Hallo Schrauber,
hier sind die neuen Logs: Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Suchlauf Datum: 10.05.2015
Suchlauf-Zeit: 10:06:02
Logdatei: mbamlog.txt
Administrator: Ja
Version: 2.01.6.1022
Malware Datenbank: v2015.05.10.02
Rootkit Datenbank: v2015.04.21.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Selbstschutz: Deaktiviert
Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Bianca
Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 530630
Verstrichene Zeit: 30 Min, 54 Sek
Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 1
PUP.Optional.Elex, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, 1672, Löschen bei Neustart, [ad4de3ae4446290d609f2055fd0308f8]
Module: 0
(Keine schädliche Elemente gefunden)
Registrierungsschlüssel: 42
PUP.Optional.Elex, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\WindowsMangerProtect, In Quarantäne, [ad4de3ae4446290d609f2055fd0308f8],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, In Quarantäne, [14e65d3478128fa7102dcebb4ab99868],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, In Quarantäne, [14e65d3478128fa7102dcebb4ab99868],
PUP.Optional.BrowseFox.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}, In Quarantäne, [14e65d3478128fa7102dcebb4ab99868],
PUP.Optional.SwiftRecord.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{0759d61f-3673-416f-85d2-58b847e78ddf}, In Quarantäne, [36c4b9d87c0ec472f2ff56f390731de3],
PUP.Optional.SwiftRecord.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{06107761-a0fa-4eaa-9fc8-54f55102f354}, In Quarantäne, [36c4b9d87c0ec472f2ff56f390731de3],
PUP.Optional.SwiftRecord.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C38F40AD-70A5-465E-866F-506B378C4CEF}, In Quarantäne, [36c4b9d87c0ec472f2ff56f390731de3],
PUP.Optional.SwiftRecord.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C38F40AD-70A5-465E-866F-506B378C4CEF}, In Quarantäne, [36c4b9d87c0ec472f2ff56f390731de3],
PUP.Optional.SwiftRecord.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\INTERFACE\{C38F40AD-70A5-465E-866F-506B378C4CEF}, In Quarantäne, [36c4b9d87c0ec472f2ff56f390731de3],
PUP.Optional.SwiftRecord.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{06107761-a0fa-4eaa-9fc8-54f55102f354}, In Quarantäne, [36c4b9d87c0ec472f2ff56f390731de3],
PUP.Optional.SwiftRecord.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{06107761-a0fa-4eaa-9fc8-54f55102f354}, In Quarantäne, [36c4b9d87c0ec472f2ff56f390731de3],
PUP.Optional.SwiftRecord.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{0759D61F-3673-416F-85D2-58B847E78DDF}, In Quarantäne, [36c4b9d87c0ec472f2ff56f390731de3],
PUP.Optional.SwiftRecord.A, HKLM\SOFTWARE\CLASSES\WOW6432NODE\CLSID\{0759D61F-3673-416F-85D2-58B847E78DDF}, In Quarantäne, [36c4b9d87c0ec472f2ff56f390731de3],
PUP.Optional.SwiftRecord.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\SETTINGS\{0759D61F-3673-416F-85D2-58B847E78DDF}, In Quarantäne, [36c4b9d87c0ec472f2ff56f390731de3],
PUP.Optional.Sanbreel.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\{361bdfbd-a59f-41fc-9013-7d7dfdba60ef}Gw64, In Quarantäne, [8674444d98f2e4529c7a29d120e3966a],
PUP.Optional.FFPluginHp.A, HKLM\SOFTWARE\WOW6432NODE\FFPluginHp, In Quarantäne, [34c6c4cddbafba7c744c29a68e75ce32],
PUP.Optional.IHProtect.A, HKLM\SOFTWARE\WOW6432NODE\IHProtect, In Quarantäne, [8e6cdab75832c076721f5a866f94a35d],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\Iminent, In Quarantäne, [d9214d44a4e6ba7ca7464cd3cc3857a9],
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\istartsurfSoftware, In Quarantäne, [ec0eb2df8406cd695edf698d41c2c739],
PUP.Optional.WPM.A, HKLM\SOFTWARE\WOW6432NODE\supWindowsMangerProtect, In Quarantäne, [88727b16583225114b978cc7fa0b916f],
PUP.Optional.SwiftRecord.A, HKLM\SOFTWARE\WOW6432NODE\Swift Record, In Quarantäne, [ea10a3ee16745ed80cacece8937033cd],
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\WajIntEnhance, In Quarantäne, [27d37b166f1be3531a2ddffee22119e7],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, In Quarantäne, [f20851404a40c96d1050efeb23e002fe],
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, In Quarantäne, [e01a3c550882c670e976cf0bf50efd03],
PUP.Optional.Vosteran, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, In Quarantäne, [ba406f22bbcf082ecf576484857e46ba],
PUP.Optional.Wajam.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, In Quarantäne, [5aa0c7ca3d4d47efd08dc81223e0db25],
PUP.Optional.IHProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\IHProtect Service, In Quarantäne, [35c57a17e3a72a0c9ff12eb2768d2ad6],
PUP.Optional.SwiftRecord.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Update Swift Record, In Quarantäne, [de1c662b800a92a415a6e7ed47bce21e],
PUP.Optional.SwiftRecord.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\Util Swift Record, In Quarantäne, [9268533eb4d6d85e2b902ea6788bcb35],
PUP.Optional.WindowsMangerProtect.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EVENTLOG\APPLICATION\WindowsMangerProtect, In Quarantäne, [7288ace5bfcb310566235298f21104fc],
PUP.Optional.HomeTab.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\HomeTab, In Quarantäne, [3bbfbbd6711946f0209ba4613dc72ed2],
PUP.Optional.SearchProtect.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\SearchProtectWS, In Quarantäne, [12e891005f2bc07696cc07d306fde020],
PUP.Optional.SwiftRecord.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\Swift Record, In Quarantäne, [33c7474a5e2c65d1318815bf12f110f0],
PUP.Optional.TNT.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\TNT2, In Quarantäne, [a05ab2dfcebcbb7b868bf0ec3ac9629e],
PUP.Optional.Wajam.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\WajIntEnhance, In Quarantäne, [52a83f52157565d1aa9ef6e7a65dc43c],
PUP.Optional.Iminent.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IMBoosterARP, In Quarantäne, [1edc5f3289012f07e21525b120e3916f],
PUP.Optional.Iminent.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\IminentToolbar, In Quarantäne, [e119eaa733573cfa7a7e6b6b1fe4fe02],
PUP.Optional.Linkey.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Linkey, In Quarantäne, [43b78d04d1b9cc6a29d0498dab58fd03],
PUP.Optional.SearchProtect.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\SearchProtect, In Quarantäne, [e7137f125931ac8a0c584224976e31cf],
PUP.Optional.Vosteran.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Vosteran.com, In Quarantäne, [54a658394e3c8aac0bef9e3811f260a0],
PUP.Optional.Wajam.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\WajIntEnhance, In Quarantäne, [6a90f69be6a42e087e7d2caa29da9b65],
PUP.Optional.Wajam.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\SIMPLYTECH\HomeTabWajIEnhance, In Quarantäne, [07f3fa97f397ec4ad688914955ae17e9],
Registrierungswerte: 1
PUP.Optional.SweetSearch.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|sweetsearch@gmail.com, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\extensions\sweetsearch@gmail.com, In Quarantäne, [c2387c154d3d7fb7edc7508020e38f71]
Registrierungsdaten: 13
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\FIREFOX.EXE\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" hxxp://www.istartsurf.com/?type=sc&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK, Gut: (firefox.exe), Schlecht: ("C:\Program Files (x86)\Mozilla Firefox\firefox.exe" hxxp://www.istartsurf.com/?type=sc&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK),Ersetzt,[28d2c2cf206a6cca3890010b17ef2cd4]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\CLIENTS\STARTMENUINTERNET\GOOGLE CHROME\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://www.istartsurf.com/?type=sc&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK, Gut: (Chrome.exe), Schlecht: ("C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://www.istartsurf.com/?type=sc&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK),Ersetzt,[55a5e9a84545cb6b06c517f536d0857b]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://www.istartsurf.com/web/?type=ds&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/web/?type=ds&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK&q={searchTerms}),Ersetzt,[77837b16c9c1f73fa6a819f2739305fb]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK),Ersetzt,[2eccf998deac6ccacc829e6d58ae0bf5]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK),Ersetzt,[04f65a3717738bab0b43a2694fb7b050]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://www.istartsurf.com/web/?type=ds&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/web/?type=ds&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK&q={searchTerms}),Ersetzt,[57a3cbc6fb8fd75f242adc2f6a9c4cb4]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\FIREFOX.EXE\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" hxxp://www.istartsurf.com/?type=sc&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK, Gut: (firefox.exe), Schlecht: ("C:\Program Files (x86)\Mozilla Firefox\firefox.exe" hxxp://www.istartsurf.com/?type=sc&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK),Ersetzt,[7288d9b8543646f0d9ef6aa253b3639d]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\CLIENTS\STARTMENUINTERNET\GOOGLE CHROME\SHELL\OPEN\COMMAND, "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://www.istartsurf.com/?type=sc&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK, Gut: (Chrome.exe), Schlecht: ("C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" hxxp://www.istartsurf.com/?type=sc&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK),Ersetzt,[01f993feef9b0531ad1ea46839cdfc04]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Search_URL, hxxp://www.istartsurf.com/web/?type=ds&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/web/?type=ds&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK&q={searchTerms}),Ersetzt,[c03a8c059febe650b6988e7d45c19e62]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK),Ersetzt,[44b6c7ca28629a9c6fdf1cef0105aa56]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK),Ersetzt,[c832aae7751555e19bb3ec1fe71f9d63]
