-07-28 20:29 - 2014-02-22 13:08 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\shsetup.dll
2014-07-28 20:29 - 2014-02-22 13:08 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2014-07-28 20:29 - 2014-02-22 13:07 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\scavengeui.dll
2014-07-28 20:29 - 2014-02-22 13:07 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2014-07-28 20:29 - 2014-02-22 13:07 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-07-28 20:29 - 2014-02-22 13:05 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnpclean.dll
2014-07-28 20:29 - 2014-02-22 13:05 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentHost.dll
2014-07-28 20:29 - 2014-02-22 13:04 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfrgui.exe
2014-07-28 20:29 - 2014-02-22 13:02 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\acppage.dll
2014-07-28 20:29 - 2014-02-22 13:01 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-07-28 20:29 - 2014-02-22 12:59 - 00173056 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2014-07-28 20:29 - 2014-02-22 12:59 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ocsetapi.dll
2014-07-28 20:29 - 2014-02-22 12:59 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-07-28 20:29 - 2014-02-22 12:58 - 00610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2014-07-28 20:29 - 2014-02-22 12:58 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAConn.dll
2014-07-28 20:29 - 2014-02-22 12:57 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2014-07-28 20:29 - 2014-02-22 12:57 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-07-28 20:29 - 2014-02-22 12:56 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\srcore.dll
2014-07-28 20:29 - 2014-02-22 12:55 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll
2014-07-28 20:29 - 2014-02-22 12:55 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrTasks.exe
2014-07-28 20:29 - 2014-02-22 12:53 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PkgMgr.exe
2014-07-28 20:29 - 2014-02-22 12:50 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\diskpart.exe
2014-07-28 20:29 - 2014-02-22 12:47 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmdskmgr.dll
2014-07-28 20:29 - 2014-02-22 12:47 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\migisol.dll
2014-07-28 20:29 - 2014-02-22 12:47 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupugc.exe
2014-07-28 20:29 - 2014-02-22 12:47 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-07-28 20:29 - 2014-02-22 12:46 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbadmin.exe
2014-07-28 20:29 - 2014-02-22 12:41 - 02566656 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2014-07-28 20:29 - 2014-02-22 12:40 - 00304640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wusa.exe
2014-07-28 20:29 - 2014-02-22 12:40 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2014-07-28 20:29 - 2014-02-22 12:38 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2014-07-28 20:29 - 2014-02-22 12:36 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2014-07-28 20:29 - 2014-02-22 12:36 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-07-28 20:29 - 2014-02-22 12:35 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2014-07-28 20:29 - 2014-02-22 12:35 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitagent.exe
2014-07-28 20:29 - 2014-02-22 12:34 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsAnytimeUpgradeResults.exe
2014-07-28 20:29 - 2014-02-22 12:32 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2014-07-28 20:29 - 2014-02-22 12:29 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rstrui.exe
2014-07-28 20:29 - 2014-02-22 12:27 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\occache.dll
2014-07-28 20:29 - 2014-02-22 12:25 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2014-07-28 20:29 - 2014-02-22 12:21 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dfrgui.exe
2014-07-28 20:29 - 2014-02-22 12:21 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\acppage.dll
2014-07-28 20:29 - 2014-02-22 12:20 - 01152512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2014-07-28 20:29 - 2014-02-22 12:18 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2014-07-28 20:29 - 2014-02-22 12:17 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2014-07-28 20:29 - 2014-02-22 12:16 - 00592896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2014-07-28 20:29 - 2014-02-22 12:16 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmvdsitf.dll
2014-07-28 20:29 - 2014-02-22 12:13 - 00557056 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
2014-07-28 20:29 - 2014-02-22 12:12 - 00352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\spwizeng.dll
2014-07-28 20:29 - 2014-02-22 12:09 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\migisol.dll
2014-07-28 20:29 - 2014-02-22 12:09 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-28 20:29 - 2014-02-22 12:04 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netid.dll
2014-07-28 20:29 - 2014-02-22 12:03 - 02544128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\themecpl.dll
2014-07-28 20:29 - 2014-02-22 11:59 - 00220160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2014-07-28 20:29 - 2014-02-22 11:59 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-07-28 20:29 - 2014-02-22 11:54 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2014-07-28 20:29 - 2014-02-22 11:54 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceassociation.dll
2014-07-28 20:29 - 2014-02-22 11:53 - 00545280 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-07-28 20:29 - 2014-02-22 11:53 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\occache.dll
2014-07-28 20:29 - 2014-02-22 11:52 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2014-07-28 20:29 - 2014-02-22 11:51 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2014-07-28 20:29 - 2014-02-22 11:50 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbrand.dll
2014-07-28 20:29 - 2014-02-22 11:48 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2014-07-28 20:29 - 2014-02-22 11:48 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wincorlib.dll
2014-07-28 20:29 - 2014-02-22 11:46 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsku.dll
2014-07-28 20:29 - 2014-02-22 11:45 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2014-07-28 20:29 - 2014-02-22 11:44 - 00182272 _____ (Microsoft Corporation) C:\WINDOWS\system32\korwbrkr.dll
2014-07-28 20:29 - 2014-02-22 11:43 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-07-28 20:29 - 2014-02-22 11:41 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintDialogs.dll
2014-07-28 20:29 - 2014-02-22 11:39 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dasHost.exe
2014-07-28 20:29 - 2014-02-22 11:37 - 00183808 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2014-07-28 20:29 - 2014-02-22 11:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2014-07-28 20:29 - 2014-02-22 11:29 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BootMenuUX.dll
2014-07-28 20:29 - 2014-02-22 11:29 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2014-07-28 20:29 - 2014-02-22 11:28 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceassociation.dll
2014-07-28 20:29 - 2014-02-22 11:27 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2014-07-28 20:29 - 2014-02-22 11:27 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GlobCollationHost.dll
2014-07-28 20:29 - 2014-02-22 11:26 - 00299008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-07-28 20:29 - 2014-02-22 11:26 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\powercfg.exe
2014-07-28 20:29 - 2014-02-22 11:25 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winbrand.dll
2014-07-28 20:29 - 2014-02-22 11:23 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2014-07-28 20:29 - 2014-02-22 11:23 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2014-07-28 20:29 - 2014-02-22 11:22 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsku.dll
2014-07-28 20:29 - 2014-02-22 11:19 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\korwbrkr.dll
2014-07-28 20:29 - 2014-02-22 11:19 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2014-07-28 20:29 - 2014-02-22 11:19 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Sockets.PushEnabledApplication.dll
2014-07-28 20:29 - 2014-02-22 11:16 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sxshared.dll
2014-07-28 20:29 - 2014-02-22 11:09 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2014-07-28 20:29 - 2014-02-22 11:08 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2014-07-28 20:29 - 2014-02-22 11:06 - 00251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2014-07-28 20:29 - 2014-02-22 11:04 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\slpts.dll
2014-07-28 20:29 - 2014-02-22 11:02 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserLanguagesCpl.dll
2014-07-28 20:29 - 2014-02-22 10:59 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2014-07-28 20:29 - 2014-02-22 10:58 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-07-28 20:29 - 2014-02-22 10:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-07-28 20:29 - 2014-02-22 10:57 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-07-28 20:29 - 2014-02-22 10:55 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-28 20:29 - 2014-02-22 10:55 - 00137728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-07-28 20:29 - 2014-02-22 10:55 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2014-07-28 20:29 - 2014-02-22 10:55 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\dataclen.dll
2014-07-28 20:29 - 2014-02-22 10:55 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\energytask.dll
2014-07-28 20:29 - 2014-02-22 10:55 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\slpts.dll
2014-07-28 20:29 - 2014-02-22 10:55 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2014-07-28 20:29 - 2014-02-22 10:54 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AepRoam.dll
2014-07-28 20:29 - 2014-02-22 10:51 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2014-07-28 20:29 - 2014-02-22 10:49 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2014-07-28 20:29 - 2014-02-22 10:49 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-07-28 20:29 - 2014-02-22 10:49 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2014-07-28 20:29 - 2014-02-22 10:48 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-07-28 20:29 - 2014-02-22 10:48 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2014-07-28 20:29 - 2014-02-22 10:48 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConfigureExpandedStorage.dll
2014-07-28 20:29 - 2014-02-22 10:48 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2014-07-28 20:29 - 2014-02-22 10:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dataclen.dll
2014-07-28 20:29 - 2014-02-22 10:48 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msshooks.dll
2014-07-28 20:29 - 2014-02-22 10:47 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2014-07-28 20:29 - 2014-02-22 10:45 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2014-07-28 20:29 - 2014-02-22 10:45 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2014-07-28 20:29 - 2014-02-22 10:44 - 00154624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2014-07-28 20:29 - 2014-02-22 10:43 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BioCredProv.dll
2014-07-28 20:29 - 2014-02-22 10:43 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2014-07-28 20:29 - 2014-02-22 10:43 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Renewal.dll
2014-07-28 20:29 - 2014-02-22 10:40 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToDevice.dll
2014-07-28 20:29 - 2014-02-22 10:39 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe
2014-07-28 20:29 - 2014-02-22 10:39 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\provsvc.dll
2014-07-28 20:29 - 2014-02-22 10:39 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2014-07-28 20:29 - 2014-02-22 10:35 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2014-07-28 20:29 - 2014-02-22 10:33 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2014-07-28 20:29 - 2014-02-22 10:31 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2014-07-28 20:29 - 2014-02-22 10:30 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2014-07-28 20:29 - 2014-02-22 10:24 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2014-07-28 20:29 - 2014-02-22 10:22 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncPolicy.dll
2014-07-28 20:29 - 2014-02-22 10:20 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2014-07-28 20:29 - 2014-02-22 10:20 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncPolicy.dll
2014-07-28 20:29 - 2014-02-22 10:19 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuthBroker.dll
2014-07-28 20:29 - 2014-02-22 10:17 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudStorageWizard.exe
2014-07-28 20:29 - 2014-02-22 10:17 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudStorageWizard.exe
2014-07-28 20:29 - 2014-02-22 06:43 - 00002440 ___RS () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileManager.lnk
2014-07-28 20:29 - 2014-02-22 06:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-07-28 20:29 - 2014-02-22 06:37 - 00000369 _____ () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-07-28 20:29 - 2014-02-22 06:37 - 00000369 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk

