| |
| |||||||
Log-Analyse und Auswertung: Brief von Telekom Abuse Team wegen Verdachts auf HackingWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
13.07.2013, 19:42
| #16 |
 |  Brief von Telekom Abuse Team wegen Verdachts auf HackingCode:
ATTFilter 2013-07-09 07:29 - 2010-11-20 14:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx 2013-07-09 07:29 - 2010-11-20 14:16 - 00345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl 2013-07-09 07:29 - 2010-11-20 14:16 - 00326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysdm.cpl 2013-07-09 07:29 - 2010-11-20 14:16 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp 2013-07-09 07:29 - 2010-11-20 14:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2013-07-09 07:29 - 2010-11-20 14:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdmaud.drv 2013-07-09 07:29 - 2010-11-20 14:16 - 00068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSTPager.ax 2013-07-09 07:29 - 2010-11-20 13:06 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys 2013-07-09 07:29 - 2010-11-20 13:04 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2013-07-09 07:29 - 2010-11-20 12:52 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys 2013-07-09 07:29 - 2010-11-20 12:44 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2013-07-09 07:29 - 2010-11-20 12:44 - 00184960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys 2013-07-09 07:29 - 2010-11-20 12:43 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2013-07-09 07:29 - 2010-11-20 11:49 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2013-07-09 07:29 - 2010-11-20 11:37 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2013-07-09 07:29 - 2010-11-05 04:11 - 00433512 _____ (Microsoft Corporation) C:\Windows\system32\MCEWMDRMNDBootstrap.dll 2013-07-09 07:29 - 2010-11-05 04:11 - 00312168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCEWMDRMNDBootstrap.dll 2013-07-09 07:29 - 2010-11-05 03:58 - 00080720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll 2013-07-09 07:28 - 2010-11-20 15:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\NAPCRYPT.DLL 2013-07-09 07:28 - 2010-11-20 15:27 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL 2013-07-09 07:28 - 2010-11-20 15:27 - 01080320 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL 2013-07-09 07:28 - 2010-11-20 15:27 - 00681472 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL 2013-07-09 07:28 - 2010-11-20 15:27 - 00527872 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00435712 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00337920 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\qdv.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\mstask.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceSyncProvider.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\qcap.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\wiavideo.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL 2013-07-09 07:28 - 2010-11-20 15:27 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL 2013-07-09 07:28 - 2010-11-20 15:27 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\rdprefdrvapi.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TRAPI.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2013-07-09 07:28 - 2010-11-20 15:27 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2013-07-09 07:28 - 2010-11-20 15:27 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 01087488 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00573952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL 2013-07-09 07:28 - 2010-11-20 15:26 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\HotStartUserAgent.dll 2013-07-09 07:28 - 2010-11-20 15:26 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\qprocess.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\qappsrv.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\tscon.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\tsdiscon.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\shadow.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\rwinsta.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\reset.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\query.exe 2013-07-09 07:28 - 2010-11-20 15:25 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\BWUnpairElevated.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll 2013-07-09 07:28 - 2010-11-20 15:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL 2013-07-09 07:28 - 2010-11-20 15:24 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr 2013-07-09 07:28 - 2010-11-20 15:24 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr 2013-07-09 07:28 - 2010-11-20 15:24 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax 2013-07-09 07:28 - 2010-11-20 15:24 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl 2013-07-09 07:28 - 2010-11-20 15:24 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00071168 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax 2013-07-09 07:28 - 2010-11-20 15:24 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax 2013-07-09 07:28 - 2010-11-20 15:24 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\choice.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\chgport.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\chglogon.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\logoff.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\chgusr.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\FXSUNATD.