Hier die Addition.txt : Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-04-2015
Ran by Henri at 2015-04-11 19:48:20
Running from E:\
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.22.1 - Mirillis)
ActivePresenter (HKLM-x32\...\{A2A40277-D807-4754-95A3-2F294C2C51D3}_is1) (Version: 4.0.3 - Atomi Systems, Inc.)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Photoshop Elements 12 (HKLM-x32\...\Adobe Photoshop Elements 12) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 12 (HKLM\...\PremElem120) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Premiere Elements 12 (Version: 12.0 - Adobe Systems Incorporated) Hidden
AION Free-to-Play (HKLM-x32\...\{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1) (Version: - Gameforge)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 4.8.1245.73583 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 4.8.1245.73583 - Alcor Micro Corp.) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Amazon 1Button App (HKLM-x32\...\{0A7D6F3C-F2AB-48ED-BE23-99791BFF87D6}) (Version: 1.0.0.4 - Amazon)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
AVIcodec (remove only) (HKLM-x32\...\AVIcodec) (Version: - )
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.23831 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Blender (HKLM\...\Blender) (Version: 2.71 - Blender Foundation)
Brick-Force (HKLM-x32\...\{9853ABB2-6416-4C87-8650-DD8E528FF564}}_is1) (Version: 3.19.331.104.16 - Infernum Productions AG)
Camtasia Studio 8 (HKLM-x32\...\{19F81C0C-D0DB-453D-9C1C-AD26C4140E7E}) (Version: 8.4.0.1691 - TechSmith Corporation)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.77.0.2015 - Georgy Berdyshev)
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Convert AVI to MP4 1.3 (HKLM-x32\...\{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1) (Version: - convertavitomp3.com)
DTS Studio Sound (HKLM-x32\...\{2DFA9084-CEB3-4A48-B9F7-9038FEF1B8F4}) (Version: 1.01.2700 - DTS, Inc.)
Dxtory version 2.0.126 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.126 - ExKode Co. Ltd.)
Elements 12 Organizer (x32 Version: 12.0 - Ihr Firmenname) Hidden
Emergency 2012 (HKLM-x32\...\Emergency 2012) (Version: - Quadriga Games GmbH)
Empress of the Deep - The Darkest Secret (x32 Version: 2.2.0.98 - WildTangent) Hidden
Evernote (HKLM-x32\...\Evernote) (Version: 1.0.0 - Evernote Launcher by Toshiba Europe GmbH)
Flight Simulator X (HKLM-x32\...\RTMshadow_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: - )
Flight Simulator X Service Pack 1 (HKLM-x32\...\SP1shadow_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: - )
Fraps (HKLM-x32\...\Fraps) (Version: - )
Free AVI Video Converter version 5.0.45.806 (HKLM-x32\...\Free AVI Video Converter_is1) (Version: 5.0.45.806 - DVDVideoSoft Ltd.)
Gameforge Live 2.0.6 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.6 - Gameforge)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
IDT Audio Driver (HKLM\...\{588A747E-CFF6-46B3-9207-CD754F9473AF}) (Version: 6.10.6491.0 - IDT)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3308 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) 4.0 (HKLM-x32\...\{38561F82-2984-4C99-ADD7-D1166BC3D552}) (Version: 3.0.1335.05 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{72814a2c-2e03-4a50-b30a-43e7884b3934}) (Version: 16.5.1 - Intel Corporation)
Island Tribe (x32 Version: 2.2.0.98 - WildTangent) Hidden
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java SE Development Kit 7 Update 25 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170250}) (Version: 1.7.0.250 - Oracle)
Java SE Development Kit 8 Update 31 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180310}) (Version: 8.0.310.13 - Oracle Corporation)
Jewel Quest Solitaire 2 (x32 Version: 2.2.0.98 - WildTangent) Hidden
LoiLo Game Recorder (HKLM\...\{89E4163C-BD19-45A9-BCEB-980741786799}_is1) (Version: 1.1.0.0 - LoiLo inc.)
LoiLoScope 2 (HKLM-x32\...\{CAB75FFC-2377-4B95-A8FA-C9234B812A92}_is1) (Version: 2.5.3.2 - LoiLo inc)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
MAGIX Samplitude Music Studio 2015 (HKLM\...\MX.{B9FB1B8D-4603-452A-9A34-2B0BC4477ED0}) (Version: 21.0.0.22 - MAGIX Software GmbH)
MAGIX Samplitude Music Studio 2015 (Version: 21.0.0.22 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{529ADB83-3FEE-4568-83EF-4283E49FAF80}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
Malwarebytes Anti-Malware Version 2.1.4.1018 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
MeatWater FO Altitude Callouts v1.0 (HKLM-x32\...\MeatWater FO Altitude Callouts v1.0) (Version: - )
Microsoft Flight Simulator X Demo (HKLM-x32\...\InstallShield_{B98A34C0-A6A2-4087-B272-557C1C6D0A07}) (Version: 10.0.60905 - Microsoft Game Studios)
Microsoft Flight Simulator X: Acceleration (HKLM-x32\...\FlightSim_{7D606567-5047-451A-B49E-29FCB6012B4E}) (Version: 10.0.61637.0 - Microsoft Game Studios)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4701.1002 - Microsoft Corporation)
Microsoft Office Home and Student 2013 - de-de (HKLM\...\HomeStudentRetail - de-de) (Version: 15.0.4701.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3357424858-834020624-2438156494-1002\...\OneDriveSetup.exe) (Version: 17.3.4726.0226 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d07b0db5-8dad-40e1-be90-88026298a46b}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{2749c485-3a8b-4533-92ff-7cf6e8221cff}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 36.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 36.0.1 (x86 de)) (Version: 36.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
MSXML 4.0 SP2 Parser und SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.2 - Notepad++ Team)
NVIDIA GeForce Experience 2.1.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.4 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.52 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4701.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4701.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4701.1002 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.3.6.4639 - Electronic Arts, Inc.)
Peggle Nights (x32 Version: 2.2.0.98 - WildTangent) Hidden
Pixum Fotobuch (HKLM-x32\...\Pixum Fotobuch) (Version: 5.1.7 - CEWE Stiftung u Co. KGaA)
PlanetSide 2 (HKU\S-1-5-21-3357424858-834020624-2438156494-1002\...\SOE-PlanetSide 2 PSG) (Version: 1.0.3.183 - Sony Online Entertainment)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
PRE12 STI 64Installer (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PSE12 STI Installer (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version: - )
SHIELD Streaming (Version: 3.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.65 - NVIDIA Corporation) Hidden
SimCity 4 Deluxe (HKLM-x32\...\{3F0D0ABE-CDAF-431A-00BC-CBBE018EA74E}) (Version: - )
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.5.1333.g822e0de8 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.10.51 - Synaptics Incorporated)
TOSHIBA Addendum (HKLM-x32\...\{C1569944-FAD6-4B3B-85E5-C213C2FF8EFC}) (Version: 1.00 - TOSHIBA)
TOSHIBA Desktop Assist (HKLM\...\{95CCACF0-010D-45F0-82BF-858643D8BC02}) (Version: 1.02.01.6407 - Toshiba Corporation)
TOSHIBA Display Utility (HKLM\...\{5F6AC07E-50EF-422E-B56E-6521E5B35139}) (Version: 1.1.12.0 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.2.0.6404 - Toshiba Corporation)
TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.1.0001.6403 - Toshiba Corporation)
TOSHIBA HDD Protection (HKLM\...\{94A90C69-71C1-470A-88F5-AA47ECC96B40}) (Version: 2.5.0003.64001 - Toshiba Corporation)
TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.10 - TOSHIBA)
TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{78931270-BC9E-441A-A52B-73ECD4ACFAB5}) (Version: 3.00.346 - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.9.09.6400 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.1.02.55065006 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{FBFCEEA5-96EA-4C8E-9262-43CBBEBAE413}) (Version: 2.6.8 - Toshiba Corporation)
TOSHIBA Start Screen Option (HKLM\...\{06B71035-F19F-4F76-9875-FFCCD4FC3F83}) (Version: 1.00.00.6403 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0030 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.1.2.32001 - Toshiba Corporation)
Toshiba TEMPRO (HKLM-x32\...\{F76F5214-83A8-4030-80C9-1EF57391D72A}) (Version: 4.5.0 - Toshiba Europe GmbH)
TOSHIBA VIDEO PLAYER (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 5.3.27.102 - Toshiba Corporation)
Unity Web Player (HKU\S-1-5-21-3357424858-834020624-2438156494-1002\...\UnityWebPlayer) (Version: 4.5.2f1 - Unity Technologies ApS)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.98 - WildTangent) Hidden
Vokabel Trainer 5 (HKLM-x32\...\{5E0D2061-86AB-4B83-A671-A0BF3FF1537B}_is1) (Version: - Manuel Wäschle)
War Thunder Launcher 1.0.1.370 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.9.7 - WildTangent) Hidden
WinRAR 5.10 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
XnView 2.25 (HKLM-x32\...\XnView_is1) (Version: 2.25 - Gougelet Pierre-e)
YTDownloader (HKLM-x32\...\YTDownloader) (Version: - YTDownloader)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3357424858-834020624-2438156494-1002_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-3357424858-834020624-2438156494-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Henri\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncApi64.dll No File
==================== Restore Points =========================
27-03-2015 13:48:07 Windows Update
27-03-2015 13:52:11 Windows Modules Installer
04-04-2015 18:38:50 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 15:25 - 2015-04-10 21:49 - 00000826 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {00757E04-5D01-4C9C-86BA-D01F3CB1E04D} - System32\Tasks\{B2003DBE-5ECF-44DF-BA9E-ACD6BA706063} => pcalua.exe -a C:\Users\Henri\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=cvs5 <==== ATTENTION
Task: {03F3D335-5BF2-45AF-90F5-B4CE4B0DE0A9} - \SPBIW_UpdateTask_Time_323235323232383332352d2a37455a2d6c34325b343241 No Task File <==== ATTENTION
Task: {12D8E6FC-A356-4FAA-AFDF-77B01911C3D5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-21] (Google Inc.)
