|
Plagegeister aller Art und deren Bekämpfung: Mein Mauszeiger blinkt dauernd?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
07.01.2013, 20:30 | #1 |
| Mein Mauszeiger blinkt dauernd? Hallo zusammen seid ein paart Tagen blinkt mein Mauszeiger dauernd, er lädt dauernd und die Fenster Laden auch dauernd neu Bitte um Hilfe HiJackthis Logfile: Code:
ATTFilter Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:22:10, on 07.01.2013 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v10.0 (10.00.9200.16453) Boot mode: Normal Running processes: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\Launch Manager\LManager.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Google\Chrome\Application\chrome.exe C:\Users\Rouven\Downloads\HiJackThis204.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60 O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKCU\..\Run: [EPSON SX430 Series] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE /FU "C:\Users\Rouven\AppData\Local\Temp\E_S49C7.tmp" /EF "HKCU" O4 - HKCU\..\Run: [EPSON0454AA (Epson Stylus SX430)] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE /FU "C:\Users\Rouven\AppData\Local\Temp\E_S4BBB.tmp" /EF "HKCU" O4 - HKCU\..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: An OneNote s&enden - res://C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - res://C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000 O9 - Extra button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe O9 - Extra 'Tools' menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll O9 - Extra button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing) O23 - Service: Avira Planer (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Echtzeit-Scanner (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: AtherosSvc - Qualcomm Atheros Commnucations - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe O23 - Service: Broadcom Card Reader Service (BrcmCardReader) - Broadcom Corp. - C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing) O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing) O23 - Service: Google Update-Dienst (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-Dienst (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Rapid Storage-Technologie (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\WINDOWS\RfBtnSvc64.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing) O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Broadcom Corporation - C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: ZAtheros Wlan Agent - Atheros - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe -- End of file - 13077 bytes Malwarebytes Anti-Malware (Test) 1.70.0.1100 www.malwarebytes.org Datenbank Version: v2013.01.06.08 Windows 8 x64 NTFS Internet Explorer 10.0.9200.16466 Rouven :: WALLES-PC [Administrator] Schutz: Aktiviert 07.01.2013 02:18:48 mbam-log-2013-01-07 (02-18-48).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 504812 Laufzeit: 3 Stunde(n), 39 Minute(n), 14 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 3 C:\Users\Rouven\Downloads\Ralph_reicht's (1).exe (PUP.Adware.Agent) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rouven\Downloads\Ralph_reicht's (2).exe (PUP.Adware.Agent) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\Rouven\Downloads\Ralph_reicht's.exe (PUP.Adware.Agent) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 07.01.2013 19:15:04 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Rouven\Downloads 64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16453) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 7,82 Gb Total Physical Memory | 5,74 Gb Available Physical Memory | 73,39% Memory free 9,01 Gb Paging File | 6,88 Gb Available in Paging File | 76,32% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 698,54 Gb Total Space | 598,50 Gb Free Space | 85,68% Space Free | Partition Type: NTFS Computer Name: WALLES-PC | User Name: Rouven | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{E53BC2A3-F6B2-400C-9002-6DD6E26F7CF5}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{05986D27-389C-4B6F-A252-D41137DE8078}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} | "{0C8B719C-CD84-40D0-8932-250A444A2D85}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} | "{168EC7F7-931F-4095-925F-0AE70A563D8A}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | "{19ECDD0F-D8C7-4547-B85C-750F33564A73}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} | "{36DA52F7-D04F-4888-801D-E1254F7D1067}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | "{3914EA0C-5C4F-4A10-922A-AAA89A3834DC}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | "{3924D449-1069-40A2-BA8F-9772C15FBD9E}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} | "{39D5FBEC-D458-4D2C-B124-6BB07ACA0124}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} | "{3E432BEA-C3A5-48FB-9226-A30D4F7398DB}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | "{49737774-1015-49D9-BCBF-9679EDEE65A3}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe | "{5DF5EFC1-7ADE-4CEE-8C68-EB2B529EEE59}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} | "{63CAD200-2082-45BE-B772-D58BB13E0366}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | "{66673822-7AFA-429D-88FD-2776029F5A3B}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} | "{6F8B516F-F5D5-41B5-87D4-040A9DADFE16}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{7E53B2C1-629B-4B92-9078-35BF83A4C200}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mafia ii\pc\mafia2.exe | "{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{82715EFF-647A-4AFB-A7B7-A5B06AC77198}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe | "{86F5FA1B-497C-4FA0-B740-78998D9C283F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mafia ii\pc\mafia2.exe | "{885A9AA4-51EB-4CB6-A906-D2C391FAE50C}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | "{8FF8C90C-72E3-4B7A-BAF7-77CEBF2C31BB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{9CF6DF82-0E3D-44E9-9414-DB448A3AC74F}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} | "{9DE7D81B-558B-4BF5-9EE1-C2357EE38E5F}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | "{ACED5DB4-D31B-44A1-9D71-73D6F42989F9}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe | "{BC1E755E-730F-4B72-B1CB-713A3464C7F2}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} | "{BC36965D-62A8-4A01-B71C-123D5517D90A}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe | "{C1BAD83F-0728-49CF-BE8E-5256959B81E5}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | "{E4860DC6-BE20-4909-A276-5BF87355BEA0}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | "{E7589D4E-C02E-4564-BBE8-4E4CA8DF62B8}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{F2915785-B052-442F-8736-C062364ED3AE}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} | "{FFBD7980-D24F-4D22-935D-E4747A133D2C}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64) "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}" = Acer Device Fast-lane "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{90140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010 "{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0015-0407-1000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010 "{90140000-0015-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0016-0407-1000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010 "{90140000-0016-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0018-0407-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010 "{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0019-0407-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010 "{90140000-0019-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001A-0407-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010 "{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001B-0407-1000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010 "{90140000-001B-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010 "{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010 "{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010 "{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{B51389C8-2890-4633-81D8-47D2A7402274}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-0410-1000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010 "{90140000-001F-0410-1000-0000000FF1CE}_Office14.PROPLUS_{3013A793-10A7-4D1F-B8B4-2FAA82F4D259}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-002C-0407-1000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010 "{90140000-002C-0407-1000-0000000FF1CE}_Office14.PROPLUS_{98782D5D-A9EE-43C6-88AD-B50AD8530E78}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010 "{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0043-0407-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (German) 2010 "{90140000-0043-0407-1000-0000000FF1CE}_Office14.PROPLUS_{8DFD91C7-66AE-4E54-9901-5D5F401AD329}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0044-0407-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010 "{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-006E-0407-1000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010 "{90140000-006E-0407-1000-0000000FF1CE}_Office14.PROPLUS_{8299B64F-1537-4081-974C-033EAB8F098E}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-00A1-0407-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010 "{90140000-00A1-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-00BA-0407-1000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010 "{90140000-00BA-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{91F52DE4-B789-42B0-9311-A349F10E5479}" = Acer Power Management "{A84A4FB1-D703-48DB-89E0-68B6499D2801}" = Qualcomm Atheros Bluetooth Suite (64) "{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64) "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 310.70 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 310.70 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.11.3 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.12.1031 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.11.3 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{CB00799C-0E4F-4FD1-A046-BD24321BCDFF}" = Classic Shell "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{F0A7DF2F-0BE0-470F-B137-D7A19F977189}" = Broadcom Card Reader Driver Installer "{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client "{F6100F13-F183-47A2-94A8-9AAC4976E228}" = Acer Instant Update Service "Broadcom Wireless Utility" = Broadcom Wireless Utility "Elantech" = ETDWare PS/2-X64 11.6.8.001_WHQL "EPSON SX430 Series" = EPSON SX430 Series Printer Uninstall "GIMP-2_is1" = GIMP 2.8.2 "Office14.PROPLUS" = Microsoft Office Professional Plus 2010 "SynTPDeinstKey" = Synaptics Pointing Device Driver "WinRAR archiver" = WinRAR 4.20 (64-Bit) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 9 "{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros WLAN and Bluetooth Client Installation Program "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI - Deutsch "{B26438B4-BF51-49C3-9567-7F14A5E40CB9}" = Dolby Home Theater v4 "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0 "{EE26E302-876A-48D9-9058-3129E5B99999}" = Live Updater "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center "{FAE5B434-5222-4C81-BEEE-74A380D1EA6C}" = Badoo Desktop "Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v.10.0.15 "Avira AntiVir Desktop" = Avira Free Antivirus "DAEMON Tools Lite" = DAEMON Tools Lite "flunatic_is1" = flunatic 1.2 "Google Chrome" = Google Chrome "InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "LManager" = Launch Manager "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.70.0.1100 "Picasa 3" = Picasa 3 "Rechnung4" = Softwarenetz Rechnung4 "Steam App 50130" = Mafia II ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 07.01.2013 14:24:13 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0xf68 Startzeit der fehlerhaften Anwendung: 0x01cded0431a88be4 Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 6f912899-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:15 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: WLTRAY.EXE, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab19 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0xe70 Startzeit der fehlerhaften Anwendung: 0x01cded042ab130a7 Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 70bf2dcc-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:18 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0x934 Startzeit der fehlerhaften Anwendung: 0x01cded0434931135 Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 72854c7b-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:23 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0xdac Startzeit der fehlerhaften Anwendung: 0x01cded04376d0b12 Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 7555a7cf-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:27 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: WLTRAY.EXE, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab19 Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16420, Zeitstempel: 0x505ab405 Ausnahmecode: 0xc015000f Fehleroffset: 0x00000000001035b4 ID des fehlerhaften Prozesses: 0xe70 Startzeit der fehlerhaften Anwendung: 0x01cded042ab130a7 Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll Berichtskennung: 77ddac19-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:28 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0x1404 Startzeit der fehlerhaften Anwendung: 0x01cded043a33f7df Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 782a2b73-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:29 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: WLTRAY.EXE, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab19 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0xa1c Startzeit der fehlerhaften Anwendung: 0x01cded04330f0fca Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 791c2ed1-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:33 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0x151c Startzeit der fehlerhaften Anwendung: 0x01cded043d39447a Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 7b24047c-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:37 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0x470 Startzeit der fehlerhaften Anwendung: 0x01cded04400a22ee Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 7df509e9-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:41 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: WLTRAY.EXE, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab19 Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16420, Zeitstempel: 0x505ab405 Ausnahmecode: 0xc015000f Fehleroffset: 0x00000000001035b4 ID des fehlerhaften Prozesses: 0xa1c Startzeit der fehlerhaften Anwendung: 0x01cded04330f0fca Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll Berichtskennung: 802ff9e3-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: [ System Events ] Error - 31.12.2012 11:18:03 | Computer Name = Walles-PC | Source = EventLog | ID = 6008 Description = Das System wurde zuvor am ?31.?12.?2012 um 00:27:51 unerwartet heruntergefahren. Error - 01.01.2013 11:58:25 | Computer Name = Walles-PC | Source = BTHUSB | ID = 327697 Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen. Error - 03.01.2013 17:16:18 | Computer Name = Walles-PC | Source = BTHUSB | ID = 327697 Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen. Error - 06.01.2013 13:19:30 | Computer Name = Walles-PC | Source = Schannel | ID = 36888 Description = Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 900. Error - 06.01.2013 13:19:30 | Computer Name = Walles-PC | Source = Schannel | ID = 36888 Description = Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 900. Error - 06.01.2013 13:19:30 | Computer Name = Walles-PC | Source = Schannel | ID = 36888 Description = Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 900. Error - 06.01.2013 13:19:30 | Computer Name = Walles-PC | Source = Schannel | ID = 36888 Description = Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 900. Error - 06.01.2013 13:55:22 | Computer Name = Walles-PC | Source = EventLog | ID = 6008 Description = Das System wurde zuvor am ?06.?01.?2013 um 18:53:50 unerwartet heruntergefahren. Error - 07.01.2013 13:32:08 | Computer Name = Walles-PC | Source = DCOM | ID = 10010 Description = Error - 07.01.2013 14:10:24 | Computer Name = Walles-PC | Source = BTHUSB | ID = 327697 Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen. < End of report > OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 07.01.2013 19:15:04 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Rouven\Downloads 64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16453) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 7,82 Gb Total Physical Memory | 5,74 Gb Available Physical Memory | 73,39% Memory free 9,01 Gb Paging File | 6,88 Gb Available in Paging File | 76,32% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 698,54 Gb Total Space | 598,50 Gb Free Space | 85,68% Space Free | Partition Type: NTFS Computer Name: WALLES-PC | User Name: Rouven | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found ========== Shell Spawning ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. ========== Security Center Settings ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{E53BC2A3-F6B2-400C-9002-6DD6E26F7CF5}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{05986D27-389C-4B6F-A252-D41137DE8078}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} | "{0C8B719C-CD84-40D0-8932-250A444A2D85}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} | "{168EC7F7-931F-4095-925F-0AE70A563D8A}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | "{19ECDD0F-D8C7-4547-B85C-750F33564A73}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} | "{36DA52F7-D04F-4888-801D-E1254F7D1067}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | "{3914EA0C-5C4F-4A10-922A-AAA89A3834DC}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} | "{3924D449-1069-40A2-BA8F-9772C15FBD9E}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} | "{39D5FBEC-D458-4D2C-B124-6BB07ACA0124}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} | "{3E432BEA-C3A5-48FB-9226-A30D4F7398DB}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | "{49737774-1015-49D9-BCBF-9679EDEE65A3}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe | "{5DF5EFC1-7ADE-4CEE-8C68-EB2B529EEE59}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} | "{63CAD200-2082-45BE-B772-D58BB13E0366}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | "{66673822-7AFA-429D-88FD-2776029F5A3B}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} | "{6F8B516F-F5D5-41B5-87D4-040A9DADFE16}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{7E53B2C1-629B-4B92-9078-35BF83A4C200}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mafia ii\pc\mafia2.exe | "{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{82715EFF-647A-4AFB-A7B7-A5B06AC77198}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe | "{86F5FA1B-497C-4FA0-B740-78998D9C283F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mafia ii\pc\mafia2.exe | "{885A9AA4-51EB-4CB6-A906-D2C391FAE50C}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} | "{8FF8C90C-72E3-4B7A-BAF7-77CEBF2C31BB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{9CF6DF82-0E3D-44E9-9414-DB448A3AC74F}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} | "{9DE7D81B-558B-4BF5-9EE1-C2357EE38E5F}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} | "{ACED5DB4-D31B-44A1-9D71-73D6F42989F9}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe | "{BC1E755E-730F-4B72-B1CB-713A3464C7F2}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} | "{BC36965D-62A8-4A01-B71C-123D5517D90A}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe | "{C1BAD83F-0728-49CF-BE8E-5256959B81E5}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} | "{E4860DC6-BE20-4909-A276-5BF87355BEA0}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | "{E7589D4E-C02E-4564-BBE8-4E4CA8DF62B8}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | "{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} | "{F2915785-B052-442F-8736-C062364ED3AE}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} | "{FFBD7980-D24F-4D22-935D-E4747A133D2C}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} | ========== HKEY_LOCAL_MACHINE Uninstall List ========== 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64) "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}" = Acer Device Fast-lane "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{90140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010 "{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0015-0407-1000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2010 "{90140000-0015-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0016-0407-1000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2010 "{90140000-0016-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0018-0407-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2010 "{90140000-0018-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0019-0407-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2010 "{90140000-0019-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001A-0407-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2010 "{90140000-001A-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001B-0407-1000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2010 "{90140000-001B-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010 "{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010 "{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010 "{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{B51389C8-2890-4633-81D8-47D2A7402274}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-0410-1000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2010 "{90140000-001F-0410-1000-0000000FF1CE}_Office14.PROPLUS_{3013A793-10A7-4D1F-B8B4-2FAA82F4D259}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-002C-0407-1000-0000000FF1CE}" = Microsoft Office Proofing (German) 2010 "{90140000-002C-0407-1000-0000000FF1CE}_Office14.PROPLUS_{98782D5D-A9EE-43C6-88AD-B50AD8530E78}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010 "{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0043-0407-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (German) 2010 "{90140000-0043-0407-1000-0000000FF1CE}_Office14.PROPLUS_{8DFD91C7-66AE-4E54-9901-5D5F401AD329}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0044-0407-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2010 "{90140000-0044-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-006E-0407-1000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2010 "{90140000-006E-0407-1000-0000000FF1CE}_Office14.PROPLUS_{8299B64F-1537-4081-974C-033EAB8F098E}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-00A1-0407-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (German) 2010 "{90140000-00A1-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-00BA-0407-1000-0000000FF1CE}" = Microsoft Office Groove MUI (German) 2010 "{90140000-00BA-0407-1000-0000000FF1CE}_Office14.PROPLUS_{BBBD3986-9A9D-402A-BA73-CCDE3EF0ED77}" = Microsoft Office 2010 Service Pack 1 (SP1) "{91F52DE4-B789-42B0-9311-A349F10E5479}" = Acer Power Management "{A84A4FB1-D703-48DB-89E0-68B6499D2801}" = Qualcomm Atheros Bluetooth Suite (64) "{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64) "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 310.70 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 310.70 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.11.3 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.12.1031 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.11.3 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{CB00799C-0E4F-4FD1-A046-BD24321BCDFF}" = Classic Shell "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{F0A7DF2F-0BE0-470F-B137-D7A19F977189}" = Broadcom Card Reader Driver Installer "{F4404AFD-2EF3-40C1-8C09-29E5F3B6972B}" = Intel® Trusted Connect Service Client "{F6100F13-F183-47A2-94A8-9AAC4976E228}" = Acer Instant Update Service "Broadcom Wireless Utility" = Broadcom Wireless Utility "Elantech" = ETDWare PS/2-X64 11.6.8.001_WHQL "EPSON SX430 Series" = EPSON SX430 Series Printer Uninstall "GIMP-2_is1" = GIMP 2.8.2 "Office14.PROPLUS" = Microsoft Office Professional Plus 2010 "SynTPDeinstKey" = Synaptics Pointing Device Driver "WinRAR archiver" = WinRAR 4.20 (64-Bit) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 9 "{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Qualcomm Atheros WLAN and Bluetooth Client Installation Program "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1031-7B44-AB0000000001}" = Adobe Reader XI - Deutsch "{B26438B4-BF51-49C3-9567-7F14A5E40CB9}" = Dolby Home Theater v4 "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0 "{EE26E302-876A-48D9-9058-3129E5B99999}" = Live Updater "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center "{FAE5B434-5222-4C81-BEEE-74A380D1EA6C}" = Badoo Desktop "Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v.10.0.15 "Avira AntiVir Desktop" = Avira Free Antivirus "DAEMON Tools Lite" = DAEMON Tools Lite "flunatic_is1" = flunatic 1.2 "Google Chrome" = Google Chrome "InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "LManager" = Launch Manager "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.70.0.1100 "Picasa 3" = Picasa 3 "Rechnung4" = Softwarenetz Rechnung4 "Steam App 50130" = Mafia II ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 07.01.2013 14:24:13 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0xf68 Startzeit der fehlerhaften Anwendung: 0x01cded0431a88be4 Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 6f912899-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:15 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: WLTRAY.EXE, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab19 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0xe70 Startzeit der fehlerhaften Anwendung: 0x01cded042ab130a7 Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 70bf2dcc-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:18 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0x934 Startzeit der fehlerhaften Anwendung: 0x01cded0434931135 Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 72854c7b-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:23 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0xdac Startzeit der fehlerhaften Anwendung: 0x01cded04376d0b12 Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 7555a7cf-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:27 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: WLTRAY.EXE, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab19 Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16420, Zeitstempel: 0x505ab405 Ausnahmecode: 0xc015000f Fehleroffset: 0x00000000001035b4 ID des fehlerhaften Prozesses: 0xe70 Startzeit der fehlerhaften Anwendung: 0x01cded042ab130a7 Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll Berichtskennung: 77ddac19-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:28 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0x1404 Startzeit der fehlerhaften Anwendung: 0x01cded043a33f7df Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 782a2b73-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:29 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: WLTRAY.EXE, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab19 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0xa1c Startzeit der fehlerhaften Anwendung: 0x01cded04330f0fca Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 791c2ed1-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:33 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0x151c Startzeit der fehlerhaften Anwendung: 0x01cded043d39447a Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 7b24047c-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:37 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: bcmwltry.exe, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab83 Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16451, Zeitstempel: 0x50988aa6 Ausnahmecode: 0xe0434f4d Fehleroffset: 0x000000000003811c ID des fehlerhaften Prozesses: 0x470 Startzeit der fehlerhaften Anwendung: 0x01cded04400a22ee Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\KERNELBASE.dll Berichtskennung: 7df509e9-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error - 07.01.2013 14:24:41 | Computer Name = Walles-PC | Source = Application Error | ID = 1000 Description = Name der fehlerhaften Anwendung: WLTRAY.EXE, Version: 5.100.82.120, Zeitstempel: 0x4ee1ab19 Name des fehlerhaften Moduls: ntdll.dll, Version: 6.2.9200.16420, Zeitstempel: 0x505ab405 Ausnahmecode: 0xc015000f Fehleroffset: 0x00000000001035b4 ID des fehlerhaften Prozesses: 0xa1c Startzeit der fehlerhaften Anwendung: 0x01cded04330f0fca Pfad der fehlerhaften Anwendung: C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll Berichtskennung: 802ff9e3-58f7-11e2-be7c-b888e3a5f12a Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: [ System Events ] Error - 31.12.2012 11:18:03 | Computer Name = Walles-PC | Source = EventLog | ID = 6008 Description = Das System wurde zuvor am ?31.?12.?2012 um 00:27:51 unerwartet heruntergefahren. Error - 01.01.2013 11:58:25 | Computer Name = Walles-PC | Source = BTHUSB | ID = 327697 Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen. Error - 03.01.2013 17:16:18 | Computer Name = Walles-PC | Source = BTHUSB | ID = 327697 Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen. Error - 06.01.2013 13:19:30 | Computer Name = Walles-PC | Source = Schannel | ID = 36888 Description = Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 900. Error - 06.01.2013 13:19:30 | Computer Name = Walles-PC | Source = Schannel | ID = 36888 Description = Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 900. Error - 06.01.2013 13:19:30 | Computer Name = Walles-PC | Source = Schannel | ID = 36888 Description = Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 900. Error - 06.01.2013 13:19:30 | Computer Name = Walles-PC | Source = Schannel | ID = 36888 Description = Es wurde eine schwerwiegende Warnung generiert und an den Remoteendpunkt gesendet. Dies kann dazu führen, dass die Verbindung beendet wird. Die schwerwiegende Warnung hat folgenden für das TLS-Protokoll definierten Code: 51. Der Windows-SChannel-Fehlerstatus lautet: 900. Error - 06.01.2013 13:55:22 | Computer Name = Walles-PC | Source = EventLog | ID = 6008 Description = Das System wurde zuvor am ?06.?01.?2013 um 18:53:50 unerwartet heruntergefahren. Error - 07.01.2013 13:32:08 | Computer Name = Walles-PC | Source = DCOM | ID = 10010 Description = Error - 07.01.2013 14:10:24 | Computer Name = Walles-PC | Source = BTHUSB | ID = 327697 Description = Der lokale Bluetooth-Adapter ist aus einem unbekannten Grund fehlgeschlagen und wird nicht verwendet. Der Treiber wurde entladen. < End of report > |