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe 2013-07-09 07:28 - 2010-11-20 15:24 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\change.exe 2013-07-09 07:28 - 2010-11-20 15:16 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2013-07-09 07:28 - 2010-11-20 15:15 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll 2013-07-09 07:28 - 2010-11-20 15:13 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\RDPENCDD.dll 2013-07-09 07:28 - 2010-11-20 15:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\vmicres.dll 2013-07-09 07:28 - 2010-11-20 15:09 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\vmbusres.dll 2013-07-09 07:28 - 2010-11-20 15:09 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\vmstorfltres.dll 2013-07-09 07:28 - 2010-11-20 15:02 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME 2013-07-09 07:28 - 2010-11-20 15:02 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime 2013-07-09 07:28 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUQ.DLL 2013-07-09 07:28 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUF.DLL 2013-07-09 07:28 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDSG.DLL 2013-07-09 07:28 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\kbdlk41a.dll 2013-07-09 07:28 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDGKL.DLL 2013-07-09 07:28 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDSF.DLL 2013-07-09 07:28 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDPO.DLL 2013-07-09 07:28 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDNEPR.DLL 2013-07-09 07:28 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTAM.DLL 2013-07-09 07:28 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDINBEN.DLL 2013-07-09 07:28 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDGR1.DLL 2013-07-09 07:28 - 2010-11-20 14:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll 2013-07-09 07:28 - 2010-11-20 14:36 - 00046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NAPCRYPT.DLL 2013-07-09 07:28 - 2010-11-20 14:21 - 00902656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL 2013-07-09 07:28 - 2010-11-20 14:21 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL 2013-07-09 07:28 - 2010-11-20 14:21 - 00616960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL 2013-07-09 07:28 - 2010-11-20 14:21 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmnet.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDSp.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschap.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlcese30.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdwcn.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00186368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vdsbas.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remotepg.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpps.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxlib.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiavideo.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppinst.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srvcli.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QUTIL.DLL 2013-07-09 07:28 - 2010-11-20 14:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountControlSettings.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spbcd.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdmat.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vfwwdm32.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpd3d.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkscli.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimgvw.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\utildll.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vpnikeapi.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsdchngr.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TRAPI.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdprefdrvapi.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shgina.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spopk.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schedcli.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syssetup.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slwga.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshirda.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shunimpl.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched32.dll 2013-07-09 07:28 - 2010-11-20 14:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2013-07-09 07:28 - 2010-11-20 14:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 01661440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\networkexplorer.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 01160192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 01111552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onexui.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceStatus.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdv.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceSyncProvider.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00174592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetapi.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mydocs.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL 2013-07-09 07:28 - 2010-11-20 14:20 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olethk32.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QCLIPROV.DLL 2013-07-09 07:28 - 2010-11-20 14:20 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\napdsnap.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptui.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdhui.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netutils.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll 2013-07-09 07:28 - 2010-11-20 14:20 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iTVData.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprapi.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrecst.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvfw32.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fphc.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciavi32.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00082944 _____ (Radius Inc.) C:\Windows\SysWOW64\iccvid.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetmib1.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iyuv_32.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\luainstall.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciqtz32.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvidc32.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdmo.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsium.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lsmproxy.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll 2013-07-09 07:28 - 2010-11-20 14:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrle32.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\audiodev.