nullcheckeri 14.08.2014 19:05
Da nicht alles mit einem Mal gesendet werden konnte, habe ich es gestückelt - ich hoffe, das ist in Ordnung

Code:
2014-07-28 20:29 - 2014-02-22 06:37 - 00000369 _____ () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-07-28 20:29 - 2014-02-08 03:08 - 00100197 _____ () C:\WINDOWS\SysWOW64\RacRules.xml
2014-07-28 20:29 - 2014-02-08 03:08 - 00100197 _____ () C:\WINDOWS\system32\RacRules.xml
2014-07-28 20:29 - 2014-02-01 08:00 - 00011109 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-07-28 20:29 - 2014-02-01 08:00 - 00011109 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-07-28 20:29 - 2014-02-01 08:00 - 00007762 _____ () C:\WINDOWS\SysWOW64\connectedsearch-suggestions.searchconnector-ms
2014-07-28 20:29 - 2014-02-01 08:00 - 00007762 _____ () C:\WINDOWS\system32\connectedsearch-suggestions.searchconnector-ms
2014-07-28 20:29 - 2014-02-01 08:00 - 00007130 _____ () C:\WINDOWS\SysWOW64\connectedsearch-zeroinput.searchconnector-ms
2014-07-28 20:29 - 2014-02-01 08:00 - 00007130 _____ () C:\WINDOWS\system32\connectedsearch-zeroinput.searchconnector-ms
2014-07-28 20:29 - 2014-02-01 08:00 - 00002255 _____ () C:\WINDOWS\SysWOW64\WimBootCompress.ini
2014-07-28 20:29 - 2014-02-01 08:00 - 00002255 _____ () C:\WINDOWS\system32\WimBootCompress.ini
2014-07-28 20:29 - 2014-01-31 14:09 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BTHUSB.SYS
2014-07-28 20:29 - 2014-01-31 13:11 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2014-07-28 20:29 - 2014-01-31 11:19 - 00092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2014-07-28 20:29 - 2014-01-31 10:24 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2014-07-28 20:29 - 2014-01-29 10:40 - 00994136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2014-07-28 20:29 - 2014-01-29 02:18 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2014-07-28 20:29 - 2014-01-27 21:48 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2014-07-28 20:29 - 2014-01-27 19:54 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2014-07-28 20:29 - 2014-01-27 13:45 - 00050053 _____ () C:\WINDOWS\system32\srms.dat
2014-07-28 20:29 - 2014-01-22 08:21 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2014-07-28 20:29 - 2014-01-22 07:50 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\deviceaccess.dll
2014-07-28 20:29 - 2013-12-04 16:19 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2014-07-28 20:29 - 2013-11-27 11:47 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\finger.exe
2014-07-28 20:29 - 2013-11-27 11:20 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\finger.exe
2014-07-28 20:29 - 2013-11-27 11:10 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\netiohlp.dll
2014-07-28 20:29 - 2013-11-27 10:56 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netiohlp.dll
2014-07-28 20:29 - 2013-11-08 05:47 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2014-07-28 20:12 - 2014-07-28 20:12 - 00002379 _____ () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YouTube for Pokki.lnk
2014-07-28 08:33 - 2014-07-28 08:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2014-07-28 08:26 - 2014-08-05 10:52 - 00002175 _____ () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startmenü.lnk
2014-07-28 03:45 - 2014-08-14 12:11 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-07-28 03:45 - 2014-08-14 12:10 - 99218768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-07-28 03:37 - 2014-01-07 09:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-07-28 03:37 - 2014-01-07 07:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-07-28 03:37 - 2013-12-09 02:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-07-28 03:37 - 2013-12-09 01:55 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-07-28 03:37 - 2013-10-31 02:29 - 00236888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-07-28 03:37 - 2013-10-31 02:29 - 00124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2014-07-28 03:37 - 2013-10-31 02:28 - 00035856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-07-28 03:36 - 2014-01-04 17:54 - 00138240 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-07-28 03:36 - 2014-01-04 17:08 - 00103936 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2014-07-28 03:36 - 2014-01-03 01:54 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-07-28 03:36 - 2014-01-03 01:48 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-07-28 03:36 - 2014-01-01 01:57 - 01214976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-07-28 03:36 - 2013-12-31 01:34 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2014-07-28 03:36 - 2013-12-31 01:32 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2014-07-28 03:36 - 2013-12-27 10:57 - 00842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-07-28 03:36 - 2013-12-27 09:03 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2014-07-28 03:36 - 2013-12-21 09:21 - 00376320 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnrpsvc.dll
2014-07-28 03:36 - 2013-12-17 09:21 - 00408576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-07-28 03:36 - 2013-11-23 06:34 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-07-28 03:36 - 2013-11-23 06:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-07-28 03:36 - 2013-10-19 10:53 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-07-28 03:36 - 2013-10-19 09:14 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-07-28 03:35 - 2013-11-27 17:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-07-28 03:35 - 2013-11-27 17:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-07-28 03:35 - 2013-11-27 16:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-07-28 03:35 - 2013-11-27 15:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-07-28 03:35 - 2013-11-27 14:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-07-28 03:35 - 2013-11-27 12:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-07-28 03:35 - 2013-11-27 11:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-07-28 03:35 - 2013-11-27 11:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-07-28 03:35 - 2013-11-27 10:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-07-28 03:35 - 2013-11-25 01:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-07-28 03:35 - 2013-11-25 01:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-07-28 03:35 - 2013-11-23 09:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-07-28 03:35 - 2013-11-23 09:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-07-28 03:35 - 2013-11-23 06:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-07-28 03:35 - 2013-11-21 08:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-07-28 03:35 - 2013-11-15 16:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-07-28 03:35 - 2013-11-15 16:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-07-28 03:35 - 2013-11-15 16:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-07-28 03:35 - 2013-10-23 13:29 - 00044936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2014-07-28 03:35 - 2013-10-23 13:21 - 00155480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2014-07-28 03:35 - 2013-10-23 13:13 - 00171864 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_8086.dll