Task: {161EA753-DC7C-4C65-8CEB-C4B7BC8F74BD} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-02-10] (Microsoft Corporation)
Task: {192C2C5A-5F03-4A77-A737-C8051A2E538A} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 <==== ATTENTION
Task: {1A205E05-C783-4A77-857E-E15B26CD74A3} - \SmartWeb Upgrade Trigger Task No Task File <==== ATTENTION
Task: {1FE71167-5E3A-40A8-BFDE-38E62BDD230F} - \Run_Bobby_Browser No Task File <==== ATTENTION
Task: {23712B96-D867-4625-B249-3D31787BA7F9} - System32\Tasks\FellowSky\FellowSky => C:\ProgramData\FellowSky\FellowSky.exe
Task: {239D23D7-8244-4C1D-BE81-DC94D2813FBB} - System32\Tasks\Microsoft Office 15 Sync Maintenance for HENRISPC-Henri HenrisPC => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2015-02-10] (Microsoft Corporation)
Task: {288DDF0C-3A05-458B-89C9-99489B42272F} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION
Task: {315F7FD2-C9CB-4A16-ACBA-DC3E174393F9} - \RocketTab Update Task No Task File <==== ATTENTION
Task: {34093FFF-B4EB-4B41-B25A-D9B254F977E6} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2013-07-19] (Toshiba Europe GmbH)
Task: {39D75266-CFDF-428F-87DA-50888A8489D2} - System32\Tasks\LaunchSignup => C:\Program Files (x86)\MyPC Backup\Signup Wizard.exe <==== ATTENTION
Task: {3FF88A4A-F6D0-459B-9BCA-5BEE6C2896A4} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {4F4E6F5A-DDC7-4948-AEEB-BAF9C0952632} - \ShopperPro No Task File <==== ATTENTION
Task: {5483EB74-C953-4CCD-B6F7-0D8305F2B0B0} - System32\Tasks\VFJXD => C:\Users\Henri\AppData\Roaming\VFJXD.exe <==== ATTENTION
Task: {581696C7-FA0C-4D29-9E59-DCDE16C52362} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-24] (Microsoft Corporation)
Task: {5D513F8B-28C9-4B22-9792-CC167C198EA8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-06-21] (Google Inc.)
Task: {6205D6BC-E784-4F12-92AF-3E92FDE4939A} - \Inst_Rep No Task File <==== ATTENTION
Task: {69AD1995-812D-40F4-B266-338369FB4893} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3357424858-834020624-2438156494-1002 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
Task: {75EDA37B-8AAC-429F-9595-0ADB42A19FAF} - System32\Tasks\SMWUpd => C:\Program Files\Common Files\Goobzo\GBUpdate\updater.exe <==== ATTENTION
Task: {772F44F2-86B2-45B7-95DD-A0DDC9B9CBE8} - \RocketTab No Task File <==== ATTENTION
Task: {845F9F48-D310-4991-8940-06A8D4125843} - System32\Tasks\YTDownloaderUpd => C:\Program Files (x86)\YTDownloader\updater.exe [2015-01-08] (Goobzo) <==== ATTENTION
Task: {869C5F60-C899-41A0-AAE0-F7F2C01F8D3C} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-02-10] (Microsoft Corporation)
Task: {86DC4442-4BE2-4B89-A8E5-1D5E857A5579} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-02-10] (Microsoft Corporation)
Task: {87C16941-EC86-4790-85E0-56705A28F2AC} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-03-12] (Microsoft Corporation)
Task: {8CD1DD30-564F-438E-9F9A-94B84ED6CB66} - System32\Tasks\{7A1FFECD-5069-45E0-859C-70D5F5B8E39B} => pcalua.exe -a D:\autorun.exe -d D:\
Task: {93A8366E-FB24-48CB-9EEE-8E3CC9C2FAB3} - System32\Tasks\YTDownloader => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [2015-01-08] (YTDownloader) <==== ATTENTION
Task: {978B77B9-9733-490C-AC36-C348830F6EFC} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION
Task: {A307EB28-34F3-4948-8A60-926519343D83} - System32\Tasks\RunTool => C:\Users\Henri\AppData\Local\b87e75da-4bb6-402f-95ff-d6d7b29b13fe\sysad.exe
Task: {A780920A-2027-4FE7-AC46-21E6FE769215} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {ABB6D3DA-457A-4780-9889-7D29D7670901} - System32\Tasks\CTNLRTB => C:\Users\Henri\AppData\Roaming\CTNLRTB.exe <==== ATTENTION
Task: {AC795CF9-F796-44C8-BFF1-CEC688A6C9D7} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2013-07-31] (TOSHIBA Corporation)
Task: {B623585A-57E4-4E20-ABBA-43097072EAF6} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe [2013-11-09] (TOSHIBA Corporation)
Task: {BF46CB27-0BBC-47C9-B2BB-0E0E81ACAC29} - \SMW_UpdateTask_Time_323235323232383332352d2a37455a2d6c34325b343241 No Task File <==== ATTENTION
Task: {C45BFA42-444D-437B-8C58-2BA0FED1C636} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-24] (Microsoft Corporation)
Task: {CA96C9C9-51D2-49F1-A15E-DA5D91D16D05} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-3357424858-834020624-2438156494-1002
Task: {D548AB79-24C7-491A-A845-51A8D381EBD9} - \SPDriver No Task File <==== ATTENTION
Task: {DA64DC73-420E-4B37-81D2-FDA94615652E} - \ShopperProJSUpd No Task File <==== ATTENTION
Task: {DD6255FD-0A48-4C3F-AD81-AA345D857F28} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-Henri.doerrstein@outlook.de => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-06-03] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\CTNLRTB.job => C:\Users\Henri\AppData\Roaming\CTNLRTB.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\VFJXD.job => C:\Users\Henri\AppData\Roaming\VFJXD.exe <==== ATTENTION
==================== Loaded Modules (whitelisted) ==============
2013-03-27 22:53 - 2013-03-27 22:53 - 00163168 _____ () C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
2015-01-08 16:08 - 2015-01-08 16:08 - 00022376 _____ () C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe
2014-06-24 19:06 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-09-10 22:54 - 2013-09-10 22:54 - 00019792 _____ () C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
2014-09-30 14:02 - 2014-09-30 14:02 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2014-01-15 05:39 - 2015-02-05 23:01 - 00012104 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-01-15 05:40 - 2015-02-05 21:07 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-07-19 04:38 - 2012-07-19 04:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2013-08-02 00:24 - 2013-08-02 00:24 - 00438112 _____ () C:\Program Files\TOSHIBA\Hotkey\Hotkey\TcrdKBB.exe
2014-01-15 05:34 - 2013-09-04 02:52 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-12-11 18:32 - 2014-12-06 03:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
2014-12-11 18:32 - 2014-12-06 03:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
2014-01-15 05:39 - 2015-02-05 23:01 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-12-11 18:32 - 2014-12-06 03:50 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
2014-12-11 18:32 - 2014-12-06 03:50 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\Henri\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CMWFP => ""="Driver" <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3357424858-834020624-2438156494-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Henri\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-3357424858-834020624-2438156494-1002\...\StartupApproved\Run: => "Raptr"
==================== Accounts: =============================
Administrator (S-1-5-21-3357424858-834020624-2438156494-500 - Administrator - Disabled)
Gast (S-1-5-21-3357424858-834020624-2438156494-501 - Limited - Enabled) => C:\Users\Gast
Henri (S-1-5-21-3357424858-834020624-2438156494-1002 - Administrator - Enabled) => C:\Users\Henri
HomeGroupUser$ (S-1-5-21-3357424858-834020624-2438156494-1004 - Limited - Enabled)
==================== Faulty Device Manager Devices =============
Name: Qualcomm Atheros AR8171/8175 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
Description: Qualcomm Atheros AR8171/8175 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros
Service: L1C
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/11/2015 07:36:43 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HENRISPC)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (04/11/2015 07:36:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WWAHost.exe, Version: 6.3.9600.17415, Zeitstempel: 0x545036ce
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17415, Zeitstempel: 0x54505737
Ausnahmecode: 0x00000004
Fehleroffset: 0x0000000000008b9c
ID des fehlerhaften Prozesses: 0x22f8
Startzeit der fehlerhaften Anwendung: 0xWWAHost.exe0
Pfad der fehlerhaften Anwendung: WWAHost.exe1
Pfad des fehlerhaften Moduls: WWAHost.exe2
Berichtskennung: WWAHost.exe3
Vollständiger Name des fehlerhaften Pakets: WWAHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WWAHost.exe5
Error: (04/11/2015 07:24:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ElementsAutoAnalyzer.exe, Version: 12.0.0.0, Zeitstempel: 0x5224d967
Name des fehlerhaften Moduls: dvamarshal.dll, Version: 11.0.0.0, Zeitstempel: 0x5224d681
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000034961
ID des fehlerhaften Prozesses: 0x2350
Startzeit der fehlerhaften Anwendung: 0xElementsAutoAnalyzer.exe0
Pfad der fehlerhaften Anwendung: ElementsAutoAnalyzer.exe1
Pfad des fehlerhaften Moduls: ElementsAutoAnalyzer.exe2
Berichtskennung: ElementsAutoAnalyzer.exe3
Vollständiger Name des fehlerhaften Pakets: ElementsAutoAnalyzer.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ElementsAutoAnalyzer.exe5