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00242176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00211456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingFolder.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxdiagn.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00128512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EhStorAPI.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3msm.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avifil32.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabinet.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\amstream.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cca.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertPolEng.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acppage.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsauth.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzSqlExt.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elsTrans.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsperf.dll 2013-07-09 07:28 - 2010-11-20 14:18 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_ISCII.DLL 2013-07-09 07:28 - 2010-11-20 14:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browseui.dll 2013-07-09 07:28 - 2010-11-20 14:17 - 00327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimserv.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00280064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00276480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskraid.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfmon.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicli.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskpart.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mobsync.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nslookup.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logagent.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmstp.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MuiUnattend.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findstr.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\takeown.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unlodctr.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe 2013-07-09 07:28 - 2010-11-20 14:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe 2013-07-09 07:28 - 2010-11-20 14:16 - 00878592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Bubbles.scr 2013-07-09 07:28 - 2010-11-20 14:16 - 00293888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssText3d.scr 2013-07-09 07:28 - 2010-11-20 14:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mystify.scr 2013-07-09 07:28 - 2010-11-20 14:16 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Ribbons.scr 2013-07-09 07:28 - 2010-11-20 14:16 - 00186368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsadmin.exe 2013-07-09 07:28 - 2010-11-20 14:16 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax 2013-07-09 07:28 - 2010-11-20 14:16 - 00142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl 2013-07-09 07:28 - 2010-11-20 14:16 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\desk.cpl 2013-07-09 07:28 - 2010-11-20 14:16 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Kswdmcap.ax 2013-07-09 07:28 - 2010-11-20 14:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kstvtune.ax 2013-07-09 07:28 - 2010-11-20 14:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksxbar.ax 2013-07-09 07:28 - 2010-11-20 14:16 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\g711codc.ax 2013-07-09 07:28 - 2010-11-20 14:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbisurf.ax 2013-07-09 07:28 - 2010-11-20 14:08 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2013-07-09 07:28 - 2010-11-20 14:08 - 00663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2013-07-09 07:28 - 2010-11-20 14:08 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imm32.dll 2013-07-09 07:28 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTUQ.DLL 2013-07-09 07:28 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTUF.DLL 2013-07-09 07:28 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDSG.DLL 2013-07-09 07:28 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdlk41a.dll 2013-07-09 07:28 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDGR1.DLL 2013-07-09 07:28 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDGKL.DLL 2013-07-09 07:28 - 2010-11-20 14:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll 2013-07-09 07:28 - 2010-11-20 14:00 - 01027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME 2013-07-09 07:28 - 2010-11-20 14:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime 2013-07-09 07:28 - 2010-11-20 13:37 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys 2013-07-09 07:28 - 2010-11-20 12:52 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys 2013-07-09 07:28 - 2010-11-20 12:51 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys 2013-07-09 07:28 - 2010-11-20 12:51 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys 2013-07-09 07:28 - 2010-11-20 12:50 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys 2013-07-09 07:28 - 2010-11-20 12:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys 2013-07-09 07:28 - 2010-11-20 12:44 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys 2013-07-09 07:28 - 2010-11-20 12:44 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2013-07-09 07:28 - 2010-11-20 12:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys 2013-07-09 07:28 - 2010-11-20 12:44 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys 2013-07-09 07:28 - 2010-11-20 12:43 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2013-07-09 07:28 - 2010-11-20 12:43 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys 2013-07-09 07:28 - 2010-11-20 12:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys 2013-07-09 07:28 - 2010-11-20 12:42 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2013-07-09 07:28 - 2010-11-20 12:34 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys 2013-07-09 07:28 - 2010-11-20 12:33 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys 2013-07-09 07:28 - 2010-11-20 12:33 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys 2013-07-09 07:28 - 2010-11-20 12:14 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2013-07-09 