PUP.Optional.IStartSurf.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\MAIN|Search Page, hxxp://www.istartsurf.com/web/?type=ds&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK&q={searchTerms}, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/web/?type=ds&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK&q={searchTerms}),Ersetzt,[79818c05b6d438fe70de68a3bb4be51b]
PUP.Optional.IStartSurf.A, HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Default_Page_URL, hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK, Gut: (www.google.com), Schlecht: (hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK),Ersetzt,[a258444daedc2016ce7e85865aaccf31]
Ordner: 9
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect, Löschen bei Neustart, [0af06829206a6cca40c0bff29a69e51b],
PUP.Optional.WPM.A, C:\ProgramData\WindowsMangerProtect\update, In Quarantäne, [0af06829206a6cca40c0bff29a69e51b],
PUP.Optional.IHProtectUpDate.A, C:\ProgramData\IHProtectUpDate, In Quarantäne, [e9114b463a50a98d06780bbb10f3d62a],
PUP.Optional.IHProtectUpDate.A, C:\ProgramData\IHProtectUpDate\update, In Quarantäne, [e9114b463a50a98d06780bbb10f3d62a],
PUP.Optional.SwiftRecord.A, C:\Users\Bianca\AppData\Local\Temp\Swift Record, In Quarantäne, [0bef9100abdfe45246c08a4200036f91],
PUP.Optional.SweetSearch.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\extensions\sweetsearch@gmail.com, In Quarantäne, [88720e837614e056be30d6f7f80b19e7],
PUP.Optional.SweetSearch.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\extensions\sweetsearch@gmail.com\chrome, In Quarantäne, [88720e837614e056be30d6f7f80b19e7],
PUP.Optional.SweetSearch.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\extensions\sweetsearch@gmail.com\chrome\content, In Quarantäne, [88720e837614e056be30d6f7f80b19e7],
PUP.Optional.SweetSearch.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\extensions\sweetsearch@gmail.com\chrome\skin, In Quarantäne, [88720e837614e056be30d6f7f80b19e7],
Dateien: 20
PUP.Optional.Elex, C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe, Löschen bei Neustart, [ad4de3ae4446290d609f2055fd0308f8],
PUP.Optional.Browserwatch, C:\$Recycle.Bin\S-1-5-21-1177300449-2652255412-3501273659-1002\$R8C864M\BrowerWatchCH.dll, In Quarantäne, [37c32071c5c55cdabdde5eabd036ae52],
PUP.Optional.Browserwatch, C:\$Recycle.Bin\S-1-5-21-1177300449-2652255412-3501273659-1002\$R8C864M\BrowerWatchFF.dll, In Quarantäne, [1edce0b1abdf62d474277a8f7e889967],
PUP.Optional.SearchProtect, C:\$Recycle.Bin\S-1-5-21-1177300449-2652255412-3501273659-1002\$R8C864M\BrowserAction.dll, In Quarantäne, [9c5e3d54b8d20b2bd30dd76d808218e8],
PUP.Optional.Giner, C:\$Recycle.Bin\S-1-5-21-1177300449-2652255412-3501273659-1002\$R8C864M\CmdShell.exe, In Quarantäne, [7f7bdbb62b5fd462fdd16ee454b2e020],
PUP.Optional.ELEX, C:\$Recycle.Bin\S-1-5-21-1177300449-2652255412-3501273659-1002\$R8C864M\HPNotify.exe, In Quarantäne, [37c3236eafdbc57189dd7fb65ba7916f],
PUP.Optional.SearchProtect, C:\$Recycle.Bin\S-1-5-21-1177300449-2652255412-3501273659-1002\$R8C864M\IeWatchDog.dll, In Quarantäne, [16e4fc9566240333e6dfe323e2248d73],
PUP.Optional.XTab.A, C:\$Recycle.Bin\S-1-5-21-1177300449-2652255412-3501273659-1002\$R8C864M\ProtectService.exe, In Quarantäne, [09f11f7241491521374c37ddd032db25],
PUP.Optional.IStartSurf.A, C:\Users\Bianca\AppData\Local\Temp\smt_istartsurf.exe, In Quarantäne, [9367b9d8dcae7abc8e0c0d4454b23dc3],
PUP.Optional.Sanbreel.A, C:\Windows\System32\drivers\{361bdfbd-a59f-41fc-9013-7d7dfdba60ef}Gw64.sys, In Quarantäne, [8674444d98f2e4529c7a29d120e3966a],
PUP.Optional.IStartSurf.A, C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.istartsurf.com_0.localstorage, In Quarantäne, [f4068809d5b59d9905a2095636cfd12f],
PUP.Optional.IStartSurf.A, C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_www.istartsurf.com_0.localstorage-journal, In Quarantäne, [b2487120bad087af6344d689d72e0000],
PUP.Optional.SweetSearch.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\extensions\sweetsearch@gmail.com\chrome.manifest, In Quarantäne, [88720e837614e056be30d6f7f80b19e7],
PUP.Optional.SweetSearch.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\extensions\sweetsearch@gmail.com\install.rdf, In Quarantäne, [88720e837614e056be30d6f7f80b19e7],
PUP.Optional.SweetSearch.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\extensions\sweetsearch@gmail.com\chrome\content\toolbar.js, In Quarantäne, [88720e837614e056be30d6f7f80b19e7],
PUP.Optional.SweetSearch.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\extensions\sweetsearch@gmail.com\chrome\content\toolbar.xul, In Quarantäne, [88720e837614e056be30d6f7f80b19e7],
PUP.Optional.SweetSearch.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\extensions\sweetsearch@gmail.com\chrome\skin\icon.png, In Quarantäne, [88720e837614e056be30d6f7f80b19e7],
PUP.Optional.IStartSurf.A, C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences, Gut: (), Schlecht: ( "homepage": "hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK",), Ersetzt,[43b73859d4b6181e11ce58fef412b848]
PUP.Optional.IStartSurf.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.search.defaultenginename", "istartsurf");), Ersetzt,[f9017d14c8c279bd8af09cb8bd492dd3]
PUP.Optional.IStartSurf.A, C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.search.selectedEngine", "istartsurf");), Ersetzt,[50aa8011d0ba171f4f2cfd573ccaf709]
Physische Sektoren: 0
(Keine schädliche Elemente gefunden)
(end) ADW
AdwCleaner Logfile: Code:
# AdwCleaner v4.203 - Bericht erstellt 10/05/2015 um 10:48:17
# Aktualisiert 30/04/2015 von Xplode
# Datenbank : 2015-05-09.1 [Server]
# Betriebssystem : Windows 8.1 (x64)
# Benutzername : Bianca - MUFFINPC
# Gestarted von : C:\Users\Bianca\Desktop\AdwCleaner_4.203.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\Users\Bianca\AppData\Local\PackageAware
Datei Gelöscht : C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\user.js
Datei Gelöscht : C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
Datei Gelöscht : C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
Datei Gelöscht : C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage
Datei Gelöscht : C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.istartsurf.com_0.localstorage-journal
***** [ Geplante Tasks ] *****
***** [ Verknüpfungen ] *****
Verknüpfung Desinfiziert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Verknüpfung Desinfiziert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Verknüpfung Desinfiziert : C:\Users\Bianca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Verknüpfung Desinfiziert : C:\Users\Bianca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Chrome App Launcher.lnk
Verknüpfung Desinfiziert : C:\Users\Bianca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\ImageSorterApp.lnk
Verknüpfung Desinfiziert : C:\Users\Bianca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Postman - REST Client (Packaged App).lnk
Verknüpfung Desinfiziert : C:\Users\Bianca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Verknüpfung Desinfiziert : C:\Users\Bianca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\simplytech
Schlüssel Gelöscht : HKCU\Software\Linkey
Schlüssel Gelöscht : HKLM\SOFTWARE\AskPartnerNetwork
Schlüssel Gelöscht : HKLM\SOFTWARE\Conduit
Schlüssel Gelöscht : HKLM\SOFTWARE\SearchProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\SupDp
Schlüssel Gelöscht : HKLM\SOFTWARE\SpeedBit
Schlüssel Gelöscht : HKLM\SOFTWARE\AIM Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Linkey
***** [ Internetbrowser ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v37.0.2 (x86 de)
[c8ze4h4l.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.alias", "istartsurf");
[c8ze4h4l.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.iconURL", "hxxp://www.istartsurf.com/favicon.ico");
[c8ze4h4l.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.name", "istartsurf");
[c8ze4h4l.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.url", "hxxp://www.istartsurf.com/web/?type=ds&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK&q={s[...]