2014-07-28 03:35 - 2013-10-22 05:56 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2014-07-28 03:35 - 2013-10-19 07:37 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-07-28 03:35 - 2013-10-08 07:58 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shsetup.dll
2014-07-28 03:35 - 2013-10-08 07:09 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2014-07-28 03:35 - 2013-10-08 06:50 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2014-07-28 03:35 - 2013-10-08 06:50 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2014-07-28 03:35 - 2013-10-05 17:25 - 00057176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\stornvme.sys
2014-07-28 03:35 - 2013-10-05 16:21 - 00699840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2014-07-28 03:35 - 2013-10-05 14:05 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2014-07-28 03:35 - 2013-10-05 13:01 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2014-07-28 03:35 - 2013-10-05 11:36 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2014-07-28 03:35 - 2013-10-05 11:18 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2014-07-28 03:35 - 2013-10-05 10:56 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2014-07-28 03:35 - 2013-10-05 10:55 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2014-07-28 03:35 - 2013-10-05 10:40 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2014-07-28 03:35 - 2013-10-05 10:24 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2014-07-28 03:35 - 2013-10-05 10:21 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2014-07-28 03:35 - 2013-10-05 10:15 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2014-07-28 03:35 - 2013-10-05 09:43 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2014-07-28 03:35 - 2013-10-05 09:35 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2014-07-28 03:35 - 2013-09-17 11:06 - 01067080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2014-07-28 03:35 - 2013-09-17 08:31 - 00883184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2014-07-28 03:35 - 2013-09-14 16:07 - 02134120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2014-07-28 03:35 - 2013-09-14 16:00 - 00391512 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2014-07-28 03:35 - 2013-09-14 14:39 - 01799944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2014-07-28 03:35 - 2013-09-14 14:33 - 00345552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2014-07-28 03:35 - 2013-09-14 12:05 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2014-07-28 03:35 - 2013-09-13 10:22 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ftp.exe
2014-07-28 03:35 - 2013-09-13 09:47 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ftp.exe
2014-07-28 03:35 - 2013-09-12 10:45 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2014-07-28 03:35 - 2013-09-12 10:08 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2014-07-28 03:35 - 2013-09-12 10:02 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2014-07-28 03:35 - 2013-09-12 09:44 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2014-07-28 03:35 - 2013-09-12 09:37 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2014-07-28 03:35 - 2013-09-12 09:21 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2014-07-28 03:35 - 2013-09-12 09:16 - 00335360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2014-07-28 03:35 - 2013-09-12 09:01 - 00272896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2014-07-28 03:35 - 2013-09-10 06:52 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msched.dll
2014-07-28 03:34 - 2014-01-29 08:41 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2014-07-28 03:34 - 2014-01-29 02:36 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2014-07-28 03:34 - 2014-01-27 21:07 - 04175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2014-07-28 03:34 - 2014-01-27 20:23 - 02873344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2014-07-28 03:34 - 2014-01-27 19:18 - 01486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2014-07-28 03:34 - 2014-01-27 19:00 - 01238016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2014-07-28 03:34 - 2014-01-18 01:04 - 00764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-07-28 03:34 - 2014-01-17 23:54 - 00669352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-07-28 03:34 - 2014-01-07 07:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-07-28 03:34 - 2014-01-07 06:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-07-28 03:34 - 2013-12-21 16:51 - 06353960 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-07-28 03:34 - 2013-12-21 10:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcomapi.dll
2014-07-28 03:34 - 2013-12-09 02:27 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-07-28 03:34 - 2013-12-09 01:54 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-07-28 03:34 - 2013-11-27 13:41 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSCollect.exe
2014-07-28 03:34 - 2013-11-21 08:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-07-28 03:34 - 2013-11-21 07:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-07-28 03:34 - 2013-11-11 04:48 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-07-28 03:34 - 2013-11-01 13:39 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-07-28 03:34 - 2013-10-26 03:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-07-28 03:34 - 2013-10-16 17:58 - 01943536 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2014-07-28 03:34 - 2013-10-16 15:54 - 01581968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2014-07-28 03:33 - 2014-02-22 14:16 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-07-28 03:33 - 2014-02-22 13:24 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-07-28 02:16 - 2014-07-28 02:14 - 00042040 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2014-07-28 02:14 - 2014-07-28 02:14 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Avira
2014-07-28 02:13 - 2014-08-14 09:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-07-28 02:13 - 2014-07-28 02:13 - 00002093 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-07-28 02:12 - 2014-08-12 21:08 - 00000000 ____D () C:\ProgramData\Avira
2014-07-28 02:12 - 2014-08-12 21:08 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-07-28 02:12 - 2014-07-02 13:06 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2014-07-28 02:12 - 2014-07-02 13:06 - 00117712 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2014-07-28 02:12 - 2014-07-02 13:06 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2014-07-28 02:05 - 2014-07-28 02:07 - 143880056 _____ () C:\Users\Annette_2\Downloads\avira_free_antivirus_de_464.exe
2014-07-28 02:04 - 2014-07-28 02:04 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\Macromedia
2014-07-28 02:02 - 2014-07-28 02:02 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Mozilla
2014-07-28 02:02 - 2014-07-28 02:02 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\Mozilla