Error: (04/11/2015 07:21:56 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HENRISPC)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (04/11/2015 07:21:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WWAHost.exe, Version: 6.3.9600.17415, Zeitstempel: 0x545036ce
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17415, Zeitstempel: 0x54505737
Ausnahmecode: 0x00000004
Fehleroffset: 0x0000000000008b9c
ID des fehlerhaften Prozesses: 0x1878
Startzeit der fehlerhaften Anwendung: 0xWWAHost.exe0
Pfad der fehlerhaften Anwendung: WWAHost.exe1
Pfad des fehlerhaften Moduls: WWAHost.exe2
Berichtskennung: WWAHost.exe3
Vollständiger Name des fehlerhaften Pakets: WWAHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WWAHost.exe5
Error: (04/11/2015 07:20:39 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005
Error: (04/11/2015 10:48:12 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HENRISPC)
Description: Bei der Aktivierung der App „winstore_cw5n1h2txyewy!Windows.Store“ ist folgender Fehler aufgetreten: -2147023170. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (04/11/2015 10:48:11 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WWAHost.exe, Version: 6.3.9600.17415, Zeitstempel: 0x545036ce
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.17415, Zeitstempel: 0x54505737
Ausnahmecode: 0x00000004
Fehleroffset: 0x0000000000008b9c
ID des fehlerhaften Prozesses: 0x1960
Startzeit der fehlerhaften Anwendung: 0xWWAHost.exe0
Pfad der fehlerhaften Anwendung: WWAHost.exe1
Pfad des fehlerhaften Moduls: WWAHost.exe2
Berichtskennung: WWAHost.exe3
Vollständiger Name des fehlerhaften Pakets: WWAHost.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: WWAHost.exe5
Error: (04/11/2015 10:41:35 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -2143485919
Error: (04/11/2015 10:41:35 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0021; CorrelationId: {F0B743F9-555C-46EA-8B2B-C68D02615358}
System errors:
=============
Error: (04/10/2015 09:59:09 PM) (Source: DCOM) (EventID: 10010) (User: HENRISPC)
Description: {2A563926-CF4B-4363-A760-F71E46205B7E}
Error: (04/10/2015 09:58:39 PM) (Source: DCOM) (EventID: 10010) (User: HENRISPC)
Description: {2A563926-CF4B-4363-A760-F71E46205B7E}
Error: (04/10/2015 09:19:57 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "xTCdmlGl" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (04/10/2015 09:19:57 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst xTCdmlGl erreicht.
Error: (04/10/2015 09:19:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Update Browser Good" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (04/10/2015 08:07:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Update Browser Good" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (04/10/2015 08:07:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Update Browser Good" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/10/2015 08:07:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Update Browser Good" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/10/2015 08:07:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Util Browser Good" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (04/10/2015 01:47:56 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 40. Der Windows-SChannel-Fehlerstatus lautet: 252.
Microsoft Office Sessions:
=========================
Error: (04/11/2015 07:36:43 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HENRISPC)
Description: winstore_cw5n1h2txyewy!Windows.Store-2147023170
Error: (04/11/2015 07:36:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WWAHost.exe6.3.9600.17415545036ceKERNELBASE.dll6.3.9600.1741554505737000000040000000000008b9c22f801d0747e11abf7f5C:\Windows\System32\WWAHost.exeC:\Windows\system32\KERNELBASE.dll4f646fb4-e071-11e4-82e5-a088690899bcwinstore_1.0.0.0_neutral_neutral_cw5n1h2txyewyWindows.Store
Error: (04/11/2015 07:24:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: ElementsAutoAnalyzer.exe12.0.0.05224d967dvamarshal.dll11.0.0.05224d681c00000050000000000034961235001d0747beca5d481C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exeC:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\dvamarshal.dll9904f637-e06f-11e4-82e5-a088690899bc
Error: (04/11/2015 07:21:56 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HENRISPC)
Description: winstore_cw5n1h2txyewy!Windows.Store-2147023170
Error: (04/11/2015 07:21:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: WWAHost.exe6.3.9600.17415545036ceKERNELBASE.dll6.3.9600.1741554505737000000040000000000008b9c187801d0747c00e8a3c6C:\Windows\System32\WWAHost.exeC:\Windows\system32\KERNELBASE.dll3efd3010-e06f-11e4-82e5-a088690899bcwinstore_1.0.0.0_neutral_neutral_cw5n1h2txyewyWindows.Store
Error: (04/11/2015 07:20:39 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005
Error: (04/11/2015 10:48:12 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: HENRISPC)
Description: winstore_cw5n1h2txyewy!Windows.Store-2147023170
Error: (04/11/2015 10:48:11 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: WWAHost.exe6.3.9600.17415545036ceKERNELBASE.dll6.3.9600.1741554505737000000040000000000008b9c196001d074343d6e3c01C:\Windows\System32\WWAHost.exeC:\Windows\system32\KERNELBASE.dll7b24514b-e027-11e4-82e5-a088690899bcwinstore_1.0.0.0_neutral_neutral_cw5n1h2txyewyWindows.Store
Error: (04/11/2015 10:41:35 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -2143485919
Error: (04/11/2015 10:41:35 AM) (Source: Microsoft Office 15) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0021; CorrelationId: {F0B743F9-555C-46EA-8B2B-C68D02615358}
CodeIntegrity Errors:
===================================
Date: 2015-04-11 10:30:43.397
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-11 10:30:43.100
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-11 10:30:42.608
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-11 10:30:42.186
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-11 10:30:41.553
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-11 10:30:41.162
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-11 10:30:40.756
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-11 10:30:40.334
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-11 10:30:39.865
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2015-04-11 10:30:39.436
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-4700MQ CPU @ 2.40GHz
Percentage of memory in use: 14%
Total physical RAM: 16295.95 MB
Available physical RAM: 13993.65 MB
Total Pagefile: 18727.95 MB
Available Pagefile: 16000.19 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
==================== Drives ================================
Drive c: (TI31252400A) (Fixed) (Total:919.71 GB) (Free:134.67 GB) NTFS
Drive d: (Galileo-Press) (CDROM) (Total:2.42 GB) (Free:0 GB) CDFS
Drive e: (TOSHIBA EXT) (Fixed) (Total:931.41 GB) (Free:551.93 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: FB218FEE)
Partition 1: (Active) - (Size=931.4 GB) - (Type=07 NTFS)
==================== End Of Log ============================ Die nächste ist etwas zu groß für einen Beitrag ... Ich muss sie aufteilen.
Die Frst.txt 1.Teil Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-04-2015
Ran by Henri (administrator) on HENRISPC on 11-04-2015 19:45:21
Running from E:\
Loaded Profiles: Henri (Available profiles: Henri & Gast)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
() C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\System32\PnkBstrA.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Goobzo) C:\Program Files (x86)\YTDownloader\BrowserHelper.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(TOSHIBA Corporation) C:\Program Files (x86)\TOSHIBA\System Setting\TssSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(TOSHIBA Corporation) C:\Windows\System32\ThpSrv.exe
() C:\Program Files\TOSHIBA\Hotkey\Hotkey\TCrdKBB.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(YTDownloader) C:\Program Files (x86)\YTDownloader\YTDownloader.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(TOSHIBA) C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(Goobzo) C:\Program Files (x86)\YTDownloader\BrowserHelper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296520 2013-09-12] (TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [178016 2013-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [354144 2013-08-14] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-08-18] (TOSHIBA Corporation)
HKLM\...\Run: [ThpSrv] => C:\Windows\system32\thpsrv /logon
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2464072 2014-11-06] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-06-03] (Adobe Systems Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2778864 2014-08-06] (Synaptics Incorporated)
HKLM\...\Run: [3D BubbleSound] => "C:\Program Files\BubbleSound\3D BubbleSound.exe"
HKLM-x32\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [383768 2002-04-12] (Alcor Micro Corp.)