07:28 - 2010-11-20 12:09 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys 2013-07-09 07:28 - 2010-11-20 12:04 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys 2013-07-09 07:28 - 2010-11-20 11:57 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\VmbusCoinstaller.dll 2013-07-09 07:28 - 2010-11-20 11:57 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\VmdCoinstall.dll 2013-07-09 07:28 - 2010-11-20 11:57 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\IcCoinstall.dll 2013-07-09 07:28 - 2010-11-20 11:57 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll 2013-07-09 07:28 - 2010-11-20 11:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll 2013-07-09 07:28 - 2010-11-20 11:30 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys 2013-07-09 07:28 - 2010-11-20 11:26 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys 2013-07-09 07:28 - 2010-11-20 11:22 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys 2013-07-09 07:28 - 2010-11-20 11:19 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys 2013-07-09 07:28 - 2010-11-10 03:48 - 00010429 _____ C:\Windows\system32\ScavengeSpace.xml 2013-07-09 07:27 - 2010-11-20 15:26 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll 2013-07-09 07:27 - 2010-11-20 15:14 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwizres.dll 2013-07-09 07:27 - 2010-11-20 15:13 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll 2013-07-09 07:27 - 2010-11-20 15:12 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pifmgr.dll 2013-07-09 07:27 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDCZ1.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDUS.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDUGHR1.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTURME.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAJIK.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDMON.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDMAORI.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDLT1.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTEL.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINORI.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINMAR.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINKAN.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINHIN.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBULG.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBLR.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL 2013-07-09 07:27 - 2010-11-20 15:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGEO.DLL 2013-07-09 07:27 - 2010-11-20 14:54 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\BlbEvents.dll 2013-07-09 07:27 - 2010-11-20 14:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdscore.dll 2013-07-09 07:27 - 2010-11-20 14:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll 2013-07-09 07:27 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDCZ1.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDSF.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDPO.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDNEPR.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINTAM.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINORI.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINMAR.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINKAN.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINHIN.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINBEN.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDUS.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDUGHR1.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTURME.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAJIK.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDMON.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDMAORI.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDLT1.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINTEL.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDGEO.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBULG.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBLR.DLL 2013-07-09 07:27 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL 2013-07-09 07:27 - 2010-11-20 14:07 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizres.dll 2013-07-09 07:27 - 2010-11-20 14:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll 2013-07-09 07:27 - 2010-11-20 14:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pifmgr.dll 2013-07-09 07:27 - 2010-11-20 11:57 - 00021760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VMBusHID.sys 2013-07-09 07:27 - 2010-11-20 11:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vms3cap.sys 2013-07-09 07:27 - 2010-11-05 04:20 - 00105559 _____ C:\Windows\SysWOW64\RacRules.xml 2013-07-09 07:27 - 2010-11-05 04:20 - 00105559 _____ C:\Windows\system32\RacRules.xml 2013-07-09 07:27 - 2009-06-10 23:40 - 00146389 _____ C:\Windows\SysWOW64\printmanagement.msc 2013-07-09 07:27 - 2009-06-10 23:39 - 00001041 _____ C:\Windows\SysWOW64\tcpbidi.xml 2013-07-09 07:26 - 2010-11-20 14:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn.dll 2013-07-09 07:23 - 2010-11-20 15:27 - 00529408 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll 2013-07-09 07:22 - 2010-11-20 15:27 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll 2013-07-09 07:17 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll 2013-07-09 07:17 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll 2013-07-09 07:17 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe 2013-07-09 07:15 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2013-07-09 07:15 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2013-07-09 07:14 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2013-07-09 07:14 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2013-07-09 07:14 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2013-07-09 07:14 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll 2013-07-09 07:14 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2013-07-09 07:14 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2013-07-09 07:14 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2013-07-09 07:13 - 2013-03-01 05:36 - 03153408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-07-09 