2014-07-28 01:57 - 2014-08-14 10:22 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\LSC
2014-07-28 01:57 - 2014-07-27 23:04 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\LSC
2014-07-28 01:52 - 2014-08-14 11:35 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-457214858-2471477494-3337382499-1004
2014-07-28 01:50 - 2014-07-28 08:26 - 00002329 _____ () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-07-28 01:48 - 2014-07-28 01:48 - 00000000 ____D () C:\Users\Annette_2\Documents\Bluetooth-Exchange-Ordner
2014-07-28 01:48 - 2014-07-28 01:48 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Lenovo
2014-07-28 01:48 - 2014-07-28 01:48 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\Broadcom
2014-07-28 01:47 - 2014-07-28 08:23 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\Packages
2014-07-28 01:47 - 2014-07-28 01:57 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Adobe
2014-07-28 01:47 - 2014-07-28 01:47 - 00001461 _____ () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-28 01:47 - 2014-07-28 01:47 - 00000020 ___SH () C:\Users\Annette_2\ntuser.ini
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Vorlagen
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Startmenü
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Netzwerkumgebung
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Lokale Einstellungen
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Eigene Dateien
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Druckumgebung
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Documents\Eigene Musik
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Documents\Eigene Bilder
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\AppData\Local\Verlauf
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\AppData\Local\Anwendungsdaten
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Anwendungsdaten
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\VirtualStore
2014-07-28 01:45 - 2014-08-14 11:59 - 00000000 ____D () C:\Users\Annette_2
2014-07-28 01:45 - 2014-08-12 21:18 - 00000000 ___RD () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-28 01:45 - 2014-08-12 21:18 - 00000000 ___RD () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-28 01:45 - 2014-08-12 21:18 - 00000000 ___RD () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-28 01:45 - 2014-04-21 14:49 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Macromedia
2014-07-28 01:45 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-07-28 01:45 - 2013-02-04 08:18 - 00000189 _____ () C:\Users\Annette_2\Desktop\Lenovo Telephony Start Now.url
2014-07-28 01:21 - 2014-07-28 01:21 - 00000000 ____D () C:\Users\Annette\AppData\Local\Macromedia
2014-07-28 01:19 - 2014-08-14 16:23 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-07-28 01:19 - 2014-07-28 01:19 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-07-28 01:19 - 2014-07-28 01:19 - 00002173 _____ () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startmenü.lnk
2014-07-27 23:24 - 2014-07-28 08:23 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-07-27 23:04 - 2014-07-27 23:04 - 00002018 _____ () C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2014-07-27 22:28 - 2014-07-27 22:29 - 00000000 ____D () C:\Users\Annette_2\Documents\Lenovo Sicherungsprotokolle
2014-07-27 22:00 - 2014-07-27 22:00 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Nitro PDF
2014-07-27 15:40 - 2014-07-27 15:40 - 00001182 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-07-27 15:40 - 2014-07-27 15:40 - 00001170 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-07-27 15:40 - 2014-07-27 15:40 - 00000000 ____D () C:\Users\Annette\AppData\Roaming\Mozilla
2014-07-27 15:40 - 2014-07-27 15:40 - 00000000 ____D () C:\Users\Annette\AppData\Local\Mozilla
2014-07-27 15:40 - 2014-07-27 15:40 - 00000000 ____D () C:\ProgramData\Mozilla
2014-07-27 15:40 - 2014-07-27 15:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-27 15:40 - 2014-07-27 15:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-27 15:39 - 2014-07-27 15:39 - 32047680 _____ () C:\Users\Annette\Downloads\Firefox_Setup_de31.0.exe
2014-07-27 15:33 - 2014-07-28 01:17 - 00003946 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3077BCCE-70AF-49E5-9286-2B8F07DAB154}
2014-07-27 15:29 - 2014-07-28 01:25 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-457214858-2471477494-3337382499-1001
2014-07-27 15:27 - 2014-07-28 01:19 - 00002327 _____ () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-07-27 15:26 - 2014-07-28 01:14 - 00000000 ___RD () C:\Users\Annette\SkyDrive
2014-07-27 15:25 - 2014-07-27 15:25 - 00000000 ____D () C:\Users\Annette\Documents\Bluetooth-Exchange-Ordner
2014-07-27 15:25 - 2014-07-27 15:25 - 00000000 ____D () C:\Users\Annette\AppData\Roaming\Lenovo
2014-07-27 15:25 - 2014-07-27 15:25 - 00000000 ____D () C:\Users\Annette\AppData\Local\Broadcom
2014-07-27 15:25 - 2014-07-27 15:25 - 00000000 ____D () C:\ProgramData\Energy Management
2014-07-27 15:24 - 2014-07-27 15:25 - 00000000 ____D () C:\Users\Annette\AppData\Local\Packages
2014-07-27 15:24 - 2014-07-27 15:24 - 00001461 _____ () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-27 15:24 - 2014-07-27 15:24 - 00000139 _____ () C:\Users\Public\Desktop\eBay.url
2014-07-27 15:24 - 2014-07-27 15:24 - 00000000 ____D () C:\Users\Annette\AppData\Roaming\Adobe
2014-07-27 15:24 - 2014-07-27 15:24 - 00000000 ____D () C:\Users\Annette\AppData\Local\VirtualStore
2014-07-27 15:24 - 2014-07-27 15:24 - 00000000 ____D () C:\ProgramData\eBay
2014-07-27 15:23 - 2014-08-14 14:12 - 00000000 ____D () C:\Users\Annette
2014-07-27 15:23 - 2014-07-27 15:23 - 00000020 ___SH () C:\Users\Annette\ntuser.ini
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Vorlagen
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Startmenü
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Netzwerkumgebung
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Lokale Einstellungen
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Eigene Dateien
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Druckumgebung
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Documents\Eigene Musik
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Documents\Eigene Bilder
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\AppData\Local\Verlauf
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\AppData\Local\Anwendungsdaten
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Anwendungsdaten
2014-07-27 15:23 - 2014-04-21 14:49 - 00000000 ____D () C:\Users\Annette\AppData\Roaming\Macromedia
2014-07-27 15:23 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-07-27 15:23 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-27 15:23 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-07-27 15:23 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-07-27 15:23 - 2013-02-04 08:18 - 00000189 _____ () C:\Users\Annette\Desktop\Lenovo Telephony Start Now.url
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Programme
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Dokumente und Einstellungen

