|
Plagegeister aller Art und deren Bekämpfung: CPU-Auslastung steigt alle 5 Minuten auf 100%Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
24.03.2013, 00:22 | #1 |
| CPU-Auslastung steigt alle 5 Minuten auf 100% Hallo ich habe das Problem das bei meinem Windows Vista Laptop die CPU Auslastung ungefähr alle 5 Minuten auf 100% steigt. Das bleibt dann auch für ungefähr 1-2 minuten so und führt zu starken Rucklern. Jetzt ist meine Frage was ich dagegen tuen kann außer das System komplett neu zu installieren. Ich habe schon geguckt welcher prozess die Leistung ziehen könnte aber keinen gefunden. Defragmentiert hab ich meine Festplatte auch schon. Außerdem steigt meine CPU Auslastung schon während ich nur Videos gucke ungewöhnlich hoch teilweise bis zu 50-60% Mir ist aufgefallen das es sogar nur passiert wenn ich Videos gucke oder Spiele spiele. Geändert von Trojan111 (24.03.2013 um 00:40 Uhr) |
01.04.2013, 19:51 | #2 | |
/// Helfer-Team | CPU-Auslastung steigt alle 5 Minuten auf 100%Zitat:
Downloade Dir bitte Malwarebytes Anti-Malware
dann: Systemscan mit OTL (bebilderte Anleitung) Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop ( falls noch nicht vorhanden)- Doppelklick auf die OTL.exe
__________________ |
01.04.2013, 21:56 | #3 |
| CPU-Auslastung steigt alle 5 Minuten auf 100% Es dürfte eigentlich nicht an einem Virus liegen, denn ich habe Windows mittlerweile neu installiert und habe immer noch das gleiche Problem. Aber die Logfiles poste ich trotzdem.
__________________Achja und dass es nur passiert wenn ich Spiele spiele oder Videos gucke, damit habe ich mich geirrt, es passiert nur öffter wenn ich Videos gucke oder Spiele spiele! Und fast hätte ich es vergessen, danke für die Antwort. Geändert von Trojan111 (01.04.2013 um 22:06 Uhr) |
02.04.2013, 07:02 | #4 |
/// Helfer-Team | CPU-Auslastung steigt alle 5 Minuten auf 100% Du solltest mal im Taskmanager nacschauen, welcher Prozess soviel CPU benoetigt. |
02.04.2013, 11:36 | #5 | |
| CPU-Auslastung steigt alle 5 Minuten auf 100% Hier die Log-Datei von Mbam: Zitat:
|
02.04.2013, 11:53 | #6 | |
/// Helfer-Team | CPU-Auslastung steigt alle 5 Minuten auf 100%Zitat:
-> Prozesse -> nach CPU sortieren. Wie heisst der Prozess(e)?
__________________ --> CPU-Auslastung steigt alle 5 Minuten auf 100% |
02.04.2013, 11:59 | #7 |
| CPU-Auslastung steigt alle 5 Minuten auf 100% Es könnte sein dass es an Java liegt? Es ist aber sehr komisch, dass der Taskmanager selber während diesen "Rucklern" bis zu 15% verbraucht und sonst nur 1% Hier die OTL.txt: OTL Logfile: Code:
ATTFilter OTL logfile created on: 02.04.2013 12:38:29 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pascal\Desktop Windows Vista Business Edition (Version = 6.0.6000) - Type = NTWorkstation Internet Explorer (Version = 7.0.6000.16982) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,00 Gb Total Physical Memory | 1,27 Gb Available Physical Memory | 42,32% Memory free 6,18 Gb Paging File | 4,43 Gb Available in Paging File | 71,72% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 58,89 Gb Total Space | 31,79 Gb Free Space | 53,98% Space Free | Partition Type: NTFS Drive D: | 90,11 Gb Total Space | 35,73 Gb Free Space | 39,65% Space Free | Partition Type: FAT32 Computer Name: PASCAL-PC | User Name: Pascal | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\Pascal\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Programme\Windows Sidebar\sidebar.exe (Microsoft Corporation) PRC - C:\Programme\Google\Chrome\Application\chrome.exe (Google Inc.) PRC - C:\Programme\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) PRC - C:\Programme\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) PRC - C:\Programme\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) PRC - C:\Programme\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) PRC - c:\Programme\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation) PRC - C:\Programme\Microsoft Security Client\msseces.exe (Microsoft Corporation) PRC - C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) PRC - C:\Programme\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) PRC - C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) PRC - C:\Programme\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) PRC - C:\Programme\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.) ========== Modules (No Company Name) ========== MOD - C:\Programme\Google\Chrome\Application\26.0.1410.43\ppgooglenaclpluginchrome.dll () MOD - C:\Programme\Google\Chrome\Application\26.0.1410.43\PepperFlash\pepflashplayer.dll () MOD - C:\Programme\Google\Chrome\Application\26.0.1410.43\pdf.dll () MOD - C:\Programme\Google\Chrome\Application\26.0.1410.43\libglesv2.dll () MOD - C:\Programme\Google\Chrome\Application\26.0.1410.43\libegl.dll () MOD - C:\Programme\Google\Chrome\Application\26.0.1410.43\ffmpegsumo.dll () ========== Services (SafeList) ========== SRV - (WinDefend) -- C:\Programme\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (nvUpdatusService) -- C:\Programme\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) SRV - (Stereo Service) -- C:\Programme\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) SRV - (MsMpSvc) -- c:\Programme\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation) SRV - (MBAMService) -- C:\Programme\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) SRV - (MBAMScheduler) -- C:\Programme\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) SRV - (Hamachi2Svc) -- C:\Programme\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.) SRV - (WMPNetworkSvc) -- C:\Programme\Windows Media Player\wmpnetwk.exe (Microsoft Corporation) ========== Driver Services (SafeList) ========== DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found DRV - (blbdrive) -- C:\Windows\system32\drivers\blbdrive.sys File not found DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation) DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation) DRV - (hamachi) -- C:\Windows\System32\drivers\hamachi.sys (LogMeIn, Inc.) DRV - (SiFilter) -- C:\Windows\System32\drivers\SiWinAcc.sys (Silicon Image, Inc.) DRV - (SiRemFil) -- C:\Windows\System32\drivers\SiRemFil.sys (Silicon Image, Inc.) DRV - (Si3531) -- C:\Windows\System32\drivers\Si3531.sys (Silicon Image, Inc) DRV - (AgereSoftModem) -- C:\Windows\System32\drivers\AGRSM.sys (Agere Systems) DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKU\S-1-5-21-2430881419-2907156013-2076594496-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Google IE - HKU\S-1-5-21-2430881419-2907156013-2076594496-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-2430881419-2907156013-2076594496-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-2430881419-2907156013-2076594496-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKU\S-1-5-21-2430881419-2907156013-2076594496-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll (Google Inc.) ========== Chrome ========== CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParameter}, CHR - homepage: Google CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.43\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.43\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.43\pdf.dll CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll CHR - plugin: Java(TM) Platform SE 7 U17 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll CHR - plugin: NVIDIA 3D Vision (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll CHR - plugin: NVIDIA 3D VISION (Enabled) = C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll CHR - Extension: Google Docs = C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\ CHR - Extension: Google Drive = C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Google-Suche = C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\ CHR - Extension: PanicButton = C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\0.14.2.2_0\ CHR - Extension: NotScripts = C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\odjhifogjcknibkahlpidmdajjpkkcfn\0.9.6_0\ CHR - Extension: Google Mail = C:\Users\Pascal\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2006.09.18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O4 - HKLM..\Run: [LogMeIn Hamachi Ui] C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-21-2430881419-2907156013-2076594496-1001..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKLM..\RunOnce: [ Malwarebytes Anti-Malware ] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation) O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{FD6F8E38-977F-47FA-A51B-471649C4FE14}: DhcpNameServer = 192.168.1.1 O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006.09.18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) ========== Files/Folders - Created Within 30 Days ========== [2013.04.01 22:59:53 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Pascal\Desktop\OTL.exe [2013.04.01 22:53:47 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Roaming\Malwarebytes [2013.04.01 22:53:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware [2013.04.01 22:52:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes [2013.04.01 22:52:53 | 000,021,104 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys [2013.04.01 22:52:53 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2013.03.31 23:37:12 | 000,000,000 | ---D | C] -- C:\Users\Pascal\Desktop\Redstone Test [2013.03.31 18:24:04 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Roaming\WinRAR [2013.03.31 18:24:04 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR [2013.03.31 18:24:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR [2013.03.31 18:22:09 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2013.03.31 18:17:24 | 000,000,000 | ---D | C] -- C:\Users\Pascal\Desktop\Redstone [2013.03.31 16:57:21 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2013.03.31 16:57:21 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll [2013.03.31 16:57:20 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll [2013.03.31 16:57:20 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2013.03.31 16:57:20 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll [2013.03.31 16:56:44 