HKLM-x32\...\Run: [1.TPUReg] => C:\Program Files (x86)\TOSHIBA\PasswordUtility\readLM.exe [2216800 2013-03-27] (TOSHIBA)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516512 2013-07-23] (TOSHIBA)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [508800 2014-12-17] (Oracle Corporation)
HKLM-x32\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988968 2015-01-08] (YTDownloader)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3357424858-834020624-2438156494-1002\...\Run: [CAHeadless] => C:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe [1400224 2013-09-03] (Adobe Systems Incorporated)
HKU\S-1-5-21-3357424858-834020624-2438156494-1002\...\Run: [DeskBar] => C:\Users\Henri\AppData\Local\DeskBar\DeskBar.exe
HKU\S-1-5-21-3357424858-834020624-2438156494-1002\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988968 2015-01-08] (YTDownloader)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [177624 2015-02-05] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [164752 2015-02-05] (NVIDIA Corporation)
AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [164752 2015-02-05] (NVIDIA Corporation)
IFEO\b9eg190.exe: [Debugger] TaskList.exe
IFEO\bbqleads.exe: [Debugger] TaskList.exe
IFEO\bbqleadsapplication.exe: [Debugger] TaskList.exe
IFEO\bbqleadsservice.exe: [Debugger] TaskList.exe
IFEO\bbqquotes.exe: [Debugger] TaskList.exe
IFEO\ContentExplorer.exe: [Debugger] TaskList.exe
IFEO\donutleads.exe: [Debugger] TaskList.exe
IFEO\donutquotes.exe: [Debugger] TaskList.exe
IFEO\internetenhancer.exe: [Debugger] TaskList.exe
IFEO\internetenhancerservice.exe: [Debugger] TaskList.exe
IFEO\pastaleads.exe: [Debugger] TaskList.exe
IFEO\pastaquotes.exe: [Debugger] TaskList.exe
IFEO\spyhunter.exe: [Debugger] TaskList.exe
IFEO\theanswerfinder.exe: [Debugger] TaskList.exe
IFEO\wajam.exe: [Debugger] TaskList.exe
IFEO\wajaminternetenhancer.exe: [Debugger] TaskList.exe
IFEO\WajamInternetEnhancerApp.exe: [Debugger] TaskList.exe
IFEO\WajamInternetEnhancerAppservice.exe: [Debugger] TaskList.exe
IFEO\wajaminternetenhancerservice.exe: [Debugger] TaskList.exe
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-3357424858-834020624-2438156494-1002] => http=127.0.0.1:51168;https=127.0.0.1:51168
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-3357424858-834020624-2438156494-1002\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://toshiba.eu/symbaloo_c
HKU\S-1-5-21-3357424858-834020624-2438156494-1002\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://toshiba.eu/symbaloo_c
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3357424858-834020624-2438156494-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3357424858-834020624-2438156494-1002 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL =
SearchScopes: HKU\S-1-5-21-3357424858-834020624-2438156494-1002 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2015-02-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-02-13] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-02-10] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-13] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Winsock: Catalog9 01 C:\Windows\SysWOW64\VCL.dll [335064] (VC Corporation)
Winsock: Catalog9 02 C:\Windows\SysWOW64\VCL.dll [335064] (VC Corporation)
Winsock: Catalog9 03 C:\Windows\SysWOW64\VCL.dll [335064] (VC Corporation)
Winsock: Catalog9 04 C:\Windows\SysWOW64\VCL.dll [335064] (VC Corporation)
Winsock: Catalog9 16 C:\Windows\SysWOW64\VCL.dll [335064] (VC Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF ProfilePath: C:\Users\Henri\AppData\Roaming\Mozilla\Firefox\Profiles\pcm5uf3g.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll [2014-06-24] ()
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Windows\system32\npDeployJava1.dll [2015-02-13] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-13] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll [2014-06-24] ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll [2014-09-01] (EA Digital Illusions CE AB)
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2014-12-03] (EA Digital Illusions CE AB)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-06-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll [2014-11-16] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] ()
FF Plugin HKU\S-1-5-21-3357424858-834020624-2438156494-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Henri\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-07-07] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Henri\AppData\Roaming\Mozilla\Firefox\Profiles\pcm5uf3g.default\searchplugins\google-images.xml [2014-12-29]
FF SearchPlugin: C:\Users\Henri\AppData\Roaming\Mozilla\Firefox\Profiles\pcm5uf3g.default\searchplugins\google-maps.xml [2014-12-29]
FF Extension: Avira Browser Safety - C:\Users\Henri\AppData\Roaming\Mozilla\Firefox\Profiles\pcm5uf3g.default\Extensions\abs@avira.com [2015-04-05]
FF Extension: superstartenjoyfreewareorg - C:\Users\Henri\AppData\Roaming\Mozilla\Firefox\Profiles\pcm5uf3g.default\Extensions\superstart@enjoyfreeware.org [2015-01-15]
FF Extension: ea4637dce0144c179c2c879322d23268 - C:\Users\Henri\AppData\Roaming\Mozilla\Firefox\Profiles\pcm5uf3g.default\Extensions\{ea4637dc-e014-4c17-9c2c-879322d23268} [2015-04-04]
Chrome:
=======
CHR HomePage: Default -> ?type=hppp
CHR StartupUrls: Default -> "?type=hppp"
CHR DefaultSearchKeyword: Default ->
CHR DefaultSearchURL: Default -> web/?type=dspp&q={searchTerms}
CHR Profile: C:\Users\Henri\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (No Name) - C:\Users\Henri\AppData\Local\Google\Chrome\User Data\Default\Extensions\papbadoldddalgcjcicnikcfenodpghp [2015-04-10]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeActiveFileMonitor12.0; C:\Program Files (x86)\Adobe\Elements 12 Organizer\PhotoshopElementsFileAgent.exe [181152 2013-09-03] (Adobe Systems Incorporated)
R2 BrsHelper; C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe [22376 2015-01-08] ()
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2714800 2015-02-10] (Microsoft Corporation)
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-09-10] ()
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-11-06] (NVIDIA Corporation)
R2 GFNEXSrv; C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe [163168 2013-03-27] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-04] (Intel Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2013-08-23] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-11-06] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19819848 2014-11-06] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1930608 2015-04-05] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-09-30] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-09-29] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [339456 2013-08-16] (IDT, Inc.) [File not signed]
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [116088 2013-07-19] (Toshiba Europe GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3667696 2013-08-23] (Intel® Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 BthLEEnum; C:\Windows\System32\drivers\BthLEEnum.sys [226304 2013-12-04] (Microsoft Corporation)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [44296 2015-01-20] (LogMeIn Inc.)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [117192 2013-08-29] (Intel Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-04-11] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-03-17] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R3 NETwNb64; C:\Windows\system32\DRIVERS\NETwbw02.sys [3589600 2013-09-25] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2014-11-06] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38216 2014-10-03] (NVIDIA Corporation)
R2 PEGAGFN; C:\Program Files (x86)\TOSHIBA\PasswordUtility\PEGAGFN.sys [14344 2009-09-11] (PEGATRON)
R0 PxHlpa64; C:\Windows\System32\drivers\PxHlpa64.sys [56336 2013-07-19] (Corel Corporation)
S3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [1936088 2013-07-31] (Realtek Semiconductor Corporation )
R2 sbmntr; C:\Program Files (x86)\YTDownloader\sbmntr.sys [58728 2015-01-08] (YTDownloader)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2014-08-06] (Synaptics Incorporated)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [32624 2013-08-19] (Windows (R) Win 7 DDK provider)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)
S3 X6va019; \??\C:\Windows\SysWOW64\Drivers\X6va019 [X]
S3 X6va022; \??\C:\Windows\SysWOW64\Drivers\X6va022 [X]
S3 X6va029; \??\C:\Windows\SysWOW64\Drivers\X6va029 [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-11 19:44 - 2015-04-11 19:45 - 00000000 ____D () C:\FRST
2015-04-10 21:52 - 2015-04-11 10:34 - 00000000 ____D () C:\Users\Henri\AppData\Local\Adobe
2015-04-10 21:24 - 2015-04-11 19:21 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-10 21:23 - 2015-04-10 21:23 - 00001125 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-10 21:23 - 2015-04-10 21:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-10 21:23 - 2015-04-10 21:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-10 21:23 - 2015-04-10 21:23 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-04-10 21:23 - 2015-03-17 06:15 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-10 21:23 - 2015-03-17 06:15 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-04-10 21:23 - 2015-03-17 06:15 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-04-10 21:22 - 2015-04-10 21:23 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Henri\Downloads\mbam-setup-2.1.4.1018.exe
2015-04-10 21:21 - 2015-04-10 21:21 - 00000000 ____D () C:\Users\Henri\AppData\Local\NVIDIA Corporation
2015-04-10 21:21 - 2015-04-10 21:21 - 00000000 ____D () C:\Users\Henri\AppData\Local\Mozilla
2015-04-10 21:19 - 2015-04-11 10:20 - 00000000 ____D () C:\Users\Henri\AppData\Local\BrowserHelper
2015-04-10 21:19 - 2015-04-10 21:19 - 00000000 ____D () C:\Users\Henri\AppData\Local\VirtualStore
2015-04-10 20:42 - 2015-04-10 20:42 - 02532606 _____ () C:\Users\Henri\Downloads\manus_ww2_package_1.7.10b_for_flan_4.5.1.zip
2015-04-10 20:42 - 2015-04-10 20:42 - 02081701 _____ () C:\Users\Henri\Downloads\manus_modern_warfare_package_1.7.10b_for_flan_4.5.1.zip