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-14 19:39 - 2014-08-14 19:38 - 00013235 _____ () C:\Users\Annette_2\Downloads\FRST.txt
2014-08-14 19:38 - 2014-08-14 19:38 - 00000000 ____D () C:\FRST
2014-08-14 19:37 - 2014-08-14 19:37 - 02100224 _____ (Farbar) C:\Users\Annette_2\Downloads\FRST64.exe
2014-08-14 19:30 - 2014-08-12 22:30 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-08-14 19:29 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-08-14 16:47 - 2014-04-21 14:10 - 01264490 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-14 16:39 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-08-14 16:23 - 2014-07-28 01:19 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-14 15:24 - 2014-08-14 14:13 - 00000000 ____D () C:\Users\Annette_2\Documents\trojaner-forum
2014-08-14 14:12 - 2014-08-14 14:12 - 00000000 ____D () C:\Users\Annette\virenbeheber-trijaneronlineforum
2014-08-14 14:12 - 2014-07-27 15:23 - 00000000 ____D () C:\Users\Annette
2014-08-14 14:11 - 2014-08-12 22:25 - 00003954 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{D1A1C433-6E14-4D85-A113-47BFE589DB2F}
2014-08-14 14:05 - 2014-08-14 14:05 - 00001132 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.0.lnk
2014-08-14 14:05 - 2014-08-14 14:05 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.0
2014-08-14 14:05 - 2014-08-14 14:05 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\OpenOffice
2014-08-14 14:05 - 2014-08-14 14:04 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-08-14 14:02 - 2014-08-14 14:02 - 00000000 ____D () C:\Users\Annette_2\Desktop\OpenOffice 4.1.0 (de) Installation Files
2014-08-14 13:56 - 2014-08-14 13:56 - 01101648 _____ () C:\Users\Annette_2\Downloads\OpenOffice - CHIP-Installer.exe
2014-08-14 13:53 - 2013-08-22 16:46 - 00100163 _____ () C:\WINDOWS\setupact.log
2014-08-14 13:42 - 2014-08-14 13:42 - 00047104 ___SH () C:\Users\Annette_2\Desktop\Thumbs.db
2014-08-14 13:42 - 2014-08-14 13:42 - 00001198 _____ () C:\Users\Annette_2\Desktop\Internet Explorer - Verknüpfung.lnk
2014-08-14 12:45 - 2014-08-14 12:45 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-08-14 12:44 - 2014-08-14 12:44 - 02347384 _____ (ESET) C:\Users\Annette_2\Downloads\esetsmartinstaller_deu.exe
2014-08-14 12:22 - 2014-08-14 11:59 - 00000480 _____ () C:\Users\Annette_2\Downloads\defogger_disable.log
2014-08-14 12:12 - 2013-08-22 17:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-08-14 12:11 - 2014-07-28 03:45 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-08-14 12:10 - 2014-07-28 03:45 - 99218768 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-08-14 11:59 - 2014-08-14 11:59 - 00000000 _____ () C:\Users\Annette_2\defogger_reenable
2014-08-14 11:59 - 2014-07-28 01:45 - 00000000 ____D () C:\Users\Annette_2
2014-08-14 11:55 - 2014-08-14 11:55 - 00050477 _____ () C:\Users\Annette_2\Downloads\Defogger.exe
2014-08-14 11:35 - 2014-07-28 01:52 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-457214858-2471477494-3337382499-1004
2014-08-14 11:15 - 2014-08-14 11:15 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-14 11:15 - 2014-08-14 11:15 - 00002050 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-14 11:15 - 2014-04-21 14:49 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-14 11:15 - 2014-04-21 14:49 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-14 11:04 - 2014-04-21 23:58 - 00765582 _____ () C:\WINDOWS\system32\perfh007.dat
2014-08-14 11:04 - 2014-04-21 23:58 - 00159366 _____ () C:\WINDOWS\system32\perfc007.dat
2014-08-14 11:04 - 2013-10-07 20:27 - 01776918 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-08-14 10:59 - 2013-10-07 20:23 - 00162128 _____ () C:\WINDOWS\PFRO.log
2014-08-14 10:59 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-08-14 10:59 - 2013-08-22 16:44 - 00349040 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-08-14 10:58 - 2014-04-21 14:53 - 00002560 _____ () C:\WINDOWS\system32\VfService.trf
2014-08-14 10:58 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-08-14 10:57 - 2014-08-14 10:49 - 00000000 ____D () C:\AdwCleaner
2014-08-14 10:49 - 2014-08-14 10:49 - 01356107 _____ () C:\Users\Annette_2\Downloads\adwcleaner_3.305.exe
2014-08-14 10:22 - 2014-07-28 01:57 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\LSC
2014-08-14 10:08 - 2014-08-14 10:08 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-08-14 10:00 - 2014-08-12 22:22 - 00000000 ____D () C:\Program Files (x86)\CHIP Updater
2014-08-14 09:54 - 2014-08-05 14:28 - 00000000 ____D () C:\ProgramData\Package Cache
2014-08-14 09:53 - 2014-08-14 09:53 - 00001164 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-08-14 09:53 - 2014-07-28 02:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-08-14 09:52 - 2014-08-14 09:52 - 00001972 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-08-14 09:52 - 2014-08-14 09:52 - 00001922 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CDBurnerXP.lnk
2014-08-14 09:52 - 2014-08-14 09:52 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Canneverbe Limited
2014-08-14 09:52 - 2014-08-14 09:52 - 00000000 ____D () C:\ProgramData\Canneverbe Limited
2014-08-14 09:52 - 2014-08-14 09:51 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-08-14 09:47 - 2014-08-14 09:47 - 05412944 _____ (Canneverbe Limited ) C:\Users\Annette_2\Downloads\cdbxp_setup_4.5.4.5000_minimal.exe
2014-08-12 22:29 - 2014-08-12 22:29 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-12 22:29 - 2014-08-12 22:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-12 22:29 - 2014-08-12 22:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-12 22:29 - 2014-08-12 22:29 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-08-12 22:22 - 2014-08-12 22:22 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Abelssoft
2014-08-12 22:22 - 2014-08-12 22:22 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Abelssoft
2014-08-12 22:22 - 2014-08-12 22:22 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\Abelssoft
2014-08-12 22:22 - 2014-08-12 22:22 - 00000000 ____D () C:\ProgramData\XDMessagingv4
2014-08-12 22:20 - 2014-08-12 22:20 - 01101648 _____ () C:\Users\Annette_2\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer(1).exe
2014-08-12 22:18 - 2014-08-12 22:18 - 04892480 _____ (WinZip International LLC ) C:\Users\Annette_2\Downloads\wzmp_8.exe