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\polstore.dll [2013.03.31 16:56:44 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll [2013.03.31 16:56:09 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched32.dll [2013.03.31 16:56:06 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rascfg.dll [2013.03.31 16:56:06 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll [2013.03.31 16:56:06 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmxs.dll [2013.03.31 16:56:06 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasser.dll [2013.03.31 16:56:05 | 000,564,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll [2013.03.31 16:56:04 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe [2013.03.31 16:56:03 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\traffic.dll [2013.03.31 16:56:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pacerprf.dll [2013.03.31 16:56:03 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshqos.dll [2013.03.31 16:56:02 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll [2013.03.31 16:55:01 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll [2013.03.31 16:55:00 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll [2013.03.31 16:55:00 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll [2013.03.31 16:52:53 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoeacct.dll [2013.03.31 16:52:53 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoert2.dll [2013.03.31 16:52:53 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ACCTRES.dll [2013.03.31 16:52:17 | 000,704,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr [2013.03.31 16:52:13 | 000,028,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\battc.sys [2013.03.31 16:51:14 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll [2013.03.31 16:51:13 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll [2013.03.31 16:49:29 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll [2013.03.31 16:49:29 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll [2013.03.31 16:49:02 | 002,855,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll [2013.03.31 16:49:02 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll [2013.03.31 16:49:01 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe [2013.03.31 16:49:01 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe [2013.03.31 16:49:01 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll [2013.03.31 16:49:00 | 002,433,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL [2013.03.31 16:48:13 | 003,502,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2013.03.31 16:48:12 | 003,468,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2013.03.31 16:43:30 | 000,374,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll [2013.03.31 16:43:10 | 000,500,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll [2013.03.31 16:43:09 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll [2013.03.31 16:42:14 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll [2013.03.31 16:42:14 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll [2013.03.31 16:41:15 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll [2013.03.31 16:40:23 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll [2013.03.31 16:40:02 | 000,713,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl [2013.03.31 16:39:28 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll [2013.03.31 16:39:02 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll [2013.03.31 16:39:01 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icfupgd.dll [2013.03.31 16:39:01 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll [2013.03.31 16:39:00 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmifw.dll [2013.03.31 16:35:28 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2013.03.31 16:34:25 | 000,045,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys [2013.03.31 16:34:24 | 000,109,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys [2013.03.31 16:34:15 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWWIN.EXE [2013.03.31 16:34:02 | 002,923,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe [2013.03.31 16:33:47 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hcrstco.dll [2013.03.31 16:33:47 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hccoin.dll [2013.03.31 16:33:47 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys [2013.03.31 16:33:46 | 000,224,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys [2013.03.31 16:31:55 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe [2013.03.30 15:41:52 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2013.03.30 15:41:52 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2013.03.30 15:41:52 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll [2013.03.30 15:41:52 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll [2013.03.30 15:41:51 | 002,452,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2013.03.30 15:41:51 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2013.03.30 15:41:50 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2013.03.30 15:41:49 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2013.03.30 15:41:49 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2013.03.30 15:41:48 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2013.03.30 15:41:47 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2013.03.30 15:41:43 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2013.03.30 15:41:42 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll [2013.03.30 15:41:42 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll [2013.03.30 15:41:41 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2013.03.30 15:41:39 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2013.03.30 15:41:37 | 001,830,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2013.03.30 15:41:35 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2013.03.30 15:41:33 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll [2013.03.30 15:41:32 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2013.03.30 15:41:32 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2013.03.30 15:41:32 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2013.03.30 15:39:22 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll [2013.03.30 15:39:22 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE [2013.03.30 15:39:22 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll [2013.03.30 15:39:22 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE [2013.03.30 15:39:22 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\finger.exe [2013.03.30 15:39:22 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE [2013.03.30 15:39:21 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE [2013.03.30 15:39:21 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE [2013.03.30 15:37:44 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll [2013.03.30 15:37:43 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll [2013.03.30 15:37:43 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll [2013.03.30 15:37:43 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll [2013.03.30 15:37:42 | 000,297,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll [2013.03.30 15:35:44 | 001,808,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0046.dll [2013.03.30 15:35:44 | 001,793,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0045.dll [2013.03.30 15:35:44 | 001,411,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0047.dll [2013.03.30 15:35:43 | 002,136,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0021.dll [2013.03.30 15:35:43 | 001,782,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0039.dll [2013.03.30 15:35:43 | 001,558,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0049.dll [2013.03.30 15:35:43 | 001,236,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0020.dll [2013.03.30 15:35:42 | 007,964,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0024.dll [2013.03.30 15:35:42 | 005,499,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0022.dll [2013.03.30 15:35:41 | 006,224,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0027.dll [2013.03.30 15:35:41 | 005,791,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0026.dll [2013.03.30 15:35:40 | 004,175,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0010.dll [2013.03.30 15:35:40 | 002,466,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0011.dll [2013.03.30 15:35:39 | 004,981,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0013.dll [2013.03.30 15:35:39 | 003,331,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0018.dll [2013.03.30 15:35:38 | 006,781,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0019.dll [2013.03.30 15:35:37 | 011,722,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0001.dll [2013.03.30 15:35:37 | 004,164,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0002.dll [2013.03.30 15:35:37 | 001,452,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0003.dll [2013.03.30 15:35:36 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll [2013.03.30 15:35:35 | 003,419,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004a.dll [2013.03.30 15:35:35 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll [2013.03.30 15:35:35 | 001,702,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004b.dll [2013.03.30 15:35:34 | 004,093,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004c.dll [2013.03.30 15:35:34 | 004,045,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons003e.dll [2013.03.30 15:35:34 | 001,972,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004e.dll [2013.03.30 15:35:33 | 006,014,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001a.dll [2013.03.30 15:35:33 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons002a.dll [2013.03.30 15:35:32 | 006,585,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001b.dll [2013.03.30 15:35:32 | 006,346,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001d.dll [2013.03.30 15:35:31 | 009,892,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000a.dll [2013.03.30 15:35:31 | 006,237,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll [2013.03.30 15:35:31 | 001,722,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000d.dll [2013.03.30 15:35:30 | 005,654,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000f.dll [2013.03.30 15:35:30 | 004,616,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0414.dll [2013.03.30 15:35:29 | 005,090,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0416.dll [2013.03.30 15:35:29 | 005,031,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0816.dll [2013.03.30 15:35:28 | 007,042,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons081a.dll [2013.03.30 15:35:28 | 005,071,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsModels0011.dll [2013.03.30 15:35:27 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0047.dll [2013.03.30 15:35:27 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0046.dll [2013.03.30 15:35:27 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0045.dll [2013.03.30 15:35:26 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0049.dll [2013.03.30 15:35:26 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0039.dll [2013.03.30 15:35:25 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0020.dll [2013.03.30 15:35:25 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0024.dll [2013.03.30 15:35:25 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0022.dll [2013.03.30 15:35:25 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0021.dll [2013.03.30 15:35:24 | 004,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0010.dll [2013.03.30 15:35:24 | 001,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0027.dll [2013.03.30 15:35:24 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0026.dll [2013.03.30 15:35:23 | 003,464,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0013.dll [2013.03.30 15:35:23 | 002,655,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0011.dll [2013.03.30 15:35:23 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0018.dll [2013.03.30 15:35:22 | 004,495,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0019.dll [2013.03.30 15:35:22 | 002,597,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0001.dll [2013.03.30 15:35:22 | 001,523,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll [2013.03.30 15:35:21 | 002,241,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0007.dll [2013.03.30 15:35:21 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0003.dll [2013.03.30 15:35:21 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0002.dll [2013.03.30 15:35:20 | 004,874,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll [2013.03.30 15:35:20 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004a.dll [2013.03.30 15:35:19 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004e.dll [2013.03.30 15:35:19 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004c.dll [2013.03.30 15:35:19 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004b.dll [2013.03.30 15:35:18 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001a.dll [2013.03.30 15:35:18 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData003e.dll [2013.03.30 15:35:18 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData002a.dll [2013.03.30 15:35:17 | 004,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001d.dll [2013.03.30 15:35:17 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001b.dll [2013.03.30 15:35:16 | 009,845,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000a.dll [2013.03.30 15:35:16 | 002,641,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll [2013.03.30 15:35:15 | 002,340,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000d.dll [2013.03.30 15:35:15 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000f.dll [2013.03.30 15:35:14 | 004,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0416.dll [2013.03.30 15:35:14 | 004,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0414.dll [2013.03.30 15:35:14 | 000,797,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll [2013.03.30 15:35:13 | 006,917,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0c1a.dll [2013.03.30 15:35:13 | 004,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0816.dll [2013.03.30 15:35:13 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData081a.dll [2013.03.30 15:35:12 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0c1a.dll [2013.03.30 15:31:18 | 000,371,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll [2013.03.30 15:31:18 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe [2013.03.30 15:31:18 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe [2013.03.30 15:31:17 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll [2013.03.30 15:31:17 | 000,019,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll [2013.03.30 15:31:16 | 000,944,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe [2013.03.30 15:31:16 | 000,905,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe [2013.03.30 15:31:16 | 000,620,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll [2013.03.30 15:31:15 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe [2013.03.30 15:31:09 | 000,260,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpx.dll [2013.03.30 15:31:09 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll [2013.03.30 15:31:08 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe [2013.03.30 15:31:07 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll [2013.03.30 15:31:07 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe [2013.03.30 15:31:07 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prflbmsg.dll [2013.03.30 15:31:05 | 000,035,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys [2013.03.30 15:31:05 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\batt.dll [2013.03.30 15:31:05 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll [2013.03.30 15:31:04 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispci.dll [2013.03.30 15:29:18 | 000,654,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe [2013.03.30 15:29:18 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll [2013.03.30 15:29:14 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll [2013.03.30 15:29:13 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll [2013.03.30 15:29:13 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll [2013.03.30 15:29:13 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll [2013.03.30 15:28:02 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe [2013.03.30 15:28:02 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll [2013.03.30 15:28:00 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll [2013.03.30 15:28:00 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe [2013.03.30 15:28:00 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe [2013.03.30 15:27:58 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll [2013.03.30 15:16:31 | 000,622,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe [2013.03.30 15:16:31 | 000,097,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll [2013.03.30 15:16:31 | 000,037,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl [2013.03.30 15:16:31 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll [2013.03.30 15:16:26 | 000,105,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [2013.03.30 15:16:25 | 000,781,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll [2013.03.30 15:16:25 | 000,326,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2013.03.30 15:16:25 | 000,043,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2013.03.30 15:08:13 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Local\LogMeIn Hamachi [2013.03.30 15:07:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi [2013.03.30 15:07:32 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi [2013.03.30 14:47:20 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2013.03.30 14:47:16 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll [2013.03.30 14:47:16 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll [2013.03.30 14:24:04 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Roaming\NVIDIA [2013.03.30 14:23:41 | 000,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll [2013.03.30 14:23:41 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe [2013.03.30 14:22:00 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Roaming\.minecraft [2013.03.30 14:21:28 | 000,000,000 | ---D | C] -- C:\Users\Pascal\Desktop\MODS [2013.03.30 14:19:54 | 000,324,419 | ---- | C] (The magical Minecraft launcher - MagicLauncher) -- C:\Users\Pascal\Desktop\MagicLauncher_1.0.0.exe [2013.03.30 14:10:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation [2013.03.30 13:47:24 | 000,220,672 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm [2013.03.30 13:47:23 | 000,062,464 | ---- | C] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm [2013.03.30 13:44:11 | 000,213,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys [2013.03.30 13:44:10 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll [2013.03.30 13:44:10 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe [2013.03.30 13:38:04 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LAPRXY.DLL [2013.03.30 13:38:03 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL [2013.03.30 13:38:03 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asferror.dll [2013.03.30 13:37:19 | 000,293,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe [2013.03.30 13:36:27 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll [2013.03.30 13:36:26 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll [2013.03.30 13:33:52 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll [2013.03.30 13:33:27 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll [2013.03.30 13:26:37 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\CscMig.dll [2013.03.30 13:26:30 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll [2013.03.30 13:26:30 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.exe [2013.03.30 13:26:28 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll [2013.03.30 13:26:28 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcmonitor.dll [2013.03.30 13:26:27 | 001,984,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll [2013.03.30 13:26:23 | 