-\\ Google Chrome v42.0.2311.135
[C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Gelöscht [Startup_URLs] : hxxp://www.istartsurf.com/?type=hp&ts=1431113279&z=73ff86cb268e0a6e02921d3g5zfc1gdg3g4c3o3m6q&from=smt&uid=ST500LX005-1CW162_W370KRDKXXXXW370KRDK
*************************
AdwCleaner[R0].txt - [4826 Bytes] - [10/05/2015 10:44:40]
AdwCleaner[S0].txt - [4642 Bytes] - [10/05/2015 10:48:17]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4701 Bytes] ########## --- --- ---
[/CODE]
JRT Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.7.0 (05.09.2015:1)
OS: Windows 8.1 x64
Ran by Bianca on 10.05.2015 at 10:54:47,98
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Tasks
Successfully deleted: [Task] C:\WINDOWS\system32\tasks\Optimize Start Menu Cache Files-S-1-5-21-1177300449-2652255412-3501273659-1002
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Update Swift Record
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Eventlog\Application\Util Swift Record
~~~ Files
Successfully deleted: [File] C:\Users\Bianca\appdata\local\google\chrome\user data\default\local storage\http_static.audienceinsights.net_0.localstorage
Successfully deleted: [File] C:\Users\Bianca\appdata\local\google\chrome\user data\default\local storage\http_static.audienceinsights.net_0.localstorage-journal
Successfully deleted: [File] C:\Users\Bianca\appdata\local\google\chrome\user data\default\local storage\https_static.olark.com_0.localstorage
Successfully deleted: [File] C:\Users\Bianca\appdata\local\google\chrome\user data\default\local storage\https_static.olark.com_0.localstorage-journal
~~~ Folders
~~~ FireFox
Successfully deleted: [Folder] C:\Users\Bianca\AppData\Roaming\mozilla\firefox\profiles\c8ze4h4l.default\extensions\staged
Successfully deleted the following from C:\Users\Bianca\AppData\Roaming\mozilla\firefox\profiles\c8ze4h4l.default\prefs.js
user_pref(browser.search.searchengine.desc, this is my first firefox searchEngine);
user_pref(browser.search.searchengine.ptid, smt);
user_pref(browser.search.searchengine.uid, ST500LX005-1CW162_W370KRDKXXXXW370KRDK);
user_pref(extensions.xpiState, {\app-profile\:{\firefox@ghostery.com\:{\d\:\C:\\\\Users\\\\Bianca\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\c8ze4h4l
Emptied folder: C:\Users\Bianca\AppData\Roaming\mozilla\firefox\profiles\c8ze4h4l.default\minidumps [1 files]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 10.05.2015 at 11:00:44,19
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST PART 1 Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-05-2015
Ran by Bianca (administrator) on MUFFINPC on 10-05-2015 11:02:23
Running from C:\Users\Bianca\Desktop
Loaded Profiles: Bianca (Available profiles: UpdatusUser & Bianca)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngservice.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2014-01-08] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2014-01-08] (Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\WINDOWS\RTFTrack.exe [6339656 2013-05-16] (Realtek semiconductor)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15792112 2013-10-28] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [101360 2013-10-28] (Lenovo(beijing) Limited)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3039984 2013-03-01] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1368792 2014-01-08] (Realtek Semiconductor)
HKLM\...\Run: [AtwtusbIcon] => C:\WINDOWS\system32\AtwtusbIcon.exe [3593728 2012-09-10] ()
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM-x32\...\Run: [YouCam Tray] => C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-30] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-05-01] (Avast Software s.r.o.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [112856 2014-06-12] (VMware, Inc.)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [707496 2014-06-11] (Cisco Systems, Inc.)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\...\Run: [f.lux] => C:\Users\Bianca\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\...\MountPoints2: {54cff26c-f988-11e3-be84-089e01f64a4d} - "E:\HTC_Sync_Manager_PC.exe"
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [184048 2013-12-26] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [156256 2013-12-26] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [156256 2013-12-26] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk.disabled [2013-10-28]
ShortcutTarget: iSCTsysTray.lnk.disabled -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Motion Control.lnk.disabled [2013-10-28]
ShortcutTarget: Motion Control.lnk.disabled -> C:\Program Files (x86)\Lenovo\MotionControl\MotionControl.exe ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-05-01] (Avast Software s.r.o.)
ShellIconOverlayIdentifiers: [SugarSyncBackedUp] -> {0C4A258A-3F3B-4FFF-80A7-9B3BEC139472} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncPending] -> {62CCD8E3-9C21-41E1-B55E-1E26DFC68511} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncRoot] -> {A759AFF6-5851-457D-A540-F4ECED148351} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
ShellIconOverlayIdentifiers: [SugarSyncShared] -> {1574C9EF-7D58-488F-B358-8B78C1538F51} => C:\Program Files (x86)\SugarSync\SugarSyncShellExt_x64.dll [2012-05-14] (SugarSync, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_20\bin\ssv.dll [2014-08-31] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-04-06] (Avast Software s.r.o.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_20\bin\jp2ssv.dll [2014-08-31] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-08-31] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-04-06] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-08-31] (Oracle Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-03-02] ()
FF Plugin: @java.com/DTPlugin,version=11.20.2 -> C:\Program Files\Java\jre1.8.0_20\bin\dtplugin\npDeployJava1.dll [2014-08-31] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.20.2 -> C:\Program Files\Java\jre1.8.0_20\bin\plugin2\npjp2.dll [2014-08-31] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-03-02] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-05-09] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-05-09] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-08-31] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-08-31] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-14] ( Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll [2012-12-13] (Nitro PDF)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1177300449-2652255412-3501273659-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Bianca\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-07-07] (Unity Technologies ApS)
FF Extension: Ghostery - C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\Extensions\firefox@ghostery.com.xpi [2014-12-01]
FF Extension: Swift Record 1.0.1 - C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\Extensions\{361bdfbd-a59f-41fc-9013-7d7dfdba60ef}.xpi [2015-05-08]
FF Extension: Adblock Plus - C:\Users\Bianca\AppData\Roaming\Mozilla\Firefox\Profiles\c8ze4h4l.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-12-01]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-05-23]
StartMenuInternet: FIREFOX.EXE - firefox.exe
Chrome:
=======
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-14]
CHR Extension: (Google Drive) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-14]
CHR Extension: (YouTube) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-14]
CHR Extension: (Adblock Plus) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-05-19]
CHR Extension: (Google Search) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-14]
CHR Extension: (Postman - REST Client (Packaged App)) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\fhbjgbiflinjbdggehcddcbncdddomop [2015-03-25]
CHR Extension: (HTTPS Everywhere) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2014-10-02]
CHR Extension: (Bookmark Manager) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-21]
CHR Extension: (AngularJS Batarang) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\ighdmehidhipcmcojjgiloacoafjmpfk [2014-12-13]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-13]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-08]
CHR Extension: (Hangouts) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\nckgahadagoaajjgafhacjanaoiihapd [2014-08-29]
CHR Extension: (Google Wallet) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-14]
CHR Extension: (Gmail) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-14]
CHR Extension: (Privacy Badger) - C:\Users\Bianca\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkehgijcmpdhfbdbbnkijodmdjhbjlgp [2014-10-02]
CHR HKU\S-1-5-21-1177300449-2652255412-3501273659-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-06]
StartMenuInternet: Google Chrome - Chrome.exe
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-05-01] (Avast Software s.r.o.)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4034896 2015-05-01] (Avast Software)
S2 BrcmSetSecurity; C:\Program Files\Intel Corporation\Intel WiDi\BrcmSetSecurity.exe [101536 2013-04-16] (Intel)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
S3 c2wts; C:\Program Files\Windows Identity Foundation\v3.5\c2wtshost.exe [5632 2014-06-21] (Microsoft Corporation)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.1\App Certification Kit\fussvc.exe [142336 2014-02-20] (Microsoft Corporation) [File not signed]
S2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2014-04-02] (Nero AG)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-05-08] (Intel Corporation)
S2 iBtSiva; C:\Program Files (x86)\Intel\Bluetooth\ibtsiva.exe [125168 2014-10-03] (Intel Corporation)
S2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-21] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
S2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-05-09] (Intel Corporation)
S2 IpOverUsbSvc; C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbSvc.exe [22768 2014-04-17] (Microsoft Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [182760 2013-04-15] ()
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-02-28] ()
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-09] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [166912 2013-10-17] () [File not signed]
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.1\Testing\Runtimes\TAEF\Wex.Services.exe [119808 2013-08-22] (Microsoft Corporation) [File not signed]
S2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2013-10-28] ()
S2 VMwareHostd; C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe [14407384 2014-06-12] ()
S3 VsEtwService120; C:\Program Files\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87736 2014-04-30] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
S2 WTService; C:\WINDOWS\system32\atwtusb.exe [581632 2012-11-22] () [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-05-01] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-05-01] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-05-01] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-05-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-05-01] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-05-01] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-05-01] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-05-01] ()
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1424184 2014-06-17] (Motorola Solutions, Inc.)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [225008 2014-10-03] (Intel Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21048 2013-04-15] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21048 2013-04-15] ()
R2 IntelHaxm; C:\Windows\system32\DRIVERS\IntelHaxm.sys [84992 2015-01-30] (Intel Corporation)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-04-15] ()
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-12-19] (Intel Corporation)
R3 moufiltr; C:\Windows\System32\drivers\moufiltr.sys [7680 2009-03-08] (Windows (R) Codename Longhorn DDK provider)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3440096 2014-04-16] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew02.sys [3648480 2013-10-08] (Intel Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8243528 2013-05-16] (Realtek Semiconductor Corp.)