2014-08-12 22:17 - 2014-08-12 22:16 - 01101648 _____ () C:\Users\Annette_2\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2014-08-12 21:34 - 2013-08-22 15:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-08-12 21:19 - 2013-08-22 21:12 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\WinMetadata
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\WinMetadata
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-08-12 21:19 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-08-12 21:19 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\oobe
2014-08-12 21:18 - 2014-08-12 14:14 - 00000000 ____D () C:\Program Files (x86)\WinZip Malware Protector
2014-08-12 21:18 - 2014-07-28 01:45 - 00000000 ___RD () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-08-12 21:18 - 2014-07-28 01:45 - 00000000 ___RD () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-08-12 21:18 - 2014-07-28 01:45 - 00000000 ___RD () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-12 21:18 - 2014-04-21 14:49 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-08-12 21:18 - 2014-04-21 14:48 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDirector 10
2014-08-12 21:18 - 2014-04-21 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lenovo Photos
2014-08-12 21:18 - 2014-04-21 14:43 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PhotoDirector 3
2014-08-12 21:18 - 2014-04-21 14:25 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-08-12 21:18 - 2013-08-22 17:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-08-12 21:18 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-12 21:18 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-08-12 21:10 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\registration
2014-08-12 21:10 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2014-08-12 21:08 - 2014-07-28 02:12 - 00000000 ____D () C:\ProgramData\Avira
2014-08-12 21:08 - 2014-07-28 02:12 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-08-12 21:00 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-08-12 14:17 - 2014-08-12 14:17 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Nico Mak Computing
2014-08-12 14:17 - 2014-08-12 14:14 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-08-12 12:56 - 2014-08-12 12:56 - 00000000 __SHD () C:\Users\Annette_2\AppData\Local\EmieUserList
2014-08-12 12:56 - 2014-08-12 12:56 - 00000000 __SHD () C:\Users\Annette_2\AppData\Local\EmieSiteList
2014-08-12 01:06 - 2014-08-12 01:03 - 00000000 ____D () C:\Nutzer
2014-08-05 12:48 - 2014-08-05 12:44 - 00000000 ____D () C:\Users\Annette_2\Documents\My Digital Editions
2014-08-05 12:44 - 2014-08-05 12:44 - 00001495 _____ () C:\Users\Annette_2\Downloads\URLLink.acsm
2014-08-05 10:59 - 2014-08-05 10:59 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Nitro
2014-08-05 10:59 - 2014-08-05 10:59 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\FileOpen
2014-08-05 10:59 - 2014-08-05 10:59 - 00000000 ____D () C:\ProgramData\FileOpen
2014-08-05 10:52 - 2014-07-28 08:26 - 00002175 _____ () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startmenü.lnk
2014-07-31 08:59 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\zh-HK
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\uk-UA
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\tr-TR
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\th-TH
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\SystemResetPlatform
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sl-SI
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sk-SK
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\setup
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\ro-RO
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\migwiz
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\lv-LV
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\lt-LT
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\hr-HR
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\he-IL
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\et-EE
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\en-GB
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\bg-BG
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\ar-SA
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows Multimedia Platform
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Portable Devices
2014-07-30 23:15 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files (x86)\Windows Multimedia Platform
2014-07-30 23:15 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\oobe
2014-07-30 23:15 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-07-30 23:15 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-07-30 23:15 - 2013-08-22 15:36 - 00000000 ____D () C:\WINDOWS\servicing
2014-07-28 20:12 - 2014-07-28 20:12 - 00002379 _____ () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YouTube for Pokki.lnk
2014-07-28 08:33 - 2014-07-28 08:33 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ldiagio_uefi_01009.Wdf
2014-07-28 08:26 - 2014-07-28 01:50 - 00002329 _____ () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-07-28 08:23 - 2014-07-28 01:47 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\Packages
2014-07-28 08:23 - 2014-07-27 23:24 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-07-28 03:39 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-07-28 03:39 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-07-28 02:14 - 2014-07-28 02:16 - 00042040 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2014-07-28 02:14 - 2014-07-28 02:14 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Avira
2014-07-28 02:13 - 2014-07-28 02:13 - 00002093 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-07-28 02:07 - 2014-07-28 02:05 - 143880056 _____ () C:\Users\Annette_2\Downloads\avira_free_antivirus_de_464.exe
2014-07-28 02:04 - 2014-07-28 02:04 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\Macromedia
2014-07-28 02:02 - 2014-07-28 02:02 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Mozilla
2014-07-28 02:02 - 2014-07-28 02:02 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\Mozilla
2014-07-28 02:00 - 2014-04-21 14:44 - 00000000 ____D () C:\ProgramData\McAfee