008,138,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ssBranded.scr [2013.03.30 13:21:51 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printcom.dll [2013.03.30 13:21:16 | 002,031,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2013.03.30 13:20:53 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys [2013.03.30 13:20:53 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshrm.dll [2013.03.30 13:17:34 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb [2013.03.30 13:17:34 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb [2013.03.30 13:16:42 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll [2013.03.30 13:16:41 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe [2013.03.30 13:16:40 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll [2013.03.30 13:16:37 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe [2013.03.30 13:16:37 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll [2013.03.30 13:16:14 | 000,472,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll [2013.03.30 13:15:55 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe [2013.03.30 13:14:55 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe [2013.03.30 13:14:49 | 000,473,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll [2013.03.30 13:12:07 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe [2013.03.30 13:11:31 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe [2013.03.30 13:10:39 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll [2013.03.30 13:10:34 | 004,247,552 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll [2013.03.30 13:10:33 | 001,686,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll [2013.03.30 13:07:06 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll [2013.03.30 13:06:23 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll [2013.03.30 13:03:09 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll [2013.03.30 12:57:21 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll [2013.03.30 12:56:59 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe [2013.03.30 12:53:55 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Roaming\Skype [2013.03.30 12:52:21 | 001,327,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll [2013.03.30 12:52:19 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll [2013.03.30 12:52:18 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll [2013.03.30 12:49:08 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL [2013.03.30 12:46:10 | 008,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL [2013.03.30 12:45:59 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll [2013.03.30 12:45:57 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll [2013.03.30 12:45:56 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx [2013.03.30 12:44:46 | 000,311,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe [2013.03.30 12:35:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome [2013.03.30 12:28:32 | 000,062,752 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll [2013.03.30 12:28:30 | 002,859,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll [2013.03.30 12:28:30 | 002,557,728 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll [2013.03.30 12:28:29 | 003,970,848 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll [2013.03.30 12:28:29 | 000,108,832 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll [2013.03.30 12:28:24 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2013.03.30 12:28:17 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Local\Google [2013.03.30 12:27:36 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Local\Deployment [2013.03.30 12:27:36 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Local\Apps [2013.03.30 12:27:00 | 000,053,024 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll [2013.03.30 12:26:44 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2013.03.30 12:24:56 | 000,000,000 | ---D | C] -- C:\Users\Pascal\{265e548d-4714-45d4-8fbd-21c266a6a6c5} [2013.03.30 12:24:13 | 012,566,808 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll [2013.03.30 12:24:12 | 019,915,552 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll [2013.03.30 12:24:12 | 006,162,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvopencl.dll [2013.03.30 12:24:10 | 010,919,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys [2013.03.30 12:24:09 | 015,413,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll [2013.03.30 12:24:09 | 001,010,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll [2013.03.30 12:24:09 | 000,892,704 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispgenco32.dll [2013.03.30 12:24:08 | 007,754,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll [2013.03.30 12:24:08 | 002,577,184 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll [2013.03.30 12:24:08 | 001,869,088 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll [2013.03.30 12:24:02 | 017,560,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll [2013.03.30 12:24:01 | 002,446,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll [2013.03.30 12:23:23 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2013.03.29 22:43:17 | 000,000,000 | ---D | C] -- C:\NVIDIA [2013.03.29 22:04:59 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2013.03.29 21:55:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2013.03.29 21:55:11 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2013.03.29 21:54:41 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\javaw.exe [2013.03.29 21:54:41 | 000,094,112 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll [2013.03.29 21:54:40 | 000,174,496 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\java.exe [2013.03.29 21:49:52 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2013.03.29 21:09:14 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2013.03.29 21:09:14 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client [2013.03.29 21:02:00 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ralink Wireless [2013.03.29 21:01:37 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2013.03.29 21:01:37 | 000,000,000 | ---D | C] -- C:\Program Files\RALINK [2013.03.29 21:01:14 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Roaming\InstallShield [2013.03.29 20:56:42 | 000,000,000 | R--D | C] -- C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2013.03.29 20:56:42 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Searches [2013.03.29 20:56:42 | 000,000,000 | R--D | C] -- C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2013.03.29 20:56:33 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Roaming\Identities [2013.03.29 20:56:31 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Contacts [2013.03.29 20:56:30 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Local\VirtualStore [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Vorlagen [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\AppData\Local\Verlauf [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\AppData\Local\Temporary Internet Files [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Startmenü [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\SendTo [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Recent [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Netzwerkumgebung [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Lokale Einstellungen [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Documents\Eigene Videos [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Documents\Eigene Musik [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Eigene Dateien [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Documents\Eigene Bilder [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Druckumgebung [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Cookies [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\AppData\Local\Anwendungsdaten [2013.03.29 20:56:26 | 000,000,000 | -HSD | C] -- C:\Users\Pascal\Anwendungsdaten [2013.03.29 20:56:25 | 000,000,000 | --SD | C] -- C:\Users\Pascal\AppData\Roaming\Microsoft [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Videos [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Saved Games [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Pictures [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Music [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Links [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Favorites [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Downloads [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Documents [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\Desktop [2013.03.29 20:56:25 | 000,000,000 | R--D | C] -- C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2013.03.29 20:56:25 | 000,000,000 | -H-D | C] -- C:\Users\Pascal\AppData [2013.03.29 20:56:25 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Local\Temp [2013.03.29 20:56:25 | 000,000,000 | ---D | C] -- C:\Users\Pascal\AppData\Local\Microsoft [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\Programme [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente [2013.03.29 20:54:40 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten [2013.03.29 20:49:58 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2013.03.29 20:48:23 | 000,000,000 | ---D | C] -- C:\Windows\System32\catroot2 [2013.03.29 20:48:11 | 000,000,000 | ---D | C] -- C:\Windows\Debug [2013.03.29 20:48:11 | 000,000,000 | ---D | C] -- C:\Windows\CSC [2013.03.29 20:46:35 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2013.03.29 20:46:22 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2013.03.29 20:45:27 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2013.03.29 20:45:11 | 000,000,000 | -HSD | C] -- C:\Boot ========== Files - Modified Within 30 Days ========== [2013.04.02 12:33:27 | 000,001,098 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.04.02 11:56:24 | 000,045,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\http.sys.mui [2013.04.02 11:51:55 | 000,641,344 | ---- | M] () -- C:\Windows\System32\perfh007.dat [2013.04.02 11:51:55 | 000,610,142 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2013.04.02 