R3 SensorsSimulatorDriver; C:\Windows\system32\DRIVERS\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [33008 2013-03-01] (Synaptics Incorporated)
S3 TabletFilter; C:\Windows\System32\drivers\TabletFilter.sys [7680 2012-08-15] (Windows (R) Win 7 DDK provider)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [207768 2013-04-16] (Windows (R) Win 7 DDK provider)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-05-01] (Avast Software)
R3 vhidmini; C:\Windows\System32\drivers\walvhid.sys [7552 2009-08-26] (Windows (R) Win 7 DDK provider)
S3 vpnva; C:\Windows\system32\DRIVERS\vpnva64-6.sys [52592 2014-06-11] (Cisco Systems, Inc.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
R2 vstor2-mntapi20-shared; C:\Windows\SysWow64\drivers\vstor2-mntapi20-shared.sys [33872 2013-02-22] (VMware, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2015-05-10] ()
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-05-24] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-05-10 11:00 - 2015-05-10 11:00 - 00002375 _____ () C:\Users\Bianca\Desktop\JRT.txt
2015-05-10 10:54 - 2015-05-10 10:54 - 00000207 _____ () C:\WINDOWS\tweaking.com-regbackup-MUFFINPC-Windows-8.1-(64-bit).dat
2015-05-10 10:54 - 2015-05-10 10:54 - 00000000 ____D () C:\RegBackup
2015-05-10 10:51 - 2015-05-10 10:51 - 00004793 _____ () C:\Users\Bianca\Desktop\AdwCleaner[S0].txt
2015-05-10 10:49 - 2015-05-10 10:55 - 00094656 _____ (CACE Technologies) C:\WINDOWS\system32\WPRO_41_2001woem.tmp
2015-05-10 10:44 - 2015-05-10 10:48 - 00000000 ____D () C:\AdwCleaner
2015-05-10 10:04 - 2015-05-10 10:53 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-05-10 10:03 - 2015-05-10 10:03 - 00001129 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-10 10:03 - 2015-05-10 10:03 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-10 10:03 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-05-10 10:03 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-05-10 10:03 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-05-10 09:48 - 2015-05-10 09:48 - 00001295 _____ () C:\Users\Bianca\Desktop\Revo Uninstaller.lnk
2015-05-10 09:48 - 2015-05-10 09:48 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2015-05-10 09:46 - 2015-05-10 09:47 - 02720307 _____ (Thisisu) C:\Users\Bianca\Desktop\JRT.exe
2015-05-10 09:46 - 2015-05-10 09:46 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Bianca\Desktop\mbam-setup-2.1.6.1022.exe
2015-05-10 09:46 - 2015-05-10 09:46 - 02204160 _____ () C:\Users\Bianca\Desktop\AdwCleaner_4.203.exe
2015-05-10 09:45 - 2015-05-10 09:45 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Bianca\Desktop\revosetup95.exe
2015-05-09 12:42 - 2015-05-09 12:42 - 00000490 _____ () C:\Users\Bianca\Desktop\GMER.txt
2015-05-09 12:34 - 2015-05-09 12:34 - 00076041 _____ () C:\Users\Bianca\Desktop\Addition.txt
2015-05-09 12:32 - 2015-05-10 11:02 - 00023620 _____ () C:\Users\Bianca\Desktop\FRST.txt
2015-05-09 12:32 - 2015-05-10 11:02 - 00000000 ____D () C:\FRST
2015-05-09 12:30 - 2015-05-09 12:30 - 00000474 _____ () C:\Users\Bianca\Desktop\defogger_disable.log
2015-05-09 12:30 - 2015-05-09 12:30 - 00000000 _____ () C:\Users\Bianca\defogger_reenable
2015-05-09 12:28 - 2015-05-09 12:28 - 02102784 _____ (Farbar) C:\Users\Bianca\Desktop\FRST64.exe
2015-05-09 12:27 - 2015-05-09 12:27 - 00380416 _____ () C:\Users\Bianca\Desktop\zzviutvj.exe
2015-05-09 12:27 - 2015-05-09 12:27 - 00050477 _____ () C:\Users\Bianca\Desktop\Defogger.exe
2015-05-09 12:20 - 2015-05-09 12:20 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2015-05-08 21:27 - 2015-05-08 21:27 - 03132924 _____ ( ) C:\Users\Bianca\Downloads\setup Project64 2.2 (1).exe
2015-05-08 21:27 - 2015-05-08 21:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Project 64 2.2
2015-05-08 21:27 - 2015-05-08 21:27 - 00000000 ____D () C:\Program Files (x86)\Project64 2.2
2015-05-07 17:04 - 2015-05-07 17:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Atlassian
2015-05-07 17:04 - 2015-05-07 17:04 - 00000000 ____D () C:\Program Files (x86)\Atlassian
2015-05-05 10:35 - 2015-05-05 10:35 - 00290008 _____ () C:\WINDOWS\Minidump\050515-13781-01.dmp
2015-05-01 21:48 - 2015-05-01 21:48 - 00364472 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\aswBoot.exe
2015-05-01 21:48 - 2015-05-01 21:48 - 00043112 _____ (Avast Software s.r.o.) C:\WINDOWS\avastSS.scr
2015-04-30 23:40 - 2015-04-30 23:40 - 04319813 _____ () C:\Users\Bianca\Downloads\GTAI_Bernard_Jollans_Bianca_Ploch_s0539851_s0540609_U2.jar
2015-04-30 23:40 - 2015-04-30 23:40 - 00703679 _____ () C:\Users\Bianca\Downloads\GTAI_Bernard_Jollans_Bianca_Ploch_s0539851_s0540609 (1).jar
2015-04-30 23:39 - 2015-04-30 23:39 - 00582556 _____ () C:\Users\Bianca\Downloads\GTAI_Bernard_Jollans_Bianca_Ploch_s0539851_s0540609.jar
2015-04-28 12:04 - 2015-04-28 12:04 - 00000000 ____D () C:\Users\Bianca\Downloads\Android_Design_Icons_20131106 (1)
2015-04-28 12:02 - 2015-04-28 12:02 - 04487759 _____ () C:\Users\Bianca\Downloads\Android_Design_Icons_20131106 (2).zip
2015-04-28 12:02 - 2015-04-28 12:02 - 04487759 _____ () C:\Users\Bianca\Downloads\Android_Design_Icons_20131106 (1).zip
2015-04-24 11:57 - 2015-04-24 11:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-23 12:38 - 2015-04-23 12:38 - 00002255 _____ () C:\Users\Bianca\Downloads\Android_Design_Color_Swatches_20120229.zip
2015-04-23 10:17 - 2015-04-23 10:17 - 00000324 ____N () C:\WINDOWS\DtcInstall.log
2015-04-22 17:27 - 2015-04-22 17:29 - 00000000 ___SD () C:\WINDOWS\system32\CompatTel
2015-04-22 12:33 - 2014-10-31 06:50 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2015-04-22 12:33 - 2014-10-31 05:30 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2015-04-22 12:33 - 2014-10-31 05:23 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-04-22 12:33 - 2014-10-31 05:22 - 00291840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2015-04-22 12:33 - 2014-10-31 05:18 - 04840960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2015-04-22 12:33 - 2014-10-31 05:18 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-04-22 12:33 - 2014-10-31 05:09 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2015-04-22 12:33 - 2014-10-31 04:12 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2015-04-22 12:33 - 2014-10-31 04:06 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-04-22 12:27 - 2014-10-29 05:59 - 03460472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2015-04-22 12:27 - 2014-10-29 05:55 - 00789184 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-04-22 12:27 - 2014-10-29 05:08 - 00602768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-04-22 12:27 - 2014-10-29 04:45 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2015-04-22 12:27 - 2014-10-29 04:08 - 18822656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-04-22 12:27 - 2014-10-29 04:00 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2015-04-22 12:27 - 2014-10-29 03:33 - 15157760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-04-22 12:27 - 2014-10-29 03:17 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-04-22 12:27 - 2014-10-29 03:10 - 02344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-04-22 12:27 - 2014-10-29 03:02 - 14354944 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-04-22 12:27 - 2014-10-29 02:52 - 15432704 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2015-04-22 12:27 - 2014-10-29 02:51 - 01554432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-04-22 12:27 - 2014-10-29 02:50 - 12749824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-04-22 12:27 - 2014-10-29 02:46 - 09530368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2015-04-22 12:27 - 2014-10-29 02:45 - 13318144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2015-04-22 12:26 - 2014-10-29 05:59 - 02529856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-04-22 12:26 - 2014-10-29 05:59 - 00014144 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swenum.sys
2015-04-22 12:26 - 2014-10-29 05:57 - 03138720 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVCORE.DLL
2015-04-22 12:26 - 2014-10-29 05:52 - 02334080 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-04-22 12:26 - 2014-10-29 05:07 - 02324208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2015-04-22 12:26 - 2014-10-29 04:29 - 04483072 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbon.dll
2015-04-22 12:26 - 2014-10-29 04:24 - 04418560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-04-22 12:26 - 2014-10-29 04:19 - 03320320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-04-22 12:26 - 2014-10-29 03:51 - 00941056 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2015-04-22 12:26 - 2014-10-29 03:45 - 03607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-04-22 12:26 - 2014-10-29 03:45 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2015-04-22 12:26 - 2014-10-29 03:43 - 07075328 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2015-04-22 12:26 - 2014-10-29 03:40 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2015-04-22 12:26 - 2014-10-29 03:38 - 04690432 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2015-04-22 12:26 - 2014-10-29 03:35 - 04709888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2015-04-22 12:26 - 2014-10-29 03:34 - 03097088 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-04-22 12:26 - 2014-10-29 03:28 - 03820544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2015-04-22 12:26 - 2014-10-29 03:28 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\atlthunk.dll