2014-07-28 01:59 - 2013-08-22 17:36 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2014-07-28 01:57 - 2014-07-28 01:47 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Adobe
2014-07-28 01:48 - 2014-07-28 01:48 - 00000000 ____D () C:\Users\Annette_2\Documents\Bluetooth-Exchange-Ordner
2014-07-28 01:48 - 2014-07-28 01:48 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Lenovo
2014-07-28 01:48 - 2014-07-28 01:48 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\Broadcom
2014-07-28 01:47 - 2014-07-28 01:47 - 00001461 _____ () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-28 01:47 - 2014-07-28 01:47 - 00000020 ___SH () C:\Users\Annette_2\ntuser.ini
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Vorlagen
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Startmenü
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Netzwerkumgebung
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Lokale Einstellungen
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Eigene Dateien
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Druckumgebung
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Documents\Eigene Musik
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Documents\Eigene Bilder
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\AppData\Local\Verlauf
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\AppData\Local\Anwendungsdaten
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 _SHDL () C:\Users\Annette_2\Anwendungsdaten
2014-07-28 01:47 - 2014-07-28 01:47 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\VirtualStore
2014-07-28 01:25 - 2014-07-27 15:29 - 00003596 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-457214858-2471477494-3337382499-1001
2014-07-28 01:21 - 2014-07-28 01:21 - 00000000 ____D () C:\Users\Annette\AppData\Local\Macromedia
2014-07-28 01:19 - 2014-07-28 01:19 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-07-28 01:19 - 2014-07-28 01:19 - 00002173 _____ () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startmenü.lnk
2014-07-28 01:19 - 2014-07-27 15:27 - 00002327 _____ () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk
2014-07-28 01:17 - 2014-07-27 15:33 - 00003946 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{3077BCCE-70AF-49E5-9286-2B8F07DAB154}
2014-07-28 01:14 - 2014-07-27 15:26 - 00000000 ___RD () C:\Users\Annette\SkyDrive
2014-07-27 23:04 - 2014-07-28 01:57 - 00000000 ____D () C:\Users\Annette_2\AppData\Local\LSC
2014-07-27 23:04 - 2014-07-27 23:04 - 00002018 _____ () C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2014-07-27 23:04 - 2014-04-21 14:53 - 00000000 ____D () C:\ProgramData\Lenovo
2014-07-27 23:04 - 2014-04-21 14:49 - 00000000 ____D () C:\WINDOWS\System32\Tasks\Lenovo
2014-07-27 23:04 - 2014-04-21 14:32 - 00000000 ____D () C:\Program Files\Lenovo
2014-07-27 23:03 - 2014-04-21 14:49 - 00000000 ____D () C:\WINDOWS\Downloaded Installations
2014-07-27 22:44 - 2014-04-21 14:54 - 00000000 ____D () C:\ProgramData\OneKey Recovery
2014-07-27 22:30 - 2014-04-21 14:43 - 00000000 ____D () C:\ProgramData\CyberLink
2014-07-27 22:29 - 2014-07-27 22:28 - 00000000 ____D () C:\Users\Annette_2\Documents\Lenovo Sicherungsprotokolle
2014-07-27 22:00 - 2014-07-27 22:00 - 00000000 ____D () C:\Users\Annette_2\AppData\Roaming\Nitro PDF
2014-07-27 15:40 - 2014-07-27 15:40 - 00001182 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-07-27 15:40 - 2014-07-27 15:40 - 00001170 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-07-27 15:40 - 2014-07-27 15:40 - 00000000 ____D () C:\Users\Annette\AppData\Roaming\Mozilla
2014-07-27 15:40 - 2014-07-27 15:40 - 00000000 ____D () C:\Users\Annette\AppData\Local\Mozilla
2014-07-27 15:40 - 2014-07-27 15:40 - 00000000 ____D () C:\ProgramData\Mozilla
2014-07-27 15:40 - 2014-07-27 15:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-27 15:40 - 2014-07-27 15:40 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-27 15:39 - 2014-07-27 15:39 - 32047680 _____ () C:\Users\Annette\Downloads\Firefox_Setup_de31.0.exe
2014-07-27 15:25 - 2014-07-27 15:25 - 00000000 ____D () C:\Users\Annette\Documents\Bluetooth-Exchange-Ordner
2014-07-27 15:25 - 2014-07-27 15:25 - 00000000 ____D () C:\Users\Annette\AppData\Roaming\Lenovo
2014-07-27 15:25 - 2014-07-27 15:25 - 00000000 ____D () C:\Users\Annette\AppData\Local\Broadcom
2014-07-27 15:25 - 2014-07-27 15:25 - 00000000 ____D () C:\ProgramData\Energy Management
2014-07-27 15:25 - 2014-07-27 15:24 - 00000000 ____D () C:\Users\Annette\AppData\Local\Packages
2014-07-27 15:24 - 2014-07-27 15:24 - 00001461 _____ () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-07-27 15:24 - 2014-07-27 15:24 - 00000139 _____ () C:\Users\Public\Desktop\eBay.url
2014-07-27 15:24 - 2014-07-27 15:24 - 00000000 ____D () C:\Users\Annette\AppData\Roaming\Adobe
2014-07-27 15:24 - 2014-07-27 15:24 - 00000000 ____D () C:\Users\Annette\AppData\Local\VirtualStore
2014-07-27 15:24 - 2014-07-27 15:24 - 00000000 ____D () C:\ProgramData\eBay
2014-07-27 15:24 - 2014-04-21 23:52 - 00090849 _____ () C:\WINDOWS\modules.log
2014-07-27 15:23 - 2014-07-27 15:23 - 00000020 ___SH () C:\Users\Annette\ntuser.ini
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Vorlagen
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Startmenü
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Netzwerkumgebung
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Lokale Einstellungen
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Eigene Dateien
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Druckumgebung
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Documents\Eigene Musik
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Documents\Eigene Bilder
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\AppData\Local\Verlauf
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\AppData\Local\Anwendungsdaten
2014-07-27 15:23 - 2014-07-27 15:23 - 00000000 _SHDL () C:\Users\Annette\Anwendungsdaten
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Programme
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-07-27 15:04 - 2014-07-27 15:04 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-07-27 15:04 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Windows NT
2014-07-27 15:04 - 2013-08-22 15:36 - 00000000 ___HD () C:\Users\Default