11:51:55 | 000,116,706 | ---- | M] () -- C:\Windows\System32\perfc007.dat [2013.04.02 11:51:55 | 000,103,924 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2013.04.02 11:48:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2013.04.02 11:48:28 | 000,003,936 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2013.04.02 11:48:27 | 000,003,936 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2013.04.01 23:00:01 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Pascal\Desktop\OTL.exe [2013.04.01 22:53:05 | 000,000,906 | ---- | M] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.04.01 22:07:54 | 000,001,094 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.04.01 22:07:24 | 3219,578,880 | -HS- | M] () -- C:\hiberfil.sys [2013.03.31 17:28:46 | 000,228,296 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2013.03.31 16:57:21 | 000,289,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll [2013.03.31 16:57:21 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll [2013.03.31 16:57:21 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll [2013.03.31 16:57:20 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll [2013.03.31 16:57:20 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll [2013.03.31 16:56:44 | 000,272,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\polstore.dll [2013.03.31 16:56:44 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll [2013.03.31 16:56:09 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\riched32.dll [2013.03.31 16:56:06 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rascfg.dll [2013.03.31 16:56:06 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll [2013.03.31 16:56:06 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasmxs.dll [2013.03.31 16:56:06 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasser.dll [2013.03.31 16:56:06 | 000,001,820 | ---- | M] () -- C:\Windows\System32\rasctrnm.h [2013.03.31 16:56:05 | 000,564,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll [2013.03.31 16:56:04 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe [2013.03.31 16:56:03 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\traffic.dll [2013.03.31 16:56:03 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pacerprf.dll [2013.03.31 16:56:03 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshqos.dll [2013.03.31 16:56:02 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll [2013.03.31 16:55:01 | 000,241,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll [2013.03.31 16:55:00 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll [2013.03.31 16:55:00 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll [2013.03.31 16:52:53 | 000,205,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msoeacct.dll [2013.03.31 16:52:53 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msoert2.dll [2013.03.31 16:52:53 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ACCTRES.dll [2013.03.31 16:52:17 | 000,704,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr [2013.03.31 16:52:13 | 000,028,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\battc.sys [2013.03.31 16:51:14 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll [2013.03.31 16:51:13 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll [2013.03.31 16:49:29 | 000,376,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll [2013.03.31 16:49:29 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll [2013.03.31 16:49:02 | 002,855,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll [2013.03.31 16:49:02 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll [2013.03.31 16:49:02 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe [2013.03.31 16:49:01 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe [2013.03.31 16:49:01 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll [2013.03.31 16:49:00 | 002,433,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL [2013.03.31 16:48:13 | 003,502,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe [2013.03.31 16:48:13 | 003,468,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe [2013.03.31 16:43:30 | 000,374,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll [2013.03.31 16:43:10 | 000,500,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll [2013.03.31 16:43:09 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll [2013.03.31 16:42:14 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll [2013.03.31 16:42:14 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll [2013.03.31 16:41:15 | 000,303,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll [2013.03.31 16:40:23 | 000,414,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll [2013.03.31 16:40:02 | 000,713,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl [2013.03.31 16:39:28 | 000,356,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll [2013.03.31 16:39:02 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll [2013.03.31 16:39:01 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icfupgd.dll [2013.03.31 16:39:01 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll [2013.03.31 16:39:00 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmifw.dll [2013.03.31 16:35:28 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll [2013.03.31 16:34:25 | 000,109,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys [2013.03.31 16:34:25 | 000,045,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys [2013.03.31 16:34:15 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWWIN.EXE [2013.03.31 16:34:02 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe [2013.03.31 16:33:47 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hcrstco.dll [2013.03.31 16:33:47 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hccoin.dll [2013.03.31 16:33:47 | 000,005,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys [2013.03.31 16:33:46 | 000,224,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys [2013.03.31 16:31:56 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe [2013.03.30 15:41:52 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll [2013.03.30 15:41:52 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll [2013.03.30 15:41:52 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll [2013.03.30 15:41:52 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll [2013.03.30 15:41:51 | 002,452,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat [2013.03.30 15:41:51 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll [2013.03.30 15:41:50 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2013.03.30 15:41:49 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll [2013.03.30 15:41:49 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll [2013.03.30 15:41:48 | 000,459,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2013.03.30 15:41:47 | 000,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2013.03.30 15:41:43 | 000,389,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec [2013.03.30 15:41:42 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll [2013.03.30 15:41:42 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll [2013.03.30 15:41:41 | 001,383,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2013.03.30 15:41:39 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll [2013.03.30 15:41:38 | 001,830,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2013.03.30 15:41:35 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2013.03.30 15:41:33 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll [2013.03.30 15:41:32 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe [2013.03.30 15:41:32 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll [2013.03.30 15:41:32 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll [2013.03.30 15:39:22 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll [2013.03.30 15:39:22 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE [2013.03.30 15:39:22 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE [2013.03.30 15:39:22 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll [2013.03.30 15:39:22 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE [2013.03.30 15:39:22 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\finger.exe [2013.03.30 15:39:22 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE [2013.03.30 15:39:21 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE [2013.03.30 15:37:44 | 001,657,350 | ---- | M] () -- C:\Windows\System32\wlan.tmf [2013.03.30 15:37:44 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll [2013.03.30 15:37:43 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll [2013.03.30 15:37:43 | 000,290,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll [2013.03.30 15:37:43 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll [2013.03.30 15:37:43 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll [2013.03.30 15:35:44 | 001,808,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0046.dll [2013.03.30 15:35:44 | 001,793,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0045.dll [2013.03.30 15:35:44 | 001,558,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0049.dll [2013.03.30 15:35:44 | 001,411,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0047.dll [2013.03.30 15:35:43 | 002,136,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0021.dll [2013.03.30 15:35:43 | 001,782,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0039.dll [2013.03.30 15:35:43 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0020.dll [2013.03.30 15:35:42 | 007,964,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0024.dll [2013.03.30 15:35:42 | 005,499,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0022.dll [2013.03.30 15:35:41 | 006,224,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0027.dll [2013.03.30 15:35:41 | 005,791,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0026.dll [2013.03.30 15:35:40 | 004,981,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0013.dll [2013.03.30 15:35:40 | 004,175,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0010.dll [2013.03.30 15:35:40 | 002,466,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0011.dll [2013.03.30 15:35:39 | 006,781,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0019.dll [2013.03.30 15:35:39 | 003,331,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0018.dll [2013.03.30 15:35:38 | 011,722,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0001.dll [2013.03.30 15:35:37 | 004,164,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0002.dll [2013.03.30 15:35:37 | 001,452,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0003.dll [2013.03.30 15:35:36 | 012,240,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll [2013.03.30 15:35:35 | 003,419,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004a.dll [2013.03.30 15:35:35 | 002,644,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll [2013.03.30 15:35:35 | 001,702,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004b.dll [2013.03.30 15:35:34 | 004,093,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004c.dll [2013.03.30 15:35:34 | 004,045,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons003e.dll [2013.03.30 15:35:34 | 001,972,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004e.dll [2013.03.30 15:35:33 | 006,585,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001b.dll [2013.03.30 15:35:33 | 006,014,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001a.dll [2013.03.30 15:35:33 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons002a.dll [2013.03.30 15:35:32 | 009,892,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000a.dll [2013.03.30 15:35:32 | 006,346,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001d.dll [2013.03.30 15:35:31 | 006,237,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll [2013.03.30 15:35:31 | 001,722,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000d.dll [2013.03.30 15:35:30 | 005,654,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000f.dll [2013.03.30 15:35:30 | 004,616,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0414.dll [2013.03.30 15:35:29 | 007,042,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons081a.dll [2013.03.30 15:35:29 | 005,090,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0416.dll [2013.03.30 15:35:29 | 005,031,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0816.dll [2013.03.30 15:35:28 | 005,071,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsModels0011.dll [2013.03.30 15:35:27 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0047.dll [2013.03.30 15:35:27 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0046.dll [2013.03.30 15:35:27 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0045.dll [2013.03.30 15:35:26 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0049.dll [2013.03.30 15:35:26 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0039.dll [2013.03.30 15:35:26 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0020.dll [2013.03.30 15:35:25 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0024.dll [2013.03.30 15:35:25 | 001,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0022.dll [2013.03.30 15:35:25 | 001,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0021.dll [2013.03.30 15:35:24 | 004,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0010.dll [2013.03.30 15:35:24 | 001,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0027.dll [2013.03.30 15:35:24 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0026.dll [2013.03.30 15:35:23 | 003,464,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0013.dll [2013.03.30 15:35:23 | 002,655,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0011.dll [2013.03.30 15:35:23 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0018.dll [2013.03.30 15:35:22 | 004,495,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0019.dll [2013.03.30 15:35:22 | 002,597,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0001.dll [2013.03.30 15:35:22 | 001,523,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll [2013.03.30 15:35:21 | 002,241,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0007.dll [2013.03.30 15:35:21 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0003.dll [2013.03.30 15:35:21 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0002.dll [2013.03.30 15:35:20 | 004,874,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll [2013.03.30 15:35:20 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004a.dll [2013.03.30 15:35:19 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004e.dll [2013.03.30 15:35:19 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004c.dll [2013.03.30 15:35:19 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004b.dll [2013.03.30 15:35:18 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001a.dll [2013.03.30 15:35:18 | 001,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData003e.dll [2013.03.30 15:35:18 | 001,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData002a.dll [2013.03.30 15:35:17 | 004,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001d.dll [2013.03.30 15:35:17 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001b.dll [2013.03.30 15:35:16 | 009,845,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000a.dll [2013.03.30 15:35:16 | 002,641,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll [2013.03.30 15:35:15 | 004,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0414.dll [2013.03.30 15:35:15 | 002,340,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000d.dll [2013.03.30 15:35:15 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000f.dll [2013.03.30 15:35:14 | 004,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0816.dll [2013.03.30 15:35:14 | 004,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0416.dll [2013.03.30 15:35:14 | 000,797,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll [2013.03.30 15:35:13 | 006,917,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0c1a.dll [2013.03.30 15:35:13 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0c1a.dll [2013.03.30 15:35:13 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData081a.dll [2013.03.30 15:31:23 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\i8042prt.sys.mui [2013.03.30 15:31:23 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\sermouse.sys.mui [2013.03.30 15:31:23 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\kbdclass.sys.mui [2013.03.30 15:31:23 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mouclass.sys.mui [2013.03.30 15:31:23 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\mouhid.sys.mui [2013.03.30 15:31:23 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\de-DE\kbdhid.sys.mui [2013.03.30 15:31:18 | 000,371,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll [2013.03.30 15:31:18 | 000,313,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe [2013.03.30 15:31:18 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe [2013.03.30 15:31:17 | 000,613,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll [2013.03.30 15:31:17 | 000,019,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll [2013.03.30 15:31:16 | 000,944,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winload.exe [2013.03.30 15:31:16 | 000,905,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe [2013.03.30 15:31:16 | 000,620,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ci.dll [2013.03.30 15:31:15 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe [2013.03.30 15:31:09 | 000,260,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpx.dll [2013.03.30 15:31:09 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll [2013.03.30 15:31:08 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe [2013.03.30 15:31:07 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll [2013.03.30 15:31:07 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe [2013.03.30 15:31:07 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prflbmsg.dll [2013.03.30 15:31:05 | 000,035,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys [2013.03.30 15:31:05 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batt.dll [2013.03.30 15:31:05 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll [2013.03.30 15:31:04 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dispci.dll [2013.03.30 15:29:18 | 000,654,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe [2013.03.30 15:29:18 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll [2013.03.30 15:29:14 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll [2013.03.30 15:29:13 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll [2013.03.30 15:29:13 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll [2013.03.30 15:29:13 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll [2013.03.30 15:28:02 | 000,268,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe [2013.03.30 15:28:02 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll [2013.03.30 15:28:00 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll [2013.03.30 15:28:00 | 000,351,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe [2013.03.30 15:28:00 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe [2013.03.30 15:27:58 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll [2013.03.30 15:16:31 | 000,622,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icardagt.exe [2013.03.30 15:16:31 | 000,097,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\infocardapi.dll [2013.03.30 15:16:31 | 000,037,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\infocardcpl.cpl [2013.03.30 15:16:31 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icardres.dll [2013.03.30 15:16:26 | 000,105,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll [2013.03.30 15:16:25 | 000,781,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationNative_v0300.dll [2013.03.30 15:16:25 | 000,326,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationHost.exe [2013.03.30 15:16:25 | 000,043,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationHostProxy.dll [2013.03.30 15:08:10 | 029,294,592 | ---- | M] () -- C:\Windows\ocsetup_install_NetFx3.etl [2013.03.30 15:08:09 | 000,196,608 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf [2013.03.30 15:08:09 | 000,065,536 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx [2013.03.30 15:07:33 | 000,000,807 | ---- | M] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk [2013.03.30 14:47:20 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll [2013.03.30 14:47:16 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll [2013.03.30 14:47:16 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll [2013.03.30 14:23:41 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll [2013.03.30 14:23:41 | 000,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe [2013.03.30 14:20:27 | 000,324,419 | ---- | M] (The magical Minecraft launcher - MagicLauncher) -- C:\Users\Pascal\Desktop\MagicLauncher_1.0.0.exe [2013.03.30 14:18:34 | 000,263,186 | ---- | M] () -- C:\Users\Pascal\Desktop\Minecraft.exe [2013.03.30 13:47:25 | 000,220,672 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codecp.acm [2013.03.30 13:47:23 | 000,062,464 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\Windows\System32\l3codeca.acm [2013.03.30 13:44:11 | 000,213,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys [2013.03.30 13:44:10 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll [2013.03.30 13:44:10 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe [2013.03.30 13:38:04 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LAPRXY.DLL [2013.03.30 13:38:03 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL [2013.03.30 13:38:03 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asferror.dll [2013.03.30 13:37:19 | 000,293,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\browserchoice.exe [2013.03.30 13:36:27 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\amxread.dll [2013.03.30 13:36:26 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apilogen.dll [2013.03.30 13:33:52 | 000,425,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll [2013.03.30 13:33:27 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll [2013.03.30 13:26:37 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CscMig.dll [2013.03.30 13:26:30 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll [2013.03.30 13:26:30 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntprint.exe [2013.03.30 13:26:28 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll [2013.03.30 13:26:28 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcmonitor.dll [2013.03.30 13:26:27 | 001,984,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll [2013.03.30 13:26:23 | 008,138,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ssBranded.scr [2013.03.30 13:21:51 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printcom.dll [2013.03.30 13:21:16 | 002,031,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2013.03.30 13:20:53 | 000,113,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys [2013.03.30 13:20:53 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshrm.dll [2013.03.30 13:17:34 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb [2013.03.30 13:17:34 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb [2013.03.30 13:16:42 | 000,312,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll [2013.03.30 13:16:41 | 000,435,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe [2013.03.30 13:16:40 | 000,154,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll [2013.03.30 13:16:37 | 000,431,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe [2013.03.30 13:16:37 | 000,154,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll [2013.03.30 13:16:17 | 000,472,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll [2013.03.30 13:16:11 | 000,515,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe [2013.03.30 13:14:58 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe [2013.03.30 13:14:51 | 000,473,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll [2013.03.30 13:12:07 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe [2013.03.30 13:11:31 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe [2013.03.30 13:10:39 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll [2013.03.30 13:10:34 | 004,247,552 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll [2013.03.30 13:10:33 | 001,686,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll [2013.03.30 13:07:06 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll [2013.03.30 13:06:24 | 001,645,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\connect.dll [2013.03.30 13:03:09 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll [2013.03.30 12:57:21 | 000,321,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll [2013.03.30 12:56:59 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe [2013.03.30 12:52:19 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll [2013.03.30 12:52:18 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll [2013.03.30 12:49:09 | 000,604,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL [2013.03.30 12:46:10 | 008,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL [2013.03.30 12:45:59 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll [2013.03.30 12:45:56 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx [2013.03.30 12:44:46 | 000,311,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe [2013.03.30 12:38:12 | 000,000,680 | ---- | M] () -- C:\Users\Pascal\AppData\Local\d3d9caps.dat [2013.03.30 12:35:12 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013.03.29 21:54:27 | 000,094,112 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\WindowsAccessBridge.dll [2013.03.29 21:54:22 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\javaw.exe [2013.03.29 21:54:22 | 000,174,496 | ---- | M] (Oracle Corporation) -- C:\Windows\System32\java.exe [2013.03.29 21:10:04 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif [2013.03.29 20:51:26 | 000,124,618 | ---- | M] () -- C:\Windows\System32\license.rtf [2013.03.29 20:50:35 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\UMDF\Msft_User_WpdFs_01_00_00.Wdf [2013.03.29 20:45:13 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK ========== Files Created - No Company Name ========== [2013.04.01 22:53:05 | 000,000,906 | ---- | C] () -- C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk [2013.03.31 16:56:06 | 000,001,820 | ---- | C] () -- C:\Windows\System32\rasctrnm.h [2013.03.30 15:37:43 | 001,657,350 | ---- | C] () -- C:\Windows\System32\wlan.tmf [2013.03.30 15:07:33 | 000,000,807 | ---- | C] () -- C:\Users\Public\Desktop\LogMeIn Hamachi.lnk [2013.03.30 14:54:25 | 029,294,592 | ---- | C] () -- C:\Windows\ocsetup_install_NetFx3.etl [2013.03.30 14:54:25 | 000,196,608 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf [2013.03.30 14:54:25 | 000,065,536 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx [2013.03.30 14:18:31 | 000,263,186 | ---- | C] () -- C:\Users\Pascal\Desktop\Minecraft.exe [2013.03.30 12:35:12 | 000,001,971 | ---- | C] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2013.03.30 12:28:36 | 000,001,098 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2013.03.30 12:28:33 | 000,001,094 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2013.03.30 12:24:10 | 000,012,724 | ---- | C] () -- C:\Windows\System32\nvinfo.pb [2013.03.29 21:10:04 | 000,001,912 | ---- | C] () -- C:\Windows\epplauncher.mif [2013.03.29 21:09:34 | 000,001,826 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk [2013.03.29 20:56:43 | 000,000,949 | ---- | C] () -- C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2013.03.29 20:56:41 | 000,000,944 | ---- | C] () -- C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk [2013.03.29 20:56:31 | 000,000,915 | ---- | C] () -- C:\Users\Pascal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk [2013.03.29 20:56:27 | 000,000,680 | ---- | C] () -- C:\Users\Pascal\AppData\Local\d3d9caps.dat [2013.03.29 20:52:59 | 3219,578,880 | -HS- | C] () -- C:\hiberfil.sys [2013.03.29 20:51:16 | 000,000,604 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live.lnk [2013.03.29 20:45:13 | 000,008,192 | R-S- | C] () -- C:\BOOTSECT.BAK [2013.03.29 20:45:11 | 000,438,840 | RHS- | C] () -- C:\bootmgr ========== ZeroAccess Check ========== [2006.11.02 14:54:18 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2013.03.31 16:36:12 | 011,315,712 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2013.03.30 15:29:15 | 000,614,912 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2006.11.02 11:46:13 | 000,348,672 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both ========== LOP Check ========== [2013.04.02 00:27:47 | 000,000,000 | ---D | M] -- C:\Users\Pascal\AppData\Roaming\.minecraft ========== Purity Check ========== < End of report > Hier die Extras.txt OTL EXTRAS Logfile: Code:
ATTFilter OTL Extras logfile created on: 02.04.2013 12:38:29 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Pascal\Desktop Windows Vista Business Edition (Version = 6.0.6000) - Type = NTWorkstation Internet Explorer (Version = 7.0.6000.16982) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 3,00 Gb Total Physical Memory | 1,27 Gb Available Physical Memory | 42,32% Memory free 6,18 Gb Paging File | 4,43 Gb Available in Paging File | 71,72% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 58,89 Gb Total Space | 31,79 Gb Free Space | 53,98% Space Free | Partition Type: NTFS Drive D: | 90,11 Gb Total Space | 35,73 Gb Free Space | 39,65% Space Free | Partition Type: FAT32 Computer Name: PASCAL-PC | User Name: Pascal | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l [HKEY_USERS\S-1-5-21-2430881419-2907156013-2076594496-1000\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 ========== Authorized Applications List ========== ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "TCP Query User{8C642BA8-BA90-46FC-8634-D0B422FB8404}D:\skype\phone\skype.exe" = protocol=6 | dir=in | app=d:\skype\phone\skype.exe | "TCP Query User{9D84FFBD-BB4A-4845-B047-94F97AEBA3B7}C:\program files\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe | "UDP Query User{4B47837C-4280-4F2E-A679-D7124417F650}C:\program files\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe | "UDP Query User{EDAA968A-6F84-41A9-8BCB-148AB8655B10}D:\skype\phone\skype.exe" = protocol=17 | dir=in | app=d:\skype\phone\skype.