2015-04-22 12:26 - 2014-10-29 03:22 - 03633664 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2015-04-22 12:26 - 2014-10-29 03:16 - 05267968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2015-04-22 12:26 - 2014-10-29 03:03 - 04067840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2015-04-22 12:26 - 2014-10-29 03:02 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-04-22 12:26 - 2014-10-29 02:54 - 07784960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-04-22 12:26 - 2014-10-29 02:52 - 02554880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2015-04-22 12:26 - 2014-10-29 02:43 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-04-22 12:26 - 2014-10-29 02:38 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-04-22 12:26 - 2014-10-29 02:37 - 06386176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2015-04-22 12:26 - 2014-10-29 02:33 - 06213632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-04-22 12:26 - 2014-10-07 08:45 - 03307112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-04-22 12:26 - 2014-10-07 05:44 - 02890296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-04-22 12:25 - 2014-10-29 06:00 - 02314952 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-04-22 12:25 - 2014-10-29 06:00 - 02229168 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2015-04-22 12:25 - 2014-10-29 06:00 - 01540696 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-04-22 12:25 - 2014-10-29 05:57 - 03118096 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2015-04-22 12:25 - 2014-10-29 05:57 - 02745160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2015-04-22 12:25 - 2014-10-29 05:57 - 01286048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2015-04-22 12:25 - 2014-10-29 05:55 - 02174976 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2015-04-22 12:25 - 2014-10-29 05:13 - 01901240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-04-22 12:25 - 2014-10-29 05:11 - 02689392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVCORE.DLL
2015-04-22 12:25 - 2014-10-29 04:59 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-04-22 12:25 - 2014-10-29 04:10 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-04-22 12:25 - 2014-10-29 03:57 - 02924032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcndmgr.dll
2015-04-22 12:25 - 2014-10-29 03:56 - 03754496 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2015-04-22 12:25 - 2014-10-29 03:44 - 02984448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-04-22 12:25 - 2014-10-29 03:39 - 02896384 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-04-22 12:25 - 2014-10-29 03:35 - 03256320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2015-04-22 12:25 - 2014-10-29 03:31 - 02941952 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2015-04-22 12:25 - 2014-10-29 03:26 - 03561984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIRibbon.dll
2015-04-22 12:25 - 2014-10-29 03:24 - 02464768 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2015-04-22 12:25 - 2014-10-29 03:15 - 02259456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-04-22 12:25 - 2014-10-29 03:12 - 02749952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2015-04-22 12:25 - 2014-10-29 03:08 - 02608640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2015-04-22 12:25 - 2014-10-29 03:08 - 02542080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2015-04-22 12:25 - 2014-10-29 03:08 - 02174976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2015-04-22 12:25 - 2014-10-29 03:05 - 03273216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2015-04-22 12:25 - 2014-10-29 03:04 - 01376256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-04-22 12:25 - 2014-10-29 02:48 - 03056128 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll
2015-04-22 12:25 - 2014-10-29 02:46 - 01919488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2015-04-22 12:25 - 2014-10-29 02:42 - 01922560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2015-04-22 12:25 - 2014-10-29 02:39 - 02814464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-04-22 12:24 - 2014-10-29 06:10 - 01816008 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskschd.dll
2015-04-22 12:24 - 2014-10-29 06:04 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2015-04-22 12:24 - 2014-10-29 05:58 - 00014528 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2015-04-22 12:24 - 2014-10-29 05:57 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-04-22 12:24 - 2014-10-29 05:57 - 02450216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVENCOD.DLL
2015-04-22 12:24 - 2014-10-29 05:55 - 01660528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2015-04-22 12:24 - 2014-10-29 05:55 - 01543768 _____ (Microsoft Corporation) C:\WINDOWS\system32\webservices.dll
2015-04-22 12:24 - 2014-10-29 05:52 - 02485056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-04-22 12:24 - 2014-10-29 05:52 - 01518504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2015-04-22 12:24 - 2014-10-29 05:52 - 01509688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2015-04-22 12:24 - 2014-10-29 05:52 - 01288096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2015-04-22 12:24 - 2014-10-29 05:52 - 01165744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2015-04-22 12:24 - 2014-10-29 05:52 - 01064720 _____ (Microsoft Corporation) C:\WINDOWS\system32\drmv2clt.dll
2015-04-22 12:24 - 2014-10-29 05:52 - 00988544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2015-04-22 12:24 - 2014-10-29 05:52 - 00952384 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-04-22 12:24 - 2014-10-29 05:51 - 01310912 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-04-22 12:24 - 2014-10-29 05:15 - 01612480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-04-22 12:24 - 2014-10-29 05:12 - 01946144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2015-04-22 12:24 - 2014-10-29 05:12 - 01907384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2015-04-22 12:24 - 2014-10-29 05:11 - 02528760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2015-04-22 12:24 - 2014-10-29 05:11 - 02447104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVENCOD.DLL
2015-04-22 12:24 - 2014-10-29 05:11 - 01024200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSAudDecMFT.dll
2015-04-22 12:24 - 2014-10-29 05:10 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-04-22 12:24 - 2014-10-29 05:10 - 01564464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2015-04-22 12:24 - 2014-10-29 05:10 - 01209624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2015-04-22 12:24 - 2014-10-29 05:07 - 01321192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2015-04-22 12:24 - 2014-10-29 05:07 - 01115104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetsrc.dll
2015-04-22 12:24 - 2014-10-29 05:07 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfasfsrcsnk.dll
2015-04-22 12:24 - 2014-10-29 04:28 - 01502208 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpssvcs.dll
2015-04-22 12:24 - 2014-10-29 04:25 - 00785920 _____ (Microsoft Corporation) C:\WINDOWS\system32\blackbox.dll
2015-04-22 12:24 - 2014-10-29 04:17 - 02003456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2015-04-22 12:24 - 2014-10-29 04:08 - 01540096 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2015-04-22 12:24 - 2014-10-29 04:00 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-04-22 12:24 - 2014-10-29 03:55 - 01697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2015-04-22 12:24 - 2014-10-29 03:48 - 01080832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2015-04-22 12:24 - 2014-10-29 03:47 - 02072064 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2015-04-22 12:24 - 2014-10-29 03:45 - 00618496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\blackbox.dll
2015-04-22 12:24 - 2014-10-29 03:42 - 01999872 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-04-22 12:24 - 2014-10-29 03:24 - 02364928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmcndmgr.dll
2015-04-22 12:24 - 2014-10-29 03:23 - 01500672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\quartz.dll
2015-04-22 12:24 - 2014-10-29 03:22 - 02410496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVidCtl.dll
2015-04-22 12:24 - 2014-10-29 03:22 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-04-22 12:24 - 2014-10-29 03:21 - 01250816 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-04-22 12:24 - 2014-10-29 03:18 - 04180480 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-04-22 12:24 - 2014-10-29 03:18 - 01753600 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-04-22 12:24 - 2014-10-29 03:17 - 01360896 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2015-04-22 12:24 - 2014-10-29 03:14 - 03553280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe
2015-04-22 12:24 - 2014-10-29 03:11 - 01639424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2015-04-22 12:24 - 2014-10-29 03:10 - 02469888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2015-04-22 12:24 - 2014-10-29 03:08 - 01822720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2015-04-22 12:24 - 2014-10-29 03:08 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-04-22 12:24 - 2014-10-29 03:03 - 02635264 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2015-04-22 12:24 - 2014-10-29 03:03 - 02487296 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2015-04-22 12:24 - 2014-10-29 03:00 - 01705984 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-04-22 12:24 - 2014-10-29 02:59 - 01490944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-04-22 12:24 - 2014-10-29 02:56 - 01337344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-04-22 12:24 - 2014-10-29 02:56 - 01028608 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-04-22 12:24 - 2014-10-29 02:54 - 01945600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-04-22 12:24 - 2014-10-29 02:52 - 02170368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2015-04-22 12:24 - 2014-10-29 02:52 - 01461248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2015-04-22 12:24 - 2014-10-29 02:52 - 01275904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2015-04-22 12:24 - 2014-10-29 02:50 - 02317824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CertEnroll.dll