07.01.2013, 20:36 | #2 |
| Mein Mauszeiger blinkt dauernd? OTL logfile created on: 07.01.2013 19:15:04 - Run 1
__________________OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Rouven\Downloads 64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16453) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 7,82 Gb Total Physical Memory | 5,74 Gb Available Physical Memory | 73,39% Memory free 9,01 Gb Paging File | 6,88 Gb Available in Paging File | 76,32% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86) Drive C: | 698,54 Gb Total Space | 598,50 Gb Free Space | 85,68% Space Free | Partition Type: NTFS Computer Name: WALLES-PC | User Name: Rouven | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Rouven\Downloads\OTL.exe (OldTimer Tools) PRC - C:\Programme\Classic Shell\ClassicShellService.exe (IvoSoft) PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation) PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) PRC - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) PRC - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) PRC - C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe (Atheros) PRC - C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation) PRC - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.) PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.) PRC - C:\Program Files (x86)\Launch Manager\LMutilps32.exe (Dritek System Inc.) PRC - C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation) PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) ========== Modules (No Company Name) ========== MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll () MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll () MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\pdf.dll () MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\libglesv2.dll () MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\libegl.dll () MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avutil-51.dll () MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avformat-54.dll () MOD - C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\avcodec-54.dll () ========== Services (SafeList) ========== SRV:64bit: - (wltrysvc) -- C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE (Broadcom Corporation) SRV:64bit: - (PrintNotify) -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll (Microsoft Corporation) SRV:64bit: - (AudioEndpointBuilder) -- C:\Windows\SysNative\AudioEndpointBuilder.dll (Microsoft Corporation) SRV:64bit: - (WSService) -- C:\Windows\SysNative\WSService.dll (Microsoft Corporation) SRV:64bit: - (TimeBroker) -- C:\Windows\SysNative\TimeBrokerServer.dll (Microsoft Corporation) SRV:64bit: - (SystemEventsBroker) -- C:\Windows\SysNative\SystemEventsBrokerServer.dll (Microsoft Corporation) SRV:64bit: - (fhsvc) -- C:\Windows\SysNative\fhsvc.dll (Microsoft Corporation) SRV:64bit: - (BrokerInfrastructure) -- C:\Windows\SysNative\bisrv.dll (Microsoft Corporation) SRV:64bit: - (wlidsvc) -- C:\Windows\SysNative\wlidsvc.dll (Microsoft Corporation) SRV:64bit: - (WiaRpc) -- C:\Windows\SysNative\wiarpc.dll (Microsoft Corporation) SRV:64bit: - (Wcmsvc) -- C:\Windows\SysNative\wcmsvc.dll (Microsoft Corporation) SRV:64bit: - (VaultSvc) -- C:\Windows\SysNative\vaultsvc.dll (Microsoft Corporation) SRV:64bit: - (svsvc) -- C:\Windows\SysNative\svsvc.dll (Microsoft Corporation) SRV:64bit: - (netprofm) -- C:\Windows\SysNative\netprofmsvc.dll (Microsoft Corporation) SRV:64bit: - (Netlogon) -- C:\Windows\SysNative\netlogon.dll (Microsoft Corporation) SRV:64bit: - (NcaSvc) -- C:\Windows\SysNative\NcaSvc.dll (Microsoft Corporation) SRV:64bit: - (NcdAutoSetup) -- C:\Windows\SysNative\NcdAutoSetup.dll (Microsoft Corporation) SRV:64bit: - (LSM) -- C:\Windows\SysNative\lsm.dll (Microsoft Corporation) SRV:64bit: - (KeyIso) -- C:\Windows\SysNative\keyiso.dll (Microsoft Corporation) SRV:64bit: - (EFS) -- C:\Windows\SysNative\efssvc.dll (Microsoft Corporation) SRV:64bit: - (DsmSvc) -- C:\Windows\SysNative\DeviceSetupManager.dll (Microsoft Corporation) SRV:64bit: - (DeviceAssociationService) -- C:\Windows\SysNative\das.dll (Microsoft Corporation) SRV:64bit: - (AllUserInstallAgent) -- C:\Windows\SysNative\AUInstallAgent.dll (Microsoft Corporation) SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) SRV:64bit: - (vmicvss) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmictimesync) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicshutdown) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicrdv) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmickvpexchange) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV:64bit: - (vmicheartbeat) -- C:\Windows\SysNative\icsvc.dll (Microsoft Corporation) SRV - (ClassicShellService) -- C:\Programme\Classic Shell\ClassicShellService.exe (IvoSoft) SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation) SRV - (RfButtonDriverService) -- C:\Windows\RfBtnSvc64.exe (Dritek System INC.) SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) SRV - (MBAMScheduler) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira Operations GmbH & Co. KG) SRV - (nvUpdatusService) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) SRV - (AtherosSvc) -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe (Qualcomm Atheros Commnucations) SRV - (SkypeUpdate) -- C:\Program Files (x86)\Skype\Updater\Updater.exe (Skype Technologies) SRV - (ZAtheros Wlan Agent) -- C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe (Atheros) SRV - (PrintNotify) -- C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll (Microsoft Corporation) SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation) SRV - (Skype C2C Service) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (Skype Technologies S.A.) SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (ETDService) -- C:\Programme\Elantech\ETDService.exe (ELAN Microelectronics Corp.) SRV - (DsiWMIService) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.) SRV - (DeviceFastLaneService) -- C:\Programme\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe (Acer Incorporated) SRV - (ePowerSvc) -- C:\Programme\Acer\Acer Power Management\ePowerSvc.exe (Acer Incorporated) SRV - (BrcmCardReader) -- C:\Programme\Broadcom\MemoryCard\BrcmCardReader.exe (Broadcom Corp.) SRV - (StorSvc) -- C:\Windows\SysWOW64\StorSvc.dll (Microsoft Corporation) SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation) SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) SRV - (jhi_service) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) SRV - (Intel(R) -- C:\Programme\Intel\iCLS Client\HeciServer.exe (Intel(R) Corporation) SRV - (osppsvc) -- C:\Programme\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) SRV - (ose64) -- C:\Programme\Common Files\microsoft shared\Source Engine\OSE.EXE (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV:64bit: - (dtsoftbus01) -- C:\Windows\SysNative\Drivers\dtsoftbus01.sys (DT Soft Ltd) DRV:64bit: - (Ps2Kb2Hid) -- C:\Windows\SysNative\Drivers\aPs2Kb2Hid.sys (Dritek System Inc.) DRV:64bit: - (BcmVWL) -- C:\Windows\SysNative\Drivers\bcmvwl64.sys (Broadcom Corporation) DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\Drivers\mbam.sys (Malwarebytes Corporation) DRV:64bit: - (nvpciflt) -- C:\Windows\SysNative\Drivers\nvpciflt.sys (NVIDIA Corporation) DRV:64bit: - (avipbb) -- C:\Windows\SysNative\Drivers\avipbb.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (avgntflt) -- C:\Windows\SysNative\Drivers\avgntflt.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (hidi2c) -- C:\Windows\SysNative\Drivers\hidi2c.sys (Microsoft Corporation) DRV:64bit: - (avkmgr) -- C:\Windows\SysNative\Drivers\avkmgr.sys (Avira Operations GmbH & Co. KG) DRV:64bit: - (BtFilter) -- C:\Windows\SysNative\Drivers\btfilter.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_RCP) -- C:\Windows\SysNative\Drivers\btath_rcp.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_LWFLT) -- C:\Windows\SysNative\Drivers\btath_lwflt.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_HCRP) -- C:\Windows\SysNative\Drivers\btath_hcrp.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_A2DP) -- C:\Windows\SysNative\Drivers\btath_a2dp.sys (Qualcomm Atheros) DRV:64bit: - (btath_avdt) -- C:\Windows\SysNative\Drivers\btath_avdt.sys (Qualcomm Atheros) DRV:64bit: - (BTATH_BUS) -- C:\Windows\SysNative\Drivers\btath_bus.sys (Qualcomm Atheros) DRV:64bit: - (USBHUB3) -- C:\Windows\SysNative\Drivers\USBHUB3.SYS (Microsoft Corporation) DRV:64bit: - (pdc) -- C:\Windows\SysNative\Drivers\pdc.sys (Microsoft Corporation) DRV:64bit: - (WFPLWFS) -- C:\Windows\SysNative\Drivers\wfplwfs.sys (Microsoft Corporation) DRV:64bit: - (sdbus) -- C:\Windows\SysNative\Drivers\sdbus.sys (Microsoft Corporation) DRV:64bit: - (FxPPM) -- C:\Windows\SysNative\Drivers\fxppm.sys (Microsoft Corporation) DRV:64bit: - (athr) -- C:\Windows\SysNative\Drivers\athw8x.sys (Qualcomm Atheros Communications, Inc.) DRV:64bit: - (RdpVideoMiniport) -- C:\Windows\SysNative\Drivers\rdpvideominiport.sys (Microsoft Corporation) DRV:64bit: - (sdstor) -- C:\Windows\SysNative\Drivers\sdstor.sys (Microsoft Corporation) DRV:64bit: - (dam) -- C:\Windows\SysNative\Drivers\dam.sys (Microsoft Corporation) DRV:64bit: - (WSDScan) -- C:\Windows\SysNative\Drivers\WSDScan.sys (Microsoft Corporation) DRV:64bit: - (igfx) -- C:\Windows\SysNative\Drivers\igdkmd64.sys (Intel Corporation) DRV:64bit: - (USBXHCI) -- C:\Windows\SysNative\Drivers\USBXHCI.SYS (Microsoft Corporation) DRV:64bit: - (UCX01000) -- C:\Windows\SysNative\Drivers\UCX01000.SYS (Microsoft Corporation) DRV:64bit: - (GPIOClx0101) -- C:\Windows\SysNative\Drivers\msgpioclx.sys (Microsoft Corporation) DRV:64bit: - (msgpiowin32) -- C:\Windows\SysNative\Drivers\msgpiowin32.sys (Microsoft Corporation) DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\Drivers\evbda.sys (Broadcom Corporation) DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\Drivers\bxvbda.sys (Broadcom Corporation) DRV:64bit: - (TPM) -- C:\Windows\SysNative\Drivers\tpm.sys (Microsoft Corporation) DRV:64bit: - (BthAvrcpTg) -- C:\Windows\SysNative\Drivers\BthAvrcpTg.sys (Microsoft Corporation) DRV:64bit: - (bthhfhid) -- C:\Windows\SysNative\Drivers\BthhfHid.sys (Microsoft Corporation) DRV:64bit: - (ETD) -- C:\Windows\SysNative\Drivers\ETD.sys (ELAN Microelectronics Corp.) DRV:64bit: - (SynTP) -- C:\Windows\SysNative\Drivers\SynTP.sys (Synaptics Incorporated) DRV:64bit: - (SmbDrvI) -- C:\Windows\SysNative\Drivers\Smb_driver_Intel.sys (Synaptics Incorporated) DRV:64bit: - (bScsiSDa) -- C:\Windows\SysNative\Drivers\bScsiSDa.sys (Broadcom Corporation) DRV:64bit: - (b57xdbd) -- C:\Windows\SysNative\Drivers\b57xdbd.sys (Broadcom Corporation) DRV:64bit: - (b57xdmp) -- C:\Windows\SysNative\Drivers\b57xdmp.sys (Broadcom Corporation) DRV:64bit: - (Fs_Rec) -- C:\WINDOWS\SysNative\drivers\fs_rec.sys (Microsoft Corporation) DRV:64bit: - (condrv) -- C:\Windows\SysNative\Drivers\condrv.sys (Microsoft Corporation) DRV:64bit: - (VSTXRAID) -- C:\Windows\SysNative\Drivers\VSTXRAID.SYS (VIA Corporation) DRV:64bit: - (VerifierExt) -- C:\Windows\SysNative\Drivers\VerifierExt.sys (Microsoft Corporation) DRV:64bit: - (UASPStor) -- C:\Windows\SysNative\Drivers\uaspstor.sys (Microsoft Corporation) DRV:64bit: - (acpiex) -- C:\Windows\SysNative\Drivers\acpiex.sys (Microsoft Corporation) DRV:64bit: - (spaceport) -- C:\Windows\SysNative\Drivers\spaceport.sys (Microsoft Corporation) DRV:64bit: - (storahci) -- C:\Windows\SysNative\Drivers\storahci.sys (Microsoft Corporation) DRV:64bit: - (mvumis) -- C:\Windows\SysNative\Drivers\mvumis.sys (Marvell Semiconductor, Inc.) DRV:64bit: - (stexstor) -- C:\Windows\SysNative\Drivers\stexstor.sys (Promise Technology, Inc.) DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\Drivers\lsi_sas2.sys (LSI Corporation) DRV:64bit: - (LSI_SSS) -- C:\Windows\SysNative\Drivers\lsi_sss.sys (LSI Corporation) DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\Drivers\HpSAMD.sys (Hewlett-Packard Company) DRV:64bit: - (EhStorTcgDrv) -- C:\Windows\SysNative\Drivers\EhStorTcgDrv.sys (Microsoft Corporation) DRV:64bit: - (EhStorClass) -- C:\Windows\SysNative\Drivers\EhStorClass.sys (Microsoft Corporation) DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\Drivers\amdsbs.sys (AMD Technologies Inc.) DRV:64bit: - (3ware) -- C:\Windows\SysNative\Drivers\3ware.sys (LSI) DRV:64bit: - (amdsata) -- C:\Windows\SysNative\Drivers\amdsata.sys (Advanced Micro Devices) DRV:64bit: - (amdxata) -- C:\Windows\SysNative\Drivers\amdxata.sys (Advanced Micro Devices) DRV:64bit: - (CLFS) -- C:\Windows\SysNative\Drivers\clfs.sys (Microsoft Corporation) DRV:64bit: - (vpci) -- C:\Windows\SysNative\Drivers\vpci.sys (Microsoft Corporation) DRV:64bit: - (WdFilter) -- C:\Windows\SysNative\Drivers\WdFilter.sys (Microsoft Corporation) DRV:64bit: - (WdBoot) -- C:\Windows\SysNative\Drivers\WdBoot.sys (Microsoft Corporation) DRV:64bit: - (terminpt) -- C:\Windows\SysNative\Drivers\terminpt.sys (Microsoft Corporation) DRV:64bit: - (WSDPrintDevice) -- C:\Windows\SysNative\Drivers\WSDPrint.sys (Microsoft Corporation) DRV:64bit: - (mshidumdf) -- C:\Windows\SysNative\Drivers\mshidumdf.sys (Microsoft Corporation) DRV:64bit: - (BasicDisplay) -- C:\Windows\SysNative\Drivers\BasicDisplay.sys (Microsoft Corporation) DRV:64bit: - (HyperVideo) -- C:\Windows\SysNative\Drivers\HyperVideo.sys (Microsoft Corporation) DRV:64bit: - (BasicRender) -- C:\Windows\SysNative\Drivers\BasicRender.sys (Microsoft Corporation) DRV:64bit: - (gencounter) -- C:\Windows\SysNative\Drivers\vmgencounter.sys (Microsoft Corporation) DRV:64bit: - (kdnic) -- C:\Windows\SysNative\Drivers\kdnic.sys (Microsoft Corporation) DRV:64bit: - (acpitime) -- C:\Windows\SysNative\Drivers\acpitime.sys (Microsoft Corporation) DRV:64bit: - (npsvctrig) -- C:\Windows\SysNative\Drivers\npsvctrig.sys (Microsoft Corporation) DRV:64bit: - (WpdUpFltr) -- C:\Windows\SysNative\Drivers\WpdUpFltr.sys (Microsoft Corporation) DRV:64bit: - (acpipagr) -- C:\Windows\SysNative\Drivers\acpipagr.sys (Microsoft Corporation) DRV:64bit: - (hyperkbd) -- C:\Windows\SysNative\Drivers\hyperkbd.sys (Microsoft Corporation) DRV:64bit: - (SerCx) -- C:\Windows\SysNative\Drivers\SerCx.sys (Microsoft Corporation) DRV:64bit: - (SpbCx) -- C:\Windows\SysNative\Drivers\SpbCx.sys (Microsoft Corporation) DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\Drivers\TsUsbGD.sys (Microsoft Corporation) DRV:64bit: - (BthHFEnum) -- C:\Windows\SysNative\Drivers\bthhfenum.sys (Microsoft Corporation) DRV:64bit: - (dmvsc) -- C:\Windows\SysNative\Drivers\dmvsc.sys (Microsoft Corporation) DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\Drivers\TsUsbFlt.sys (Microsoft Corporation) DRV:64bit: - (Vid) -- C:\Windows\SysNative\Drivers\Vid.sys (Microsoft Corporation) DRV:64bit: - (storvsp) -- C:\Windows\SysNative\Drivers\storvsp.sys (Microsoft Corporation) DRV:64bit: - (wpcfltr) -- C:\Windows\SysNative\Drivers\wpcfltr.sys (Microsoft Corporation) DRV:64bit: - (vmbusr) -- C:\Windows\SysNative\Drivers\vmbusr.sys (Microsoft Corporation) DRV:64bit: - (vpcivsp) -- C:\Windows\SysNative\Drivers\vpcivsp.sys (Microsoft Corporation) DRV:64bit: - (BthLEEnum) -- C:\Windows\SysNative\Drivers\BthLEEnum.sys (Microsoft Corporation) DRV:64bit: - (NdisImPlatform) -- C:\Windows\SysNative\Drivers\NdisImPlatform.sys (Microsoft Corporation) DRV:64bit: - (MsLldp) -- C:\Windows\SysNative\Drivers\mslldp.sys (Microsoft Corporation) DRV:64bit: - (Ndu) -- C:\Windows\SysNative\Drivers\Ndu.sys (Microsoft Corporation) DRV:64bit: - (iaStorA) -- C:\Windows\SysNative\Drivers\iaStorA.sys (Intel Corporation) DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\Drivers\HECIx64.sys (Intel Corporation) DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\Drivers\IntcDAud.sys (Intel(R) Corporation) DRV:64bit: - (bScsiMSa) -- C:\Windows\SysNative\Drivers\bScsiMSa.sys (Broadcom Corporation) DRV:64bit: - (k57nd60a) -- C:\Windows\SysNative\Drivers\k57nd60a.sys (Broadcom Corporation) DRV:64bit: - (VMLiteUSB) -- C:\Windows\SysNative\Drivers\VMLiteUSB.sys (VMLite, Inc.) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2481020 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 03 DC CD 80 EC DA CD 01 [binary data] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie IE - HKCU\..\SearchScopes,DefaultScope = IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR IE - HKCU\..\SearchScopes\{1BD44A95-EC69-4314-9CA9-7928EF68BE05}: "URL" = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searcerms}&src=IE-SearchBox&FORM=IE10SR IE - HKCU\..\SearchScopes\{765AB8F7-938A-4221-AAC5-02BB110034C0}: "URL" = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYDE&apn_uid=68B7AA94-7AEB-4F3A-A619-CAE4CBB89206&apn_sauid=7D33B190-8E6F-4CE6-9167-E09C068E4808 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\WINDOWS\SysWOW64\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) [2012.12.19 22:10:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Rouven\AppData\Roaming\mozilla\Firefox\Profiles\extensions [2012.12.13 21:29:00 | 000,199,445 | ---- | M] () (No name found) -- C:\Users\Rouven\AppData\Roaming\mozilla\firefox\profiles\extensions\movie2kdownloader@movie2kdownloader.com.xpi ========== Chrome ========== CHR - homepage: CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{googleriginalQueryForSuggestion}{google:assistedQueryStats}{google:se archFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter} CHR - homepage: CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.97\pdf.dll CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\WINDOWS\SysWOW64\npDeployJava1.dll CHR - Extension: Google Drive = C:\Users\Rouven\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\Rouven\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Google-Suche = C:\Users\Rouven\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Skype Click to Call = C:\Users\Rouven\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\ CHR - Extension: Google Mail = C:\Users\Rouven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2012.07.26 06:26:49 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\Drivers\etc\hosts O2:64bit: - BHO: (ExplorerBHO Class) - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Programme\Classic Shell\ClassicExplorer64.dll (IvoSoft) O2:64bit: - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O2:64bit: - BHO: (CIESpeechBHO Class) - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations) O2:64bit: - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.) O2:64bit: - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) O2:64bit: - BHO: (ClassicIE9BHO Class) - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Programme\Classic Shell\ClassicIE9DLL_64.dll (IvoSoft) O2 - BHO: (ExplorerBHO Class) - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Programme\Classic Shell\ClassicExplorer32.dll (IvoSoft) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O2 - BHO: (ClassicIE9BHO Class) - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Programme\Classic Shell\ClassicIE9DLL_32.dll (IvoSoft) O3:64bit: - HKLM\..\Toolbar: (Classic Explorer Bar) - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Programme\Classic Shell\ClassicExplorer64.dll (IvoSoft) O3 - HKLM\..\Toolbar: (Classic Explorer Bar) - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Programme\Classic Shell\ClassicExplorer32.dll (IvoSoft) O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - No CLSID value found. O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4:64bit: - HKLM..\Run: [Broadcom Wireless Manager UI] C:\Programme\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.EXE (Broadcom Corporation) O4:64bit: - HKLM..\Run: [BtPreLoad] C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe () O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation) O4:64bit: - HKLM..\Run: [RtHDVBg_Dolby] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG) O4 - HKLM..\Run: [Dolby Home Theater v4] C:\Dolby PCEE4\pcee4.exe (Dolby Laboratories Inc.) O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation) O4 - HKLM..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe (Samsung Electronics Co., Ltd.) O4 - HKLM..\Run: [LManager] File not found O4 - HKCU..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe (Samsung) O4 - HKCU..\Run: [Badoo Desktop] C:\ProgramData\Badoo\Badoo Desktop\1.6.55.1183\Badoo.Desktop.exe (Badoo) O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKCU..\Run: [EPSON SX430 Series] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE /FU "C:\Users\Rouven\AppData\Local\Temp\E_S49C7.tmp" /EF "HKCU" File not found O4 - HKCU..\Run: [EPSON0454AA (Epson Stylus SX430)] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE /FU "C:\Users\Rouven\AppData\Local\Temp\E_S4BBB.tmp" /EF "HKCU" File not found O4 - HKCU..\Run: [KiesAirMessage] C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe (Samsung Electronics) O4 - HKCU..\Run: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe (Samsung) O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableCAD = 1 O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 File not found O8:64bit: - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8:64bit: - Extra context menu item: Nach Microsoft E&xcel exportieren - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\SysWow64\GPhotos.scr (Google Inc.) O8 - Extra context menu item: An OneNote s&enden - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O8 - Extra context menu item: Nach Microsoft E&xcel exportieren - C:\Programme\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation) O9:64bit: - Extra Button: An OneNote senden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : An OneNote s&enden - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programme\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Programme\Classic Shell\ClassicIE9_32.exe (IvoSoft) O9:64bit: - Extra 'Tools' menuitem : Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations) O9:64bit: - Extra Button: Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9:64bit: - Extra 'Tools' menuitem : Verknüpfte &OneNote-Notizen - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Programme\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation) O9:64bit: - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Programme\Classic Shell\ClassicIE9_32.exe (IvoSoft) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{33EF4204-CCA0-4D8B-B252-8E074BAE0792}: DhcpNameServer = 192.168.2.1 O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Programme\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O18:64bit: - Protocol\Handler\skype4com - No CLSID value found O18:64bit: - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Handler\ms-help - No CLSID value found O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18:64bit: - Protocol\Filter\text/xml {807573E5-5146-11D5-A672-00B0D022E945} - C:\Programme\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL (Microsoft Corporation) O20:64bit: - AppInit_DLLs: (C:\WINDOWS\system32\nvinitx.dll) - C:\Windows\SysNative\nvinitx.dll (NVIDIA Corporation) O20 - AppInit_DLLs: (C:\WINDOWS\SysWOW64\nvinit.dll) - C:\Windows\SysWOW64\nvinit.dll (NVIDIA Corporation) O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation) O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\WINDOWS\SysNative\igfxdev.dll (Intel Corporation) O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O28:64bit: - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programme\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL (Microsoft Corporation) O30 - LSA: Security Packages - (livessp) - File not found O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{172f5193-47bd-11e2-be69-b888e3a5f12a}\Shell - "" = AutoRun O33 - MountPoints2\{172f5193-47bd-11e2-be69-b888e3a5f12a}\Shell\AutoRun\command - "" = "G:\SETUP.EXE" O33 - MountPoints2\{172f5193-47bd-11e2-be69-b888e3a5f12a}\Shell\configure\command - "" = G:\SETUP.EXE O33 - MountPoints2\{172f5193-47bd-11e2-be69-b888e3a5f12a}\Shell\install\command - "" = G:\SETUP.EXE O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013.01.07 02:07:47 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Malwarebytes [2013.01.07 02:07:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2013.01.07 02:07:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2013.01.07 02:07:23 | 000,024,176 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys [2013.01.07 02:07:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware [2013.01.07 02:07:11 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Programs [2013.01.07 01:50:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [2013.01.07 01:49:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight [2013.01.07 01:45:06 | 002,367,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSService.dll [2013.01.07 01:45:05 | 013,640,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Xaml.dll [2013.01.07 01:44:49 | 003,265,256 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\evbda.sys [2013.01.07 01:44:43 | 014,259,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmp.dll [2013.01.07 01:44:42 | 010,791,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll [2013.01.07 01:44:33 | 002,397,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WpcMon.exe [2013.01.07 01:44:32 | 003,847,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d2d1.dll [2013.01.07 01:44:30 | 003,964,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinSAT.exe [2013.01.07 01:44:28 | 011,875,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmp.dll [2013.01.07 01:44:24 | 000,533,224 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bxvbda.sys [2013.01.07 01:44:22 | 001,513,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vssapi.dll [2013.01.07 01:44:20 | 001,825,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntdll.dll [2013.01.07 01:44:16 | 002,219,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d10warp.dll [2013.01.07 01:44:16 | 001,739,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RacEngn.dll [2013.01.07 01:44:16 | 001,019,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MsSpellCheckingFacility.dll [2013.01.07 01:44:15 | 001,304,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Media.Streaming.dll [2013.01.07 01:44:15 | 001,096,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmpmde.dll [2013.01.07 01:44:14 | 000,757,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uDWM.dll [2013.01.07 01:44:12 | 000,389,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MMDevAPI.dll [2013.01.07 01:44:11 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\provcore.dll [2013.01.07 01:44:09 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ncsi.dll [2013.01.07 01:44:08 | 000,543,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlroamextension.dll [2013.01.07 01:44:07 | 001,145,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winmde.dll [2013.01.07 01:44:07 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinSATAPI.dll [2013.01.07 01:44:03 | 000,995,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Media.Streaming.dll [2013.01.07 01:44:02 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\apphelp.dll [2013.01.07 01:43:59 | 001,590,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WindowsCodecs.dll [2013.01.07 01:43:59 | 000,468,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFMediaEngine.dll [2013.01.07 01:43:59 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\IPHLPAPI.DLL [2013.01.07 01:43:58 | 000,709,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MsSpellCheckingFacility.dll [2013.01.07 01:43:56 | 001,743,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\combase.dll [2013.01.07 01:43:55 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFPlay.dll [2013.01.07 01:43:53 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dnsapi.dll [2013.01.07 01:43:53 | 000,420,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WWAHost.exe [2013.01.07 01:43:51 | 000,866,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WinTypes.dll [2013.01.07 01:43:51 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapi.dll [2013.01.07 01:43:51 | 000,631,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UserLanguagesCpl.dll [2013.01.07 01:43:50 | 000,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rascfg.dll [2013.01.07 01:43:49 | 000,545,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskeng.exe [2013.01.07 01:43:49 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsvr.dll [2013.01.07 01:43:49 | 000,344,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlidcredprov.dll [2013.01.07 01:43:48 | 000,617,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfsrcsnk.dll [2013.01.07 01:43:48 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rascfg.dll [2013.01.07 01:43:47 | 000,249,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpnprv.dll [2013.01.07 01:43:47 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bcdsrv.dll [2013.01.07 01:43:46 | 001,400,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\propsys.dll [2013.01.07 01:43:46 | 000,337,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBXHCI.SYS [2013.01.07 01:43:46 | 000,332,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wintrust.dll [2013.01.07 01:43:43 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VAN.dll [2013.01.07 01:43:43 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlroamextension.dll [2013.01.07 01:43:43 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinSATAPI.dll [2013.01.07 01:43:42 | 000,203,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSClient.dll [2013.01.07 01:43:41 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\services.exe [2013.01.07 01:43:41 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fveapibase.dll [2013.01.07 01:43:37 | 000,891,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\winmde.dll [2013.01.07 01:43:37 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appwiz.cpl [2013.01.07 01:43:37 | 000,361,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFMediaEngine.dll [2013.01.07 01:43:37 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bisrv.dll [2013.01.07 01:43:37 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\psmsrv.dll [2013.01.07 01:43:35 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhengine.dll [2013.01.07 01:43:35 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsutil.dll [2013.01.07 01:43:35 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSSync.dll [2013.01.07 01:43:35 | 000,028,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\msgpiowin32.sys [2013.01.07 01:43:34 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSClient.dll [2013.01.07 01:43:31 | 000,670,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\appwiz.cpl [2013.01.07 01:43:31 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WWAHost.exe [2013.01.07 01:43:31 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFPlay.dll [2013.01.07 01:43:31 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSSync.dll [2013.01.07 01:43:31 | 000,120,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\msgpioclx.sys [2013.01.07 01:43:31 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PackageStateRoaming.dll [2013.01.07 01:43:30 | 001,369,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\RacEngn.dll [2013.01.07 01:43:30 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wpncore.dll [2013.01.07 01:43:30 | 000,390,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.BackgroundTransfer.dll [2013.01.07 01:43:30 | 000,228,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ProximityService.dll [2013.01.07 01:43:30 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmredir.dll [2013.01.07 01:43:30 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TpmTasks.dll [2013.01.07 01:43:29 | 000,533,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\provcore.dll [2013.01.07 01:43:29 | 000,256,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvproc.dll [2013.01.07 01:43:29 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PackageStateRoaming.dll [2013.01.07 01:43:29 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\setbcdlocale.dll [2013.01.07 01:43:27 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinapi.dll [2013.01.07 01:43:27 | 000,027,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\avrt.dll [2013.01.07 01:43:26 | 001,247,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\combase.dll [2013.01.07 01:43:26 | 000,480,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\VAN.dll [2013.01.07 01:43:26 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-kernel-power-events.dll [2013.01.07 01:43:25 | 002,016,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\batmeter.dll [2013.01.07 01:43:25 | 002,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\batmeter.dll [2013.01.07 01:43:25 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UserLanguagesCpl.dll [2013.01.07 01:43:25 | 000,449,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsrcsnk.dll [2013.01.07 01:43:25 | 000,411,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\FWPKCLNT.SYS [2013.01.07 01:43:25 | 000,148,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\tpm.sys [2013.01.07 01:43:25 | 000,062,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpfve.sys [2013.01.07 01:43:24 | 000,465,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WinTypes.dll [2013.01.07 01:43:24 | 000,303,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dxgmms1.sys [2013.01.07 01:43:24 | 000,212,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\UCX01000.SYS [2013.01.07 01:43:24 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SettingSyncHost.exe [2013.01.07 01:43:24 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\perfdisk.dll [2013.01.07 01:43:24 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\perfdisk.dll [2013.01.07 01:43:23 | 001,342,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\user32.dll [2013.01.07 01:43:23 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfsvr.dll [2013.01.07 01:43:23 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.BackgroundTransfer.dll [2013.01.07 01:43:23 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlidcredprov.dll [2013.01.07 01:43:23 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhevents.dll [2013.01.07 01:43:23 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\svchost.exe [2013.01.07 01:43:22 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winsrv.dll [2013.01.07 01:43:21 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvproc.dll [2013.01.07 01:43:21 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\perfnet.dll [2013.01.07 01:43:20 | 000,699,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinapi.dll [2013.01.07 01:43:20 | 000,627,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpksetup.exe [2013.01.07 01:43:20 | 000,437,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfh264enc.dll [2013.01.07 01:43:20 | 000,413,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfh264enc.dll [2013.01.07 01:43:20 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevPropMgr.dll [2013.01.07 01:43:20 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwm.exe [2013.01.07 01:43:20 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SettingSyncHost.exe [2013.01.07 01:43:20 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvinst.exe [2013.01.07 01:43:19 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcfg.dll [2013.01.07 01:43:19 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvinst.exe [2013.01.07 01:43:12 | 002,066,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3d11.dll [2013.01.07 01:43:12 | 001,701,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3d11.dll [2013.01.07 01:43:12 | 000,588,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\webio.dll [2013.01.07 01:43:12 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxgi.dll [2013.01.07 01:43:12 | 000,417,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\webio.dll [2013.01.07 01:43:12 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\perfos.dll [2013.01.07 01:43:12 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DAFWSD.dll [2013.01.07 01:43:12 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhsrchapi.dll [2013.01.07 01:43:12 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\perfnet.dll [2013.01.07 01:43:11 | 000,280,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcat.dll [2013.01.07 01:43:11 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SystemEventsBrokerServer.dll [2013.01.07 01:43:11 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TimeBrokerServer.dll [2013.01.07 01:43:11 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\CscMig.dll [2013.01.07 01:43:11 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhsvc.dll [2013.01.07 01:43:10 | 000,163,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sspicli.dll [2013.01.07 01:43:10 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhmanagew.exe [2013.01.07 01:43:10 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhshl.dll [2013.01.07 01:43:10 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpremove.exe [2013.01.07 01:43:10 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasdiag.dll [2013.01.07 01:43:10 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhlisten.dll [2013.01.07 01:43:10 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasdiag.dll [2013.01.07 01:43:10 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cryptdlg.dll [2013.01.07 01:43:10 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\cryptdlg.dll [2013.01.07 01:43:09 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vsstrace.dll [2013.01.07 01:43:09 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhsrchph.dll [2013.01.07 01:43:09 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhcleanup.dll [2013.01.07 01:43:07 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhautoplay.dll [2013.01.07 01:43:07 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ndptsp.tsp [2013.01.07 01:43:07 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasmxs.dll [2013.01.07 01:43:07 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhtask.dll [2013.01.07 01:43:07 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasmxs.dll [2013.01.07 01:43:07 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rasser.dll [2013.01.07 01:43:07 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sdbinst.exe [2013.01.07 01:43:07 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vdsldr.exe [2013.01.07 01:43:07 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\sdbinst.exe [2013.01.07 01:43:06 | 000,120,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vds_ps.dll [2013.01.07 01:43:06 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ndptsp.tsp [2013.01.07 01:43:06 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kmddsp.tsp [2013.01.07 01:43:06 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\vds_ps.dll [2013.01.07 01:43:06 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\perfctrs.dll [2013.01.07 01:43:06 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\perfctrs.dll [2013.01.07 01:43:06 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\kmddsp.tsp [2013.01.07 01:43:06 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\perfproc.dll [2013.01.07 01:43:06 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\LangCleanupSysprepAction.dll [2013.01.07 01:43:06 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\perfproc.dll [2013.01.07 01:43:06 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\perfos.dll [2013.01.07 01:43:06 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sspisrv.dll [2013.01.07 01:43:06 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\rasser.dll [2013.01.07 01:43:06 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fhsvcctl.dll [2013.01.07 01:43:06 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\eventcls.dll [2013.01.07 01:43:06 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\eventcls.dll [2013.01.07 01:43:06 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MUILanguageCleanup.dll [2013.01.07 01:43:05 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BtaMPM.sys [2013.01.07 01:43:05 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\spwmp.dll [2013.01.07 01:43:05 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\spwmp.dll [2013.01.07 01:43:05 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpksetupproxyserv.dll [2013.01.07 01:43:05 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\shimeng.dll [2013.01.07 01:43:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msdxm.ocx [2013.01.07 01:43:05 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dxmasf.dll [2013.01.07 01:43:05 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msdxm.ocx [2013.01.07 01:43:05 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dxmasf.dll [2013.01.07 01:43:04 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\cdd.dll [2013.01.07 01:43:04 | 000,031,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BthAvrcpTg.sys [2013.01.07 01:43:04 | 000,029,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\BthhfHid.sys [2013.01.07 01:43:03 | 009,374,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wmploc.DLL [2013.01.07 01:43:02 | 009,374,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wmploc.DLL [2013.01.07 01:40:53 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\newdev.dll [2013.01.07 01:40:52 | 000,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\newdev.dll [2013.01.07 01:40:52 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\newdev.exe [2013.01.07 01:40:52 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ndadmin.exe [2013.01.07 01:40:52 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\newdev.exe [2013.01.07 01:40:52 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ndadmin.exe [2013.01.07 01:40:50 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wwanprotdim.dll [2013.01.07 01:04:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2013.01.07 01:02:03 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\ElevatedDiagnostics [2013.01.07 00:42:46 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2013.01.06 17:34:21 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar [2013.01.06 17:34:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Convar [2013.01.05 18:17:19 | 000,181,856 | ---- | C] (SoftwareNetz) -- C:\WINDOWS\snui.exe [2013.01.05 18:17:19 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoftwareNetz [2013.01.05 18:17:19 | 000,000,000 | ---D | C] -- C:\softwarenetz [2013.01.03 22:32:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell [2013.01.03 22:32:02 | 000,000,000 | ---D | C] -- C:\Program Files\Classic Shell [2013.01.02 22:19:55 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\NativeFus_Log [2013.01.02 22:19:55 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CrashDump [2013.01.02 22:19:52 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Samsung [2013.01.02 22:19:50 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Samsung [2013.01.02 22:19:48 | 000,000,000 | ---D | C] -- C:\Users\Rouven\Documents\samsung [2013.01.02 22:10:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MyFree Codec [2013.01.02 22:04:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung [2013.01.02 22:04:09 | 004,659,712 | ---- | C] (Dmitry Streblechenko) -- C:\WINDOWS\SysWow64\Redemption.dll [2013.01.02 22:03:45 | 000,821,824 | ---- | C] (Devguru Co., Ltd.) -- C:\WINDOWS\SysWow64\dgderapi.dll [2013.01.02 22:03:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Samsung [2013.01.02 22:03:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Samsung [2013.01.02 22:02:05 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Downloaded Installations [2012.12.30 20:45:47 | 000,000,000 | ---D | C] -- C:\Users\Rouven\.thumbnails [2012.12.30 20:44:45 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\fontconfig [2012.12.30 20:44:44 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\gegl-0.2 [2012.12.30 20:44:44 | 000,000,000 | ---D | C] -- C:\Users\Rouven\.gimp-2.8 [2012.12.30 20:41:24 | 000,000,000 | ---D | C] -- C:\Program Files\GIMP 2 [2012.12.26 15:03:39 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\AthbtTrayPhone [2012.12.26 14:46:19 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\(54-9B-12-5B-B2-00) [2012.12.26 05:03:12 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\NVIDIA [2012.12.26 05:03:04 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\2K Games [2012.12.26 05:02:56 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_7.dll [2012.12.26 05:02:56 | 000,518,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_7.dll [2012.12.26 05:02:56 | 000,077,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_5.dll [2012.12.26 05:02:56 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_5.dll [2012.12.26 05:02:55 | 002,526,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_43.dll [2012.12.26 05:02:55 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_43.dll [2012.12.26 05:02:55 | 001,907,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dcsx_43.dll [2012.12.26 05:02:55 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dcsx_43.dll [2012.12.26 05:02:55 | 000,511,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_43.dll [2012.12.26 05:02:55 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_43.dll [2012.12.26 05:02:55 | 000,276,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx11_43.dll [2012.12.26 05:02:55 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx11_43.dll [2012.12.26 05:02:55 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_7.dll [2012.12.26 05:02:55 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_7.dll [2012.12.26 05:02:54 | 002,401,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_43.dll [2012.12.26 05:02:54 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_43.dll [2012.12.26 05:02:53 | 000,530,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_6.dll [2012.12.26 05:02:53 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_6.dll [2012.12.26 05:02:53 | 000,078,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_4.dll [2012.12.26 05:02:53 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_4.dll [2012.12.26 05:02:52 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_6.dll [2012.12.26 05:02:52 | 000,176,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_6.dll [2012.12.26 05:02:51 | 000,517,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_5.dll [2012.12.26 05:02:51 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_5.dll [2012.12.26 05:02:51 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_7.dll [2012.12.26 05:02:51 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_7.dll [2012.12.26 05:02:50 | 005,554,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dcsx_42.dll [2012.12.26 05:02:50 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dcsx_42.dll [2012.12.26 05:02:50 | 002,582,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_42.dll [2012.12.26 05:02:50 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_42.dll [2012.12.26 05:02:50 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_5.dll [2012.12.26 05:02:50 | 000,176,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_5.dll [2012.12.26 05:02:49 | 002,475,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_42.dll [2012.12.26 05:02:49 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_42.dll [2012.12.26 05:02:49 | 000,523,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_42.dll [2012.12.26 05:02:49 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_42.dll [2012.12.26 05:02:49 | 000,285,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx11_42.dll [2012.12.26 05:02:49 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx11_42.dll [2012.12.26 05:02:48 | 005,425,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_41.dll [2012.12.26 05:02:48 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_41.dll [2012.12.26 05:02:48 | 002,430,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_41.dll [2012.12.26 05:02:48 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_41.dll [2012.12.26 05:02:48 | 000,521,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_4.dll [2012.12.26 05:02:48 | 000,520,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_41.dll [2012.12.26 05:02:48 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_4.dll [2012.12.26 05:02:48 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_41.dll [2012.12.26 05:02:48 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_4.dll [2012.12.26 05:02:48 | 000,174,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_4.dll [2012.12.26 05:02:48 | 000,073,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_3.dll [2012.12.26 05:02:48 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_3.dll [2012.12.26 05:02:47 | 000,024,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_6.dll [2012.12.26 05:02:47 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_6.dll [2012.12.26 05:02:46 | 002,605,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_40.dll [2012.12.26 05:02:46 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_40.dll [2012.12.26 05:02:46 | 000,519,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_40.dll [2012.12.26 05:02:46 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_40.dll [2012.12.26 05:02:45 | 005,631,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_40.dll [2012.12.26 05:02:45 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_40.dll [2012.12.26 05:02:44 | 000,518,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_3.dll [2012.12.26 05:02:44 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_3.dll [2012.12.26 05:02:44 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_3.dll [2012.12.26 05:02:44 | 000,175,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_3.dll [2012.12.26 05:02:44 | 000,074,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_2.dll [2012.12.26 05:02:44 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_2.dll [2012.12.26 05:02:43 | 000,025,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_5.dll [2012.12.26 05:02:43 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_5.dll [2012.12.26 05:02:41 | 000,513,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_2.dll [2012.12.26 05:02:41 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_2.dll [2012.12.26 05:02:41 | 000,072,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_1.dll [2012.12.26 05:02:41 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_1.dll [2012.12.26 05:02:39 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_2.dll [2012.12.26 05:02:39 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_2.dll [2012.12.26 05:02:38 | 001,942,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_39.dll [2012.12.26 05:02:38 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_39.dll [2012.12.26 05:02:38 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_39.dll [2012.12.26 05:02:38 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_39.dll [2012.12.26 05:02:37 | 004,992,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_39.dll [2012.12.26 05:02:37 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_39.dll [2012.12.26 05:02:36 | 000,511,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_1.dll [2012.12.26 05:02:36 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_1.dll [2012.12.26 05:02:36 | 000,068,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAPOFX1_0.dll [2012.12.26 05:02:36 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAPOFX1_0.dll [2012.12.26 05:02:35 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_1.dll [2012.12.26 05:02:35 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_1.dll [2012.12.26 05:02:35 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_4.dll [2012.12.26 05:02:35 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_4.dll [2012.12.26 05:02:33 | 001,941,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_38.dll [2012.12.26 05:02:33 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_38.dll [2012.12.26 05:02:33 | 000,540,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_38.dll [2012.12.26 05:02:33 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_38.dll [2012.12.26 05:02:32 | 004,991,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_38.dll [2012.12.26 05:02:32 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_38.dll [2012.12.26 05:02:32 | 000,489,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\XAudio2_0.dll [2012.12.26 05:02:32 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\XAudio2_0.dll [2012.12.26 05:02:32 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine3_0.dll [2012.12.26 05:02:32 | 000,177,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine3_0.dll [2012.12.26 05:02:31 | 004,910,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DX9_37.dll [2012.12.26 05:02:31 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DX9_37.dll [2012.12.26 05:02:31 | 001,860,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_37.dll [2012.12.26 05:02:31 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_37.dll [2012.12.26 05:02:31 | 000,529,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_37.dll [2012.12.26 05:02:31 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_37.dll [2012.12.26 05:02:31 | 000,411,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_10.dll [2012.12.26 05:02:31 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_10.dll [2012.12.26 05:02:31 | 000,028,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_3.dll [2012.12.26 05:02:31 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_3.dll [2012.12.26 05:02:30 | 005,081,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_36.dll [2012.12.26 05:02:30 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_36.dll [2012.12.26 05:02:30 | 002,006,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_36.dll [2012.12.26 05:02:30 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_36.dll [2012.12.26 05:02:30 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_36.dll [2012.12.26 05:02:30 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_36.dll [2012.12.26 05:02:28 | 001,985,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_35.dll [2012.12.26 05:02:28 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_35.dll [2012.12.26 05:02:28 | 000,508,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_35.dll [2012.12.26 05:02:28 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_35.dll [2012.12.26 05:02:28 | 000,411,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_9.dll [2012.12.26 05:02:28 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_9.dll [2012.12.26 05:02:27 | 005,073,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_35.dll [2012.12.26 05:02:27 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_35.dll [2012.12.26 05:02:25 | 000,409,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_8.dll [2012.12.26 05:02:25 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_8.dll [2012.12.26 05:02:25 | 000,021,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\X3DAudio1_2.dll [2012.12.26 05:02:25 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\X3DAudio1_2.dll [2012.12.26 05:02:22 | 004,496,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_34.dll [2012.12.26 05:02:22 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_34.dll [2012.12.26 05:02:22 | 001,401,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_34.dll [2012.12.26 05:02:22 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_34.dll [2012.12.26 05:02:22 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_34.dll [2012.12.26 05:02:22 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_34.dll [2012.12.26 05:02:21 | 000,107,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_3.dll [2012.12.26 05:02:21 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_3.dll [2012.12.26 05:02:20 | 001,400,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\D3DCompiler_33.dll [2012.12.26 05:02:20 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\D3DCompiler_33.dll [2012.12.26 05:02:20 | 000,506,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10_33.dll [2012.12.26 05:02:20 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10_33.dll [2012.12.26 05:02:20 | 000,403,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_7.dll [2012.12.26 05:02:20 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_7.dll [2012.12.26 05:02:19 | 004,494,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_33.dll [2012.12.26 05:02:19 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_33.dll [2012.12.26 05:02:17 | 000,393,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_6.dll [2012.12.26 05:02:17 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_6.dll [2012.12.26 05:02:15 | 000,390,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_5.dll [2012.12.26 05:02:15 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_5.dll [2012.12.26 05:02:14 | 004,398,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_32.dll [2012.12.26 05:02:14 | 003,977,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_31.dll [2012.12.26 05:02:14 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_32.dll [2012.12.26 05:02:14 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_31.dll [2012.12.26 05:02:14 | 000,469,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx10.dll [2012.12.26 05:02:14 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx10.dll [2012.12.26 05:02:14 | 000,364,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_4.dll [2012.12.26 05:02:14 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_4.dll [2012.12.26 05:02:14 | 000,017,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\x3daudio1_1.dll [2012.12.26 05:02:14 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\x3daudio1_1.dll [2012.12.26 05:02:13 | 000,363,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_3.dll [2012.12.26 05:02:13 | 000,354,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_2.dll [2012.12.26 05:02:13 | 000,352,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_1.dll [2012.12.26 05:02:13 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_3.dll [2012.12.26 05:02:13 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_2.dll [2012.12.26 05:02:13 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_1.dll [2012.12.26 05:02:13 | 000,083,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_2.dll [2012.12.26 05:02:13 | 000,083,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xinput1_1.dll [2012.12.26 05:02:13 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_2.dll [2012.12.26 05:02:13 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xinput1_1.dll [2012.12.26 05:02:08 | 003,927,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_30.dll [2012.12.26 05:02:08 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_30.dll [2012.12.26 05:02:07 | 003,830,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_29.dll [2012.12.26 05:02:07 | 003,815,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_28.dll [2012.12.26 05:02:07 | 003,807,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_27.dll [2012.12.26 05:02:07 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_29.dll [2012.12.26 05:02:07 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_28.dll [2012.12.26 05:02:07 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_27.dll [2012.12.26 05:02:07 | 000,355,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\xactengine2_0.dll [2012.12.26 05:02:07 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\xactengine2_0.dll [2012.12.26 05:02:07 | 000,016,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\x3daudio1_0.dll [2012.12.26 05:02:07 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\x3daudio1_0.dll [2012.12.26 05:02:06 | 003,823,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_25.dll [2012.12.26 05:02:06 | 003,767,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_26.dll [2012.12.26 05:02:06 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_25.dll [2012.12.26 05:02:06 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_26.dll [2012.12.26 05:02:05 | 003,544,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\d3dx9_24.dll [2012.12.26 05:02:05 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\d3dx9_24.dll [2012.12.26 04:48:58 | 000,000,000 | ---D | C] -- C:\Users\Rouven\Desktop\Neuer Ordner (2) [2012.12.24 18:47:14 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Steam [2012.12.24 18:47:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam [2012.12.24 18:47:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Steam [2012.12.24 14:30:14 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\VMLite Workstation [2012.12.24 14:30:12 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VMLite Workstation [2012.12.24 14:25:40 | 000,000,000 | ---D | C] -- C:\Users\Rouven\VMLites [2012.12.24 00:33:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies [2012.12.24 00:33:01 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2012.12.24 00:33:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\NV [2012.12.24 00:33:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\NV [2012.12.24 00:32:42 | 003,311,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvc64.dll [2012.12.24 00:32:42 | 002,557,800 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvsvcr.dll [2012.12.24 00:32:42 | 000,877,928 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nv3dappshext.dll [2012.12.24 00:32:42 | 000,063,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvshext.dll [2012.12.24 00:32:42 | 000,055,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nv3dappshextr.dll [2012.12.24 00:32:41 | 006,223,208 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcpl.dll [2012.12.24 00:32:41 | 000,118,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvmctray.dll [2012.12.24 00:31:44 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2012.12.24 00:25:35 | 026,811,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvoglv64.dll [2012.12.24 00:25:35 | 025,256,296 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcompiler.dll [2012.12.24 00:25:35 | 020,335,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvoglv32.dll [2012.12.24 00:25:35 | 018,045,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvd3dumx.dll [2012.12.24 00:25:35 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcompiler.dll [2012.12.24 00:25:35 | 015,122,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvd3dum.dll [2012.12.24 00:25:35 | 015,016,256 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvwgf2umx.dll [2012.12.24 00:25:35 | 012,603,960 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvwgf2um.dll [2012.12.24 00:25:35 | 009,271,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuda.dll [2012.12.24 00:25:35 | 007,819,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuda.dll [2012.12.24 00:25:35 | 007,446,192 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvopencl.dll [2012.12.24 00:25:35 | 006,149,904 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvopencl.dll [2012.12.24 00:25:35 | 002,816,824 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvapi64.dll [2012.12.24 00:25:35 | 002,784,104 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvid.dll [2012.12.24 00:25:35 | 002,606,440 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvid.dll [2012.12.24 00:25:35 | 002,496,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvapi.dll [2012.12.24 00:25:35 | 002,226,024 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvcuvenc.dll [2012.12.24 00:25:35 | 001,874,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvcuvenc.dll [2012.12.24 00:25:35 | 001,805,672 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispco64.dll [2012.12.24 00:25:35 | 001,504,104 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvdispgenco64.dll [2012.12.24 00:25:35 | 000,983,936 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvumdshimx.dll [2012.12.24 00:25:35 | 000,841,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvumdshim.dll [2012.12.24 00:25:35 | 000,245,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\nvinitx.dll [2012.12.24 00:25:35 | 000,201,136 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysWow64\nvinit.dll [2012.12.24 00:25:35 | 000,030,056 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\SysNative\drivers\nvpciflt.sys [2012.12.24 00:24:17 | 000,000,000 | ---D | C] -- C:\NVIDIA [2012.12.24 00:03:18 | 000,000,000 | ---D | C] -- C:\Users\Rouven\Documents\GTA Vice City User Files [2012.12.24 00:01:36 | 000,000,000 | ---D | C] -- |
07.01.2013, 20:37 | #3 |
| Mein Mauszeiger blinkt dauernd? C:\Users\Rouven\AppData\Local\Adobe
__________________[2012.12.23 23:38:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe [2012.12.23 23:38:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe [2012.12.23 23:37:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2012.12.23 23:29:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Badoo [2012.12.23 13:28:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\appmgmt [2012.12.23 05:15:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 [2012.12.23 05:08:27 | 000,000,000 | ---D | C] -- C:\Users\Rouven\Desktop\Neuer Ordner [2012.12.21 19:32:55 | 000,362,496 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll [2012.12.21 19:32:55 | 000,300,032 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll [2012.12.21 19:32:55 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontsub.dll [2012.12.21 19:32:55 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontsub.dll [2012.12.21 19:32:55 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll [2012.12.21 19:32:55 | 000,035,328 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll [2012.12.21 19:32:55 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dciman32.dll [2012.12.21 19:32:55 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpk.dll [2012.12.19 23:28:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\flunatic [2012.12.19 23:28:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\flunatic [2012.12.19 22:10:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer [2012.12.19 22:10:21 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\PutLockerDownloader [2012.12.19 22:10:16 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Mozilla [2012.12.19 19:33:58 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Skype [2012.12.19 19:33:55 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype [2012.12.19 19:33:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2012.12.19 19:33:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2012.12.19 19:33:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype [2012.12.18 23:02:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Acer [2012.12.18 23:02:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Acer [2012.12.18 23:01:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Launch Manager [2012.12.18 23:01:47 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\lm [2012.12.18 22:56:07 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Diagnostics [2012.12.18 22:54:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies [2012.12.18 22:53:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\XPSViewer [2012.12.18 22:53:25 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2012.12.18 22:53:24 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2012.12.18 22:48:33 | 000,778,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll [2012.12.18 22:48:33 | 000,102,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll [2012.12.18 22:48:33 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe [2012.12.18 22:48:31 | 001,166,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll [2012.12.18 22:48:31 | 000,124,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll [2012.12.18 22:48:31 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe [2012.12.18 22:42:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer [2012.12.18 22:41:53 | 000,000,000 | ---D | C] -- C:\ProgramData\OEM [2012.12.18 22:41:52 | 000,000,000 | ---D | C] -- C:\Program Files\Acer [2012.12.18 21:55:16 | 003,554,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll [2012.12.18 21:55:15 | 002,206,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll [2012.12.18 21:55:15 | 002,116,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll [2012.12.18 21:55:14 | 002,380,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [2012.12.18 21:55:13 | 002,764,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll [2012.12.18 21:55:13 | 002,115,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe [2012.12.18 21:55:12 | 001,841,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll [2012.12.18 21:55:12 | 001,610,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll [2012.12.18 21:55:12 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll [2012.12.18 21:55:12 | 001,265,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll [2012.12.18 21:55:12 | 001,226,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll [2012.12.18 21:55:12 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SHCore.dll [2012.12.18 21:55:12 | 000,579,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StructuredQuery.dll [2012.12.18 21:55:11 | 001,403,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi [2012.12.18 21:55:11 | 001,267,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe [2012.12.18 21:55:11 | 000,793,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll [2012.12.18 21:55:11 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.dll [2012.12.18 21:55:10 | 001,217,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi [2012.12.18 21:55:10 | 001,093,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe [2012.12.18 21:55:10 | 000,561,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll [2012.12.18 21:55:10 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SHCore.dll [2012.12.18 21:55:10 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssph.dll [2012.12.18 21:55:10 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe [2012.12.18 21:55:09 | 001,045,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll [2012.12.18 21:55:09 | 000,612,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll [2012.12.18 21:55:09 | 000,517,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe [2012.12.18 21:55:09 | 000,503,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll [2012.12.18 21:55:09 | 000,441,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netio.sys [2012.12.18 21:55:09 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll [2012.12.18 21:55:09 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.dll [2012.12.18 21:55:09 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys [2012.12.18 21:55:08 | 000,962,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usercpl.dll [2012.12.18 21:55:08 | 000,336,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Classpnp.sys [2012.12.18 21:55:08 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcore6.dll [2012.12.18 21:55:08 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Storage.Compression.dll [2012.12.18 21:55:08 | 000,058,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys [2012.12.18 21:55:07 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SpaceControl.dll [2012.12.18 21:55:07 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpcore6.dll [2012.12.18 21:55:05 | 001,636,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll [2012.12.18 21:55:05 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssph.dll [2012.12.18 21:55:05 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\input.dll [2012.12.18 21:55:05 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\input.dll [2012.12.18 21:55:05 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFilterHost.exe [2012.12.18 21:55:05 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Storage.Compression.dll [2012.12.18 21:55:05 | 000,056,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys [2012.12.18 21:55:05 | 000,033,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\battc.sys [2012.12.18 21:55:04 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll [2012.12.18 21:55:04 | 000,757,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FirewallAPI.dll [2012.12.18 21:55:04 | 000,745,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssvp.dll [2012.12.18 21:55:04 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssvp.dll [2012.12.18 21:55:04 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msscntrs.dll [2012.12.18 21:55:04 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcsvc6.dll [2012.12.18 21:55:04 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PCPKsp.dll [2012.12.18 21:55:04 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-pdc.dll [2012.12.18 21:55:03 | 001,836,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWrite.dll [2012.12.18 21:55:03 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysFxUI.dll [2012.12.18 21:55:03 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssphtb.dll [2012.12.18 21:55:03 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSip.dll [2012.12.18 21:55:03 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\icfupgd.dll [2012.12.18 21:55:03 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssitlb.dll [2012.12.18 21:55:03 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxSip.dll [2012.12.18 21:55:03 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PCPKsp.dll [2012.12.18 21:55:03 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeUISrv.exe [2012.12.18 21:55:02 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\drmk.sys [2012.12.18 21:55:02 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll [2012.12.18 21:55:02 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssitlb.dll [2012.12.18 21:55:02 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msscntrs.dll [2012.12.18 21:55:02 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfapigp.dll [2012.12.18 21:55:02 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WSDScan.sys [2012.12.18 21:55:02 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfapigp.dll [2012.12.18 21:55:02 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msshooks.dll [2012.12.18 21:55:02 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msshooks.dll [2012.12.18 21:55:02 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kbdhebl3.dll [2012.12.18 21:55:02 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\kbdhebl3.dll [2012.12.18 21:54:38 | 001,172,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll [2012.12.18 21:54:37 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll [2012.12.18 21:54:37 | 000,929,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll [2012.12.18 21:54:37 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll [2012.12.18 21:54:37 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll [2012.12.18 21:54:37 | 000,673,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll [2012.12.18 21:54:37 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll [2012.12.18 21:54:37 | 000,513,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll [2012.12.18 21:52:57 | 003,244,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll [2012.12.18 21:52:57 | 001,347,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srmclient.dll [2012.12.18 21:52:57 | 000,987,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srmclient.dll [2012.12.18 21:52:57 | 000,652,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srmscan.dll [2012.12.18 21:52:57 | 000,487,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srmscan.dll [2012.12.18 21:52:57 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srmstormod.dll [2012.12.18 21:52:57 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srmstormod.dll [2012.12.18 21:52:57 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dskquota.dll [2012.12.18 21:52:57 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dskquota.dll [2012.12.18 21:52:57 | 000,027,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rdpvideominiport.sys [2012.12.18 21:52:56 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srm.dll [2012.12.18 21:52:56 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srm.dll [2012.12.18 21:52:56 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpudd.dll [2012.12.18 21:52:56 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srmshell.dll [2012.12.18 21:52:56 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adrclient.dll [2012.12.18 21:52:56 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srmshell.dll [2012.12.18 21:52:56 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adrclient.dll [2012.12.18 21:52:56 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srmtrace.dll [2012.12.18 21:52:56 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srmtrace.dll [2012.12.18 21:52:56 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rfxvmt.dll [2012.12.18 21:52:56 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srm_ps.dll [2012.12.18 21:52:56 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srm_ps.dll [2012.12.18 21:52:23 | 000,396,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll [2012.12.18 21:46:41 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll [2012.12.18 21:46:41 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll [2012.12.18 21:46:41 | 000,707,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll [2012.12.18 21:46:39 | 006,971,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe [2012.12.18 21:46:39 | 000,488,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbport.sys [2012.12.18 21:46:38 | 001,184,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Display.dll [2012.12.18 21:46:38 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Display.dll [2012.12.18 21:46:38 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys [2012.12.18 21:46:38 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevDispItemProvider.dll [2012.12.18 21:46:38 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidi2c.sys [2012.12.18 21:46:38 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DevDispItemProvider.dll [2012.12.18 21:46:38 | 000,021,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbd.sys [2012.12.18 21:46:38 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KBDKURD.DLL [2012.12.18 21:46:38 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\KBDKURD.DLL [2012.12.18 21:46:37 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSShared.dll [2012.12.18 21:46:37 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSShared.dll [2012.12.18 21:46:37 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll [2012.12.18 21:46:37 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll [2012.12.18 21:46:37 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll [2012.12.18 21:46:37 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll [2012.12.18 21:46:21 | 011,459,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\glcndFilter.dll [2012.12.18 21:46:20 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll [2012.12.18 21:46:19 | 008,856,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll [2012.12.18 21:46:18 | 008,552,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\glcndFilter.dll [2012.12.18 21:46:17 | 001,526,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll [2012.12.18 21:46:16 | 005,973,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll [2012.12.18 21:46:16 | 005,087,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll [2012.12.18 21:46:16 | 001,566,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll [2012.12.18 21:46:16 | 001,451,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll [2012.12.18 21:46:16 | 001,037,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll [2012.12.18 21:46:16 | 000,976,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll [2012.12.18 21:46:16 | 000,447,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll [2012.12.18 21:46:15 | 002,302,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll [2012.12.18 21:46:15 | 001,619,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll [2012.12.18 21:46:15 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\HelpPane.exe [2012.12.18 21:46:15 | 000,767,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll [2012.12.18 21:46:15 | 000,490,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll [2012.12.18 21:46:15 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ubpm.dll [2012.12.18 21:46:15 | 000,253,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe [2012.12.18 21:46:15 | 000,246,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ubpm.dll [2012.12.18 21:46:14 | 002,033,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll [2012.12.18 21:46:14 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvstore.dll [2012.12.18 21:46:11 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll [2012.12.18 21:46:10 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll [2012.12.18 21:46:10 | 000,549,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvstore.dll [2012.12.18 21:46:10 | 000,445,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS [2012.12.18 21:46:10 | 000,194,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys [2012.12.18 21:46:09 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll [2012.12.18 21:46:09 | 000,069,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys [2012.12.18 21:46:08 | 000,522,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll [2012.12.18 21:46:08 | 000,501,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll [2012.12.18 21:46:08 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll [2012.12.18 21:46:08 | 000,463,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll [2012.12.18 21:46:08 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll [2012.12.18 21:46:08 | 000,124,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys [2012.12.18 21:46:08 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafWCN.dll [2012.12.18 21:46:08 | 000,058,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe [2012.12.18 21:46:07 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll [2012.12.18 21:46:07 | 000,888,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nshwfp.dll [2012.12.18 21:46:07 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\nshwfp.dll [2012.12.18 21:46:07 | 000,449,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DevicePairing.dll [2012.12.18 21:46:07 | 000,446,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll [2012.12.18 21:46:07 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanmsm.dll [2012.12.18 21:46:07 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FWPUCLNT.DLL [2012.12.18 21:46:07 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlansec.dll [2012.12.18 21:46:07 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aaclient.dll [2012.12.18 21:46:07 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpclip.exe [2012.12.18 21:46:07 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll [2012.12.18 21:46:07 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aaclient.dll [2012.12.18 21:46:07 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FWPUCLNT.DLL [2012.12.18 21:46:07 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fsquirt.exe [2012.12.18 21:46:07 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll [2012.12.18 21:46:07 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bthprops.cpl [2012.12.18 21:46:07 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanapi.dll [2012.12.18 21:46:07 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll [2012.12.18 21:46:07 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bthprops.cpl [2012.12.18 21:46:07 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll [2012.12.18 21:46:07 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll [2012.12.18 21:46:07 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll [2012.12.18 21:46:07 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuwebv.dll [2012.12.18 21:46:07 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll [2012.12.18 21:46:07 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuwebv.dll [2012.12.18 21:46:07 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wudriver.dll [2012.12.18 21:46:07 | 000,096,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wfplwfs.sys [2012.12.18 21:46:07 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wudriver.dll [2012.12.18 21:46:07 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskhost.exe [2012.12.18 21:46:07 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskhostex.exe [2012.12.18 21:46:07 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll [2012.12.18 21:46:07 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll [2012.12.18 21:46:07 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapp.exe [2012.12.18 21:46:07 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapp.exe [2012.12.18 21:46:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuaext.dll [2012.12.18 21:46:06 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll [2012.12.18 21:46:06 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WcnApi.dll [2012.12.18 21:46:06 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fdWCN.dll [2012.12.18 21:46:06 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wushareduxresources.dll [2012.12.18 21:46:06 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WcnApi.dll [2012.12.18 21:46:06 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsgqec.dll [2012.12.18 21:46:06 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsgqec.dll [2012.12.18 21:46:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll [2012.12.18 21:46:06 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WcnEapPeerProxy.dll [2012.12.18 21:46:06 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WcnEapAuthProxy.dll [2012.12.18 21:46:06 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfdprov.dll [2012.12.18 21:46:06 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\fxppm.sys [2012.12.18 21:46:06 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wups.dll [2012.12.18 21:46:06 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iscsilog.dll [2012.12.18 21:46:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanhlp.dll [2012.12.18 21:46:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanhlp.dll [2012.12.18 20:15:38 | 000,000,000 | R--D | C] -- C:\WINDOWS\BrowserChoice [2012.12.18 10:06:10 | 000,330,240 | ---- | C] ((주)마크애니) -- C:\WINDOWS\MASetupCaller.dll [2012.12.18 10:06:10 | 000,090,112 | ---- | C] ((주)마크애니) -- C:\WINDOWS\MAMCityDownload.ocx [2012.12.18 10:06:06 | 000,569,344 | ---- | C] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzdecode.ax [2012.12.18 10:06:06 | 000,491,520 | ---- | C] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzapp.dll [2012.12.18 10:06:06 | 000,352,256 | ---- | C] (Sample Corporation) -- C:\WINDOWS\SysWow64\MSLUR71.dll [2012.12.18 10:06:06 | 000,258,048 | ---- | C] ((c) PeeringPortal) -- C:\WINDOWS\SysWow64\muzoggsp.ax [2012.12.18 10:06:06 | 000,245,760 | ---- | C] (Teruten Inc.) -- C:\WINDOWS\SysWow64\MSCLib.dll [2012.12.18 10:06:06 | 000,200,704 | ---- | C] ( (c) MusicCity) -- C:\WINDOWS\SysWow64\muzwmts.dll [2012.12.18 10:06:06 | 000,172,032 | ---- | C] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzapp.exe [2012.12.18 10:06:06 | 000,155,648 | ---- | C] (Teruten Inc.) -- C:\WINDOWS\SysWow64\MSFLib.dll [2012.12.18 10:06:06 | 000,135,168 | ---- | C] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzaf1.dll [2012.12.18 10:06:06 | 000,131,072 | ---- | C] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzmpgsp.ax [2012.12.18 10:06:06 | 000,122,880 | ---- | C] ((c) MUSICCITY) -- C:\WINDOWS\SysWow64\muzeffect.ax [2012.12.18 10:06:06 | 000,118,784 | ---- | C] ((주)마크애니) -- C:\WINDOWS\SysWow64\MaDRM.dll [2012.12.18 10:06:06 | 000,110,592 | ---- | C] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzmp4sp.ax [2012.12.18 10:06:06 | 000,057,344 | ---- | C] (Marktek) -- C:\WINDOWS\SysWow64\MK_Lyric.dll [2012.12.18 10:06:06 | 000,057,344 | ---- | C] (Marktek Inc.) -- C:\WINDOWS\SysWow64\MTXSYNCICON.dll [2012.12.18 10:06:06 | 000,049,152 | ---- | C] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MaJGUILib.dll [2012.12.18 10:06:06 | 000,045,320 | ---- | C] (MARKANY) -- C:\WINDOWS\SysWow64\MAMACExtract.dll [2012.12.18 10:06:06 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MaXMLProto.dll [2012.12.18 10:06:06 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MACXMLProto.dll [2012.12.18 10:06:06 | 000,040,960 | ---- | C] (Telechips Inc.,) -- C:\WINDOWS\SysWow64\MTTELECHIP.dll [2012.12.18 10:06:06 | 000,024,576 | ---- | C] ((주)마크애니) -- C:\WINDOWS\SysWow64\MASetupCleaner.exe [2012.12.17 23:36:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Synaptics [2012.12.17 21:55:42 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Avira [2012.12.17 02:00:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira [2012.12.17 02:00:07 | 000,129,216 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avipbb.sys [2012.12.17 02:00:07 | 000,099,912 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avgntflt.sys [2012.12.17 02:00:07 | 000,027,800 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avkmgr.sys [2012.12.17 02:00:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2012.12.17 02:00:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2012.12.17 01:40:45 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\ashampoo [2012.12.17 01:40:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo [2012.12.17 01:40:45 | 000,000,000 | ---D | C] -- C:\ProgramData\ashampoo [2012.12.17 01:40:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ashampoo [2012.12.17 01:29:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint [2012.12.17 01:29:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office [2012.12.17 01:29:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2012.12.17 01:28:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild [2012.12.17 01:28:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHEALTH [2012.12.17 01:28:24 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework [2012.12.17 01:26:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8 [2012.12.17 01:25:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services [2012.12.17 01:25:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services [2012.12.17 01:25:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2012.12.17 01:25:27 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Microsoft Help [2012.12.17 01:25:23 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2012.12.17 01:25:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2012.12.17 01:25:08 | 000,000,000 | RH-D | C] -- C:\MSOCache [2012.12.17 01:23:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite [2012.12.17 01:23:50 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\WINDOWS\SysNative\drivers\dtsoftbus01.sys [2012.12.17 01:23:48 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\DAEMON Tools Lite [2012.12.17 01:23:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite [2012.12.17 01:22:53 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite [2012.12.17 01:16:37 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\WinRAR [2012.12.17 01:16:37 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2012.12.17 01:16:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2012.12.17 01:16:31 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2012.12.16 20:41:36 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvcr100_clr0400.dll [2012.12.16 20:41:26 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvcr100_clr0400.dll [2012.12.16 20:32:01 | 002,893,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll [2012.12.16 20:32:01 | 002,400,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll [2012.12.16 20:31:42 | 001,009,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll [2012.12.16 20:31:42 | 000,945,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\resetengmig.dll [2012.12.16 20:31:42 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgent.dll [2012.12.16 20:31:42 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgent.dll [2012.12.16 20:31:42 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sysreset.exe [2012.12.16 20:31:41 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcadm.dll [2012.12.16 20:31:41 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgentc.exe [2012.12.16 20:31:41 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgentc.exe [2012.12.16 20:31:41 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcalua.exe [2012.12.16 20:31:41 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcaevts.dll [2012.12.16 20:20:53 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tssdisai.dll [2012.12.16 20:20:53 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appserverai.dll [2012.12.16 20:20:53 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDWebAI.dll [2012.12.16 20:20:53 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VmHostAI.dll [2012.12.16 20:20:52 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\poqexec.exe [2012.12.16 20:20:52 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\poqexec.exe [2012.12.16 12:39:00 | 000,000,000 | ---D | C] -- C:\Firefox [2012.12.16 12:38:59 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\CrashDumps [2012.12.16 12:36:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2012.12.16 12:34:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2012.12.16 12:33:58 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Google [2012.12.16 12:28:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Ask [2012.12.16 12:28:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2012.12.16 12:28:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2012.12.16 09:05:51 | 000,821,736 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\npDeployJava1.dll [2012.12.16 09:05:51 | 000,746,984 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\deployJava1.dll [2012.12.16 09:05:51 | 000,246,760 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe [2012.12.16 09:05:45 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe [2012.12.16 09:05:45 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe [2012.12.16 09:05:45 | 000,095,208 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll [2012.12.16 09:05:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2012.12.16 08:25:27 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\synceng.dll [2012.12.16 08:25:27 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\synceng.dll [2012.12.16 08:25:26 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnet.dll [2012.12.16 08:25:26 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnet.dll [2012.12.16 08:25:26 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnathlp.dll [2012.12.16 08:25:26 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnathlp.dll [2012.12.16 08:25:26 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnsvr.exe [2012.12.16 08:25:26 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnsvr.exe [2012.12.16 08:25:26 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnhupnp.dll [2012.12.16 08:25:26 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnhpast.dll [2012.12.16 08:25:26 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnhupnp.dll [2012.12.16 08:25:26 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnhpast.dll [2012.12.16 08:25:26 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnlobby.dll [2012.12.16 08:25:26 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnaddr.dll [2012.12.16 08:25:26 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnlobby.dll [2012.12.16 08:25:26 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnaddr.dll [2012.12.16 08:25:19 | 003,966,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll [2012.12.16 08:25:17 | 000,907,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uxtheme.dll [2012.12.16 08:25:17 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll [2012.12.16 08:25:16 | 000,854,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll [2012.12.16 08:25:16 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll [2012.12.16 08:25:16 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesysprep.dll [2012.12.16 08:25:16 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesysprep.dll [2012.12.16 08:25:16 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe [2012.12.16 08:25:16 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UXInit.dll [2012.12.16 08:25:16 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll [2012.12.16 08:25:16 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll [2012.12.16 08:25:15 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll [2012.12.16 08:25:15 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll [2012.12.16 08:25:15 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UXInit.dll [2012.12.15 19:04:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EPSON [2012.12.15 19:04:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON [2012.12.15 19:04:31 | 000,000,000 | ---D | C] -- C:\ProgramData\EPSON [2012.12.15 19:04:26 | 000,118,784 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\SysNative\E_ILMHAE.DLL [2012.12.15 19:04:26 | 000,010,752 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\SysNative\E_GCINST.DLL [2012.12.15 19:04:25 | 000,088,064 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\SysNative\E_IBCBHAE.DLL [2012.12.15 18:56:53 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Synaptics [2012.12.15 18:51:34 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Engelmann Media [2012.12.15 18:51:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Engelmann Media [2012.12.15 18:49:22 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Macromedia [2012.12.15 18:47:25 | 000,000,000 | ---D | C] -- C:\temp [2012.12.15 18:47:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2012.12.15 18:46:43 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2012.12.15 18:46:21 | 000,056,832 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.DLL [2012.12.15 18:46:21 | 000,056,320 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.DLL [2012.12.15 18:45:18 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics [2012.12.15 18:44:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation [2012.12.15 18:44:29 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Intel Corporation [2012.12.15 18:44:25 | 000,000,000 | ---D | C] -- C:\Program Files\Elantech [2012.12.15 18:43:56 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\BMExplorer [2012.12.15 18:43:49 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Atheros [2012.12.15 18:39:52 | 000,093,296 | ---- | C] (Dritek System INC.) -- C:\WINDOWS\RfBtnSvc64.exe [2012.12.15 18:39:51 | 000,026,736 | ---- | C] (Dritek System Inc.) -- C:\WINDOWS\SysNative\drivers\aPs2Kb2Hid.sys [2012.12.15 18:39:17 | 000,015,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\IntelMEFWVer.dll [2012.12.15 18:39:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel [2012.12.15 18:39:07 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2012.12.15 18:38:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent [2012.12.15 18:38:10 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\SysWow64\CSVer.dll [2012.12.15 18:37:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations [2012.12.15 18:35:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby [2012.12.15 18:35:44 | 000,000,000 | ---D | C] -- C:\Dolby PCEE4 [2012.12.15 18:35:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM [2012.12.15 18:35:22 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2012.12.15 18:35:19 | 002,605,400 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\WavesGUILib.dll [2012.12.15 18:35:19 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSX64.dll [2012.12.15 18:35:19 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSH64.dll [2012.12.15 18:35:19 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSHP64.dll [2012.12.15 18:35:19 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSWOW64.dll [2012.12.15 18:35:18 | 001,560,168 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTSnMg64.cpl [2012.12.15 18:35:18 | 000,584,320 | ---- | C] (Sony Corporation) -- C:\WINDOWS\SysNative\SFSS_APO.dll [2012.12.15 18:35:18 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFNHK64.dll [2012.12.15 18:35:18 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFCOM64.dll [2012.12.15 18:35:18 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFAPO64.dll [2012.12.15 18:35:18 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\WINDOWS\SysWow64\SFCOM.dll [2012.12.15 18:35:17 | 003,615,888 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkAPO64.dll [2012.12.15 18:35:17 | 002,674,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtPgEx64.dll [2012.12.15 18:35:17 | 001,262,696 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTCOM64.dll [2012.12.15 18:35:17 | 000,869,520 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64.dll [2012.12.15 18:35:17 | 000,376,936 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\SysNative\RtkGuiCompLib.dll [2012.12.15 18:35:17 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEP64A.dll [2012.12.15 18:35:17 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtlCPAPI64.dll [2012.12.15 18:35:17 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEED64A.dll [2012.12.15 18:35:17 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkCfg64.dll [2012.12.15 18:35:17 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEL64A.dll [2012.12.15 18:35:17 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEG64A.dll [2012.12.15 18:35:17 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkCoLDR64.dll [2012.12.15 18:35:16 | 007,163,744 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEP64A.dll [2012.12.15 18:35:16 | 005,096,448 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoRes64.dat [2012.12.15 18:35:16 | 000,433,504 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EED64A.dll [2012.12.15 18:35:16 | 000,396,632 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxVolumeSDAPO.dll [2012.12.15 18:35:16 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DHT64.dll [2012.12.15 18:35:16 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DAA64.dll [2012.12.15 18:35:16 | 000,141,152 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEL64A.dll [2012.12.15 18:35:16 | 000,123,744 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEA64A.dll [2012.12.15 18:35:16 | 000,105,616 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoInstII64.dll [2012.12.15 18:35:16 | 000,074,592 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEG64A.dll [2012.12.15 18:35:15 | 008,363,864 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek.dll [2012.12.15 18:35:15 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioEQ.dll [2012.12.15 18:35:15 | 001,345,368 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek264.dll [2012.12.15 18:35:15 | 001,015,640 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPOShell64.dll [2012.12.15 18:35:15 | 000,341,336 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO30.dll [2012.12.15 18:35:15 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO20.dll [2012.12.15 18:35:14 | 002,533,952 | ---- | C] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll [2012.12.15 18:35:14 | 000,693,352 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSVoiceClarityDLL64.dll [2012.12.15 18:35:13 | 001,756,264 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSS2SpeakerDLL64.dll [2012.12.15 18:35:13 | 001,568,360 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSS2HeadphoneDLL64.dll [2012.12.15 18:35:13 | 001,486,952 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSBoostDLL64.dll [2012.12.15 18:35:13 | 000,728,680 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSBassEnhancementDLL64.dll [2012.12.15 18:35:13 | 000,712,296 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSSymmetryDLL64.dll [2012.12.15 18:35:13 | 000,491,112 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSNeoPCDLL64.dll [2012.12.15 18:35:13 | 000,432,744 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSLimiterDLL64.dll [2012.12.15 18:35:13 | 000,428,648 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGainCompensatorDLL64.dll [2012.12.15 18:35:13 | 000,242,792 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSLFXAPO64.dll [2012.12.15 18:35:13 | 000,242,792 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGFXAPO64.dll [2012.12.15 18:35:13 | 000,241,768 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGFXAPONS64.dll [2012.12.15 18:35:13 | 000,202,336 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAC64.dll [2012.12.15 18:35:13 | 000,108,640 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAR64.dll [2012.12.15 18:35:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek [2012.12.15 18:35:11 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2012.12.15 18:35:11 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp [2012.12.15 18:35:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2012.12.15 18:28:47 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel [2012.12.15 18:27:59 | 000,000,000 | ---D | C] -- C:\Intel [2012.12.15 18:27:58 | 000,645,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iaStorA.sys [2012.12.15 18:27:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel [2012.12.15 18:27:54 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\InstallShield [2012.12.15 18:26:17 | 000,135,832 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_rcp.sys [2012.12.15 18:26:16 | 000,076,952 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_lwflt.sys [2012.12.15 18:26:15 | 000,178,840 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_hcrp.sys [2012.12.15 18:26:14 | 000,344,216 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_a2dp.sys [2012.12.15 18:26:14 | 000,114,840 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_avdt.sys [2012.12.15 18:26:13 | 000,576,152 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btfilter.sys [2012.12.15 18:26:12 | 000,033,944 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_bus.sys [2012.12.15 18:25:48 | 000,000,000 | ---D | C] -- C:\Users\Rouven\Documents\Bluetooth Folder [2012.12.15 18:25:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Atheros [2012.12.15 18:25:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\QCA_Bluetooth [2012.12.15 18:24:08 | 003,701,760 | ---- | C] (Qualcomm Atheros Communications, Inc.) -- C:\WINDOWS\SysNative\drivers\athw8x.sys [2012.12.15 18:24:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Qualcomm Atheros [2012.12.15 18:24:07 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2012.12.15 18:21:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Qualcomm Atheros [2012.12.15 00:48:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Atheros [2012.12.15 00:48:02 | 001,047,552 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\BCMLogon.dll [2012.12.15 00:47:53 | 004,961,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\vcredist_x64.exe [2012.12.15 00:47:53 | 004,659,712 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\bcmttls.dll [2012.12.15 00:47:53 | 003,161,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vcredist_x64.exe [2012.12.15 00:47:53 | 000,073,728 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\wltrynt.dll [2012.12.15 00:47:53 | 000,035,344 | ---- | C] (CACE Technologies, Inc.) -- C:\WINDOWS\SysNative\drivers\npf.sys [2012.12.15 00:47:53 | 000,022,592 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bcm42rly.sys [2012.12.15 00:47:51 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom [2012.12.15 00:47:34 | 000,021,568 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bcmvwl64.sys [2012.12.15 00:45:00 | 000,000,000 | R--D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2012.12.15 00:45:00 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Searches [2012.12.15 00:45:00 | 000,000,000 | R--D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2012.12.15 00:44:59 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Contacts [2012.12.15 00:44:55 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Adobe [2012.12.15 00:44:18 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\VirtualStore [2012.12.15 00:44:09 | 000,000,000 | ---D | C] -- C:\ProgramData\PRICache [2012.12.15 00:44:09 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Packages [2012.12.15 00:44:02 | 000,000,000 | --SD | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Videos [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Saved Games [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Pictures [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Music [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Links [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Favorites [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Downloads [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Documents [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Desktop [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Vorlagen [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\AppData\Local\Verlauf [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\AppData\Local\Temporary Internet Files [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Startmenü [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\SendTo [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Recent [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Netzwerkumgebung [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Lokale Einstellungen [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Documents\Eigene Videos [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Documents\Eigene Musik [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Eigene Dateien [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Documents\Eigene Bilder [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Druckumgebung [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Cookies [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\AppData\Local\Anwendungsdaten [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Anwendungsdaten [2012.12.15 00:44:02 | 000,000,000 | -H-D | C] -- C:\Users\Rouven\AppData [2012.12.15 00:44:02 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Temp [2012.12.15 00:44:02 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Microsoft [2012.12.15 00:44:02 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2012.12.15 00:44:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\CSC [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2012.12.15 00:41:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\softwaredistribution.bak [2012.12.15 