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{052FDD78-A6EA-3187-8386-C82F4CA3A929}" = Microsoft .NET Framework 3.5 Language Pack SP1 - deu "{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17 "{2FDD750F-49B7-40C1-9D5E-D2955BC0E2D8}" = NVIDIA PhysX "{32A3A4F4-B792-11D6-A78A-00B0D0170170}" = Java SE Development Kit 7 Update 17 "{390DD8BB-BB57-4942-A029-2D913E4E9D74}" = Microsoft Security Client "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}" = Ralink Wireless LAN "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA 3D Vision Treiber 307.83 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Systemsteuerung 307.83 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafiktreiber 307.83 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX-Systemsoftware 9.12.0604 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.10.8 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{E2494AD8-314D-44F8-B39C-4358A60DC184}" = LogMeIn Hamachi "Google Chrome" = Google Chrome "LogMeIn Hamachi" = LogMeIn Hamachi "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.70.0.1100 "Microsoft .NET Framework 3.5 Language Pack SP1 - deu" = Microsoft .NET Framework 3.5 Language Pack SP1 - DEU "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft Security Client" = Microsoft Security Essentials "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "WinRAR archiver" = WinRAR 4.20 (32-Bit) ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 29.03.2013 15:01:16 | Computer Name = Pascal-PC | Source = Application Error | ID = 1000 Description = Fehlerhafte Anwendung setup.exe_InstallShield, Version 12.0.0.58849, Zeitstempel 0x45b1a378, fehlerhaftes Modul ISSetup.dll, Version 12.0.0.58851, Zeitstempel 0x45e5fb47, Ausnahmecode 0xc0000005, Fehleroffset 0x0009522f, Prozess-ID 0xb28, Anwendungsstartzeit 01ce2cafc8143e89. Error - 29.03.2013 15:01:30 | Computer Name = Pascal-PC | Source = VSS | ID = 8194 Description = Error - 30.03.2013 06:55:03 | Computer Name = Pascal-PC | Source = Application Hang | ID = 1002 Description = Programm SkypeSetup.exe, Version 6.3.0.105 arbeitet nicht mehr mit Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem zu suchen. Prozess-ID: f4 Anfangszeit: 01ce2d3396f07b2d Zeitpunkt der Beendigung: 265 Error - 30.03.2013 09:27:40 | Computer Name = Pascal-PC | Source = .NET Runtime Optimization Service | ID = 1101 Description = Error - 31.03.2013 11:31:47 | Computer Name = Pascal-PC | Source = ESENT | ID = 215 Description = WinMail (2432) WindowsMail0: The backup has been stopped because it was halted by the client or the connection with the client failed. Error - 31.03.2013 12:41:18 | Computer Name = Pascal-PC | Source = Application Hang | ID = 1002 Description = Programm SkypeSetup.exe, Version 6.3.0.105 arbeitet nicht mehr mit Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem zu suchen. Prozess-ID: d9c Anfangszeit: 01ce2e2d80ec25ff Zeitpunkt der Beendigung: 7 Error - 01.04.2013 16:14:54 | Computer Name = Pascal-PC | Source = Application Error | ID = 1000 Description = Fehlerhafte Anwendung Explorer.EXE, Version 6.0.6000.16771, Zeitstempel 0x4907deda, fehlerhaftes Modul ntdll.dll, Version 6.0.6000.16386, Zeitstempel 0x4549bdc9, Ausnahmecode 0xc0000005, Fehleroffset 0x00062086, Prozess-ID 0xc, Anwendungsstartzeit 01ce2f1497ef1686. Error - 01.04.2013 18:18:00 | Computer Name = Pascal-PC | Source = Application Hang | ID = 1002 Description = Programm iexplore.exe, Version 7.0.6000.16982 arbeitet nicht mehr mit Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem zu suchen. Prozess-ID: 6d0 Anfangszeit: 01ce2f2680028e7e Zeitpunkt der Beendigung: 32 [ System Events ] Error - 01.04.2013 12:34:15 | Computer Name = Pascal-PC | Source = Microsoft-Windows-Servicing | ID = 4375 Description = Error - 01.04.2013 16:09:07 | Computer Name = Pascal-PC | Source = Service Control Manager | ID = 7000 Description = Error - 01.04.2013 16:18:14 | Computer Name = Pascal-PC | Source = Microsoft Antimalware | ID = 2001 Description = Beim Aktualisieren der Signaturen wurde von %%860 ein Fehler festgestellt. Neue Signaturversion: Vorherige Signaturversion: 1.147.799.0 Aktualisierungsquelle: %%859 Aktualisierungsphase: %%852 Quellpfad: hxxp://www.microsoft.com Signaturtyp: %%800 Aktualisierungstyp: %%803 Benutzer: NT-AUTORITÄT\SYSTEM Aktuelle Modulversion: Vorherige Modulversion: 1.1.9302.0 Fehlercode: 0x80248014 Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support". Error - 01.04.2013 16:19:07 | Computer Name = Pascal-PC | Source = Microsoft Antimalware | ID = 2001 Description = Beim Aktualisieren der Signaturen wurde von %%860 ein Fehler festgestellt. Neue Signaturversion: Vorherige Signaturversion: 1.147.799.0 Aktualisierungsquelle: %%851 Aktualisierungsphase: %%852 Quellpfad: hxxp://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.9302.0&avdelta=1.147.799.0&asdelta=1.147.799.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signaturtyp: %%800 Aktualisierungstyp: %%803 Benutzer: NT-AUTORITÄT\NETZWERKDIENST Aktuelle Modulversion: Vorherige Modulversion: 1.1.9302.0 Fehlercode: 0x80072ee7 Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden. Error - 01.04.2013 16:19:07 | Computer Name = Pascal-PC | Source = Microsoft Antimalware | ID = 2001 Description = Beim Aktualisieren der Signaturen wurde von %%860 ein Fehler festgestellt. Neue Signaturversion: Vorherige Signaturversion: 1.147.799.0 Aktualisierungsquelle: %%851 Aktualisierungsphase: %%852 Quellpfad: hxxp://go.microsoft.com/fwlink/?LinkID=121721&clcid=0x409&arch=x86&eng=1.1.9302.0&avdelta=1.147.799.0&asdelta=1.147.799.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signaturtyp: %%801 Aktualisierungstyp: %%803 Benutzer: NT-AUTORITÄT\NETZWERKDIENST Aktuelle Modulversion: Vorherige Modulversion: 1.1.9302.0 Fehlercode: 0x80072ee7 Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden. Error - 01.04.2013 16:19:24 | Computer Name = Pascal-PC | Source = Microsoft Antimalware | ID = 2001 Description = Beim Aktualisieren der Signaturen wurde von %%860 ein Fehler festgestellt. Neue Signaturversion: Vorherige Signaturversion: 0.0.0.0 Aktualisierungsquelle: %%851 Aktualisierungsphase: %%852 Quellpfad: hxxp://go.microsoft.com/fwlink/?LinkID=260974&clcid=0x409&NRI=true&arch=x86&eng=0.0.0.0&sig=0.0.0.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signaturtyp: %%886 Aktualisierungstyp: %%803 Benutzer: NT-AUTORITÄT\NETZWERKDIENST Aktuelle Modulversion: Vorherige Modulversion: 0.0.0.0 Fehlercode: 0x80072ee7 Fehlerbeschreibung: Der Servername oder die Serveradresse konnte nicht verarbeitet werden. Error - 02.04.2013 05:58:47 | Computer Name = Pascal-PC | Source = Microsoft Antimalware | ID = 2001 Description = Beim Aktualisieren der Signaturen wurde von %%860 ein Fehler festgestellt. Neue Signaturversion: Vorherige Signaturversion: 1.147.799.0 Aktualisierungsquelle: %%859 Aktualisierungsphase: %%852 Quellpfad: hxxp://www.microsoft.com Signaturtyp: %%800 Aktualisierungstyp: %%803 Benutzer: NT-AUTORITÄT\SYSTEM Aktuelle Modulversion: Vorherige Modulversion: 1.1.9302.0 Fehlercode: 0x80248014 Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support". Error - 02.04.2013 06:20:39 | Computer Name = Pascal-PC | Source = Microsoft Antimalware | ID = 2001 Description = Beim Aktualisieren der Signaturen wurde von %%860 ein Fehler festgestellt. Neue Signaturversion: Vorherige Signaturversion: Aktualisierungsquelle: %%815 Aktualisierungsphase: %%854 Quellpfad: Signaturtyp: %%886 Aktualisierungstyp: %%803 Benutzer: NT-AUTORITÄT\NETZWERKDIENST Aktuelle Modulversion: Vorherige Modulversion: Fehlercode: 0x80070002 Fehlerbeschreibung: Das System kann die angegebene Datei nicht finden. Error - 02.04.2013 06:20:39 | Computer Name = Pascal-PC | Source = Microsoft Antimalware | ID = 2003 Description = Beim Aktualisieren des Moduls wurde von %%860 ein Fehler festgestellt. Neue Modulversion: Vorherige Modulversion: Modultyp: %%886 Benutzer: NT-AUTORITÄT\NETZWERKDIENST Fehlercode: 0x80070002 Fehlerbeschreibung: Das System kann die angegebene Datei nicht finden. Error - 02.04.2013 06:20:43 | Computer Name = Pascal-PC | Source = Microsoft Antimalware | ID = 2001 Description = Beim Aktualisieren der Signaturen wurde von %%860 ein Fehler festgestellt. Neue Signaturversion: Vorherige Signaturversion: 0.0.0.0 Aktualisierungsquelle: %%851 Aktualisierungsphase: %%854 Quellpfad: hxxp://go.microsoft.com/fwlink/?LinkID=260974&clcid=0x409&NRI=true&arch=x86&eng=0.0.0.0&sig=0.0.0.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 Signaturtyp: %%886 Aktualisierungstyp: %%803 Benutzer: NT-AUTORITÄT\NETZWERKDIENST Aktuelle Modulversion: Vorherige Modulversion: 0.0.0.0 Fehlercode: 0x80070002 Fehlerbeschreibung: Das System kann die angegebene Datei nicht finden. < End of report > Geändert von Trojan111 (02.04.2013 um 12:49 Uhr) |
02.04.2013, 14:27 | #8 |
/// Helfer-Team | CPU-Auslastung steigt alle 5 Minuten auf 100% Mache mal: Downloade Dir bitte SecurityCheck und:
|
02.04.2013, 14:35 | #9 | |
| CPU-Auslastung steigt alle 5 Minuten auf 100% Hier: Zitat:
|
02.04.2013, 14:48 | #10 |
/// Helfer-Team | CPU-Auslastung steigt alle 5 Minuten auf 100% Alles Windows Updates einspielen, inkl. Service Pack & internet Explorer! http://windowsupdate.microsoft.com |
02.04.2013, 16:22 | #11 |
| CPU-Auslastung steigt alle 5 Minuten auf 100% Ich hab jetzt alle Updates installiert und es hat nichts gebracht. Während den Rucklern steigt der CPU Verbrauch vom Taskmanager sogar manchmal auf 50 und von Chrome dann auch auf 40. Aber wenn ich z.B. Chrome nicht offen habe passiert es ja trotzdem. Geändert von Trojan111 (02.04.2013 um 17:17 Uhr) |
03.04.2013, 08:36 | #12 |
/// Helfer-Team | CPU-Auslastung steigt alle 5 Minuten auf 100% Step 2 und Step 3 ausfuehren: http://www.trojaner-board.de/126216-...epair-aio.html |
03.04.2013, 11:19 | #13 |
| CPU-Auslastung steigt alle 5 Minuten auf 100% Habe ich gemacht hat leider auch nichts gebracht. |
03.04.2013, 16:04 | #14 |
/// Helfer-Team | CPU-Auslastung steigt alle 5 Minuten auf 100% |
03.04.2013, 16:16 | #15 | |
| CPU-Auslastung steigt alle 5 Minuten auf 100%Zitat: Hä ? Ich kenne den Link zu meinem Thread ? |
Themen zu CPU-Auslastung steigt alle 5 Minuten auf 100% |
auslastung, cpu, cpu auslastung, cpu-auslastung, frage, problem, ruckler, windows vista |