2015-04-10 20:40 - 2015-04-10 20:40 - 02504707 _____ () C:\Users\Henri\Downloads\manus_civil_package_1.7.10b_for_flan_4.5.1.zip
2015-04-10 20:40 - 2015-04-10 20:40 - 02504707 _____ () C:\Users\Henri\Downloads\manus_civil_package_1.7.10b_for_flan_4.5.1 (1).zip
2015-04-10 20:37 - 2015-04-10 20:37 - 03500894 _____ () C:\Users\Henri\Downloads\manus_civil_package_1.6.4a.zip
2015-04-10 20:33 - 2015-04-10 20:33 - 00000516 _____ () C:\Users\Henri\Downloads\14174057389_OpenBlocks-Mod-1.7.10.jar
2015-04-10 20:28 - 2015-04-11 19:36 - 00000000 ____D () C:\Users\Henri\AppData\Local\CrashDumps
2015-04-10 20:10 - 2015-04-10 21:56 - 00000000 __SHD () C:\Users\Henri\AppData\Local\EmieUserList
2015-04-10 20:10 - 2015-04-10 21:56 - 00000000 __SHD () C:\Users\Henri\AppData\Local\EmieSiteList
2015-04-10 20:10 - 2015-04-10 21:56 - 00000000 __SHD () C:\Users\Henri\AppData\Local\EmieBrowserModeList
2015-04-10 20:09 - 2015-04-10 20:09 - 04022778 _____ () C:\Users\Henri\Downloads\Real-Train-Mod-1.7.10 (1).zip
2015-04-10 20:08 - 2015-04-10 21:49 - 00000000 ____D () C:\Program Files (x86)\a72c640a-a168-4987-b6b1-234340b84351
2015-04-10 20:08 - 2015-04-10 20:08 - 00003722 _____ () C:\Windows\System32\Tasks\SMupdate1
2015-04-10 20:07 - 2015-04-10 22:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crossbrowse
2015-04-10 20:07 - 2015-04-10 20:07 - 00003904 _____ () C:\Windows\System32\Tasks\YTDownloaderUpd
2015-04-10 20:07 - 2015-04-10 20:07 - 00003582 _____ () C:\Windows\System32\Tasks\YTDownloader
2015-04-10 20:07 - 2015-04-10 20:07 - 00001972 _____ () C:\Users\Henri\Desktop\YTDownloader.lnk
2015-04-10 20:07 - 2015-04-10 20:07 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro
2015-04-10 20:07 - 2015-04-10 20:07 - 00000000 ____D () C:\Users\Henri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
2015-04-10 20:07 - 2015-04-10 20:07 - 00000000 ____D () C:\Program Files (x86)\YTDownloader
2015-04-10 20:07 - 2015-04-10 20:07 - 00000000 ____D () C:\Program Files (x86)\Crossbrowse
2015-04-10 20:06 - 2015-04-11 19:21 - 00001702 _____ () C:\Windows\Tasks\CTNLRTB.job
2015-04-10 20:06 - 2015-04-11 19:21 - 00001354 _____ () C:\Windows\Tasks\VFJXD.job
2015-04-10 20:06 - 2015-04-10 21:49 - 00000000 ____D () C:\Program Files (x86)\bc2689b2-da48-452d-a6ef-0b034fab0ce9
2015-04-10 20:06 - 2015-04-10 20:06 - 00004710 _____ () C:\Windows\System32\Tasks\CTNLRTB
2015-04-10 20:06 - 2015-04-10 20:06 - 00004360 _____ () C:\Windows\System32\Tasks\VFJXD
2015-04-10 20:05 - 2015-04-10 20:05 - 00003592 _____ () C:\Windows\System32\Tasks\SMWUpd
2015-04-10 11:39 - 2015-04-10 12:02 - 00000000 ____D () C:\Users\Henri\AppData\Roaming\FileZilla
2015-04-10 11:38 - 2015-04-10 11:39 - 09166834 _____ () C:\Users\Henri\Downloads\FileZilla_3.10.3_win32.zip
2015-04-10 11:21 - 2015-04-10 20:01 - 00000000 ____D () C:\ProgramData\T122078ED
2015-04-10 11:16 - 2015-04-10 11:16 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2015-04-10 11:06 - 2015-04-10 11:10 - 00000000 ____D () C:\Users\Henri\Desktop\.Server
2015-04-10 10:53 - 2015-04-10 10:53 - 03199241 _____ () C:\Users\Henri\Downloads\forge-1.7.10-10.13.3.1360-1.7.10-installer-win.exe
2015-04-10 10:36 - 2015-04-10 10:37 - 00773332 _____ (Generic ) C:\Users\Henri\Downloads\FileZilla_3.2.7.1_win32-setup.exe
2015-04-09 19:29 - 2015-04-09 20:05 - 00000000 ____D () C:\Users\Henri\Desktop\Project MTC
2015-04-09 18:18 - 2015-04-09 18:18 - 00000000 ____D () C:\Users\Henri\SupTab
2015-04-04 18:39 - 2015-04-04 18:39 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-04 18:39 - 2015-04-04 18:39 - 00000000 ___SD () C:\Windows\system32\GWX
2015-03-31 12:18 - 2015-03-31 12:18 - 00003766 _____ () C:\Windows\System32\Tasks\RunTool
2015-03-30 12:37 - 2015-03-30 12:37 - 00000000 ____D () C:\Program Files (x86)\predm
2015-03-30 12:31 - 2015-04-10 21:18 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-03-30 12:26 - 2015-03-30 12:26 - 00000000 ____D () C:\Users\Gast\AppData\Local\Crossbrowse
2015-03-30 12:26 - 2015-03-20 15:54 - 00335064 ____N (VC Corporation) C:\Windows\SysWOW64\VCL.dll
2015-03-29 14:49 - 2015-04-11 10:37 - 00000000 ____D () C:\Users\Henri\AppData\Roaming\B6585020-1427633360-81E3-29D3-0C54A5C0620F
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Users\Henri\AppData\Roaming\CTNLRTB
2015-03-26 21:14 - 2015-03-26 21:14 - 00004185 _____ () C:\Users\Henri\AppData\Roaming\VFJXD
2015-03-26 18:47 - 2015-03-26 18:47 - 00001992 _____ () C:\Users\Henri\Desktop\Sync Folder.lnk
2015-03-26 18:04 - 2015-03-11 04:38 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-03-26 18:04 - 2015-03-11 00:08 - 01107456 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-03-26 18:04 - 2015-03-11 00:08 - 00943104 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-03-26 18:04 - 2015-03-11 00:08 - 00760320 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-03-26 18:04 - 2015-03-11 00:08 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-03-26 18:04 - 2015-03-11 00:08 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-03-26 18:04 - 2015-03-11 00:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-03-24 18:47 - 2015-04-10 22:00 - 00000000 ____D () C:\Program Files (x86)\Search Extensions
2015-03-12 23:44 - 2015-03-04 23:24 - 00792032 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-03-12 23:44 - 2015-03-04 23:24 - 00178144 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-03-12 15:36 - 2014-10-29 06:03 - 00116032 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-03-12 15:36 - 2014-10-29 05:59 - 03460472 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2015-03-12 15:36 - 2014-10-29 05:59 - 00014144 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\swenum.sys
2015-03-12 15:36 - 2014-10-29 04:45 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-03-12 15:36 - 2014-10-29 04:22 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-03-12 15:36 - 2014-10-29 04:19 - 03320320 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-03-12 15:36 - 2014-10-29 04:08 - 18822656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-03-12 15:36 - 2014-10-29 04:00 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-03-12 15:36 - 2014-10-29 03:45 - 03607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-03-12 15:36 - 2014-10-29 03:42 - 00325120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-03-12 15:36 - 2014-10-29 03:33 - 15157760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-03-12 15:36 - 2014-10-29 03:17 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-03-12 15:36 - 2014-10-29 03:10 - 02344960 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-03-12 15:36 - 2014-10-29 03:09 - 03557376 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-03-12 15:36 - 2014-10-29 03:02 - 14354944 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-03-12 15:36 - 2014-10-29 02:52 - 15432704 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-03-12 15:36 - 2014-10-29 02:51 - 01554432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-03-12 15:36 - 2014-10-29 02:50 - 12749824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-03-12 15:36 - 2014-10-29 02:46 - 09530368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Search.dll
2015-03-12 15:36 - 2014-10-29 02:45 - 13318144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-03-12 15:35 - 2014-10-29 06:10 - 01816008 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2015-03-12 15:35 - 2014-10-29 06:00 - 02314952 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-03-12 15:35 - 2014-10-29 06:00 - 02229168 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2015-03-12 15:35 - 2014-10-29 06:00 - 01540696 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-03-12 15:35 - 2014-10-29 05:59 - 02529856 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-03-12 15:35 - 2014-10-29 05:59 - 00055776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-03-12 15:35 - 2014-10-29 05:58 - 00014528 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\drmkaud.sys
2015-03-12 15:35 - 2014-10-29 05:57 - 03138720 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2015-03-12 15:35 - 2014-10-29 05:57 - 03118096 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2015-03-12 15:35 - 2014-10-29 05:57 - 02745160 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-03-12 15:35 - 2014-10-29 05:57 - 02450216 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2015-03-12 15:35 - 2014-10-29 05:57 - 01286048 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2015-03-12 15:35 - 2014-10-29 05:55 - 02174976 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2015-03-12 15:35 - 2014-10-29 05:55 - 01660528 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-03-12 15:35 - 2014-10-29 05:55 - 01543768 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2015-03-12 15:35 - 2014-10-29 05:52 - 02485056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-03-12 15:35 - 2014-10-29 05:52 - 02334080 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-03-12 15:35 - 2014-10-29 05:52 - 01518504 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-03-12 15:35 - 2014-10-29 05:52 - 01509688 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-03-12 15:35 - 2014-10-29 05:52 - 01288096 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2015-03-12 15:35 - 2014-10-29 05:52 - 01165744 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2015-03-12 15:35 - 2014-10-29 05:51 - 01310912 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-03-12 15:35 - 2014-10-29 05:13 - 01901240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-03-12 15:35 - 2014-10-29 05:12 - 01946144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-03-12 15:35 - 2014-10-29 05:12 - 01907384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll
2015-03-12 15:35 - 2014-10-29 05:11 - 02689392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL
2015-03-12 15:35 - 2014-10-29 05:11 - 02528760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-03-12 15:35 - 2014-10-29 05:11 - 02447104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVENCOD.DLL