07:13 - 2013-01-04 07:46 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2013-07-09 07:13 - 2013-01-04 06:51 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2013-07-09 07:13 - 2013-01-04 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2013-07-09 07:13 - 2013-01-04 04:47 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2013-07-09 07:13 - 2013-01-04 04:47 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2013-07-09 07:13 - 2013-01-04 04:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2013-07-09 07:13 - 2013-01-03 08:00 - 01913192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-07-09 07:13 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2013-07-09 07:13 - 2012-10-04 19:46 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2013-07-09 07:13 - 2012-10-04 19:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2013-07-09 07:13 - 2012-10-04 19:46 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2013-07-09 07:13 - 2012-10-04 19:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2013-07-09 07:13 - 2012-10-04 19:41 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2013-07-09 07:13 - 2012-10-04 19:41 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:47 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2013-07-09 07:13 - 2012-10-04 18:47 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 17:21 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2013-07-09 07:13 - 2012-10-04 16:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 16:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 16:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2013-07-09 07:13 - 2012-10-04 16:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2013-07-09 07:13 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2013-07-09 07:13 - 2012-06-09 07:43 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2013-07-09 07:13 - 2012-06-09 06:41 - 12873728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2013-07-09 07:13 - 2012-06-02 07:50 - 00458704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2013-07-09 07:13 - 2012-06-02 07:48 - 00151920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2013-07-09 07:13 - 2012-06-02 07:48 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2013-07-09 07:13 - 2012-06-02 07:45 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2013-07-09 07:13 - 2012-06-02 06:40 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-07-09 07:13 - 2012-06-02 06:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-07-09 07:13 - 2012-06-02 06:34 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-07-09 07:13 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys 2013-07-09 07:13 - 2012-03-03 08:35 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2013-07-09 07:13 - 2012-03-03 07:31 - 01077248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2013-07-09 07:13 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll 2013-07-09 07:13 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll 2013-07-09 07:13 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys 2013-07-09 07:13 - 2011-11-17 08:35 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2013-07-09 07:13 - 2011-11-17 08:35 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2013-07-09 07:13 - 2011-11-17 08:35 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2013-07-09 07:13 - 2011-11-17 08:35 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2013-07-09 07:13 - 2011-11-17 08:33 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2013-07-09 07:12 - 2012-11-09 07:45 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2013-07-09 07:12 - 2012-11-09 07:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2013-07-09 07:12 - 2012-11-09 06:43 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-07-09 07:12 - 2012-11-09 06:42 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2013-07-09 07:12 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2013-07-09 07:12 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2013-07-09 07:12 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2013-07-09 07:12 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2013-07-09 07:12 - 2012-08-24 20:05 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2013-07-09 07:12 - 2012-08-24 18:57 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2013-07-09 07:12 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2013-07-09 07:12 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2013-07-09 07:12 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2013-07-09 07:12 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2013-07-09 07:12 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll 2013-07-09 07:12 - 2010-06-26 05:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2013-07-09 07:12 - 2010-06-26 05:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2013-07-09 07:11 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys 2013-07-09 07:11 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2013-07-09 07:11 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2013-07-09 07:11 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll 2013-07-09 07:11 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll 2013-07-09 07:11 - 2011-12-28 05:59 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2013-07-09 07:11 - 2010-11-20 14:58 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll 2013-07-09 07:11 - 2010-11-20 13:57 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll 2013-07-09 07:01 - 2012-06-02 07:41 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-07-09 07:01 - 2012-06-02 07:41 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2013-07-09 07:01 - 2012-06-02 07:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2013-07-09 07:01 - 2012-06-02 06:36 - 01159680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-07-09 07:01 - 2012-06-02 06:36 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-07-09 07:01 - 2012-06-02 06:36 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-07-09 07:00 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll 2013-07-09 07:00 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll 2013-07-09 06:51 - 2013-03-19 08:04 - 05550424 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-07-09 