Some content of TEMP:
====================
C:\Users\Annette\AppData\Local\Temp\octB4E7.tmp.exe
C:\Users\Annette_2\AppData\Local\Temp\avgnt.exe
C:\Users\Annette_2\AppData\Local\Temp\octE4BB.tmp.exe
C:\Users\Annette_2\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-14 11:35

==================== End Of Log ============================
P.S: Die Logdateien liegen bei mir nicht auf dem Desktop. Ich habe sie aus dem Verzeichnis kopiert

schrauber 15.08.2014 18:49
Hi,

Logs sehen gut aus, bestehen denn noch irgendwelche Probleme mit dem System?

nullcheckeri 15.08.2014 19:35
Hi,
bisher hab ich den pc nicht runtergefahren - ob es beim Starten Probleme geben könnte, weiss ich deshalb nicht.

Kann ich das Fenster mit defogger mit e-able schließen oder werden irgendwelche Programme dadurch beeinträchtigt?

Und noch eine Frage zu den rootkits? ist das okay, das rootkit deaktiviert ist, was im editor von malware-antivware festgestellt wurde?

Grüße

schrauber 16.08.2014 13:38
Das war ja nur beim Scan deaktiviert. Defogger einfach beenden und rebooten, Rechner testen.

nullcheckeri 18.08.2014 20:54
Hallo Schrauber,
danke für den Tipp mit defogger. Wenn man sich zu wenig auskennt, sind einfache Sachen oft schon schwierig.
Aber beim rebooten oder halt jetzt im Betrieb erschien folgende Meldung von Abelsoft-Bugreport (keine Ahnung woher das kommt):

Wenn Du Dir das noch anschauen könntest, wäre super....
Code:
Error Report:
Application: UpdateYeti

Version: 2,28

Language:

License: FULL

Email:

Exception: System.NullReferenceException - Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
System: Windows 8, x64bit, Revision 0

Source: CHIPUpdater

StackTrace:    bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)

Last LogItems:
[Method Fill]: [Method .ctor]: PROPERTY No update was found. NOT SET! Replacing with DefaultValue No update was found.
[Method Fill]: [Method .ctor]: PROPERTY Unknown NOT SET! Replacing with DefaultValue Unknown
[Method Fill]: [Method .ctor]: PROPERTY Up-to-date NOT SET! Replacing with DefaultValue Up-to-date
[Method Fill]: [Method .ctor]: PROPERTY Update is available NOT SET! Replacing with DefaultValue Update is available
[Method Fill]: [Method .ctor]: PROPERTY Free updates available NOT SET! Replacing with DefaultValue Free updates available
[Method Fill]: [Method .ctor]: PROPERTY New updates available NOT SET! Replacing with DefaultValue New updates available
[Method Fill]: [Method .ctor]: PROPERTY Unidentified software NOT SET! Replacing with DefaultValue Unidentified software
[Method Fill]: [Method .ctor]: PROPERTY Newest version installed NOT SET! Replacing with DefaultValue Newest version installed
[Method Fill]: [Method .ctor]: PROPERTY Show in CHIP Updater NOT SET! Replacing with DefaultValue Show in CHIP Updater
[Method Fill]: [Method .ctor]: PROPERTY Automatically update CHIP Updater NOT SET! Replacing with DefaultValue Automatically update CHIP Updater
[Method <.ctor>b__1]: [Method <.ctor>b__1]: MainModel initialization took: 34ms
[Method <.ctor>b__1]: [Method <.ctor>b__1]: Infos Version:-1
[Method <.ctor>b__1]: [Method <.ctor>b__1]: AbAPICall initialization finished after: 864ms
[Method <.ctor>b__1]: [Method <.ctor>b__1]:
[Method <.ctor>b__1]: [Method <.ctor>b__1]: Logging initialize
[Method <.ctor>b__1]: [Method <.ctor>b__1]: Static initialization took: 869ms
[Method Application_Startup]: [Method <.ctor>b__1]: Didn't check today, last check was 14.08.2014 10:38:16. Checking now.
[Method RunInternal]: [Method RunInternal]: Registry finished 17928,3485 after starting
[Method RunInternal]: [Method RunInternal]: B. registry algorithm found 50 entires in the registry
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Uninstall Information):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\IDT):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Common Files):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Intel):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\CyberLink):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Internet Explorer):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\DIFX):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Lenovo):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Dolby Digital Plus):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\MSBuild):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Elantech):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Reference Assemblies):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Gemeinsame Dateien):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Windows Defender):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Windows Journal):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Windows NT):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Windows Mail):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: 2.28
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Windows Photo Viewer):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
[Method <ForWorker>b__c]:    bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: StackTrace:    bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Windows Media Player):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Windows Portable Devices):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Windows Multimedia Platform):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\Windows Sidebar):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\WindowsApps):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
[Method <ForWorker>b__c]: [Method <ForWorker>b__c]: ERROR This path did not work (C:\Program Files\WindowsPowerShell):
System.NullReferenceException: Der Objektverweis wurde nicht auf eine Objektinstanz festgelegt.
  bei UpdateYeti.Model.FileSystemApplication.<>c__DisplayClass2.<FindEntries>b__0(DirectoryInfo folder)
Current Process Name: chipupdater
Lang:  App: UpdateYeti Version: 2.28 LicenseType: FULL Affiliate: CHIP_Updater HudsonBuild: 2014-08-07_11-58-07 Username: Wundertüte\Annette_2 IntPointerSize: 8
Working directory / App Directory: C:\WINDOWS\system32 / C:\Program Files (x86)\CHIP Updater
OS: Microsoft Windows NT 6.2.9200.0
[Method .ctor]: [Method .ctor]: Line 505
[Method .ctor]: [Method .ctor]: Finsihed finding stuff from filesystem after 18176,156 after starting
[Method <FindEntries>b__0]: [Method <FindEntries>b__0]: Shouldn't reach this point, did so because of Exception while doing the BugPopup: System.InvalidOperationException: Beim aufrufenden Thread muss es sich um einen STA-Thread handeln, da dies für viele Komponenten der Benutzeroberfläche erforderlich ist.
  bei System.Windows.Input.InputManager..ctor()
  bei System.Windows.Input.InputManager.GetCurrentInputManagerImpl()
  bei System.Windows.Input.KeyboardNavigation..ctor()
  bei System.Windows.FrameworkElement.EnsureFrameworkServices()
  bei System.Windows.FrameworkElement..ctor()
  bei UpdateYeti.C.ReportBug(Exception ex, Boolean silent)

schrauber 19.08.2014 20:29
Zitat:
Source: CHIPUpdater
irgend einen scheiss bei Chip geladen?


Alle Zeitangaben in WEZ +1. Es ist jetzt 15:33 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22