00:37:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2012.12.15 00:35:52 | 000,000,000 | ---D | C] -- C:\Windows.old [2012.12.15 00:27:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther [2012.12.14 02:43:22 | 000,000,000 | RH-D | C] -- C:\ESD [2012.12.14 02:12:11 | 000,000,000 | -HSD | C] -- C:\Recovery [2012.12.14 02:12:11 | 000,000,000 | -HSD | C] -- C:\Programme [2012.12.14 02:12:11 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2012.12.14 02:06:01 | 000,000,000 | -HSD | C] -- C:\System Volume Information [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.01.07 19:10:50 | 000,001,126 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2013.01.07 19:10:20 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013.01.07 18:49:33 | 001,748,838 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2013.01.07 18:49:33 | 000,754,172 | ---- | M] () -- C:\WINDOWS\SysNative\perfh007.dat [2013.01.07 18:49:33 | 000,711,282 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat [2013.01.07 18:49:33 | 000,156,362 | ---- | M] () -- C:\WINDOWS\SysNative\perfc007.dat [2013.01.07 18:49:33 | 000,133,150 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat [2013.01.07 18:41:15 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2013.01.07 18:40:59 | 2424,602,623 | -HS- | M] () -- C:\hiberfil.sys [2013.01.07 18:39:26 | 000,001,130 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013.01.07 02:07:25 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.01.07 00:42:40 | 000,000,898 | ---- | M] () -- C:\WINDOWS\SysWow64\InstallUtil.InstallLog [2013.01.06 17:34:21 | 000,001,326 | ---- | M] () -- C:\Users\Rouven\Desktop\PC Inspector File Recovery.lnk [2013.01.05 18:17:20 | 000,001,667 | ---- | M] () -- C:\Users\Rouven\Desktop\Rechnung4.lnk [2013.01.02 22:19:46 | 000,002,006 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk [2013.01.02 22:19:46 | 000,001,996 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies.lnk [2012.12.30 21:02:51 | 000,001,528 | ---- | M] () -- C:\Users\Rouven\AppData\Local\recently-used.xbel [2012.12.29 00:51:26 | 000,010,495 | ---- | M] () -- C:\Users\Rouven\wake0071_elster_2048.pfx [2012.12.24 19:43:20 | 000,000,917 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk [2012.12.24 14:30:12 | 000,002,212 | ---- | M] () -- C:\Users\Rouven\Desktop\Internet Explorer (Secure).lnk [2012.12.24 14:30:12 | 000,002,152 | ---- | M] () -- C:\Users\Rouven\Desktop\VMLite XP Mode.lnk [2012.12.24 13:51:11 | 000,002,020 | ---- | M] () -- C:\Users\Rouven\Desktop\Play GTA Vice City.lnk [2012.12.23 23:39:04 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk [2012.12.23 23:29:28 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf [2012.12.23 23:29:25 | 000,000,984 | ---- | M] () -- C:\Users\Rouven\Desktop\Badoo.Desktop.lnk [2012.12.23 13:32:09 | 000,421,792 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT [2012.12.23 05:15:14 | 000,001,110 | ---- | M] () -- C:\Users\Public\Desktop\Picasa 3.lnk [2012.12.19 23:28:54 | 000,001,011 | ---- | M] () -- C:\Users\Rouven\Desktop\flunatic.lnk [2012.12.19 22:16:01 | 000,001,151 | ---- | M] () -- C:\Users\Rouven\Desktop\Movie2KDownloader.lnk [2012.12.19 22:11:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\SysWow64\extensions.sqlite [2012.12.19 21:52:06 | 109,819,176 | ---- | M] () -- C:\Users\Rouven\Desktop\SSE_15.11.exe [2012.12.19 19:33:55 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2012.12.18 23:01:53 | 000,000,184 | ---- | M] () -- C:\WINDOWS\LMv7.UNI [2012.12.18 10:06:54 | 004,659,712 | ---- | M] (Dmitry Streblechenko) -- C:\WINDOWS\SysWow64\Redemption.dll [2012.12.18 10:06:10 | 000,330,240 | ---- | M] ((주)마크애니) -- C:\WINDOWS\MASetupCaller.dll [2012.12.18 10:06:10 | 000,090,112 | ---- | M] ((주)마크애니) -- C:\WINDOWS\MAMCityDownload.ocx [2012.12.18 10:06:10 | 000,030,568 | ---- | M] () -- C:\WINDOWS\MusiccityDownload.exe [2012.12.18 10:06:06 | 000,974,848 | ---- | M] () -- C:\WINDOWS\SysWow64\cis-2.4.dll [2012.12.18 10:06:06 | 000,569,344 | ---- | M] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzdecode.ax [2012.12.18 10:06:06 | 000,491,520 | ---- | M] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzapp.dll [2012.12.18 10:06:06 | 000,352,256 | ---- | M] (Sample Corporation) -- C:\WINDOWS\SysWow64\MSLUR71.dll [2012.12.18 10:06:06 | 000,258,048 | ---- | M] ((c) PeeringPortal) -- C:\WINDOWS\SysWow64\muzoggsp.ax [2012.12.18 10:06:06 | 000,245,760 | ---- | M] (Teruten Inc.) -- C:\WINDOWS\SysWow64\MSCLib.dll [2012.12.18 10:06:06 | 000,200,704 | ---- | M] ( (c) MusicCity) -- C:\WINDOWS\SysWow64\muzwmts.dll [2012.12.18 10:06:06 | 000,172,032 | ---- | M] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzapp.exe [2012.12.18 10:06:06 | 000,155,648 | ---- | M] (Teruten Inc.) -- C:\WINDOWS\SysWow64\MSFLib.dll [2012.12.18 10:06:06 | 000,143,360 | ---- | M] () -- C:\WINDOWS\SysWow64\3DAudio.ax [2012.12.18 10:06:06 | 000,135,168 | ---- | M] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzaf1.dll [2012.12.18 10:06:06 | 000,131,072 | ---- | M] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzmpgsp.ax [2012.12.18 10:06:06 | 000,122,880 | ---- | M] ((c) MUSICCITY) -- C:\WINDOWS\SysWow64\muzeffect.ax [2012.12.18 10:06:06 | 000,118,784 | ---- | M] ((주)마크애니) -- C:\WINDOWS\SysWow64\MaDRM.dll [2012.12.18 10:06:06 | 000,110,592 | ---- | M] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzmp4sp.ax [2012.12.18 10:06:06 | 000,081,920 | ---- | M] () -- C:\WINDOWS\SysWow64\issacapi_bs-2.3.dll [2012.12.18 10:06:06 | 000,065,536 | ---- | M] () -- C:\WINDOWS\SysWow64\issacapi_pe-2.3.dll [2012.12.18 10:06:06 | 000,057,344 | ---- | M] (Marktek) -- C:\WINDOWS\SysWow64\MK_Lyric.dll [2012.12.18 10:06:06 | 000,057,344 | ---- | M] (Marktek Inc.) -- C:\WINDOWS\SysWow64\MTXSYNCICON.dll [2012.12.18 10:06:06 | 000,057,344 | ---- | M] () -- C:\WINDOWS\SysWow64\issacapi_se-2.3.dll [2012.12.18 10:06:06 | 000,049,152 | ---- | M] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MaJGUILib.dll [2012.12.18 10:06:06 | 000,045,320 | ---- | M] (MARKANY) -- C:\WINDOWS\SysWow64\MAMACExtract.dll [2012.12.18 10:06:06 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MaXMLProto.dll [2012.12.18 10:06:06 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MACXMLProto.dll [2012.12.18 10:06:06 | 000,040,960 | ---- | M] (Telechips Inc.,) -- C:\WINDOWS\SysWow64\MTTELECHIP.dll [2012.12.18 10:06:06 | 000,024,576 | ---- | M] ((주)마크애니) -- C:\WINDOWS\SysWow64\MASetupCleaner.exe [2012.12.18 10:06:00 | 000,821,824 | ---- | M] (Devguru Co., Ltd.) -- C:\WINDOWS\SysWow64\dgderapi.dll [2012.12.17 02:00:14 | 000,002,070 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.12.17 01:40:45 | 000,001,327 | ---- | M] () -- C:\Users\Public\Desktop\Ashampoo Burning Studio 2012.lnk [2012.12.17 01:23:58 | 000,001,954 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2012.12.17 01:23:50 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\WINDOWS\SysNative\drivers\dtsoftbus01.sys [2012.12.16 12:36:28 | 000,002,285 | ---- | M] () -- C:\Users\Rouven\Desktop\Google Chrome.lnk [2012.12.16 09:28:20 | 000,046,080 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll [2012.12.16 09:20:01 | 000,035,328 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll [2012.12.16 09:08:33 | 000,362,496 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll [2012.12.16 09:05:41 | 000,095,208 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll [2012.12.16 09:05:40 | 000,246,760 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe [2012.12.16 09:05:40 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe [2012.12.16 09:05:39 | 000,821,736 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\npDeployJava1.dll [2012.12.16 09:05:39 | 000,746,984 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\deployJava1.dll [2012.12.16 09:05:39 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe [2012.12.16 08:57:09 | 000,300,032 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll [2012.12.15 18:56:28 | 000,017,186 | ---- | M] () -- C:\WINDOWS\SysNative\results.xml [2012.12.15 18:45:23 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf [2012.12.15 18:45:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf [2012.12.15 18:44:31 | 001,654,648 | ---- | M] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI [2012.12.15 18:39:51 | 000,093,296 | ---- | M] (Dritek System INC.) -- C:\WINDOWS\RfBtnSvc64.exe [2012.12.15 18:39:51 | 000,026,736 | ---- | M] (Dritek System Inc.) -- C:\WINDOWS\SysNative\drivers\aPs2Kb2Hid.sys [2012.12.15 18:35:52 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl [2012.12.15 00:47:40 | 003,161,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vcredist_x64.exe [2012.12.15 00:47:40 | 000,073,728 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\wltrynt.dll [2012.12.15 00:47:39 | 004,961,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\vcredist_x64.exe [2012.12.15 00:47:39 | 004,659,712 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\bcmttls.dll [2012.12.15 00:47:39 | 001,047,552 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\BCMLogon.dll [2012.12.15 00:47:39 | 000,035,344 | ---- | M] (CACE Technologies, Inc.) -- C:\WINDOWS\SysNative\drivers\npf.sys [2012.12.15 00:47:39 | 000,022,592 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bcm42rly.sys [2012.12.15 00:47:39 | 000,000,446 | ---- | M] () -- C:\WINDOWS\SysWow64\vcredist_x64.bat [2012.12.15 00:47:39 | 000,000,445 | ---- | M] () -- C:\WINDOWS\SysNative\vcredist_x64.bat [2012.12.15 00:47:35 | 000,006,656 | ---- | M] () -- C:\WINDOWS\SysNative\bcmwlrc.dll [2012.12.15 00:47:34 | 000,021,568 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bcmvwl64.sys [2012.12.15 00:46:41 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2012.12.14 16:49:28 | 000,024,176 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.01.07 02:07:25 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.01.07 01:43:07 | 000,110,592 | ---- | C] () -- C:\WINDOWS\SysNative\OEMLicense.dll [2013.01.07 01:43:07 | 000,083,968 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll [2013.01.06 17:34:21 | 000,001,326 | ---- | C] () -- C:\Users\Rouven\Desktop\PC Inspector File Recovery.lnk [2013.01.05 18:17:20 | 000,001,667 | ---- | C] () -- C:\Users\Rouven\Desktop\Rechnung4.lnk [2013.01.02 22:19:46 | 000,002,006 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk [2013.01.02 22:19:46 | 000,001,996 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies.lnk [2012.12.30 21:02:51 | 000,001,528 | ---- | C] () -- C:\Users\Rouven\AppData\Local\recently-used.xbel [2012.12.30 20:42:17 | 000,000,892 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk [2012.12.29 00:51:18 | 000,010,495 | ---- | C] () -- C:\Users\Rouven\wake0071_elster_2048.pfx [2012.12.24 18:47:13 | 000,000,917 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk [2012.12.24 14:30:12 | 000,002,242 | ---- | C] () -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (Secure).lnk [2012.12.24 14:30:12 | 000,002,212 | ---- | C] () -- C:\Users\Rouven\Desktop\Internet Explorer (Secure).lnk [2012.12.24 14:30:12 | 000,002,152 | ---- | C] () -- C:\Users\Rouven\Desktop\VMLite XP Mode.lnk [2012.12.24 00:32:42 | 003,663,213 | ---- | C] () -- C:\WINDOWS\SysNative\nvcoproc.bin [2012.12.24 00:25:35 | 000,014,446 | ---- | C] () -- C:\WINDOWS\SysNative\nvinfo.pb [2012.12.23 23:39:04 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk [2012.12.23 23:39:03 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk [2012.12.23 23:38:40 | 000,002,020 | ---- | C] () -- C:\Users\Rouven\Desktop\Play GTA Vice City.lnk [2012.12.23 23:29:28 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf [2012.12.23 23:29:25 | 000,001,138 | ---- | C] () -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Badoo Desktop.lnk [2012.12.23 23:29:25 | 000,000,984 | ---- | C] () -- C:\Users\Rouven\Desktop\Badoo.Desktop.lnk [2012.12.23 13:31:44 | 000,421,792 | ---- | C] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT [2012.12.23 05:15:14 | 000,001,110 | ---- | C] () -- C:\Users\Public\Desktop\Picasa 3.lnk [2012.12.19 23:28:54 | 000,001,011 | ---- | C] () -- C:\Users\Rouven\Desktop\flunatic.lnk [2012.12.19 22:11:35 | 000,000,898 | ---- | C] () -- C:\WINDOWS\SysWow64\InstallUtil.InstallLog [2012.12.19 22:11:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SysWow64\extensions.sqlite [2012.12.19 22:10:07 | 000,001,151 | ---- | C] () -- C:\Users\Rouven\Desktop\Movie2KDownloader.lnk [2012.12.19 21:44:24 | 109,819,176 | ---- | C] () -- C:\Users\Rouven\Desktop\SSE_15.11.exe [2012.12.19 19:33:55 | 000,002,517 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk [2012.12.18 23:01:53 | 000,000,184 | ---- | C] () -- C:\WINDOWS\LMv7.UNI [2012.12.18 21:46:10 | 000,385,604 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml [2012.12.18 10:06:10 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe [2012.12.18 10:06:06 | 000,974,848 | ---- | C] () -- C:\WINDOWS\SysWow64\cis-2.4.dll [2012.12.18 10:06:06 | 000,143,360 | ---- | C] () -- C:\WINDOWS\SysWow64\3DAudio.ax [2012.12.18 10:06:06 | 000,081,920 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_bs-2.3.dll [2012.12.18 10:06:06 | 000,065,536 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_pe-2.3.dll [2012.12.18 10:06:06 | 000,057,344 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_se-2.3.dll [2012.12.17 02:00:14 | 000,002,070 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.12.17 01:40:45 | 000,001,327 | ---- | C] () -- C:\Users\Public\Desktop\Ashampoo Burning Studio 2012.lnk [2012.12.17 01:23:58 | 000,001,954 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2012.12.16 12:36:28 | 000,002,285 | ---- | C] () -- C:\Users\Rouven\Desktop\Google Chrome.lnk [2012.12.16 12:34:04 | 000,001,130 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2012.12.16 12:34:03 | 000,001,126 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2012.12.15 18:56:28 | 000,017,186 | ---- | C] () -- C:\WINDOWS\SysNative\results.xml [2012.12.15 18:45:23 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf [2012.12.15 18:45:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf [2012.12.15 18:44:31 | 001,654,648 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI [2012.12.15 18:35:52 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl [2012.12.15 18:35:22 | 000,247,560 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTConvEQ.dat [2012.12.15 18:35:22 | 000,039,672 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RtPCEE3.DAT [2012.12.15 18:35:22 | 000,016,494 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RtPCEE4.DAT [2012.12.15 18:35:22 | 000,001,448 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RtHdatEx.dat [2012.12.15 18:35:22 | 000,000,712 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTEQEX0.dat [2012.12.15 18:35:22 | 000,000,520 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTEQEX3.dat [2012.12.15 18:35:22 | 000,000,520 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTEQEX2.dat [2012.12.15 18:35:22 | 000,000,520 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTEQEX1.dat [2012.12.15 18:35:22 | 000,000,176 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTHDAEQ1.dat [2012.12.15 18:35:22 | 000,000,024 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\rtkhdaud.dat [2012.12.15 18:35:17 | 000,290,813 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT [2012.12.15 00:47:54 | 000,006,656 | ---- | C] () -- C:\WINDOWS\SysNative\bcmwlrc.dll [2012.12.15 00:47:53 | 000,000,446 | ---- | C] () -- C:\WINDOWS\SysWow64\vcredist_x64.bat [2012.12.15 00:47:53 | 000,000,445 | ---- | C] () -- C:\WINDOWS\SysNative\vcredist_x64.bat [2012.12.15 00:46:41 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2012.12.15 00:44:55 | 000,001,442 | ---- | C] () -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2012.12.15 00:36:35 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys [2012.12.14 02:06:01 | 2424,602,623 | -HS- | C] () -- C:\hiberfil.sys [2012.10.10 02:22:34 | 000,064,512 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll [2012.10.10 02:22:32 | 000,598,780 | ---- | C] () -- C:\WINDOWS\SysWow64\igvpkrng700.bin [2012.10.10 02:22:16 | 000,755,048 | ---- | C] () -- C:\WINDOWS\SysWow64\igcodeckrng700.bin [2012.07.26 09:13:10 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat [2012.07.26 09:13:09 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT [2012.07.26 08:21:26 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2012.07.26 02:17:42 | 000,043,520 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll [2012.07.25 21:37:29 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin [2012.07.25 21:28:31 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll [2012.06.02 15:31:19 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat [2012.04.20 13:59:44 | 000,001,536 | ---- | C] () -- C:\WINDOWS\SysWow64\IusEventLog.dll ========== ZeroAccess Check ========== [2012.12.26 05:01:42 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012.11.06 05:19:27 | 019,789,824 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.11.06 05:20:00 | 017,560,576 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012.07.26 04:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012.07.26 04:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012.07.26 04:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2012.12.26 15:07:47 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\(54-9B-12-5B-B2-00) [2012.12.17 01:24:21 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\DAEMON Tools Lite [2012.12.15 18:51:34 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\Engelmann Media [2012.12.18 23:05:24 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\lm [2013.01.02 22:19:50 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\Samsung [2012.12.15 18:56:53 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\Synaptics ========== Purity Check ========== < End of report > |
07.01.2013, 20:38 | #4 |
| Mein Mauszeiger blinkt dauernd? C:\Users\Rouven\AppData\Local\Adobe [2012.12.23 23:38:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe [2012.12.23 23:38:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe [2012.12.23 23:37:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2012.12.23 23:29:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Badoo [2012.12.23 13:28:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysNative\appmgmt [2012.12.23 05:15:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 [2012.12.23 05:08:27 | 000,000,000 | ---D | C] -- C:\Users\Rouven\Desktop\Neuer Ordner [2012.12.21 19:32:55 | 000,362,496 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll [2012.12.21 19:32:55 | 000,300,032 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll [2012.12.21 19:32:55 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fontsub.dll [2012.12.21 19:32:55 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\fontsub.dll [2012.12.21 19:32:55 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll [2012.12.21 19:32:55 | 000,035,328 | ---- | C] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll [2012.12.21 19:32:55 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dciman32.dll [2012.12.21 19:32:55 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lpk.dll [2012.12.19 23:28:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\flunatic [2012.12.19 23:28:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\flunatic [2012.12.19 22:10:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Tarma Installer [2012.12.19 22:10:21 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\PutLockerDownloader [2012.12.19 22:10:16 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Mozilla [2012.12.19 19:33:58 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Skype [2012.12.19 19:33:55 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype [2012.12.19 19:33:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2012.12.19 19:33:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype [2012.12.19 19:33:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype [2012.12.18 23:02:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Acer [2012.12.18 23:02:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Acer [2012.12.18 23:01:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Launch Manager [2012.12.18 23:01:47 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\lm [2012.12.18 22:56:07 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Diagnostics [2012.12.18 22:54:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Reference Assemblies [2012.12.18 22:53:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\XPSViewer [2012.12.18 22:53:25 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2012.12.18 22:53:24 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2012.12.18 22:48:33 | 000,778,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationNative_v0300.dll [2012.12.18 22:48:33 | 000,102,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PresentationCFFRasterizerNative_v0300.dll [2012.12.18 22:48:33 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\TsWpfWrp.exe [2012.12.18 22:48:31 | 001,166,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationNative_v0300.dll [2012.12.18 22:48:31 | 000,124,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PresentationCFFRasterizerNative_v0300.dll [2012.12.18 22:48:31 | 000,035,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\TsWpfWrp.exe [2012.12.18 22:42:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer [2012.12.18 22:41:53 | 000,000,000 | ---D | C] -- C:\ProgramData\OEM [2012.12.18 22:41:52 | 000,000,000 | ---D | C] -- C:\Program Files\Acer [2012.12.18 21:55:16 | 003,554,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tquery.dll [2012.12.18 21:55:15 | 002,206,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dwmcore.dll [2012.12.18 21:55:15 | 002,116,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssrch.dll [2012.12.18 21:55:14 | 002,380,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [2012.12.18 21:55:13 | 002,764,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tquery.dll [2012.12.18 21:55:13 | 002,115,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\explorer.exe [2012.12.18 21:55:12 | 001,841,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dwmcore.dll [2012.12.18 21:55:12 | 001,610,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssrch.dll [2012.12.18 21:55:12 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.UI.Immersive.dll [2012.12.18 21:55:12 | 001,265,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\lsasrv.dll [2012.12.18 21:55:12 | 001,226,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.UI.Immersive.dll [2012.12.18 21:55:12 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SHCore.dll [2012.12.18 21:55:12 | 000,579,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\StructuredQuery.dll [2012.12.18 21:55:11 | 001,403,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.efi [2012.12.18 21:55:11 | 001,267,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winload.exe [2012.12.18 21:55:11 | 000,793,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfplat.dll [2012.12.18 21:55:11 | 000,594,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.dll [2012.12.18 21:55:10 | 001,217,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.efi [2012.12.18 21:55:10 | 001,093,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winresume.exe [2012.12.18 21:55:10 | 000,561,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmp4srcsnk.dll [2012.12.18 21:55:10 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\SHCore.dll [2012.12.18 21:55:10 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssph.dll [2012.12.18 21:55:10 | 000,373,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchProtocolHost.exe [2012.12.18 21:55:09 | 001,045,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\usercpl.dll [2012.12.18 21:55:09 | 000,612,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfplat.dll [2012.12.18 21:55:09 | 000,517,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\winlogon.exe [2012.12.18 21:55:09 | 000,503,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ci.dll [2012.12.18 21:55:09 | 000,441,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\netio.sys [2012.12.18 21:55:09 | 000,411,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll [2012.12.18 21:55:09 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.dll [2012.12.18 21:55:09 | 000,286,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\portcls.sys [2012.12.18 21:55:08 | 000,962,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\usercpl.dll [2012.12.18 21:55:08 | 000,336,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\Classpnp.sys [2012.12.18 21:55:08 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcore6.dll [2012.12.18 21:55:08 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Storage.Compression.dll [2012.12.18 21:55:08 | 000,058,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dam.sys [2012.12.18 21:55:07 | 000,505,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SpaceControl.dll [2012.12.18 21:55:07 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dhcpcore6.dll [2012.12.18 21:55:05 | 001,636,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WMALFXGFXDSP.dll [2012.12.18 21:55:05 | 000,408,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssph.dll [2012.12.18 21:55:05 | 000,259,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\input.dll [2012.12.18 21:55:05 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\input.dll [2012.12.18 21:55:05 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SearchFilterHost.exe [2012.12.18 21:55:05 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Storage.Compression.dll [2012.12.18 21:55:05 | 000,056,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdstor.sys [2012.12.18 21:55:05 | 000,033,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\battc.sys [2012.12.18 21:55:04 | 001,294,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\gdi32.dll [2012.12.18 21:55:04 | 000,757,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FirewallAPI.dll [2012.12.18 21:55:04 | 000,745,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssvp.dll [2012.12.18 21:55:04 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssvp.dll [2012.12.18 21:55:04 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msscntrs.dll [2012.12.18 21:55:04 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dhcpcsvc6.dll [2012.12.18 21:55:04 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\PCPKsp.dll [2012.12.18 21:55:04 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\microsoft-windows-pdc.dll [2012.12.18 21:55:03 | 001,836,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DWrite.dll [2012.12.18 21:55:03 | 000,370,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\SysFxUI.dll [2012.12.18 21:55:03 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssphtb.dll [2012.12.18 21:55:03 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppxSip.dll [2012.12.18 21:55:03 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\icfupgd.dll [2012.12.18 21:55:03 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssitlb.dll [2012.12.18 21:55:03 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AppxSip.dll [2012.12.18 21:55:03 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\PCPKsp.dll [2012.12.18 21:55:03 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\BdeUISrv.exe [2012.12.18 21:55:02 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\drmk.sys [2012.12.18 21:55:02 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mssprxy.dll [2012.12.18 21:55:02 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mssitlb.dll [2012.12.18 21:55:02 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msscntrs.dll [2012.12.18 21:55:02 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfapigp.dll [2012.12.18 21:55:02 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\WSDScan.sys [2012.12.18 21:55:02 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfapigp.dll [2012.12.18 21:55:02 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msshooks.dll [2012.12.18 21:55:02 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msshooks.dll [2012.12.18 21:55:02 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\kbdhebl3.dll [2012.12.18 21:55:02 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\kbdhebl3.dll [2012.12.18 21:54:38 | 