06:50 - 2013-03-19 07:46 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2013-07-09 06:50 - 2013-03-19 07:04 - 03968856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2013-07-09 06:50 - 2013-03-19 07:04 - 03913560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2013-07-09 06:50 - 2013-03-19 06:47 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2013-07-09 06:50 - 2013-03-19 05:06 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2013-07-09 06:50 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll 2013-07-09 06:50 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll 2013-07-09 06:50 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll 2013-07-09 06:50 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll 2013-07-09 06:50 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll 2013-07-09 06:50 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll 2013-07-09 06:50 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll 2013-07-09 06:50 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2013-07-05 19:28 - 2013-07-05 23:35 - 00000854 _____ C:\Users\lui\AppData\Local\PMB Files.聰an 2013-07-03 18:35 - 2013-07-06 21:06 - 00000000 ____D C:\Users\lui\Desktop\Neuer Ordner (2) 2013-07-03 17:36 - 2013-07-03 17:35 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2013-07-03 17:36 - 2013-07-03 17:35 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2013-07-03 17:36 - 2013-07-03 17:35 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2013-07-03 17:36 - 2013-07-03 17:35 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-07-03 17:35 - 2013-07-03 17:35 - 00000000 ____D C:\Program Files (x86)\Java 2013-07-03 17:26 - 2013-07-03 17:26 - 02347384 _____ (ESET) C:\Users\lui\Desktop\esetsmartinstaller_enu.exe 2013-06-29 10:48 - 2013-06-29 10:48 - 00000000 ____D C:\Windows\ERUNT 2013-06-29 10:48 - 2013-06-29 10:48 - 00000000 ____D C:\JRT 2013-06-29 10:44 - 2013-06-29 10:44 - 00001844 _____ C:\AdwCleaner[S1].txt 2013-06-29 10:26 - 2013-06-29 10:26 - 00545954 _____ (Oleg N. Scherbakov) C:\Users\lui\Desktop\JRT.exe 2013-06-29 10:25 - 2013-06-29 10:25 - 00648201 _____ C:\Users\lui\Desktop\adwcleaner.exe 2013-06-29 10:24 - 2013-06-29 10:24 - 00448512 _____ (OldTimer Tools) C:\Users\lui\Desktop\TFC.exe 2013-06-28 20:18 - 2013-06-28 20:18 - 00013494 _____ C:\ComboFix.txt 2013-06-28 19:58 - 2013-06-28 20:18 - 00000000 ____D C:\Qoobox 2013-06-28 19:58 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe 2013-06-28 19:58 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe 2013-06-28 19:58 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe 2013-06-28 19:58 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe 2013-06-28 19:58 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe 2013-06-28 19:58 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe 2013-06-28 19:58 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe 2013-06-28 19:58 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe 2013-06-28 19:57 - 2013-06-28 20:15 - 00000000 ____D C:\Windows\erdnt 2013-06-28 19:57 - 2013-06-28 18:37 - 05083661 ____R (Swearware) C:\Users\lui\Desktop\ComboFix.exe 2013-06-28 11:43 - 2013-06-28 11:43 - 00000000 ____D C:\FRST 2013-06-27 23:28 - 2013-06-27 23:28 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum 2013-06-27 19:40 - 2013-07-07 18:40 - 00000287 _____ C:\Users\lui\Desktop\Neues Textdokument.txt 2013-06-27 19:39 - 2013-06-27 19:39 - 00377856 _____ C:\Users\lui\Desktop\gmer_2.1.19163.exe 2013-06-27 19:32 - 2013-06-27 19:32 - 00602112 _____ (OldTimer Tools) C:\Users\lui\Desktop\OTL.exe 2013-06-27 19:29 - 2013-06-27 19:29 - 00000468 _____ C:\Users\lui\Downloads\defogger_disable.log 2013-06-27 19:29 - 2013-06-27 19:29 - 00000000 _____ C:\Users\lui\defogger_reenable 2013-06-27 19:28 - 2013-06-27 19:28 - 00050477 _____ C:\Users\lui\Downloads\Defogger.exe 2013-06-27 18:44 - 2013-06-27 18:44 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-06-27 18:43 - 2013-06-27 18:43 - 00388608 _____ (Trend Micro Inc.) C:\Users\lui\Desktop\HiJackThis204.exe 2013-06-27 18:42 - 2013-06-27 18:43 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\lui\Desktop\mbam-setup-1.75.0.1300.exe 2013-06-27 09:15 - 2013-06-27 23:28 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum 2013-06-27 09:15 - 2013-06-27 23:28 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum 2013-06-26 09:48 - 2013-06-26 11:50 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-06-20 22:00 - 2013-06-20 22:00 - 02569381 _____ C:\Users\lui\Desktop\4EXTRecoveryUpdater.apk 2013-06-20 21:55 - 2013-06-20 21:55 - 00268376 _____ C:\Users\lui\Desktop\winmd5free.zip 2013-06-19 10:08 - 2013-06-19 10:57 - 00000000 ____D C:\Users\lui\Desktop\mathe2 13 2013-06-18 15:41 - 2013-06-18 15:42 - 33033759 _____ C:\Users\lui\Desktop\German Education (SD).mp4 ==================== One Month Modified Files and Folders ======= 2013-07-13 17:20 - 2013-04-11 14:12 - 00000000 ____D C:\Users\lui\AppData\Local\PMB Files 2013-07-13 17:19 - 2013-07-13 17:19 - 01777829 _____ (Farbar) C:\Users\lui\Desktop\FRST64.exe 2013-07-13 17:12 - 2012-01-16 18:54 - 01228967 _____ C:\Windows\WindowsUpdate.log 2013-07-13 17:10 - 2012-03-30 00:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-07-13 17:07 - 2012-01-19 23:23 - 00000000 ____D C:\Users\lui\AppData\Roaming\vlc 2013-07-13 16:35 - 2012-10-10 20:28 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-07-13 15:12 - 2013-07-13 15:11 - 00890988 _____ C:\Users\lui\Desktop\SecurityCheck.exe 2013-07-13 12:18 - 2012-01-16 20:04 - 00000000 ____D C:\Users\lui\Documents\My Games 2013-07-13 11:22 - 2012-12-03 05:39 - 00000000 ____D C:\Program Files (x86)\Origin Games 2013-07-13 11:22 - 2012-03-24 02:03 - 00000000 ____D C:\Users\lui\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2013-07-13 11:20 - 2013-05-24 11:25 - 00000000 ____D C:\BMW M3 Challenge 2013-07-13 11:18 - 2013-07-13 11:18 - 00000000 ____D C:\Program Files (x86)\ESET 2013-07-13 11:18 - 2009-07-14 19:58 - 00697082 _____ C:\Windows\system32\perfh007.dat 2013-07-13 11:18 - 2009-07-14 19:58 - 00148346 _____ C:\Windows\system32\perfc007.dat 2013-07-13 11:18 - 2009-07-14 07:13 - 01613340 _____ C:\Windows\system32\PerfStringBackup.INI 2013-07-13 11:17 - 2012-01-16 19:36 - 00000000 ____D C:\Program Files (x86)\Steam 2013-07-13 09:25 - 2012-01-16 20:07 - 00501731 _____ C:\Windows\DirectX.log 2013-07-13 00:35 - 2012-10-10 20:28 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-07-13 00:30 - 2012-10-10 20:28 - 00004100 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-07-13 00:30 - 2012-10-10 20:28 - 00003848 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-07-12 19:02 - 2009-07-14 06:45 - 00013248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-07-12 19:02 - 2009-07-14 06:45 - 00013248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-07-12 18:55 - 2012-12-15 12:59 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2013-07-12 18:54 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-07-12 18:54 - 2009-07-14 06:51 - 00061058 _____ C:\Windows\setupact.log 2013-07-11 18:45 - 2012-12-16 14:09 - 00000000 ____D C:\Users\lui\Desktop\eft 2013-07-11 18:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-07-10 08:59 - 2012-01-16 19:00 - 00000000 ___RD C:\Users\lui\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-07-10 08:59 - 2012-01-16 19:00 - 00000000 ___RD C:\Users\lui\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-07-10 08:55 - 2009-07-14 06:45 - 00295720 _____ C:\Windows\system32\FNTCACHE.DAT 2013-07-10 08:51 - 2012-01-16 19:32 - 00112356 _____ C:\Windows\PFRO.log 2013-07-09 22:42 - 2012-04-05 00:43 - 01591234 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-07-09 14:05 - 2012-01-16 19:01 - 00001447 _____ C:\Users\lui\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-07-09 14:05 - 2012-01-16 19:01 - 00001413 _____ C:\Users\lui\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2013-07-09 13:58 - 2009-07-14 20:18 - 00000000 ____D C:\Program Files\Windows Journal 2013-07-09 13:58 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar 2013-07-09 13:58 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Portable Devices 2013-07-09 13:58 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2013-07-09 13:58 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender 2013-07-09 13:58 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker 2013-07-09 13:58 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar 2013-07-09 13:58 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices 2013-07-09 13:58 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2013-07-09 13:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\sppui 2013-07-09 13:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Setup 2013-07-09 13:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\oobe 2013-07-09 13:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz 2013-07-09 13:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\manifeststore 2013-07-09 13:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism 2013-07-09 13:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers 2013-07-09 13:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing 2013-07-09 13:58 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-07-09 13:58 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System 2013-07-09 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sppui 2013-07-09 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Setup 2013-07-09 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe 2013-07-09 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\migwiz 2013-07-09 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\manifeststore 2013-07-09 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism 2013-07-09 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers 2013-07-09 13:53 - 2009-07-14 04:36 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll 2013-07-09 13:53 - 2009-07-14 04:36 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll 2013-07-09 08:39 - 2013-07-09 08:33 - 00003923 _____ C:\Windows\IE9_main.log 2013-07-09 08:37 - 2013-07-09 08:37 - 17824768 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 12329984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-07-09 08:37 - 2013-07-09 08:37 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-07-09 08:37 - 2013-07-09 08:37 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-07-09 08:37 - 2013-07-09 08:37 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-07-09 08:37 - 2013-07-09 08:37 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-07-09 08:37 - 2013-07-09 08:37 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-07-09 08:37 - 2013-07-09 08:37 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-07-09 08:37 - 2013-07-09 08:37 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-07-09 08:37 - 2013-07-09 08:37 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-07-09 08:37 - 2013-07-09 08:37 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-07-09 08:37 - 2013-07-09 08:37 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-07-09 08:37 - 2013-07-09 08:37 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-07-09 08:37 - 2013-07-09 08:37 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-07-09 08:09 - 2013-07-09 08:09 - 00000000 ____D C:\Windows\system32\SPReview 2013-07-09 08:08 - 2013-07-09 08:08 - 00000000 ____D C:\Windows\system32\EventProviders 2013-07-09 07:43 - 2013-07-09 07:43 - 00263238 _____ C:\Windows\msxml4-KB2758694-enu.LOG 2013-07-07 18:40 - 2013-06-27 19:40 - 00000287 _____ C:\Users\lui\Desktop\Neues Textdokument.txt 2013-07-06 21:06 - 2013-07-03 18:35 - 00000000 ____D C:\Users\lui\Desktop\Neuer Ordner (2) 2013-07-05 23:35 - 2013-07-05 19:28 - 00000854 _____ C:\Users\lui\AppData\Local\PMB Files.