2015-04-22 12:24 - 2014-10-29 02:50 - 01482752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2015-04-22 12:24 - 2014-10-29 02:47 - 02090496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2015-04-22 12:24 - 2014-10-29 02:46 - 01348096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-04-22 12:24 - 2014-10-29 02:45 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-04-22 12:24 - 2014-10-29 02:45 - 01725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-04-22 12:24 - 2014-10-29 02:42 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-04-22 12:24 - 2014-10-29 02:41 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpccpl.dll
2015-04-22 12:24 - 2014-10-29 02:41 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2015-04-22 12:24 - 2014-10-29 02:40 - 02104832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2015-04-22 12:24 - 2014-10-29 02:39 - 01000448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2015-04-22 12:24 - 2014-10-29 02:36 - 00954880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2015-04-22 12:24 - 2014-10-29 02:35 - 01668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2015-04-22 12:24 - 2014-10-29 02:34 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-04-22 12:24 - 2014-10-29 02:34 - 01544192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-04-22 12:24 - 2014-10-15 10:32 - 02025792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-04-22 12:24 - 2014-09-25 05:42 - 00373568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-04-22 12:23 - 2014-10-29 06:00 - 01385216 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-04-22 12:23 - 2014-10-29 05:57 - 01576312 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2015-04-22 12:23 - 2014-10-29 05:57 - 01210176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOD.DLL
2015-04-22 12:23 - 2014-10-29 05:57 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-04-22 12:23 - 2014-10-29 05:55 - 01133200 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2015-04-22 12:23 - 2014-10-29 05:52 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-04-22 12:23 - 2014-10-29 05:52 - 00850656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2015-04-22 12:23 - 2014-10-29 05:52 - 00821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-04-22 12:23 - 2014-10-29 05:52 - 00734448 _____ (Microsoft Corporation) C:\WINDOWS\system32\evr.dll
2015-04-22 12:23 - 2014-10-29 05:52 - 00634768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-04-22 12:23 - 2014-10-29 05:52 - 00580024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmdev.dll
2015-04-22 12:23 - 2014-10-29 05:18 - 00016504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\psapi.dll
2015-04-22 12:23 - 2014-10-29 05:11 - 01037656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOD.DLL
2015-04-22 12:23 - 2014-10-29 05:10 - 01287112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2015-04-22 12:23 - 2014-10-29 05:10 - 01178104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webservices.dll
2015-04-22 12:23 - 2014-10-29 05:10 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-04-22 12:23 - 2014-10-29 05:07 - 00857384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2015-04-22 12:23 - 2014-10-29 05:07 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-04-22 12:23 - 2014-10-29 05:07 - 00785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-04-22 12:23 - 2014-10-29 05:07 - 00705008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-04-22 12:23 - 2014-10-29 05:07 - 00700328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2015-04-22 12:23 - 2014-10-29 05:07 - 00551064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll
2015-04-22 12:23 - 2014-10-29 05:05 - 00890128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drmv2clt.dll
2015-04-22 12:23 - 2014-10-29 04:50 - 01192960 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-04-22 12:23 - 2014-10-29 04:43 - 00685056 _____ (Microsoft Corporation) C:\WINDOWS\system32\riched20.dll
2015-04-22 12:23 - 2014-10-29 04:31 - 00971264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlceqp40.dll
2015-04-22 12:23 - 2014-10-29 04:29 - 01246720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ogldrv.dll
2015-04-22 12:23 - 2014-10-29 04:26 - 00771584 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbc32.dll
2015-04-22 12:23 - 2014-10-29 04:17 - 00537088 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-04-22 12:23 - 2014-10-29 04:07 - 06692352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2015-04-22 12:23 - 2014-10-29 04:03 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2015-04-22 12:23 - 2014-10-29 03:56 - 01526784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pla.dll
2015-04-22 12:23 - 2014-10-29 03:56 - 00603648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2015-04-22 12:23 - 2014-10-29 03:53 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2015-04-22 12:23 - 2014-10-29 03:53 - 00881152 _____ (Microsoft Corporation) C:\WINDOWS\system32\printfilterpipelinesvc.exe
2015-04-22 12:23 - 2014-10-29 03:52 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-04-22 12:23 - 2014-10-29 03:50 - 01289216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMNetMgr.dll
2015-04-22 12:23 - 2014-10-29 03:49 - 00742400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlceqp40.dll
2015-04-22 12:23 - 2014-10-29 03:45 - 00717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2015-04-22 12:23 - 2014-10-29 03:43 - 01092608 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdosys.dll
2015-04-22 12:23 - 2014-10-29 03:43 - 00933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2015-04-22 12:23 - 2014-10-29 03:42 - 03724800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2015-04-22 12:23 - 2014-10-29 03:39 - 00898048 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2015-04-22 12:23 - 2014-10-29 03:37 - 01563136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmc.exe
2015-04-22 12:23 - 2014-10-29 03:34 - 01114624 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2015-04-22 12:23 - 2014-10-29 03:34 - 01037824 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
2015-04-22 12:23 - 2014-10-29 03:33 - 01056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2015-04-22 12:23 - 2014-10-29 03:32 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2015-04-22 12:23 - 2014-10-29 03:32 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-04-22 12:23 - 2014-10-29 03:27 - 01200128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2015-04-22 12:23 - 2014-10-29 03:25 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-04-22 12:23 - 2014-10-29 03:25 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pla.dll
2015-04-22 12:23 - 2014-10-29 03:24 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-04-22 12:23 - 2014-10-29 03:20 - 01492480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-04-22 12:23 - 2014-10-29 03:19 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2015-04-22 12:23 - 2014-10-29 03:18 - 01050624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMNetMgr.dll
2015-04-22 12:23 - 2014-10-29 03:17 - 01402368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2015-04-22 12:23 - 2014-10-29 03:17 - 00829952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sbe.dll
2015-04-22 12:23 - 2014-10-29 03:16 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-04-22 12:23 - 2014-10-29 03:14 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2015-04-22 12:23 - 2014-10-29 03:12 - 00645120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2015-04-22 12:23 - 2014-10-29 03:09 - 01335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2015-04-22 12:23 - 2014-10-29 03:09 - 00658944 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2015-04-22 12:23 - 2014-10-29 03:08 - 01478144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2015-04-22 12:23 - 2014-10-29 03:08 - 00881664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2015-04-22 12:23 - 2014-10-29 03:07 - 01396736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartcardCredentialProvider.dll
2015-04-22 12:23 - 2014-10-29 03:07 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2015-04-22 12:23 - 2014-10-29 03:07 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-04-22 12:23 - 2014-10-29 03:06 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2015-04-22 12:23 - 2014-10-29 03:04 - 00868352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2015-04-22 12:23 - 2014-10-29 03:03 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-04-22 12:23 - 2014-10-29 03:01 - 01710592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2015-04-22 12:23 - 2014-10-29 03:01 - 00843776 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2015-04-22 12:23 - 2014-10-29 02:59 - 01636864 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2015-04-22 12:23 - 2014-10-29 02:59 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-04-22 12:23 - 2014-10-29 02:59 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-04-22 12:23 - 2014-10-29 02:59 - 01021440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-04-22 12:23 - 2014-10-29 02:58 - 03442688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-04-22 12:23 - 2014-10-29 02:56 - 01248256 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
2015-04-22 12:23 - 2014-10-29 02:56 - 01001984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2015-04-22 12:23 - 2014-10-29 02:54 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-04-22 12:23 - 2014-10-29 02:53 - 01063424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2015-04-22 12:23 - 2014-10-29 02:52 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-04-22 12:23 - 2014-10-29 02:52 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2015-04-22 12:23 - 2014-10-29 02:52 - 00801792 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2015-04-22 12:23 - 2014-10-29 02:50 - 01092096 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-04-22 12:23 - 2014-10-29 02:50 - 00863744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-04-22 12:23 - 2014-10-29 02:48 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comsvcs.dll