001,172,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetsrc.dll [2012.12.18 21:54:37 | 001,048,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfasfsrcsnk.dll [2012.12.18 21:54:37 | 000,929,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetsrc.dll [2012.12.18 21:54:37 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfasfsrcsnk.dll [2012.12.18 21:54:37 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfnetcore.dll [2012.12.18 21:54:37 | 000,673,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfmpeg2srcsnk.dll [2012.12.18 21:54:37 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfnetcore.dll [2012.12.18 21:54:37 | 000,513,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfmpeg2srcsnk.dll [2012.12.18 21:52:57 | 003,244,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpcorets.dll [2012.12.18 21:52:57 | 001,347,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srmclient.dll [2012.12.18 21:52:57 | 000,987,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srmclient.dll [2012.12.18 21:52:57 | 000,652,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srmscan.dll [2012.12.18 21:52:57 | 000,487,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srmscan.dll [2012.12.18 21:52:57 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srmstormod.dll [2012.12.18 21:52:57 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srmstormod.dll [2012.12.18 21:52:57 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dskquota.dll [2012.12.18 21:52:57 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dskquota.dll [2012.12.18 21:52:57 | 000,027,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\rdpvideominiport.sys [2012.12.18 21:52:56 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srm.dll [2012.12.18 21:52:56 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srm.dll [2012.12.18 21:52:56 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpudd.dll [2012.12.18 21:52:56 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srmshell.dll [2012.12.18 21:52:56 | 000,134,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\adrclient.dll [2012.12.18 21:52:56 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srmshell.dll [2012.12.18 21:52:56 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\adrclient.dll [2012.12.18 21:52:56 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srmtrace.dll [2012.12.18 21:52:56 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srmtrace.dll [2012.12.18 21:52:56 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rfxvmt.dll [2012.12.18 21:52:56 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\srm_ps.dll [2012.12.18 21:52:56 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\srm_ps.dll [2012.12.18 21:52:23 | 000,396,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\hal.dll [2012.12.18 21:46:41 | 001,131,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentServer.dll [2012.12.18 21:46:41 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msctf.dll [2012.12.18 21:46:41 | 000,707,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AppXDeploymentExtensions.dll [2012.12.18 21:46:39 | 006,971,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ntoskrnl.exe [2012.12.18 21:46:39 | 000,488,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbport.sys [2012.12.18 21:46:38 | 001,184,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Display.dll [2012.12.18 21:46:38 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Display.dll [2012.12.18 21:46:38 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidclass.sys [2012.12.18 21:46:38 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevDispItemProvider.dll [2012.12.18 21:46:38 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\hidi2c.sys [2012.12.18 21:46:38 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DevDispItemProvider.dll [2012.12.18 21:46:38 | 000,021,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\usbd.sys [2012.12.18 21:46:38 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KBDKURD.DLL [2012.12.18 21:46:38 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\KBDKURD.DLL [2012.12.18 21:46:37 | 000,641,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WSShared.dll [2012.12.18 21:46:37 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WSShared.dll [2012.12.18 21:46:37 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.dll [2012.12.18 21:46:37 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.ApplicationModel.Store.TestingFramework.dll [2012.12.18 21:46:37 | 000,143,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.dll [2012.12.18 21:46:37 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll [2012.12.18 21:46:21 | 011,459,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\glcndFilter.dll [2012.12.18 21:46:20 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\twinui.dll [2012.12.18 21:46:19 | 008,856,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\twinui.dll [2012.12.18 21:46:18 | 008,552,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\glcndFilter.dll [2012.12.18 21:46:17 | 001,526,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfcore.dll [2012.12.18 21:46:16 | 005,973,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mstscax.dll [2012.12.18 21:46:16 | 005,087,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mstscax.dll [2012.12.18 21:46:16 | 001,566,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ole32.dll [2012.12.18 21:46:16 | 001,451,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfcore.dll [2012.12.18 21:46:16 | 001,037,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\localspl.dll [2012.12.18 21:46:16 | 000,976,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\KernelBase.dll [2012.12.18 21:46:16 | 000,447,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioSes.dll [2012.12.18 21:46:15 | 002,302,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\authui.dll [2012.12.18 21:46:15 | 001,619,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wucltux.dll [2012.12.18 21:46:15 | 000,883,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\HelpPane.exe [2012.12.18 21:46:15 | 000,767,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapi.dll [2012.12.18 21:46:15 | 000,490,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEng.dll [2012.12.18 21:46:15 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ubpm.dll [2012.12.18 21:46:15 | 000,253,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\audiodg.exe [2012.12.18 21:46:15 | 000,246,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ubpm.dll [2012.12.18 21:46:14 | 002,033,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\authui.dll [2012.12.18 21:46:14 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drvstore.dll [2012.12.18 21:46:11 | 000,251,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WUSettingsProvider.dll [2012.12.18 21:46:10 | 000,621,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapi.dll [2012.12.18 21:46:10 | 000,549,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\drvstore.dll [2012.12.18 21:46:10 | 000,445,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\USBHUB3.SYS [2012.12.18 21:46:10 | 000,194,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\sdbus.sys [2012.12.18 21:46:09 | 000,291,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\Windows.Networking.Connectivity.dll [2012.12.18 21:46:09 | 000,069,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\pdc.sys [2012.12.18 21:46:08 | 000,522,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AUDIOKSE.dll [2012.12.18 21:46:08 | 000,501,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\DevicePairing.dll [2012.12.18 21:46:08 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanmsm.dll [2012.12.18 21:46:08 | 000,463,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\AUDIOKSE.dll [2012.12.18 21:46:08 | 000,273,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanapi.dll [2012.12.18 21:46:08 | 000,124,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\dumpsd.sys [2012.12.18 21:46:08 | 000,110,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dafWCN.dll [2012.12.18 21:46:08 | 000,058,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuauclt.exe [2012.12.18 21:46:07 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\actxprxy.dll [2012.12.18 21:46:07 | 000,888,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\nshwfp.dll [2012.12.18 21:46:07 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\nshwfp.dll [2012.12.18 21:46:07 | 000,449,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\DevicePairing.dll [2012.12.18 21:46:07 | 000,446,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlansec.dll [2012.12.18 21:46:07 | 000,386,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanmsm.dll [2012.12.18 21:46:07 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\FWPUCLNT.DLL [2012.12.18 21:46:07 | 000,375,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlansec.dll [2012.12.18 21:46:07 | 000,322,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\aaclient.dll [2012.12.18 21:46:07 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\rdpclip.exe [2012.12.18 21:46:07 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\mfreadwrite.dll [2012.12.18 21:46:07 | 000,269,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\aaclient.dll [2012.12.18 21:46:07 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\FWPUCLNT.DLL [2012.12.18 21:46:07 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fsquirt.exe [2012.12.18 21:46:07 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\mfreadwrite.dll [2012.12.18 21:46:07 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\bthprops.cpl [2012.12.18 21:46:07 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanapi.dll [2012.12.18 21:46:07 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\Windows.Networking.Connectivity.dll [2012.12.18 21:46:07 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\bthprops.cpl [2012.12.18 21:46:07 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\storewuauth.dll [2012.12.18 21:46:07 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\MFCaptureEngine.dll [2012.12.18 21:46:07 | 000,169,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\AudioEndpointBuilder.dll [2012.12.18 21:46:07 | 000,141,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuwebv.dll [2012.12.18 21:46:07 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\MFCaptureEngine.dll [2012.12.18 21:46:07 | 000,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuwebv.dll [2012.12.18 21:46:07 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wudriver.dll [2012.12.18 21:46:07 | 000,096,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\wfplwfs.sys [2012.12.18 21:46:07 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wudriver.dll [2012.12.18 21:46:07 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskhost.exe [2012.12.18 21:46:07 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\taskhostex.exe [2012.12.18 21:46:07 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups2.dll [2012.12.18 21:46:07 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wups.dll [2012.12.18 21:46:07 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuapp.exe [2012.12.18 21:46:07 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wuapp.exe [2012.12.18 21:46:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wuaext.dll [2012.12.18 21:46:06 | 000,267,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\EncDump.dll [2012.12.18 21:46:06 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WcnApi.dll [2012.12.18 21:46:06 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\fdWCN.dll [2012.12.18 21:46:06 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wushareduxresources.dll [2012.12.18 21:46:06 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\WcnApi.dll [2012.12.18 21:46:06 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tsgqec.dll [2012.12.18 21:46:06 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\tsgqec.dll [2012.12.18 21:46:06 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wfdprov.dll [2012.12.18 21:46:06 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WcnEapPeerProxy.dll [2012.12.18 21:46:06 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\WcnEapAuthProxy.dll [2012.12.18 21:46:06 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wfdprov.dll [2012.12.18 21:46:06 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\drivers\fxppm.sys [2012.12.18 21:46:06 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wups.dll [2012.12.18 21:46:06 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iscsilog.dll [2012.12.18 21:46:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\wlanhlp.dll [2012.12.18 21:46:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\wlanhlp.dll [2012.12.18 20:15:38 | 000,000,000 | R--D | C] -- C:\WINDOWS\BrowserChoice [2012.12.18 10:06:10 | 000,330,240 | ---- | C] ((주)마크애니) -- C:\WINDOWS\MASetupCaller.dll [2012.12.18 10:06:10 | 000,090,112 | ---- | C] ((주)마크애니) -- C:\WINDOWS\MAMCityDownload.ocx [2012.12.18 10:06:06 | 000,569,344 | ---- | C] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzdecode.ax [2012.12.18 10:06:06 | 000,491,520 | ---- | C] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzapp.dll [2012.12.18 10:06:06 | 000,352,256 | ---- | C] (Sample Corporation) -- C:\WINDOWS\SysWow64\MSLUR71.dll [2012.12.18 10:06:06 | 000,258,048 | ---- | C] ((c) PeeringPortal) -- C:\WINDOWS\SysWow64\muzoggsp.ax [2012.12.18 10:06:06 | 000,245,760 | ---- | C] (Teruten Inc.) -- C:\WINDOWS\SysWow64\MSCLib.dll [2012.12.18 10:06:06 | 000,200,704 | ---- | C] ( (c) MusicCity) -- C:\WINDOWS\SysWow64\muzwmts.dll [2012.12.18 10:06:06 | 000,172,032 | ---- | C] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzapp.exe [2012.12.18 10:06:06 | 000,155,648 | ---- | C] (Teruten Inc.) -- C:\WINDOWS\SysWow64\MSFLib.dll [2012.12.18 10:06:06 | 000,135,168 | ---- | C] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzaf1.dll [2012.12.18 10:06:06 | 000,131,072 | ---- | C] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzmpgsp.ax [2012.12.18 10:06:06 | 000,122,880 | ---- | C] ((c) MUSICCITY) -- C:\WINDOWS\SysWow64\muzeffect.ax [2012.12.18 10:06:06 | 000,118,784 | ---- | C] ((주)마크애니) -- C:\WINDOWS\SysWow64\MaDRM.dll [2012.12.18 10:06:06 | 000,110,592 | ---- | C] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzmp4sp.ax [2012.12.18 10:06:06 | 000,057,344 | ---- | C] (Marktek) -- C:\WINDOWS\SysWow64\MK_Lyric.dll [2012.12.18 10:06:06 | 000,057,344 | ---- | C] (Marktek Inc.) -- C:\WINDOWS\SysWow64\MTXSYNCICON.dll [2012.12.18 10:06:06 | 000,049,152 | ---- | C] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MaJGUILib.dll [2012.12.18 10:06:06 | 000,045,320 | ---- | C] (MARKANY) -- C:\WINDOWS\SysWow64\MAMACExtract.dll [2012.12.18 10:06:06 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MaXMLProto.dll [2012.12.18 10:06:06 | 000,045,056 | ---- | C] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MACXMLProto.dll [2012.12.18 10:06:06 | 000,040,960 | ---- | C] (Telechips Inc.,) -- C:\WINDOWS\SysWow64\MTTELECHIP.dll [2012.12.18 10:06:06 | 000,024,576 | ---- | C] ((주)마크애니) -- C:\WINDOWS\SysWow64\MASetupCleaner.exe [2012.12.17 23:36:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Synaptics [2012.12.17 21:55:42 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Avira [2012.12.17 02:00:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira [2012.12.17 02:00:07 | 000,129,216 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avipbb.sys [2012.12.17 02:00:07 | 000,099,912 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avgntflt.sys [2012.12.17 02:00:07 | 000,027,800 | ---- | C] (Avira Operations GmbH & Co. KG) -- C:\WINDOWS\SysNative\drivers\avkmgr.sys [2012.12.17 02:00:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Avira [2012.12.17 02:00:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2012.12.17 01:40:45 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\ashampoo [2012.12.17 01:40:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo [2012.12.17 01:40:45 | 000,000,000 | ---D | C] -- C:\ProgramData\ashampoo [2012.12.17 01:40:30 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Ashampoo [2012.12.17 01:29:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint [2012.12.17 01:29:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office [2012.12.17 01:29:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2012.12.17 01:28:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSBuild [2012.12.17 01:28:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\PCHEALTH [2012.12.17 01:28:24 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework [2012.12.17 01:26:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8 [2012.12.17 01:25:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services [2012.12.17 01:25:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Analysis Services [2012.12.17 01:25:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Office [2012.12.17 01:25:27 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Microsoft Help [2012.12.17 01:25:23 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2012.12.17 01:25:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2012.12.17 01:25:08 | 000,000,000 | RH-D | C] -- C:\MSOCache [2012.12.17 01:23:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite [2012.12.17 01:23:50 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\WINDOWS\SysNative\drivers\dtsoftbus01.sys [2012.12.17 01:23:48 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\DAEMON Tools Lite [2012.12.17 01:23:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite [2012.12.17 01:22:53 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite [2012.12.17 01:16:37 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\WinRAR [2012.12.17 01:16:37 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2012.12.17 01:16:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2012.12.17 01:16:31 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2012.12.16 20:41:36 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msvcr100_clr0400.dll [2012.12.16 20:41:26 | 000,017,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msvcr100_clr0400.dll [2012.12.16 20:32:01 | 002,893,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msmpeg2vdec.dll [2012.12.16 20:32:01 | 002,400,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\msmpeg2vdec.dll [2012.12.16 20:31:42 | 001,009,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\reseteng.dll [2012.12.16 20:31:42 | 000,945,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\resetengmig.dll [2012.12.16 20:31:42 | 000,443,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgent.dll [2012.12.16 20:31:42 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgent.dll [2012.12.16 20:31:42 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\sysreset.exe [2012.12.16 20:31:41 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcadm.dll [2012.12.16 20:31:41 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ReAgentc.exe [2012.12.16 20:31:41 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\ReAgentc.exe [2012.12.16 20:31:41 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcalua.exe [2012.12.16 20:31:41 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\pcaevts.dll [2012.12.16 20:20:53 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\tssdisai.dll [2012.12.16 20:20:53 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\appserverai.dll [2012.12.16 20:20:53 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\RDWebAI.dll [2012.12.16 20:20:53 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\VmHostAI.dll [2012.12.16 20:20:52 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\poqexec.exe [2012.12.16 20:20:52 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\poqexec.exe [2012.12.16 12:39:00 | 000,000,000 | ---D | C] -- C:\Firefox [2012.12.16 12:38:59 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\CrashDumps [2012.12.16 12:36:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2012.12.16 12:34:01 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google [2012.12.16 12:33:58 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Google [2012.12.16 12:28:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Ask [2012.12.16 12:28:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2012.12.16 12:28:31 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java [2012.12.16 09:05:51 | 000,821,736 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\npDeployJava1.dll [2012.12.16 09:05:51 | 000,746,984 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\deployJava1.dll [2012.12.16 09:05:51 | 000,246,760 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe [2012.12.16 09:05:45 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe [2012.12.16 09:05:45 | 000,174,056 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe [2012.12.16 09:05:45 | 000,095,208 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll [2012.12.16 09:05:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2012.12.16 08:25:27 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\synceng.dll [2012.12.16 08:25:27 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\synceng.dll [2012.12.16 08:25:26 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnet.dll [2012.12.16 08:25:26 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnet.dll [2012.12.16 08:25:26 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnathlp.dll [2012.12.16 08:25:26 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnathlp.dll [2012.12.16 08:25:26 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnsvr.exe [2012.12.16 08:25:26 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnsvr.exe [2012.12.16 08:25:26 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnhupnp.dll [2012.12.16 08:25:26 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnhpast.dll [2012.12.16 08:25:26 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnhupnp.dll [2012.12.16 08:25:26 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnhpast.dll [2012.12.16 08:25:26 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnlobby.dll [2012.12.16 08:25:26 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\dpnaddr.dll [2012.12.16 08:25:26 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnlobby.dll [2012.12.16 08:25:26 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\dpnaddr.dll [2012.12.16 08:25:19 | 003,966,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript9.dll [2012.12.16 08:25:17 | 000,907,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\uxtheme.dll [2012.12.16 08:25:17 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\msfeeds.dll [2012.12.16 08:25:16 | 000,854,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\jscript.dll [2012.12.16 08:25:16 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\jscript.dll [2012.12.16 08:25:16 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesysprep.dll [2012.12.16 08:25:16 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesysprep.dll [2012.12.16 08:25:16 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\ie4uinit.exe [2012.12.16 08:25:16 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\UXInit.dll [2012.12.16 08:25:16 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iernonce.dll [2012.12.16 08:25:16 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iernonce.dll [2012.12.16 08:25:15 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\iesetup.dll [2012.12.16 08:25:15 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\iesetup.dll [2012.12.16 08:25:15 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\UXInit.dll [2012.12.15 19:04:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EPSON [2012.12.15 19:04:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON [2012.12.15 19:04:31 | 000,000,000 | ---D | C] -- C:\ProgramData\EPSON [2012.12.15 19:04:26 | 000,118,784 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\SysNative\E_ILMHAE.DLL [2012.12.15 19:04:26 | 000,010,752 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\SysNative\E_GCINST.DLL [2012.12.15 19:04:25 | 000,088,064 | ---- | C] (SEIKO EPSON CORPORATION) -- C:\WINDOWS\SysNative\E_IBCBHAE.DLL [2012.12.15 18:56:53 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Synaptics [2012.12.15 18:51:34 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Engelmann Media [2012.12.15 18:51:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Engelmann Media [2012.12.15 18:49:22 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Macromedia [2012.12.15 18:47:25 | 000,000,000 | ---D | C] -- C:\temp [2012.12.15 18:47:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation [2012.12.15 18:46:43 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2012.12.15 18:46:21 | 000,056,832 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.DLL [2012.12.15 18:46:21 | 000,056,320 | ---- | C] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.DLL [2012.12.15 18:45:18 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics [2012.12.15 18:44:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation [2012.12.15 18:44:29 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Intel Corporation [2012.12.15 18:44:25 | 000,000,000 | ---D | C] -- C:\Program Files\Elantech [2012.12.15 18:43:56 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\BMExplorer [2012.12.15 18:43:49 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Atheros [2012.12.15 18:39:52 | 000,093,296 | ---- | C] (Dritek System INC.) -- C:\WINDOWS\RfBtnSvc64.exe [2012.12.15 18:39:51 | 000,026,736 | ---- | C] (Dritek System Inc.) -- C:\WINDOWS\SysNative\drivers\aPs2Kb2Hid.sys [2012.12.15 18:39:17 | 000,015,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\IntelMEFWVer.dll [2012.12.15 18:39:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Intel [2012.12.15 18:39:07 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2012.12.15 18:38:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\postureAgent [2012.12.15 18:38:10 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\SysWow64\CSVer.dll [2012.12.15 18:37:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations [2012.12.15 18:35:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby [2012.12.15 18:35:44 | 000,000,000 | ---D | C] -- C:\Dolby PCEE4 [2012.12.15 18:35:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\SysWow64\RTCOM [2012.12.15 18:35:22 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek [2012.12.15 18:35:19 | 002,605,400 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\WavesGUILib.dll [2012.12.15 18:35:19 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSX64.dll [2012.12.15 18:35:19 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSTSH64.dll [2012.12.15 18:35:19 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSHP64.dll [2012.12.15 18:35:19 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\WINDOWS\SysNative\SRSWOW64.dll [2012.12.15 18:35:18 | 001,560,168 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTSnMg64.cpl [2012.12.15 18:35:18 | 000,584,320 | ---- | C] (Sony Corporation) -- C:\WINDOWS\SysNative\SFSS_APO.dll [2012.12.15 18:35:18 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFNHK64.dll [2012.12.15 18:35:18 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFCOM64.dll [2012.12.15 18:35:18 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\WINDOWS\SysNative\SFAPO64.dll [2012.12.15 18:35:18 | 000,074,064 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\WINDOWS\SysWow64\SFCOM.dll [2012.12.15 18:35:17 | 003,615,888 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkAPO64.dll [2012.12.15 18:35:17 | 002,674,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtPgEx64.dll [2012.12.15 18:35:17 | 001,262,696 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RTCOM64.dll [2012.12.15 18:35:17 | 000,869,520 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkApi64.dll [2012.12.15 18:35:17 | 000,376,936 | ---- | C] (Realtek Semiconductor) -- C:\WINDOWS\SysNative\RtkGuiCompLib.dll [2012.12.15 18:35:17 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEP64A.dll [2012.12.15 18:35:17 | 000,331,880 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtlCPAPI64.dll [2012.12.15 18:35:17 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEED64A.dll [2012.12.15 18:35:17 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkCfg64.dll [2012.12.15 