聰an 2013-07-05 12:30 - 2012-02-18 20:40 - 00000000 ____D C:\Program Files (x86)\CCP 2013-07-03 17:35 - 2013-07-03 17:36 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe 2013-07-03 17:35 - 2013-07-03 17:36 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe 2013-07-03 17:35 - 2013-07-03 17:36 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe 2013-07-03 17:35 - 2013-07-03 17:36 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2013-07-03 17:35 - 2013-07-03 17:35 - 00000000 ____D C:\Program Files (x86)\Java 2013-07-03 17:35 - 2012-09-27 14:36 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll 2013-07-03 17:35 - 2012-02-09 10:13 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll 2013-07-03 17:26 - 2013-07-03 17:26 - 02347384 _____ (ESET) C:\Users\lui\Desktop\esetsmartinstaller_enu.exe 2013-06-29 10:48 - 2013-06-29 10:48 - 00000000 ____D C:\Windows\ERUNT 2013-06-29 10:48 - 2013-06-29 10:48 - 00000000 ____D C:\JRT 2013-06-29 10:44 - 2013-06-29 10:44 - 00001844 _____ C:\AdwCleaner[S1].txt 2013-06-29 10:26 - 2013-06-29 10:26 - 00545954 _____ (Oleg N. Scherbakov) C:\Users\lui\Desktop\JRT.exe 2013-06-29 10:25 - 2013-06-29 10:25 - 00648201 _____ C:\Users\lui\Desktop\adwcleaner.exe 2013-06-29 10:24 - 2013-06-29 10:24 - 00448512 _____ (OldTimer Tools) C:\Users\lui\Desktop\TFC.exe 2013-06-28 21:15 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF 2013-06-28 20:18 - 2013-06-28 20:18 - 00013494 _____ C:\ComboFix.txt 2013-06-28 20:18 - 2013-06-28 19:58 - 00000000 ____D C:\Qoobox 2013-06-28 20:18 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default 2013-06-28 20:15 - 2013-06-28 19:57 - 00000000 ____D C:\Windows\erdnt 2013-06-28 20:14 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini 2013-06-28 18:37 - 2013-06-28 19:57 - 05083661 ____R (Swearware) C:\Users\lui\Desktop\ComboFix.exe 2013-06-28 11:43 - 2013-06-28 11:43 - 00000000 ____D C:\FRST 2013-06-27 23:29 - 2012-01-19 13:03 - 00007603 _____ C:\Users\lui\AppData\Local\Resmon.ResmonCfg 2013-06-27 23:28 - 2013-06-27 23:28 - 00000175 _____ C:\Windows\system32\Drivers\aswVmm.sys.sum 2013-06-27 23:28 - 2013-06-27 09:15 - 00000175 _____ C:\Windows\system32\Drivers\aswSP.sys.sum 2013-06-27 23:28 - 2013-06-27 09:15 - 00000175 _____ C:\Windows\system32\Drivers\aswSnx.sys.sum 2013-06-27 23:28 - 2013-03-01 19:11 - 00189936 _____ C:\Windows\system32\Drivers\aswVmm.sys 2013-06-27 23:28 - 2012-12-15 12:59 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2013-06-27 23:28 - 2012-12-15 12:59 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2013-06-27 20:51 - 2012-12-15 12:59 - 00000000 _____ C:\Windows\SysWOW64\config.nt 2013-06-27 19:39 - 2013-06-27 19:39 - 00377856 _____ C:\Users\lui\Desktop\gmer_2.1.19163.exe 2013-06-27 19:32 - 2013-06-27 19:32 - 00602112 _____ (OldTimer Tools) C:\Users\lui\Desktop\OTL.exe 2013-06-27 19:29 - 2013-06-27 19:29 - 00000468 _____ C:\Users\lui\Downloads\defogger_disable.log 2013-06-27 19:29 - 2013-06-27 19:29 - 00000000 _____ C:\Users\lui\defogger_reenable 2013-06-27 19:29 - 2012-01-16 19:00 - 00000000 ____D C:\Users\lui 2013-06-27 19:28 - 2013-06-27 19:28 - 00050477 _____ C:\Users\lui\Downloads\Defogger.exe 2013-06-27 18:44 - 2013-06-27 18:44 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-06-27 18:44 - 2012-12-31 17:51 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-06-27 18:43 - 2013-06-27 18:43 - 00388608 _____ (Trend Micro Inc.) C:\Users\lui\Desktop\HiJackThis204.exe 2013-06-27 18:43 - 2013-06-27 18:42 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\lui\Desktop\mbam-setup-1.75.0.1300.exe 2013-06-26 12:45 - 2012-04-25 17:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-06-26 11:50 - 2013-06-26 09:48 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-06-26 10:07 - 2013-05-21 16:08 - 00000000 ____D C:\Output 2013-06-21 10:57 - 2012-11-17 20:14 - 00000000 ____D C:\Android 2013-06-20 22:00 - 2013-06-20 22:00 - 02569381 _____ C:\Users\lui\Desktop\4EXTRecoveryUpdater.apk 2013-06-20 21:55 - 2013-06-20 21:55 - 00268376 _____ C:\Users\lui\Desktop\winmd5free.zip 2013-06-19 10:57 - 2013-06-19 10:08 - 00000000 ____D C:\Users\lui\Desktop\mathe2 13 2013-06-18 15:42 - 2013-06-18 15:41 - 33033759 _____ C:\Users\lui\Desktop\German Education (SD).mp4 ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-07-13 04:27 ==================== End Of Log ============================ |
|
13.07.2013, 20:58
| #17 |
| /// the machine /// TB-Ausbilder    | Brief von Telekom Abuse Team wegen Verdachts auf Hacking Noch Probleme?
__________________
__________________ |
|
13.07.2013, 21:02
| #18 |
| | Brief von Telekom Abuse Team wegen Verdachts auf Hacking das frag ich dich
__________________ . Festgestellt hatte ich nie was, es kam halt der Brief und da dachte ich, lass ich mir die Kiste mal anschauen. |
|
13.07.2013, 21:14
| #19 |
| /// the machine /// TB-Ausbilder | Brief von Telekom Abuse Team wegen Verdachts auf Hacking Von meiner Seite aus sind wir durch Die Reihenfolge ist hier entscheidend.
Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
13.07.2013, 21:33
| #20 |
| | Brief von Telekom Abuse Team wegen Verdachts auf Hacking Combofix machte Probleme. mit Win + R "Combofix /Uninstall" hat es sich geupdatet, und dann gepiept, es kam keine Meldung wegen deinstallation, weswegen ich es nochmal gemacht habe, indem ich es in uninstall.exe umbenannt und ausgeführt habe. Da kam dann aber ein blaues "cmd" fenster Code:
ATTFilter System File is infected!!
C:\Windows\System32\drivers\Volsnap.sys
 |
|
14.07.2013, 12:29
| #21 |
| /// the machine /// TB-Ausbilder | Brief von Telekom Abuse Team wegen Verdachts auf Hacking Lösch Combofix, lad es neu und lass es einmal laufen.
__________________ --> Brief von Telekom Abuse Team wegen Verdachts auf Hacking |
|
14.07.2013, 12:58
| #22 | |
| | Brief von Telekom Abuse Team wegen Verdachts auf Hacking Ok , super, nach dem Neulaufen hat auch die Deinstallation geklappt. Im avast Viruscontainer ist immer noch dieser HTML:iframe. Zitat:
Abschließend vielen Danke für die Hilfe ! |
|
14.07.2013, 18:28
| #23 |
| /// the machine /// TB-Ausbilder | Brief von Telekom Abuse Team wegen Verdachts auf Hacking Du kannst auch die Quarantäne einfach leeren
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
14.07.2013, 19:43
| #24 |
| | Brief von Telekom Abuse Team wegen Verdachts auf Hacking Ok, gut , danke , mach dicht |
|
14.07.2013, 21:36
| #25 |
| /// the machine /// TB-Ausbilder | Brief von Telekom Abuse Team wegen Verdachts auf Hacking Alles klar
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Brief von Telekom Abuse Team wegen Verdachts auf Hacking |
| 7-zip, adblock, antivirus, bho, brief, computer, converter, education, error, festplatte, firefox, flash player, frage, helper, hijack, hijackthis, hängen, install.exe, logfile, mozilla, mp3, nexus, ntdll.dll, plug-in, registry, rundll, s3.amazonaws.com, scan, security, software, svchost.exe, teamspeak, virus, windows |
Linear-Darstellung