2015-03-12 15:35 - 2014-10-29 05:11 - 01024200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2015-03-12 15:35 - 2014-10-29 05:10 - 01564464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2015-03-12 15:35 - 2014-10-29 05:10 - 01209624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-03-12 15:35 - 2014-10-29 05:07 - 02324208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-03-12 15:35 - 2014-10-29 04:59 - 03109376 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-03-12 15:35 - 2014-10-29 04:29 - 04483072 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2015-03-12 15:35 - 2014-10-29 04:25 - 00785920 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2015-03-12 15:35 - 2014-10-29 04:24 - 04418560 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-03-12 15:35 - 2014-10-29 04:10 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2015-03-12 15:35 - 2014-10-29 04:00 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-03-12 15:35 - 2014-10-29 03:57 - 02924032 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2015-03-12 15:35 - 2014-10-29 03:56 - 03754496 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2015-03-12 15:35 - 2014-10-29 03:51 - 00941056 _____ (Microsoft Corporation) C:\Windows\system32\XpsFilt.dll
2015-03-12 15:35 - 2014-10-29 03:47 - 02072064 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2015-03-12 15:35 - 2014-10-29 03:45 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\rdpinput.exe
2015-03-12 15:35 - 2014-10-29 03:44 - 02984448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-03-12 15:35 - 2014-10-29 03:43 - 07075328 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2015-03-12 15:35 - 2014-10-29 03:42 - 01999872 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-03-12 15:35 - 2014-10-29 03:40 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2015-03-12 15:35 - 2014-10-29 03:39 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-03-12 15:35 - 2014-10-29 03:38 - 04690432 _____ (Microsoft Corporation) C:\Windows\system32\xpsrchvw.exe
2015-03-12 15:35 - 2014-10-29 03:35 - 04709888 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-03-12 15:35 - 2014-10-29 03:35 - 03256320 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-03-12 15:35 - 2014-10-29 03:31 - 02941952 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebSync.dll
2015-03-12 15:35 - 2014-10-29 03:28 - 03820544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2015-03-12 15:35 - 2014-10-29 03:28 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\atlthunk.dll
2015-03-12 15:35 - 2014-10-29 03:26 - 03561984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll
2015-03-12 15:35 - 2014-10-29 03:24 - 02464768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-03-12 15:35 - 2014-10-29 03:24 - 02364928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll
2015-03-12 15:35 - 2014-10-29 03:22 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-03-12 15:35 - 2014-10-29 03:21 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-03-12 15:35 - 2014-10-29 03:18 - 01753600 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-03-12 15:35 - 2014-10-29 03:17 - 01360896 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2015-03-12 15:35 - 2014-10-29 03:16 - 05267968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2015-03-12 15:35 - 2014-10-29 03:12 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-03-12 15:35 - 2014-10-29 03:11 - 01639424 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-03-12 15:35 - 2014-10-29 03:10 - 02469888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-03-12 15:35 - 2014-10-29 03:08 - 02608640 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-03-12 15:35 - 2014-10-29 03:08 - 02542080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-03-12 15:35 - 2014-10-29 03:08 - 02174976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-03-12 15:35 - 2014-10-29 03:08 - 01822720 _____ (Microsoft Corporation) C:\Windows\system32\dui70.dll
2015-03-12 15:35 - 2014-10-29 03:05 - 03273216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2015-03-12 15:35 - 2014-10-29 03:04 - 01376256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-03-12 15:35 - 2014-10-29 03:03 - 04067840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-03-12 15:35 - 2014-10-29 03:03 - 02635264 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2015-03-12 15:35 - 2014-10-29 03:03 - 02487296 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2015-03-12 15:35 - 2014-10-29 02:59 - 01490944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-03-12 15:35 - 2014-10-29 02:58 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-03-12 15:35 - 2014-10-29 02:57 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-03-12 15:35 - 2014-10-29 02:54 - 07784960 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-03-12 15:35 - 2014-10-29 02:54 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-03-12 15:35 - 2014-10-29 02:54 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-03-12 15:35 - 2014-10-29 02:52 - 02554880 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-03-12 15:35 - 2014-10-29 02:52 - 02170368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-03-12 15:35 - 2014-10-29 02:52 - 01714176 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-03-12 15:35 - 2014-10-29 02:52 - 01461248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dui70.dll
2015-03-12 15:35 - 2014-10-29 02:52 - 01275904 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2015-03-12 15:35 - 2014-10-29 02:52 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-03-12 15:35 - 2014-10-29 02:50 - 02317824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll
2015-03-12 15:35 - 2014-10-29 02:48 - 03056128 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2015-03-12 15:35 - 2014-10-29 02:46 - 01919488 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2015-03-12 15:35 - 2014-10-29 02:46 - 01348096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-03-12 15:35 - 2014-10-29 02:46 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-03-12 15:35 - 2014-10-29 02:46 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-03-12 15:35 - 2014-10-29 02:45 - 01725952 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Immersive.dll
2015-03-12 15:35 - 2014-10-29 02:43 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-03-12 15:35 - 2014-10-29 02:43 - 00723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-03-12 15:35 - 2014-10-29 02:43 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-03-12 15:35 - 2014-10-29 02:42 - 01922560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-03-12 15:35 - 2014-10-29 02:42 - 01221120 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2015-03-12 15:35 - 2014-10-29 02:39 - 02814464 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-03-12 15:35 - 2014-10-29 02:38 - 07032320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-03-12 15:35 - 2014-10-29 02:37 - 06386176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Search.dll
2015-03-12 15:35 - 2014-10-29 02:35 - 01668096 _____ (Microsoft Corporation) C:\Windows\system32\workfolderssvc.dll
2015-03-12 15:35 - 2014-10-29 02:34 - 01544192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Immersive.dll
2015-03-12 15:35 - 2014-10-29 02:33 - 06213632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-03-12 15:35 - 2014-10-15 10:32 - 02025792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-03-12 15:35 - 2014-10-07 08:45 - 03307112 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2015-03-12 15:35 - 2014-10-07 05:44 - 02890296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2015-03-12 15:35 - 2014-09-25 05:42 - 00373568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-03-12 15:34 - 2014-10-29 06:04 - 00105872 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-03-12 15:34 - 2014-10-29 06:00 - 01385216 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-03-12 15:34 - 2014-10-29 05:57 - 01576312 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2015-03-12 15:34 - 2014-10-29 05:57 - 01210176 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2015-03-12 15:34 - 2014-10-29 05:55 - 01133200 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-03-12 15:34 - 2014-10-29 05:52 - 01064720 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2015-03-12 15:34 - 2014-10-29 05:52 - 00988544 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2015-03-12 15:34 - 2014-10-29 05:52 - 00962216 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-03-12 15:34 - 2014-10-29 05:52 - 00952384 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-03-12 15:34 - 2014-10-29 05:52 - 00850656 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2015-03-12 15:34 - 2014-10-29 05:52 - 00821696 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2015-03-12 15:34 - 2014-10-29 05:52 - 00634768 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2015-03-12 15:34 - 2014-10-29 05:52 - 00580024 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2015-03-12 15:34 - 2014-10-29 05:18 - 00016504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psapi.dll
2015-03-12 15:34 - 2014-10-29 05:11 - 01037656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2015-03-12 15:34 - 2014-10-29 05:10 - 01287112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll
2015-03-12 15:34 - 2014-10-29 05:10 - 01178104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll
2015-03-12 15:34 - 2014-10-29 05:07 - 01321192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-03-12 15:34 - 2014-10-29 05:07 - 01115104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2015-03-12 15:34 - 2014-10-29 05:07 - 00959112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2015-03-12 15:34 - 2014-10-29 05:07 - 00857384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2015-03-12 15:34 - 2014-10-29 05:07 - 00801584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-03-12 15:34 - 2014-10-29 05:07 - 00785568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-03-12 15:34 - 2014-10-29 05:07 - 00705008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2015-03-12 15:34 - 2014-10-29 05:07 - 00700328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2015-03-12 15:34 - 2014-10-29 05:05 - 00890128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2015-03-12 15:34 - 2014-10-29 04:50 - 01192960 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-03-12 15:34 - 2014-10-29 04:43 - 00685056 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2015-03-12 15:34 - 2014-10-29 04:31 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\sqlceqp40.dll