2015-04-22 12:23 - 2014-10-29 02:46 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RacEngn.dll
2015-04-22 12:23 - 2014-10-29 02:46 - 01015808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2015-04-22 12:23 - 2014-10-29 02:45 - 00918016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NaturalLanguage6.dll
2015-04-22 12:23 - 2014-10-29 02:45 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-04-22 12:23 - 2014-10-29 02:42 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2015-04-22 12:23 - 2014-10-29 02:41 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-04-22 12:23 - 2014-10-29 02:38 - 01262080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsPrint.dll
2015-04-22 12:23 - 2014-10-29 02:37 - 00724480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-04-22 12:23 - 2014-10-29 02:35 - 00772096 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2015-04-22 12:23 - 2014-10-29 02:35 - 00688128 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-04-22 12:23 - 2014-10-29 02:33 - 01102848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2015-04-22 12:23 - 2014-10-29 02:31 - 00626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2015-04-22 12:23 - 2014-10-13 04:41 - 01114432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-04-22 12:23 - 2014-10-09 00:09 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-04-22 12:22 - 2014-10-29 06:09 - 01950280 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2015-04-22 12:22 - 2014-10-29 06:09 - 01239576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2015-04-22 12:22 - 2014-10-29 06:00 - 00740664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2015-04-22 12:22 - 2014-10-29 06:00 - 00544408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2015-04-22 12:22 - 2014-10-29 06:00 - 00379568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-04-22 12:22 - 2014-10-29 05:57 - 01552704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-04-22 12:22 - 2014-10-29 05:57 - 00643064 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-04-22 12:22 - 2014-10-29 05:57 - 00557832 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVSDECD.DLL
2015-04-22 12:22 - 2014-10-29 05:55 - 01063432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2015-04-22 12:22 - 2014-10-29 05:55 - 00730824 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatq.dll
2015-04-22 12:22 - 2014-10-29 05:52 - 00497936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2015-04-22 12:22 - 2014-10-29 05:52 - 00444728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2015-04-22 12:22 - 2014-10-29 05:52 - 00405456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2015-04-22 12:22 - 2014-10-29 05:18 - 01782912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupapi.dll
2015-04-22 12:22 - 2014-10-29 05:18 - 01103768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Taskmgr.exe
2015-04-22 12:22 - 2014-10-29 05:18 - 00848568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskschd.dll
2015-04-22 12:22 - 2014-10-29 05:11 - 00914648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMADMOE.DLL
2015-04-22 12:22 - 2014-10-29 05:10 - 00492232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2015-04-22 12:22 - 2014-10-29 05:07 - 00584120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\evr.dll
2015-04-22 12:22 - 2014-10-29 05:07 - 00482360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmdev.dll
2015-04-22 12:22 - 2014-10-29 05:07 - 00409040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfreadwrite.dll
2015-04-22 12:22 - 2014-10-29 04:56 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSMPEG2ENC.DLL
2015-04-22 12:22 - 2014-10-29 04:48 - 00925696 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoconv.exe
2015-04-22 12:22 - 2014-10-29 04:48 - 00636416 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx02000.dll
2015-04-22 12:22 - 2014-10-29 04:36 - 00546304 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlcese40.dll
2015-04-22 12:22 - 2014-10-29 04:33 - 00799744 _____ (Microsoft Corporation) C:\WINDOWS\system32\sqlsrv32.dll
2015-04-22 12:22 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70804.dll
2015-04-22 12:22 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70404.dll
2015-04-22 12:22 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB7001E.dll
2015-04-22 12:22 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSWB70011.dll
2015-04-22 12:22 - 2014-10-29 04:29 - 00620544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsound.dll
2015-04-22 12:22 - 2014-10-29 04:27 - 00899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFx.dll
2015-04-22 12:22 - 2014-10-29 04:11 - 01070080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSMPEG2ENC.DLL
2015-04-22 12:22 - 2014-10-29 04:09 - 00632320 _____ (Microsoft Corporation) C:\WINDOWS\system32\psisdecd.dll
2015-04-22 12:22 - 2014-10-29 04:08 - 00858624 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2015-04-22 12:22 - 2014-10-29 04:08 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2015-04-22 12:22 - 2014-10-29 04:08 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmnet.dll
2015-04-22 12:22 - 2014-10-29 04:06 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2fs.dll
2015-04-22 12:22 - 2014-10-29 04:04 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WavDest.dll
2015-04-22 12:22 - 2014-10-29 04:03 - 00832000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\autoconv.exe
2015-04-22 12:22 - 2014-10-29 03:59 - 00670720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2015-04-22 12:22 - 2014-10-29 03:59 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched20.dll
2015-04-22 12:22 - 2014-10-29 03:53 - 01065984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8.dll
2015-04-22 12:22 - 2014-10-29 03:50 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sqlsrv32.dll
2015-04-22 12:22 - 2014-10-29 03:47 - 01096192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ogldrv.dll
2015-04-22 12:22 - 2014-10-29 03:47 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpssvcs.dll
2015-04-22 12:22 - 2014-10-29 03:46 - 01497600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2015-04-22 12:22 - 2014-10-29 03:45 - 00672768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\odbc32.dll
2015-04-22 12:22 - 2014-10-29 03:42 - 00852480 _____ (Microsoft Corporation) C:\WINDOWS\system32\PurchaseWindowsLicense.dll
2015-04-22 12:22 - 2014-10-29 03:40 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-04-22 12:22 - 2014-10-29 03:39 - 01571328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbengine.exe
2015-04-22 12:22 - 2014-10-29 03:37 - 01436160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2015-04-22 12:22 - 2014-10-29 03:36 - 01008128 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-04-22 12:22 - 2014-10-29 03:36 - 00609792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmdrmsdk.dll
2015-04-22 12:22 - 2014-10-29 03:35 - 00532480 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDec.dll
2015-04-22 12:22 - 2014-10-29 03:32 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comuid.dll
2015-04-22 12:22 - 2014-10-29 03:32 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmnet.dll
2015-04-22 12:22 - 2014-10-29 03:31 - 01278464 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2015-04-22 12:22 - 2014-10-29 03:31 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2015-04-22 12:22 - 2014-10-29 03:30 - 06465536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mspaint.exe
2015-04-22 12:22 - 2014-10-29 03:30 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-04-22 12:22 - 2014-10-29 03:29 - 00833536 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2015-04-22 12:22 - 2014-10-29 03:27 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-04-22 12:22 - 2014-10-29 03:26 - 00838656 _____ (Microsoft Corporation) C:\WINDOWS\system32\netlogon.dll
2015-04-22 12:22 - 2014-10-29 03:24 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-04-22 12:22 - 2014-10-29 03:23 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2015-04-22 12:22 - 2014-10-29 03:21 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-04-22 12:22 - 2014-10-29 03:19 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSync.dll
2015-04-22 12:22 - 2014-10-29 03:14 - 00854528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdosys.dll
2015-04-22 12:22 - 2014-10-29 03:14 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2015-04-22 12:22 - 2014-10-29 03:14 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comdlg32.dll
2015-04-22 12:22 - 2014-10-29 03:12 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-04-22 12:22 - 2014-10-29 03:12 - 00702976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll
2015-04-22 12:22 - 2014-10-29 03:12 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2015-04-22 12:22 - 2014-10-29 03:12 - 00516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\es.dll
2015-04-22 12:22 - 2014-10-29 03:11 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2015-04-22 12:22 - 2014-10-29 03:10 - 01096704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-04-22 12:22 - 2014-10-29 03:10 - 00516096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmdrmsdk.dll
2015-04-22 12:22 - 2014-10-29 03:09 - 00873984 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2015-04-22 12:22 - 2014-10-29 03:09 - 00809984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSWorkspace.dll