18:35:17 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEL64A.dll [2012.12.15 18:35:17 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RTEEG64A.dll [2012.12.15 18:35:17 | 000,014,952 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RtkCoLDR64.dll [2012.12.15 18:35:16 | 007,163,744 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEP64A.dll [2012.12.15 18:35:16 | 005,096,448 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoRes64.dat [2012.12.15 18:35:16 | 000,433,504 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EED64A.dll [2012.12.15 18:35:16 | 000,396,632 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxVolumeSDAPO.dll [2012.12.15 18:35:16 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DHT64.dll [2012.12.15 18:35:16 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\WINDOWS\SysNative\RP3DAA64.dll [2012.12.15 18:35:16 | 000,141,152 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEL64A.dll [2012.12.15 18:35:16 | 000,123,744 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEA64A.dll [2012.12.15 18:35:16 | 000,105,616 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SysNative\RCoInstII64.dll [2012.12.15 18:35:16 | 000,074,592 | ---- | C] (Dolby Laboratories) -- C:\WINDOWS\SysNative\R4EEG64A.dll [2012.12.15 18:35:15 | 008,363,864 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek.dll [2012.12.15 18:35:15 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioEQ.dll [2012.12.15 18:35:15 | 001,345,368 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioRealtek264.dll [2012.12.15 18:35:15 | 001,015,640 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPOShell64.dll [2012.12.15 18:35:15 | 000,341,336 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO30.dll [2012.12.15 18:35:15 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\WINDOWS\SysNative\MaxxAudioAPO20.dll [2012.12.15 18:35:14 | 002,533,952 | ---- | C] (Fortemedia Corporation) -- C:\WINDOWS\SysNative\FMAPO64.dll [2012.12.15 18:35:14 | 000,693,352 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSVoiceClarityDLL64.dll [2012.12.15 18:35:13 | 001,756,264 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSS2SpeakerDLL64.dll [2012.12.15 18:35:13 | 001,568,360 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSS2HeadphoneDLL64.dll [2012.12.15 18:35:13 | 001,486,952 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSBoostDLL64.dll [2012.12.15 18:35:13 | 000,728,680 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSBassEnhancementDLL64.dll [2012.12.15 18:35:13 | 000,712,296 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSSymmetryDLL64.dll [2012.12.15 18:35:13 | 000,491,112 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSNeoPCDLL64.dll [2012.12.15 18:35:13 | 000,432,744 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSLimiterDLL64.dll [2012.12.15 18:35:13 | 000,428,648 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGainCompensatorDLL64.dll [2012.12.15 18:35:13 | 000,242,792 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSLFXAPO64.dll [2012.12.15 18:35:13 | 000,242,792 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGFXAPO64.dll [2012.12.15 18:35:13 | 000,241,768 | ---- | C] (DTS) -- C:\WINDOWS\SysNative\DTSGFXAPONS64.dll [2012.12.15 18:35:13 | 000,202,336 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAC64.dll [2012.12.15 18:35:13 | 000,108,640 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\SysNative\AERTAR64.dll [2012.12.15 18:35:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek [2012.12.15 18:35:11 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll [2012.12.15 18:35:11 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp [2012.12.15 18:35:09 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2012.12.15 18:28:47 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel [2012.12.15 18:27:59 | 000,000,000 | ---D | C] -- C:\Intel [2012.12.15 18:27:58 | 000,645,952 | ---- | C] (Intel Corporation) -- C:\WINDOWS\SysNative\drivers\iaStorA.sys [2012.12.15 18:27:54 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel [2012.12.15 18:27:54 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\InstallShield [2012.12.15 18:26:17 | 000,135,832 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_rcp.sys [2012.12.15 18:26:16 | 000,076,952 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_lwflt.sys [2012.12.15 18:26:15 | 000,178,840 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_hcrp.sys [2012.12.15 18:26:14 | 000,344,216 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_a2dp.sys [2012.12.15 18:26:14 | 000,114,840 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_avdt.sys [2012.12.15 18:26:13 | 000,576,152 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btfilter.sys [2012.12.15 18:26:12 | 000,033,944 | ---- | C] (Qualcomm Atheros) -- C:\WINDOWS\SysNative\drivers\btath_bus.sys [2012.12.15 18:25:48 | 000,000,000 | ---D | C] -- C:\Users\Rouven\Documents\Bluetooth Folder [2012.12.15 18:25:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Atheros [2012.12.15 18:25:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\QCA_Bluetooth [2012.12.15 18:24:08 | 003,701,760 | ---- | C] (Qualcomm Atheros Communications, Inc.) -- C:\WINDOWS\SysNative\drivers\athw8x.sys [2012.12.15 18:24:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Qualcomm Atheros [2012.12.15 18:24:07 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information [2012.12.15 18:21:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Qualcomm Atheros [2012.12.15 00:48:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Atheros [2012.12.15 00:48:02 | 001,047,552 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\BCMLogon.dll [2012.12.15 00:47:53 | 004,961,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\vcredist_x64.exe [2012.12.15 00:47:53 | 004,659,712 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\bcmttls.dll [2012.12.15 00:47:53 | 003,161,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vcredist_x64.exe [2012.12.15 00:47:53 | 000,073,728 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\wltrynt.dll [2012.12.15 00:47:53 | 000,035,344 | ---- | C] (CACE Technologies, Inc.) -- C:\WINDOWS\SysNative\drivers\npf.sys [2012.12.15 00:47:53 | 000,022,592 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bcm42rly.sys [2012.12.15 00:47:51 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom [2012.12.15 00:47:34 | 000,021,568 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bcmvwl64.sys [2012.12.15 00:45:00 | 000,000,000 | R--D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2012.12.15 00:45:00 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Searches [2012.12.15 00:45:00 | 000,000,000 | R--D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2012.12.15 00:44:59 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Contacts [2012.12.15 00:44:55 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Adobe [2012.12.15 00:44:18 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\VirtualStore [2012.12.15 00:44:09 | 000,000,000 | ---D | C] -- C:\ProgramData\PRICache [2012.12.15 00:44:09 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Packages [2012.12.15 00:44:02 | 000,000,000 | --SD | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Videos [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Saved Games [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Pictures [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Music [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Links [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Favorites [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Downloads [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Documents [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\Desktop [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2012.12.15 00:44:02 | 000,000,000 | R--D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Vorlagen [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\AppData\Local\Verlauf [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\AppData\Local\Temporary Internet Files [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Startmenü [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\SendTo [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Recent [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Netzwerkumgebung [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Lokale Einstellungen [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Documents\Eigene Videos [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Documents\Eigene Musik [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Eigene Dateien [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Documents\Eigene Bilder [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Druckumgebung [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Cookies [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\AppData\Local\Anwendungsdaten [2012.12.15 00:44:02 | 000,000,000 | -HSD | C] -- C:\Users\Rouven\Anwendungsdaten [2012.12.15 00:44:02 | 000,000,000 | -H-D | C] -- C:\Users\Rouven\AppData [2012.12.15 00:44:02 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Temp [2012.12.15 00:44:02 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Local\Microsoft [2012.12.15 00:44:02 | 000,000,000 | ---D | C] -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2012.12.15 00:44:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\CSC [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2012.12.15 00:42:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2012.12.15 00:41:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\softwaredistribution.bak [2012.12.15 00:37:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2012.12.15 00:35:52 | 000,000,000 | ---D | C] -- C:\Windows.old [2012.12.15 00:27:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Panther [2012.12.14 02:43:22 | 000,000,000 | RH-D | C] -- C:\ESD [2012.12.14 02:12:11 | 000,000,000 | -HSD | C] -- C:\Recovery [2012.12.14 02:12:11 | 000,000,000 | -HSD | C] -- C:\Programme [2012.12.14 02:12:11 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2012.12.14 02:06:01 | 000,000,000 | -HSD | C] -- C:\System Volume Information [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files - Modified Within 30 Days ========== [2013.01.07 19:10:50 | 000,001,126 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2013.01.07 19:10:20 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013.01.07 18:49:33 | 001,748,838 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI [2013.01.07 18:49:33 | 000,754,172 | ---- | M] () -- C:\WINDOWS\SysNative\perfh007.dat [2013.01.07 18:49:33 | 000,711,282 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat [2013.01.07 18:49:33 | 000,156,362 | ---- | M] () -- C:\WINDOWS\SysNative\perfc007.dat [2013.01.07 18:49:33 | 000,133,150 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat [2013.01.07 18:41:15 | 268,435,456 | -HS- | M] () -- C:\swapfile.sys [2013.01.07 18:40:59 | 2424,602,623 | -HS- | M] () -- C:\hiberfil.sys [2013.01.07 18:39:26 | 000,001,130 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2013.01.07 02:07:25 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.01.07 00:42:40 | 000,000,898 | ---- | M] () -- C:\WINDOWS\SysWow64\InstallUtil.InstallLog [2013.01.06 17:34:21 | 000,001,326 | ---- | M] () -- C:\Users\Rouven\Desktop\PC Inspector File Recovery.lnk [2013.01.05 18:17:20 | 000,001,667 | ---- | M] () -- C:\Users\Rouven\Desktop\Rechnung4.lnk [2013.01.02 22:19:46 | 000,002,006 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk [2013.01.02 22:19:46 | 000,001,996 | ---- | M] () -- C:\Users\Public\Desktop\Samsung Kies.lnk [2012.12.30 21:02:51 | 000,001,528 | ---- | M] () -- C:\Users\Rouven\AppData\Local\recently-used.xbel [2012.12.29 00:51:26 | 000,010,495 | ---- | M] () -- C:\Users\Rouven\wake0071_elster_2048.pfx [2012.12.24 19:43:20 | 000,000,917 | ---- | M] () -- C:\Users\Public\Desktop\Steam.lnk [2012.12.24 14:30:12 | 000,002,212 | ---- | M] () -- C:\Users\Rouven\Desktop\Internet Explorer (Secure).lnk [2012.12.24 14:30:12 | 000,002,152 | ---- | M] () -- C:\Users\Rouven\Desktop\VMLite XP Mode.lnk [2012.12.24 13:51:11 | 000,002,020 | ---- | M] () -- C:\Users\Rouven\Desktop\Play GTA Vice City.lnk [2012.12.23 23:39:04 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk [2012.12.23 23:29:28 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf [2012.12.23 23:29:25 | 000,000,984 | ---- | M] () -- C:\Users\Rouven\Desktop\Badoo.Desktop.lnk [2012.12.23 13:32:09 | 000,421,792 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT [2012.12.23 05:15:14 | 000,001,110 | ---- | M] () -- C:\Users\Public\Desktop\Picasa 3.lnk [2012.12.19 23:28:54 | 000,001,011 | ---- | M] () -- C:\Users\Rouven\Desktop\flunatic.lnk [2012.12.19 22:16:01 | 000,001,151 | ---- | M] () -- C:\Users\Rouven\Desktop\Movie2KDownloader.lnk [2012.12.19 22:11:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\SysWow64\extensions.sqlite [2012.12.19 21:52:06 | 109,819,176 | ---- | M] () -- C:\Users\Rouven\Desktop\SSE_15.11.exe [2012.12.19 19:33:55 | 000,002,517 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2012.12.18 23:01:53 | 000,000,184 | ---- | M] () -- C:\WINDOWS\LMv7.UNI [2012.12.18 10:06:54 | 004,659,712 | ---- | M] (Dmitry Streblechenko) -- C:\WINDOWS\SysWow64\Redemption.dll [2012.12.18 10:06:10 | 000,330,240 | ---- | M] ((주)마크애니) -- C:\WINDOWS\MASetupCaller.dll [2012.12.18 10:06:10 | 000,090,112 | ---- | M] ((주)마크애니) -- C:\WINDOWS\MAMCityDownload.ocx [2012.12.18 10:06:10 | 000,030,568 | ---- | M] () -- C:\WINDOWS\MusiccityDownload.exe [2012.12.18 10:06:06 | 000,974,848 | ---- | M] () -- C:\WINDOWS\SysWow64\cis-2.4.dll [2012.12.18 10:06:06 | 000,569,344 | ---- | M] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzdecode.ax [2012.12.18 10:06:06 | 000,491,520 | ---- | M] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzapp.dll [2012.12.18 10:06:06 | 000,352,256 | ---- | M] (Sample Corporation) -- C:\WINDOWS\SysWow64\MSLUR71.dll [2012.12.18 10:06:06 | 000,258,048 | ---- | M] ((c) PeeringPortal) -- C:\WINDOWS\SysWow64\muzoggsp.ax [2012.12.18 10:06:06 | 000,245,760 | ---- | M] (Teruten Inc.) -- C:\WINDOWS\SysWow64\MSCLib.dll [2012.12.18 10:06:06 | 000,200,704 | ---- | M] ( (c) MusicCity) -- C:\WINDOWS\SysWow64\muzwmts.dll [2012.12.18 10:06:06 | 000,172,032 | ---- | M] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzapp.exe [2012.12.18 10:06:06 | 000,155,648 | ---- | M] (Teruten Inc.) -- C:\WINDOWS\SysWow64\MSFLib.dll [2012.12.18 10:06:06 | 000,143,360 | ---- | M] () -- C:\WINDOWS\SysWow64\3DAudio.ax [2012.12.18 10:06:06 | 000,135,168 | ---- | M] (Musiccity Co.Ltd.) -- C:\WINDOWS\SysWow64\muzaf1.dll [2012.12.18 10:06:06 | 000,131,072 | ---- | M] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzmpgsp.ax [2012.12.18 10:06:06 | 000,122,880 | ---- | M] ((c) MUSICCITY) -- C:\WINDOWS\SysWow64\muzeffect.ax [2012.12.18 10:06:06 | 000,118,784 | ---- | M] ((주)마크애니) -- C:\WINDOWS\SysWow64\MaDRM.dll [2012.12.18 10:06:06 | 000,110,592 | ---- | M] ((c) MusicCity) -- C:\WINDOWS\SysWow64\muzmp4sp.ax [2012.12.18 10:06:06 | 000,081,920 | ---- | M] () -- C:\WINDOWS\SysWow64\issacapi_bs-2.3.dll [2012.12.18 10:06:06 | 000,065,536 | ---- | M] () -- C:\WINDOWS\SysWow64\issacapi_pe-2.3.dll [2012.12.18 10:06:06 | 000,057,344 | ---- | M] (Marktek) -- C:\WINDOWS\SysWow64\MK_Lyric.dll [2012.12.18 10:06:06 | 000,057,344 | ---- | M] (Marktek Inc.) -- C:\WINDOWS\SysWow64\MTXSYNCICON.dll [2012.12.18 10:06:06 | 000,057,344 | ---- | M] () -- C:\WINDOWS\SysWow64\issacapi_se-2.3.dll [2012.12.18 10:06:06 | 000,049,152 | ---- | M] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MaJGUILib.dll [2012.12.18 10:06:06 | 000,045,320 | ---- | M] (MARKANY) -- C:\WINDOWS\SysWow64\MAMACExtract.dll [2012.12.18 10:06:06 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MaXMLProto.dll [2012.12.18 10:06:06 | 000,045,056 | ---- | M] ((주) 마크애니) -- C:\WINDOWS\SysWow64\MACXMLProto.dll [2012.12.18 10:06:06 | 000,040,960 | ---- | M] (Telechips Inc.,) -- C:\WINDOWS\SysWow64\MTTELECHIP.dll [2012.12.18 10:06:06 | 000,024,576 | ---- | M] ((주)마크애니) -- C:\WINDOWS\SysWow64\MASetupCleaner.exe [2012.12.18 10:06:00 | 000,821,824 | ---- | M] (Devguru Co., Ltd.) -- C:\WINDOWS\SysWow64\dgderapi.dll [2012.12.17 02:00:14 | 000,002,070 | ---- | M] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.12.17 01:40:45 | 000,001,327 | ---- | M] () -- C:\Users\Public\Desktop\Ashampoo Burning Studio 2012.lnk [2012.12.17 01:23:58 | 000,001,954 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2012.12.17 01:23:50 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\WINDOWS\SysNative\drivers\dtsoftbus01.sys [2012.12.16 12:36:28 | 000,002,285 | ---- | M] () -- C:\Users\Rouven\Desktop\Google Chrome.lnk [2012.12.16 09:28:20 | 000,046,080 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysNative\atmlib.dll [2012.12.16 09:20:01 | 000,035,328 | ---- | M] (Adobe Systems) -- C:\WINDOWS\SysWow64\atmlib.dll [2012.12.16 09:08:33 | 000,362,496 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysNative\atmfd.dll [2012.12.16 09:05:41 | 000,095,208 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll [2012.12.16 09:05:40 | 000,246,760 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaws.exe [2012.12.16 09:05:40 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\javaw.exe [2012.12.16 09:05:39 | 000,821,736 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\npDeployJava1.dll [2012.12.16 09:05:39 | 000,746,984 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\deployJava1.dll [2012.12.16 09:05:39 | 000,174,056 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\SysWow64\java.exe [2012.12.16 08:57:09 | 000,300,032 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\SysWow64\atmfd.dll [2012.12.15 18:56:28 | 000,017,186 | ---- | M] () -- C:\WINDOWS\SysNative\results.xml [2012.12.15 18:45:23 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf [2012.12.15 18:45:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf [2012.12.15 18:44:31 | 001,654,648 | ---- | M] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI [2012.12.15 18:39:51 | 000,093,296 | ---- | M] (Dritek System INC.) -- C:\WINDOWS\RfBtnSvc64.exe [2012.12.15 18:39:51 | 000,026,736 | ---- | M] (Dritek System Inc.) -- C:\WINDOWS\SysNative\drivers\aPs2Kb2Hid.sys [2012.12.15 18:35:52 | 000,000,000 | -H-- | M] () -- C:\ProgramData\DP45977C.lfl [2012.12.15 00:47:40 | 003,161,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysNative\vcredist_x64.exe [2012.12.15 00:47:40 | 000,073,728 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\wltrynt.dll [2012.12.15 00:47:39 | 004,961,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\SysWow64\vcredist_x64.exe [2012.12.15 00:47:39 | 004,659,712 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\bcmttls.dll [2012.12.15 00:47:39 | 001,047,552 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\BCMLogon.dll [2012.12.15 00:47:39 | 000,035,344 | ---- | M] (CACE Technologies, Inc.) -- C:\WINDOWS\SysNative\drivers\npf.sys [2012.12.15 00:47:39 | 000,022,592 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bcm42rly.sys [2012.12.15 00:47:39 | 000,000,446 | ---- | M] () -- C:\WINDOWS\SysWow64\vcredist_x64.bat [2012.12.15 00:47:39 | 000,000,445 | ---- | M] () -- C:\WINDOWS\SysNative\vcredist_x64.bat [2012.12.15 00:47:35 | 000,006,656 | ---- | M] () -- C:\WINDOWS\SysNative\bcmwlrc.dll [2012.12.15 00:47:34 | 000,021,568 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\SysNative\drivers\bcmvwl64.sys [2012.12.15 00:46:41 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2012.12.14 16:49:28 | 000,024,176 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\mbam.sys [1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2013.01.07 02:07:25 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.01.07 01:43:07 | 000,110,592 | ---- | C] () -- C:\WINDOWS\SysNative\OEMLicense.dll [2013.01.07 01:43:07 | 000,083,968 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll [2013.01.06 17:34:21 | 000,001,326 | ---- | C] () -- C:\Users\Rouven\Desktop\PC Inspector File Recovery.lnk [2013.01.05 18:17:20 | 000,001,667 | ---- | C] () -- C:\Users\Rouven\Desktop\Rechnung4.lnk [2013.01.02 22:19:46 | 000,002,006 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies (Lite).lnk [2013.01.02 22:19:46 | 000,001,996 | ---- | C] () -- C:\Users\Public\Desktop\Samsung Kies.lnk [2012.12.30 21:02:51 | 000,001,528 | ---- | C] () -- C:\Users\Rouven\AppData\Local\recently-used.xbel [2012.12.30 20:42:17 | 000,000,892 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk [2012.12.29 00:51:18 | 000,010,495 | ---- | C] () -- C:\Users\Rouven\wake0071_elster_2048.pfx [2012.12.24 18:47:13 | 000,000,917 | ---- | C] () -- C:\Users\Public\Desktop\Steam.lnk [2012.12.24 14:30:12 | 000,002,242 | ---- | C] () -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (Secure).lnk [2012.12.24 14:30:12 | 000,002,212 | ---- | C] () -- C:\Users\Rouven\Desktop\Internet Explorer (Secure).lnk [2012.12.24 14:30:12 | 000,002,152 | ---- | C] () -- C:\Users\Rouven\Desktop\VMLite XP Mode.lnk [2012.12.24 00:32:42 | 003,663,213 | ---- | C] () -- C:\WINDOWS\SysNative\nvcoproc.bin [2012.12.24 00:25:35 | 000,014,446 | ---- | C] () -- C:\WINDOWS\SysNative\nvinfo.pb [2012.12.23 23:39:04 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader XI.lnk [2012.12.23 23:39:03 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk [2012.12.23 23:38:40 | 000,002,020 | ---- | C] () -- C:\Users\Rouven\Desktop\Play GTA Vice City.lnk [2012.12.23 23:29:28 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_LocationProvider_01_11_00.Wdf [2012.12.23 23:29:25 | 000,001,138 | ---- | C] () -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Badoo Desktop.lnk [2012.12.23 23:29:25 | 000,000,984 | ---- | C] () -- C:\Users\Rouven\Desktop\Badoo.Desktop.lnk [2012.12.23 13:31:44 | 000,421,792 | ---- | C] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT [2012.12.23 05:15:14 | 000,001,110 | ---- | C] () -- C:\Users\Public\Desktop\Picasa 3.lnk [2012.12.19 23:28:54 | 000,001,011 | ---- | C] () -- C:\Users\Rouven\Desktop\flunatic.lnk [2012.12.19 22:11:35 | 000,000,898 | ---- | C] () -- C:\WINDOWS\SysWow64\InstallUtil.InstallLog [2012.12.19 22:11:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SysWow64\extensions.sqlite [2012.12.19 22:10:07 | 000,001,151 | ---- | C] () -- C:\Users\Rouven\Desktop\Movie2KDownloader.lnk [2012.12.19 21:44:24 | 109,819,176 | ---- | C] () -- C:\Users\Rouven\Desktop\SSE_15.11.exe [2012.12.19 19:33:55 | 000,002,517 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk [2012.12.18 23:01:53 | 000,000,184 | ---- | C] () -- C:\WINDOWS\LMv7.UNI [2012.12.18 21:46:10 | 000,385,604 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml [2012.12.18 10:06:10 | 000,030,568 | ---- | C] () -- C:\WINDOWS\MusiccityDownload.exe [2012.12.18 10:06:06 | 000,974,848 | ---- | C] () -- C:\WINDOWS\SysWow64\cis-2.4.dll [2012.12.18 10:06:06 | 000,143,360 | ---- | C] () -- C:\WINDOWS\SysWow64\3DAudio.ax [2012.12.18 10:06:06 | 000,081,920 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_bs-2.3.dll [2012.12.18 10:06:06 | 000,065,536 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_pe-2.3.dll [2012.12.18 10:06:06 | 000,057,344 | ---- | C] () -- C:\WINDOWS\SysWow64\issacapi_se-2.3.dll [2012.12.17 02:00:14 | 000,002,070 | ---- | C] () -- C:\Users\Public\Desktop\Avira Control Center.lnk [2012.12.17 01:40:45 | 000,001,327 | ---- | C] () -- C:\Users\Public\Desktop\Ashampoo Burning Studio 2012.lnk [2012.12.17 01:23:58 | 000,001,954 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk [2012.12.16 12:36:28 | 000,002,285 | ---- | C] () -- C:\Users\Rouven\Desktop\Google Chrome.lnk [2012.12.16 12:34:04 | 000,001,130 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2012.12.16 12:34:03 | 000,001,126 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2012.12.15 18:56:28 | 000,017,186 | ---- | C] () -- C:\WINDOWS\SysNative\results.xml [2012.12.15 18:45:23 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf [2012.12.15 18:45:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf [2012.12.15 18:44:31 | 001,654,648 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI [2012.12.15 18:35:52 | 000,000,000 | -H-- | C] () -- C:\ProgramData\DP45977C.lfl [2012.12.15 18:35:22 | 000,247,560 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTConvEQ.dat [2012.12.15 18:35:22 | 000,039,672 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RtPCEE3.DAT [2012.12.15 18:35:22 | 000,016,494 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RtPCEE4.DAT [2012.12.15 18:35:22 | 000,001,448 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RtHdatEx.dat [2012.12.15 18:35:22 | 000,000,712 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTEQEX0.dat [2012.12.15 18:35:22 | 000,000,520 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTEQEX3.dat [2012.12.15 18:35:22 | 000,000,520 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTEQEX2.dat [2012.12.15 18:35:22 | 000,000,520 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTEQEX1.dat [2012.12.15 18:35:22 | 000,000,176 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTHDAEQ1.dat [2012.12.15 18:35:22 | 000,000,024 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\rtkhdaud.dat [2012.12.15 18:35:17 | 000,290,813 | ---- | C] () -- C:\WINDOWS\SysNative\drivers\RTAIODAT.DAT [2012.12.15 00:47:54 | 000,006,656 | ---- | C] () -- C:\WINDOWS\SysNative\bcmwlrc.dll [2012.12.15 00:47:53 | 000,000,446 | ---- | C] () -- C:\WINDOWS\SysWow64\vcredist_x64.bat [2012.12.15 00:47:53 | 000,000,445 | ---- | C] () -- C:\WINDOWS\SysNative\vcredist_x64.bat [2012.12.15 00:46:41 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf [2012.12.15 00:44:55 | 000,001,442 | ---- | C] () -- C:\Users\Rouven\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2012.12.15 00:36:35 | 268,435,456 | -HS- | C] () -- C:\swapfile.sys [2012.12.14 02:06:01 | 2424,602,623 | -HS- | C] () -- C:\hiberfil.sys [2012.10.10 02:22:34 | 000,064,512 | ---- | C] () -- C:\WINDOWS\SysWow64\igdde32.dll [2012.10.10 02:22:32 | 000,598,780 | ---- | C] () -- C:\WINDOWS\SysWow64\igvpkrng700.bin [2012.10.10 02:22:16 | 000,755,048 | ---- | C] () -- C:\WINDOWS\SysWow64\igcodeckrng700.bin [2012.07.26 09:13:10 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat [2012.07.26 09:13:09 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT [2012.07.26 08:21:26 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2012.07.26 02:17:42 | 000,043,520 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll [2012.07.25 21:37:29 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin [2012.07.25 21:28:31 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll [2012.06.02 15:31:19 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat [2012.04.20 13:59:44 | 000,001,536 | ---- | C] () -- C:\WINDOWS\SysWow64\IusEventLog.dll ========== ZeroAccess Check ========== [2012.12.26 05:01:42 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2012.11.06 05:19:27 | 019,789,824 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012.11.06 05:20:00 | 017,560,576 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2012.07.26 04:05:38 | 001,004,544 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2012.07.26 04:18:27 | 000,784,896 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2012.07.26 04:07:41 | 000,455,680 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== LOP Check ========== [2012.12.26 15:07:47 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\(54-9B-12-5B-B2-00) [2012.12.17 01:24:21 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\DAEMON Tools Lite [2012.12.15 18:51:34 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\Engelmann Media [2012.12.18 23:05:24 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\lm [2013.01.02 22:19:50 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\Samsung [2012.12.15 18:56:53 | 000,000,000 | ---D | M] -- C:\Users\Rouven\AppData\Roaming\Synaptics ========== Purity Check ========== < End of report > |
Themen zu Mein Mauszeiger blinkt dauernd? |
acrobat update, adobe, adobe reader xi, antivir, avg, avira, bho, blinkt, browser, defender, desktop, echtzeit-scanner, explorer, google, hijack, hijackthis, home, install.exe, internet, internet explorer, launch, logfile, ntdll.dll, nvidia, nvidia update, picasa, plug-in, security, senden, software, temp, windows, wlan, wmi |