2015-03-12 15:34 - 2014-10-29 04:29 - 01246720 _____ (Microsoft Corporation) C:\Windows\system32\ogldrv.dll
2015-03-12 15:34 - 2014-10-29 04:28 - 01502208 _____ (Microsoft Corporation) C:\Windows\system32\xpssvcs.dll
2015-03-12 15:34 - 2014-10-29 04:17 - 02003456 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2015-03-12 15:34 - 2014-10-29 04:08 - 01540096 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2015-03-12 15:34 - 2014-10-29 04:07 - 06692352 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2015-03-12 15:34 - 2014-10-29 04:03 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-03-12 15:34 - 2014-10-29 03:56 - 01526784 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2015-03-12 15:34 - 2014-10-29 03:56 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2015-03-12 15:34 - 2014-10-29 03:55 - 01697280 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-03-12 15:34 - 2014-10-29 03:53 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-03-12 15:34 - 2014-10-29 03:53 - 00881152 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2015-03-12 15:34 - 2014-10-29 03:50 - 01289216 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2015-03-12 15:34 - 2014-10-29 03:49 - 00742400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlceqp40.dll
2015-03-12 15:34 - 2014-10-29 03:48 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-03-12 15:34 - 2014-10-29 03:48 - 00780288 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-03-12 15:34 - 2014-10-29 03:45 - 00618496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2015-03-12 15:34 - 2014-10-29 03:43 - 01092608 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-03-12 15:34 - 2014-10-29 03:43 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2015-03-12 15:34 - 2014-10-29 03:42 - 03724800 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2015-03-12 15:34 - 2014-10-29 03:37 - 01563136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2015-03-12 15:34 - 2014-10-29 03:34 - 01114624 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-03-12 15:34 - 2014-10-29 03:34 - 01037824 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2015-03-12 15:34 - 2014-10-29 03:33 - 01056768 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2015-03-12 15:34 - 2014-10-29 03:32 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe
2015-03-12 15:34 - 2014-10-29 03:32 - 01390080 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-03-12 15:34 - 2014-10-29 03:25 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-03-12 15:34 - 2014-10-29 03:25 - 01534464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll
2015-03-12 15:34 - 2014-10-29 03:24 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-03-12 15:34 - 2014-10-29 03:23 - 01500672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-03-12 15:34 - 2014-10-29 03:22 - 02410496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2015-03-12 15:34 - 2014-10-29 03:22 - 01084416 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-03-12 15:34 - 2014-10-29 03:21 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-03-12 15:34 - 2014-10-29 03:20 - 01492480 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-03-12 15:34 - 2014-10-29 03:19 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2015-03-12 15:34 - 2014-10-29 03:18 - 01050624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll
2015-03-12 15:34 - 2014-10-29 03:17 - 01402368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll
2015-03-12 15:34 - 2014-10-29 03:17 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2015-03-12 15:34 - 2014-10-29 03:16 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-03-12 15:34 - 2014-10-29 03:14 - 03553280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsrchvw.exe
2015-03-12 15:34 - 2014-10-29 03:14 - 00802816 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-03-12 15:34 - 2014-10-29 03:09 - 01335296 _____ (Microsoft Corporation) C:\Windows\system32\mispace.dll
2015-03-12 15:34 - 2014-10-29 03:08 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-03-12 15:34 - 2014-10-29 03:08 - 01478144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe
2015-03-12 15:34 - 2014-10-29 03:07 - 01247232 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll
2015-03-12 15:34 - 2014-10-29 03:07 - 00747008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-03-12 15:34 - 2014-10-29 03:06 - 00747520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2015-03-12 15:34 - 2014-10-29 03:03 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-03-12 15:34 - 2014-10-29 03:01 - 01710592 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2015-03-12 15:34 - 2014-10-29 03:01 - 00843776 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2015-03-12 15:34 - 2014-10-29 03:00 - 01705984 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2015-03-12 15:34 - 2014-10-29 02:59 - 01636864 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2015-03-12 15:34 - 2014-10-29 02:59 - 01454080 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-03-12 15:34 - 2014-10-29 02:59 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-03-12 15:34 - 2014-10-29 02:59 - 01021440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-03-12 15:34 - 2014-10-29 02:56 - 01337344 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-03-12 15:34 - 2014-10-29 02:56 - 01248256 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2015-03-12 15:34 - 2014-10-29 02:56 - 01028608 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-03-12 15:34 - 2014-10-29 02:56 - 01001984 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.dll
2015-03-12 15:34 - 2014-10-29 02:53 - 01063424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mispace.dll
2015-03-12 15:34 - 2014-10-29 02:52 - 01265152 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-03-12 15:34 - 2014-10-29 02:52 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-03-12 15:34 - 2014-10-29 02:52 - 00801792 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.dll
2015-03-12 15:34 - 2014-10-29 02:50 - 01482752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2015-03-12 15:34 - 2014-10-29 02:48 - 01344000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2015-03-12 15:34 - 2014-10-29 02:47 - 02090496 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2015-03-12 15:34 - 2014-10-29 02:46 - 01265152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll
2015-03-12 15:34 - 2014-10-29 02:46 - 01015808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-03-12 15:34 - 2014-10-29 02:45 - 00887296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-03-12 15:34 - 2014-10-29 02:42 - 00841728 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll
2015-03-12 15:34 - 2014-10-29 02:41 - 02880000 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2015-03-12 15:34 - 2014-10-29 02:41 - 01317376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Streaming.dll
2015-03-12 15:34 - 2014-10-29 02:40 - 02104832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll
2015-03-12 15:34 - 2014-10-29 02:39 - 01000448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll
2015-03-12 15:34 - 2014-10-29 02:38 - 01262080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2015-03-12 15:34 - 2014-10-29 02:37 - 00724480 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2015-03-12 15:34 - 2014-10-29 02:36 - 00954880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2015-03-12 15:34 - 2014-10-29 02:33 - 01102848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Streaming.dll
2015-03-12 15:33 - 2014-10-29 06:09 - 01950280 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2015-03-12 15:33 - 2014-10-29 06:09 - 01239576 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2015-03-12 15:33 - 2014-10-29 06:03 - 00435008 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-03-12 15:33 - 2014-10-29 06:00 - 00740664 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2015-03-12 15:33 - 2014-10-29 06:00 - 00544408 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2015-03-12 15:33 - 2014-10-29 06:00 - 00379568 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2015-03-12 15:33 - 2014-10-29 05:57 - 01552704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-03-12 15:33 - 2014-10-29 05:57 - 00643064 _____ (Microsoft Corporation) C:\Windows\system32\twinapi.appcore.dll
2015-03-12 15:33 - 2014-10-29 05:57 - 00557832 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2015-03-12 15:33 - 2014-10-29 05:55 - 01063432 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2015-03-12 15:33 - 2014-10-29 05:55 - 00730824 _____ (Microsoft Corporation) C:\Windows\system32\clbcatq.dll
2015-03-12 15:33 - 2014-10-29 05:55 - 00426120 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2015-03-12 15:33 - 2014-10-29 05:52 - 00734448 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2015-03-12 15:33 - 2014-10-29 05:52 - 00497936 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2015-03-12 15:33 - 2014-10-29 05:52 - 00444728 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2015-03-12 15:33 - 2014-10-29 05:52 - 00405456 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-03-12 15:33 - 2014-10-29 05:18 - 01782912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2015-03-12 15:33 - 2014-10-29 05:18 - 01103768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2015-03-12 15:33 - 2014-10-29 05:18 - 00848568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll
2015-03-12 15:33 - 2014-10-29 05:12 - 00616704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2015-03-12 15:33 - 2014-10-29 05:11 - 00914648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOE.DLL
2015-03-12 15:33 - 2014-10-29 05:10 - 00569128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clbcatq.dll