2015-04-22 12:22 - 2014-10-29 03:09 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2015-04-22 12:22 - 2014-10-29 03:09 - 00521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-04-22 12:22 - 2014-10-29 03:07 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2015-04-22 12:22 - 2014-10-29 03:07 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-04-22 12:22 - 2014-10-29 03:06 - 00591872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-04-22 12:22 - 2014-10-29 03:05 - 00606720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-04-22 12:22 - 2014-10-29 03:04 - 00903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2015-04-22 12:22 - 2014-10-29 03:03 - 00740352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2015-04-22 12:22 - 2014-10-29 03:01 - 01145856 _____ (Microsoft Corporation) C:\WINDOWS\system32\perftrack.dll
2015-04-22 12:22 - 2014-10-29 03:00 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-04-22 12:22 - 2014-10-29 03:00 - 00591360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
2015-04-22 12:22 - 2014-10-29 02:59 - 01010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMSPDMOD.DLL
2015-04-22 12:22 - 2014-10-29 02:59 - 00649216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2015-04-22 12:22 - 2014-10-29 02:59 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSync.dll
2015-04-22 12:22 - 2014-10-29 02:58 - 00926208 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2015-04-22 12:22 - 2014-10-29 02:56 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-04-22 12:22 - 2014-10-29 02:56 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2015-04-22 12:22 - 2014-10-29 02:56 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winhttp.dll
2015-04-22 12:22 - 2014-10-29 02:55 - 00719360 _____ (Microsoft Corporation) C:\WINDOWS\system32\PortableDeviceApi.dll
2015-04-22 12:22 - 2014-10-29 02:52 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2015-04-22 12:22 - 2014-10-29 02:52 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2015-04-22 12:22 - 2014-10-29 02:52 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-04-22 12:22 - 2014-10-29 02:51 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2015-04-22 12:22 - 2014-10-29 02:51 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2015-04-22 12:22 - 2014-10-29 02:50 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-04-22 12:22 - 2014-10-29 02:48 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-04-22 12:22 - 2014-10-29 02:48 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-04-22 12:22 - 2014-10-29 02:48 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2015-04-22 12:22 - 2014-10-29 02:47 - 00887296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMSPDMOD.DLL
2015-04-22 12:22 - 2014-10-29 02:47 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2015-04-22 12:22 - 2014-10-29 02:45 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2015-04-22 12:22 - 2014-10-29 02:45 - 00573952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PortableDeviceApi.dll
2015-04-22 12:22 - 2014-10-29 02:45 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2015-04-22 12:22 - 2014-10-29 02:43 - 00720896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdtcprx.dll
2015-04-22 12:22 - 2014-10-29 02:42 - 01207808 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2015-04-22 12:22 - 2014-10-29 02:42 - 00654848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2015-04-22 12:22 - 2014-10-29 02:41 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2015-04-22 12:22 - 2014-10-29 02:40 - 00651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-04-22 12:22 - 2014-10-29 02:36 - 00955392 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-04-22 12:22 - 2014-10-29 02:35 - 01085952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2015-04-22 12:22 - 2014-10-29 02:35 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-04-22 12:22 - 2014-10-29 02:35 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2015-04-22 12:22 - 2014-10-29 02:35 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2015-04-22 12:22 - 2014-10-29 02:32 - 00515584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-04-22 12:22 - 2014-10-29 02:30 - 00602624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2015-04-22 12:22 - 2014-07-04 23:29 - 00478528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-04-22 12:21 - 2014-10-29 06:10 - 00430728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtapi.dll
2015-04-22 12:21 - 2014-10-29 06:09 - 01309744 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2015-04-22 12:21 - 2014-10-29 06:04 - 00324864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-04-22 12:21 - 2014-10-29 06:03 - 00435008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-04-22 12:21 - 2014-10-29 05:59 - 00498496 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2015-04-22 12:21 - 2014-10-29 05:57 - 01150208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMADMOE.DLL
2015-04-22 12:21 - 2014-10-29 05:57 - 00662120 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.exe
2015-04-22 12:21 - 2014-10-29 05:57 - 00389952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-04-22 12:21 - 2014-10-29 05:55 - 00426120 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2015-04-22 12:21 - 2014-10-29 05:54 - 00685408 _____ (Microsoft Corporation) C:\WINDOWS\system32\advapi32.dll
2015-04-22 12:21 - 2014-10-29 05:53 - 00411128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-04-22 12:21 - 2014-10-29 05:52 - 00356936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2015-04-22 12:21 - 2014-10-29 05:52 - 00020160 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompPkgSup.dll
2015-04-22 12:21 - 2014-10-29 05:15 - 00340288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-04-22 12:21 - 2014-10-29 05:12 - 00616704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2015-04-22 12:21 - 2014-10-29 05:12 - 00430176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2015-04-22 12:21 - 2014-10-29 05:12 - 00403776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcfgx.dll
2015-04-22 12:21 - 2014-10-29 05:11 - 00492704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVSDECD.DLL
2015-04-22 12:21 - 2014-10-29 05:11 - 00488064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmpeffects.dll
2015-04-22 12:21 - 2014-10-29 05:10 - 00569128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clbcatq.dll
2015-04-22 12:21 - 2014-10-29 05:10 - 00367248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2015-04-22 12:21 - 2014-10-29 05:07 - 00399752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2015-04-22 12:21 - 2014-10-29 05:07 - 00331048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MMDevAPI.dll
2015-04-22 12:21 - 2014-10-29 05:06 - 00507152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\advapi32.dll
2015-04-22 12:21 - 2014-10-29 04:42 - 01091584 _____ (Microsoft Corporation) C:\WINDOWS\system32\opengl32.dll
2015-04-22 12:21 - 2014-10-29 04:40 - 00610816 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxs.dll
2015-04-22 12:21 - 2014-10-29 04:33 - 07558144 _____ (Microsoft Corporation) C:\WINDOWS\system32\NL7Data0011.dll
2015-04-22 12:21 - 2014-10-29 04:31 - 00590848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2015-04-22 12:21 - 2014-10-29 04:27 - 00208384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsRasterService.dll
2015-04-22 12:21 - 2014-10-29 04:26 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SmartCardSimulator.dll
2015-04-22 12:21 - 2014-10-29 04:25 - 00995328 _____ (Microsoft Corporation) C:\WINDOWS\system32\tapi3.dll
2015-04-22 12:21 - 2014-10-29 04:25 - 00563200 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdohlp.dll
2015-04-22 12:21 - 2014-10-29 04:22 - 00428032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2015-04-22 12:21 - 2014-10-29 04:21 - 00098816 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-04-22 12:21 - 2014-10-29 04:18 - 04616704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData001d.dll
2015-04-22 12:21 - 2014-10-29 04:18 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2015-04-22 12:21 - 2014-10-29 04:17 - 04621312 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0414.dll
2015-04-22 12:21 - 2014-10-29 04:17 - 04620288 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0816.dll
2015-04-22 12:21 - 2014-10-29 04:16 - 04621312 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0010.dll
2015-04-22 12:21 - 2014-10-29 04:16 - 04616704 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0416.dll
2015-04-22 12:21 - 2014-10-29 04:16 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2015-04-22 12:21 - 2014-10-29 04:11 - 00435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswmdm.dll
2015-04-22 12:21 - 2014-10-29 04:10 - 00933376 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-04-22 12:21 - 2014-10-29 04:08 - 00390656 _____ (Microsoft Corporation) C:\WINDOWS\system32\difxapi.dll
2015-04-22 12:21 - 2014-10-29 04:07 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2015-04-22 12:21 - 2014-10-29 04:06 - 02902016 _____ (Microsoft Corporation) C:\WINDOWS\system32\themeui.dll
2015-04-22 12:21 - 2014-10-29 04:06 - 01313792 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2015-04-22 12:21 - 2014-10-29 04:06 - 00235008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAC3ENC.DLL
2015-04-22 12:21 - 2014-10-29 04:05 - 00679424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2015-04-22 12:21 - 2014-10-29 04:03 - 02334720 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2015-04-22 12:21 - 2014-10-29 04:00 - 01861632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2015-04-22 12:21 - 2014-10-29 04:00 - 00652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2015-04-22 12:21 - 2014-10-29 04:00 - 00642560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apphelp.dll
2015-04-22 12:21 - 2014-10-29 03:59 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2015-04-22 12:21 - 2014-10-29 03:57 - 02592256 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2015-04-22 12:21 - 2014-10-29 03:57 - 01479168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsecedit.dll
2015-04-22 12:21 - 2014-10-29 03:57 - 01038336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aclui.dll |