2015-03-12 15:33 - 2014-10-29 05:10 - 00492232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinapi.appcore.dll
2015-03-12 15:33 - 2014-10-29 05:07 - 00584120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2015-03-12 15:33 - 2014-10-29 05:07 - 00551064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2015-03-12 15:33 - 2014-10-29 05:07 - 00482360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll
2015-03-12 15:33 - 2014-10-29 05:07 - 00409040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2015-03-12 15:33 - 2014-10-29 04:56 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2015-03-12 15:33 - 2014-10-29 04:48 - 00925696 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2015-03-12 15:33 - 2014-10-29 04:48 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx02000.dll
2015-03-12 15:33 - 2014-10-29 04:44 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-03-12 15:33 - 2014-10-29 04:42 - 01091584 _____ (Microsoft Corporation) C:\Windows\system32\opengl32.dll
2015-03-12 15:33 - 2014-10-29 04:36 - 00546304 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese40.dll
2015-03-12 15:33 - 2014-10-29 04:33 - 07558144 _____ (Microsoft Corporation) C:\Windows\system32\NL7Data0011.dll
2015-03-12 15:33 - 2014-10-29 04:33 - 00799744 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2015-03-12 15:33 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70804.dll
2015-03-12 15:33 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70404.dll
2015-03-12 15:33 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB7001E.dll
2015-03-12 15:33 - 2014-10-29 04:30 - 00734208 _____ (Microsoft Corporation) C:\Windows\system32\MSWB70011.dll
2015-03-12 15:33 - 2014-10-29 04:29 - 00620544 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2015-03-12 15:33 - 2014-10-29 04:27 - 00899584 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-03-12 15:33 - 2014-10-29 04:27 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-03-12 15:33 - 2014-10-29 04:26 - 00771584 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2015-03-12 15:33 - 2014-10-29 04:18 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe
2015-03-12 15:33 - 2014-10-29 04:11 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2015-03-12 15:33 - 2014-10-29 04:09 - 00632320 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-03-12 15:33 - 2014-10-29 04:08 - 00858624 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2015-03-12 15:33 - 2014-10-29 04:08 - 00670208 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-03-12 15:33 - 2014-10-29 04:08 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2015-03-12 15:33 - 2014-10-29 04:07 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-03-12 15:33 - 2014-10-29 04:06 - 00980480 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2015-03-12 15:33 - 2014-10-29 04:04 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
2015-03-12 15:33 - 2014-10-29 04:03 - 00832000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe
2015-03-12 15:33 - 2014-10-29 04:00 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2015-03-12 15:33 - 2014-10-29 03:59 - 00670720 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2015-03-12 15:33 - 2014-10-29 03:59 - 00564224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll
2015-03-12 15:33 - 2014-10-29 03:57 - 01479168 _____ (Microsoft Corporation) C:\Windows\system32\wsecedit.dll
2015-03-12 15:33 - 2014-10-29 03:57 - 01038336 _____ (Microsoft Corporation) C:\Windows\system32\aclui.dll
2015-03-12 15:33 - 2014-10-29 03:53 - 01065984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d8.dll
2015-03-12 15:33 - 2014-10-29 03:53 - 00433152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlcese40.dll
2015-03-12 15:33 - 2014-10-29 03:50 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlsrv32.dll
2015-03-12 15:33 - 2014-10-29 03:49 - 02236416 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2015-03-12 15:33 - 2014-10-29 03:47 - 01096192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ogldrv.dll
2015-03-12 15:33 - 2014-10-29 03:47 - 00982016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpssvcs.dll
2015-03-12 15:33 - 2014-10-29 03:46 - 01497600 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2015-03-12 15:33 - 2014-10-29 03:45 - 00717312 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2015-03-12 15:33 - 2014-10-29 03:45 - 00672768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll
2015-03-12 15:33 - 2014-10-29 03:42 - 00852480 _____ (Microsoft Corporation) C:\Windows\system32\PurchaseWindowsLicense.dll
2015-03-12 15:33 - 2014-10-29 03:40 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-03-12 15:33 - 2014-10-29 03:39 - 01571328 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2015-03-12 15:33 - 2014-10-29 03:39 - 00898048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-03-12 15:33 - 2014-10-29 03:37 - 01436160 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2015-03-12 15:33 - 2014-10-29 03:36 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-03-12 15:33 - 2014-10-29 03:36 - 01252864 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2015-03-12 15:33 - 2014-10-29 03:36 - 01008128 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-03-12 15:33 - 2014-10-29 03:36 - 00609792 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2015-03-12 15:33 - 2014-10-29 03:36 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\PrintDialogs.dll
2015-03-12 15:33 - 2014-10-29 03:35 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2015-03-12 15:33 - 2014-10-29 03:32 - 00654848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comuid.dll
2015-03-12 15:33 - 2014-10-29 03:32 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmnet.dll
2015-03-12 15:33 - 2014-10-29 03:31 - 01278464 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-03-12 15:33 - 2014-10-29 03:31 - 00761344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll
2015-03-12 15:33 - 2014-10-29 03:31 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-03-12 15:33 - 2014-10-29 03:30 - 06465536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mspaint.exe
2015-03-12 15:33 - 2014-10-29 03:30 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-03-12 15:33 - 2014-10-29 03:29 - 00833536 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2015-03-12 15:33 - 2014-10-29 03:27 - 00557568 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-03-12 15:33 - 2014-10-29 03:26 - 00838656 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2015-03-12 15:33 - 2014-10-29 03:24 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-03-12 15:33 - 2014-10-29 03:23 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2015-03-12 15:33 - 2014-10-29 03:21 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-03-12 15:33 - 2014-10-29 03:19 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\WinSync.dll
2015-03-12 15:33 - 2014-10-29 03:17 - 00945664 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-03-12 15:33 - 2014-10-29 03:16 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2015-03-12 15:33 - 2014-10-29 03:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2015-03-12 15:33 - 2014-10-29 03:14 - 00854528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2015-03-12 15:33 - 2014-10-29 03:14 - 00737280 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2015-03-12 15:33 - 2014-10-29 03:14 - 00609280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll
2015-03-12 15:33 - 2014-10-29 03:12 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-03-12 15:33 - 2014-10-29 03:12 - 00702976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2015-03-12 15:33 - 2014-10-29 03:12 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\msTextPrediction.dll
2015-03-12 15:33 - 2014-10-29 03:12 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2015-03-12 15:33 - 2014-10-29 03:12 - 00516608 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2015-03-12 15:33 - 2014-10-29 03:11 - 01323008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2015-03-12 15:33 - 2014-10-29 03:10 - 01096704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-03-12 15:33 - 2014-10-29 03:10 - 00516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2015-03-12 15:33 - 2014-10-29 03:09 - 00873984 _____ (Microsoft Corporation) C:\Windows\system32\provcore.dll
2015-03-12 15:33 - 2014-10-29 03:09 - 00809984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2015-03-12 15:33 - 2014-10-29 03:09 - 00688640 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.Bluetooth.dll
2015-03-12 15:33 - 2014-10-29 03:09 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2015-03-12 15:33 - 2014-10-29 03:09 - 00521728 _____ (Microsoft Corporation) C:\Windows\system32\GeofenceMonitorService.dll
2015-03-12 15:33 - 2014-10-29 03:08 - 00881664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2015-03-12 15:33 - 2014-10-29 03:07 - 01396736 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-03-12 15:33 - 2014-10-29 03:07 - 01197056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2015-03-12 15:33 - 2014-10-29 03:07 - 01060352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-03-12 15:33 - 2014-10-29 03:07 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-03-12 15:33 - 2014-10-29 03:07 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-03-12 15:33 - 2014-10-29 03:06 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-03-12 15:33 - 2014-10-29 03:06 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-03-12 15:33 - 2014-10-29 03:05 - 00606720 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-03-12 15:33 - 2014-10-29 03:04 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Devices.SmartCards.dll
2015-03-12 15:33 - 2014-10-29 03:04 - 00506880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-03-12 15:33 - 2014-10-29 03:03 - 00781824 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2015-03-12 15:33 - 2014-10-29 03:03 - 00740352 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2015-03-12 15:33 - 2014-10-29 03:02 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll |