| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Google chrom offnet sich unkontrolliertWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
13.08.2013, 10:45
| #46 |
 |  Google chrom offnet sich unkontrolliertCode:
ATTFilter 11:40:09.0976 7440 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:40:10.0194 7440 ============================================================
11:40:10.0194 7440 Current date / time: 2013/08/13 11:40:10.0194
11:40:10.0194 7440 SystemInfo:
11:40:10.0194 7440
11:40:10.0194 7440 OS Version: 6.1.7601 ServicePack: 1.0
11:40:10.0194 7440 Product type: Workstation
11:40:10.0194 7440 ComputerName: BOB-HP
11:40:10.0194 7440 UserName: bob
11:40:10.0194 7440 Windows directory: C:\Windows
11:40:10.0194 7440 System windows directory: C:\Windows
11:40:10.0194 7440 Running under WOW64
11:40:10.0194 7440 Processor architecture: Intel x64
11:40:10.0194 7440 Number of processors: 8
11:40:10.0194 7440 Page size: 0x1000
11:40:10.0194 7440 Boot type: Normal boot
11:40:10.0194 7440 ============================================================
11:40:13.0423 7440 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:40:13.0454 7440 ============================================================
11:40:13.0454 7440 \Device\Harddisk0\DR0:
11:40:13.0486 7440 MBR partitions:
11:40:13.0486 7440 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
11:40:13.0486 7440 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x5560C000
11:40:13.0486 7440 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x55670000, BlocksNum 0x1EA2800
11:40:13.0486 7440 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x57512800, BlocksNum 0x336F0
11:40:13.0486 7440 ============================================================
11:40:13.0626 7440 C: <-> \Device\Harddisk0\DR0\Partition2
11:40:13.0860 7440 D: <-> \Device\Harddisk0\DR0\Partition3
11:40:13.0860 7440 ============================================================
11:40:13.0860 7440 Initialize success
11:40:13.0860 7440 ============================================================
11:40:37.0416 8040 ============================================================
11:40:37.0416 8040 Scan started
11:40:37.0416 8040 Mode: Manual; SigCheck; TDLFS;
11:40:37.0416 8040 ============================================================
11:40:38.0726 8040 ================ Scan system memory ========================
11:40:38.0726 8040 System memory - ok
11:40:38.0726 8040 ================ Scan services =============================
11:40:39.0007 8040 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:40:39.0179 8040 1394ohci - ok
11:40:39.0210 8040 [ 7A330A42870EB1FA81F88BE514D2D566 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
11:40:39.0226 8040 Accelerometer - ok
11:40:39.0257 8040 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:40:39.0272 8040 ACPI - ok
11:40:39.0304 8040 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:40:39.0382 8040 AcpiPmi - ok
11:40:39.0506 8040 [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:40:39.0553 8040 AdobeFlashPlayerUpdateSvc - ok
11:40:39.0584 8040 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
11:40:39.0616 8040 adp94xx - ok
11:40:39.0678 8040 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
11:40:39.0725 8040 adpahci - ok
11:40:39.0740 8040 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
11:40:39.0756 8040 adpu320 - ok
11:40:39.0787 8040 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:40:39.0928 8040 AeLookupSvc - ok
11:40:39.0990 8040 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
11:40:40.0084 8040 AESTFilters - ok
11:40:40.0130 8040 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
11:40:40.0224 8040 AFD - ok
11:40:40.0271 8040 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:40:40.0302 8040 agp440 - ok
11:40:40.0349 8040 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
11:40:40.0427 8040 ALG - ok
11:40:40.0442 8040 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
11:40:40.0458 8040 aliide - ok
11:40:40.0489 8040 [ 1B4A3C8E429F1FAB998ECEEA3CE3E0B8 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:40:40.0598 8040 AMD External Events Utility - ok
11:40:40.0614 8040 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
11:40:40.0661 8040 amdide - ok
11:40:40.0676 8040 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
11:40:40.0708 8040 AmdK8 - ok
11:40:40.0910 8040 [ E08CF0ED91FCCA0017776CFF4A506012 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
11:40:41.0207 8040 amdkmdag - ok
11:40:41.0269 8040 [ F072F317E430925C7D88C766DB7DA86E ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
11:40:41.0332 8040 amdkmdap - ok
11:40:41.0347 8040 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
11:40:41.0394 8040 AmdPPM - ok
11:40:41.0441 8040 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:40:41.0472 8040 amdsata - ok
11:40:41.0503 8040 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
11:40:41.0550 8040 amdsbs - ok
11:40:41.0581 8040 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:40:41.0597 8040 amdxata - ok
11:40:41.0675 8040 [ FE9932692FC61C2203EC9884D414F700 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
11:40:41.0706 8040 AntiVirSchedulerService - ok
11:40:41.0737 8040 [ B1F8B58F27971B7E316DD316687886EC ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
11:40:41.0753 8040 AntiVirService - ok
11:40:41.0768 8040 [ 53DDEA96AA407C3E2BCEF68A44E31A59 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
11:40:41.0800 8040 AntiVirWebService - ok
11:40:41.0846 8040 [ D41231AECFEE88973D56AEC2EE5B962D ] APNMCP C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
11:40:41.0893 8040 APNMCP - ok
11:40:41.0924 8040 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
11:40:42.0081 8040 AppID - ok
11:40:42.0112 8040 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:40:42.0174 8040 AppIDSvc - ok
11:40:42.0205 8040 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
11:40:42.0268 8040 Appinfo - ok
11:40:42.0315 8040 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
11:40:42.0361 8040 arc - ok
11:40:42.0377 8040 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
11:40:42.0408 8040 arcsas - ok
11:40:42.0408 8040 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:40:42.0486 8040 AsyncMac - ok
11:40:42.0517 8040 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
11:40:42.0549 8040 atapi - ok
11:40:42.0611 8040 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:40:42.0751 8040 AudioEndpointBuilder - ok
11:40:42.0783 8040 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:40:42.0814 8040 AudioSrv - ok
11:40:42.0845 8040 [ 09E6069EF94B345061B4BD3CEBD974C8 ] avgntflt C:\Windows\system32\DRIVERS\avgntflt.sys
11:40:42.0861 8040 avgntflt - ok
11:40:42.0876 8040 [ 488486DAD09A5B6C6DBB8B990A8B2307 ] avipbb C:\Windows\system32\DRIVERS\avipbb.sys
11:40:42.0923 8040 avipbb - ok
11:40:42.0970 8040 [ 490FA25161BF3E51993EB724ECF0ACEB ] avkmgr C:\Windows\system32\DRIVERS\avkmgr.sys
11:40:42.0985 8040 avkmgr - ok
11:40:43.0032 8040 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:40:43.0141 8040 AxInstSV - ok
11:40:43.0188 8040 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
11:40:43.0266 8040 b06bdrv - ok
11:40:43.0297 8040 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:40:43.0375 8040 b57nd60a - ok
11:40:43.0438 8040 [ 93EE7D9C35AE7E9FFDA148D7805F1421 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
11:40:43.0500 8040 BBSvc - ok
11:40:43.0563 8040 [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
11:40:43.0625 8040 BCM43XX - ok
11:40:43.0656 8040 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
11:40:43.0703 8040 BDESVC - ok
11:40:43.0734 8040 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
11:40:43.0797 8040 Beep - ok
11:40:43.0843 8040 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
11:40:43.0937 8040 BFE - ok
11:40:44.0046 8040 [ 446B2C459A7D11CD71350235D6977E2A ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20101123.003\BHDrvx64.sys
11:40:44.0093 8040 BHDrvx64 - ok
11:40:44.0124 8040 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
11:40:44.0187 8040 BITS - ok
11:40:44.0218 8040 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
11:40:44.0249 8040 blbdrive - ok
11:40:44.0327 8040 [ C440483A5CE0E0AB03A79A33ACE35D91 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
11:40:44.0374 8040 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - warning
11:40:44.0374 8040 Bluetooth Device Monitor - detected UnsignedFile.Multi.Generic (1)
11:40:44.0452 8040 [ C8AB8CA3557CCE041AC4C88E76AFBAD0 ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
11:40:44.0499 8040 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - warning
11:40:44.0499 8040 Bluetooth Media Service - detected UnsignedFile.Multi.Generic (1)
11:40:44.0545 8040 [ DF83FB0EB35C91339F1C84C6CF426100 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
11:40:44.0561 8040 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - warning
11:40:44.0561 8040 Bluetooth OBEX Service - detected UnsignedFile.Multi.Generic (1)
11:40:44.0592 8040 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:40:44.0623 8040 bowser - ok
11:40:44.0655 8040 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
11:40:44.0717 8040 BrFiltLo - ok
11:40:44.0717 8040 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
11:40:44.0733 8040 BrFiltUp - ok
11:40:44.0748 8040 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
11:40:44.0811 8040 BridgeMP - ok
11:40:44.0873 8040 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
11:40:44.0951 8040 Browser - ok
11:40:44.0998 8040 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:40:45.0076 8040 Brserid - ok
11:40:45.0091 8040 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:40:45.0154 8040 BrSerWdm - ok
11:40:45.0185 8040 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:40:45.0232 8040 BrUsbMdm - ok
11:40:45.0247 8040 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:40:45.0279 8040 BrUsbSer - ok
11:40:45.0310 8040 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
11:40:45.0388 8040 BthEnum - ok
11:40:45.0419 8040 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
11:40:45.0450 8040 BTHMODEM - ok
11:40:45.0481 8040 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
11:40:45.0528 8040 BthPan - ok
11:40:45.0559 8040 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
11:40:45.0606 8040 BTHPORT - ok
11:40:45.0637 8040 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
11:40:45.0684 8040 bthserv - ok
11:40:45.0700 8040 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
11:40:45.0762 8040 BTHUSB - ok
11:40:45.0793 8040 [ BA554BFCBF21201D310738A42C9C19E1 ] btmaux C:\Windows\system32\DRIVERS\btmaux.sys
11:40:45.0825 8040 btmaux - ok
11:40:45.0840 8040 [ 0010A54571F525A97EED8C091E96EAA9 ] btmhsf C:\Windows\system32\DRIVERS\btmhsf.sys
11:40:45.0903 8040 btmhsf - ok
11:40:45.0949 8040 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:40:46.0027 8040 cdfs - ok
11:40:46.0059 8040 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:40:46.0105 8040 cdrom - ok
11:40:46.0137 8040 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
11:40:46.0230 8040 CertPropSvc - ok
11:40:46.0261 8040 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
11:40:46.0308 8040 circlass - ok
11:40:46.0339 8040 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
11:40:46.0386 8040 CLFS - ok
11:40:46.0449 8040 [ 524DC3807CB1746225F9D26ADD19C319 ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
11:40:46.0511 8040 CLKMSVC10_38F51D56 - ok
11:40:46.0605 8040 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:40:46.0651 8040 clr_optimization_v2.0.50727_32 - ok
11:40:46.0714 8040 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:40:46.0761 8040 clr_optimization_v2.0.50727_64 - ok
11:40:46.0963 8040 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:40:47.0041 8040 clr_optimization_v4.0.30319_32 - ok
11:40:47.0182 8040 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:40:47.0213 8040 clr_optimization_v4.0.30319_64 - ok
11:40:47.0260 8040 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
11:40:47.0291 8040 clwvd - ok
11:40:47.0307 8040 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
11:40:47.0338 8040 CmBatt - ok
11:40:47.0369 8040 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:40:47.0385 8040 cmdide - ok
11:40:47.0416 8040 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
11:40:47.0478 8040 CNG - ok
11:40:47.0509 8040 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
11:40:47.0541 8040 Compbatt - ok
11:40:47.0541 8040 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:40:47.0572 8040 CompositeBus - ok
11:40:47.0587 8040 COMSysApp - ok
11:40:47.0619 8040 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
11:40:47.0650 8040 crcdisk - ok
11:40:47.0712 8040 [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:40:47.0759 8040 CryptSvc - ok
11:40:47.0821 8040 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:40:47.0899 8040 DcomLaunch - ok
11:40:47.0931 8040 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
11:40:47.0977 8040 defragsvc - ok
11:40:47.0993 8040 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:40:48.0040 8040 DfsC - ok
11:40:48.0071 8040 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
11:40:48.0118 8040 Dhcp - ok
11:40:48.0149 8040 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
11:40:48.0243 8040 discache - ok
11:40:48.0289 8040 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
11:40:48.0336 8040 Disk - ok
11:40:48.0367 8040 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:40:48.0445 8040 Dnscache - ok
11:40:48.0461 8040 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:40:48.0555 8040 dot3svc - ok
11:40:48.0570 8040 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
11:40:48.0617 8040 DPS - ok
11:40:48.0633 8040 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:40:48.0664 8040 drmkaud - ok
11:40:48.0726 8040 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:40:48.0773 8040 DXGKrnl - ok
11:40:48.0804 8040 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
11:40:48.0867 8040 EapHost - ok
11:40:48.0960 8040 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
11:40:49.0054 8040 ebdrv - ok
11:40:49.0085 8040 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
11:40:49.0147 8040 EFS - ok
11:40:49.0225 8040 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:40:49.0303 8040 ehRecvr - ok
11:40:49.0335 8040 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
11:40:49.0381 8040 ehSched - ok
11:40:49.0413 8040 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
11:40:49.0459 8040 elxstor - ok
11:40:49.0459 8040 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:40:49.0491 8040 ErrDev - ok
11:40:49.0537 8040 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
11:40:49.0631 8040 EventSystem - ok
11:40:49.0740 8040 [ 23E539016FB73C9A095270CDB9451BED ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
11:40:49.0834 8040 EvtEng - ok
11:40:49.0849 8040 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
11:40:49.0896 8040 exfat - ok
11:40:49.0912 8040 ezSharedSvc - ok
11:40:49.0927 8040 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:40:49.0974 8040 fastfat - ok
11:40:50.0005 8040 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
11:40:50.0068 8040 Fax - ok
11:40:50.0115 8040 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
11:40:50.0177 8040 fdc - ok
11:40:50.0208 8040 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
11:40:50.0239 8040 fdPHost - ok
11:40:50.0255 8040 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
11:40:50.0286 8040 FDResPub - ok
11:40:50.0302 8040 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:40:50.0317 8040 FileInfo - ok
11:40:50.0333 8040 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:40:50.0364 8040 Filetrace - ok
11:40:50.0395 8040 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
11:40:50.0427 8040 flpydisk - ok
11:40:50.0458 8040 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:40:50.0489 8040 FltMgr - ok
11:40:50.0520 8040 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
11:40:50.0583 8040 FontCache - ok
11:40:50.0629 8040 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:40:50.0661 8040 FontCache3.0.0.0 - ok
11:40:50.0723 8040 [ 2074A85A6B8F84A5A9C60B915B465FAF ] FPLService C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
11:40:50.0770 8040 FPLService - ok
11:40:50.0770 8040 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:40:50.0785 8040 FsDepends - ok
11:40:50.0832 8040 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:40:50.0879 8040 Fs_Rec - ok
11:40:50.0926 8040 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:40:50.0988 8040 fvevol - ok
11:40:51.0035 8040 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
11:40:51.0066 8040 gagp30kx - ok
11:40:51.0144 8040 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
11:40:51.0175 8040 GamesAppService - ok
11:40:51.0222 8040 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
11:40:51.0285 8040 gpsvc - ok
11:40:51.0331 8040 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:40:51.0394 8040 hcw85cir - ok
11:40:51.0425 8040 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:40:51.0503 8040 HdAudAddService - ok
11:40:51.0534 8040 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
11:40:51.0581 8040 HDAudBus - ok
11:40:51.0597 8040 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
11:40:51.0643 8040 HidBatt - ok
11:40:51.0643 8040 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
11:40:51.0675 8040 HidBth - ok
11:40:51.0706 8040 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
11:40:51.0737 8040 HidIr - ok
11:40:51.0753 8040 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
11:40:51.0815 8040 hidserv - ok
11:40:51.0846 8040 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:40:51.0893 8040 HidUsb - ok
11:40:51.0940 8040 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:40:52.0033 8040 hkmsvc - ok
11:40:52.0080 8040 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:40:52.0143 8040 HomeGroupListener - ok
11:40:52.0158 8040 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:40:52.0189 8040 HomeGroupProvider - ok
11:40:52.0236 8040 [ 45A12CACB97B4F15858FCFD59355A1E9 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
11:40:52.0267 8040 HP Health Check Service - ok
11:40:52.0361 8040 [ 7B8C1B09C11E8DB7C4480ABD7D17E821 ] HPAuto C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
11:40:52.0423 8040 HPAuto - ok
11:40:52.0423 8040 [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
11:40:52.0455 8040 HPClientSvc - ok
11:40:52.0533 8040 [ E040F0064D39F73BB4995D494F3DCBB8 ] hpCMSrv C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
11:40:52.0579 8040 hpCMSrv - ok
11:40:52.0626 8040 [ 18062DF0DCEB4ED88E03A8B161935722 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
11:40:52.0657 8040 HPDrvMntSvc.exe - ok
11:40:52.0689 8040 [ A4BE23C451ADEB252CD17A0532CAE220 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
11:40:52.0704 8040 hpdskflt - ok
11:40:52.0751 8040 [ 7B1637E5E0476CE22E8D76AC1203205E ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
11:40:52.0798 8040 hpqwmiex - ok
11:40:52.0829 8040 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:40:52.0860 8040 HpSAMD - ok
11:40:52.0876 8040 [ A88A45E82BC54BFFB49C63973010226A ] hpsrv C:\Windows\system32\Hpservice.exe
11:40:52.0891 8040 hpsrv - ok
11:40:52.0938 8040 [ F630DD7564EBB7248A13B1CC774D9EA6 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
11:40:52.0969 8040 HPWMISVC - ok
11:40:53.0016 8040 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:40:53.0094 8040 HTTP - ok
11:40:53.0125 8040 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:40:53.0141 8040 hwpolicy - ok
11:40:53.0157 8040 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
11:40:53.0172 8040 i8042prt - ok
11:40:53.0203 8040 [ D469B77687E12FE43E344806740B624D ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
11:40:53.0219 8040 iaStor - ok
11:40:53.0281 8040 [ 983FC69644DDF0486C8DFEA262948D1A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
11:40:53.0297 8040 IAStorDataMgrSvc - ok
11:40:53.0344 8040 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:40:53.0375 8040 iaStorV - ok
11:40:53.0406 8040 [ 50B8AB6013EF9970AC85FDBA0F622300 ] iBtFltCoex C:\Windows\system32\DRIVERS\iBtFltCoex.sys
11:40:53.0437 8040 iBtFltCoex - ok
11:40:53.0500 8040 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:40:53.0562 8040 idsvc - ok
11:40:53.0593 8040 [ 6F9B281BC4AFFF5FE784D7DA699D347F ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20101201.001\IDSVia64.sys
11:40:53.0640 8040 IDSVia64 - ok
11:40:53.0671 8040 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
11:40:53.0718 8040 iirsp - ok
11:40:53.0749 8040 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
11:40:53.0859 8040 IKEEXT - ok
11:40:53.0921 8040 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
11:40:53.0983 8040 IntcDAud - ok
11:40:53.0999 8040 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
11:40:54.0015 8040 intelide - ok
11:40:54.0249 8040 [ EFE5A0AF39A8E179624117C521F1E012 ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
11:40:54.0607 8040 intelkmd - ok
11:40:54.0639 8040 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:40:54.0670 8040 intelppm - ok
11:40:54.0717 8040 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:40:54.0763 8040 IPBusEnum - ok
11:40:54.0795 8040 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:40:54.0826 8040 IpFilterDriver - ok
11:40:54.0873 8040 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:40:54.0951 8040 iphlpsvc - ok
11:40:54.0982 8040 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:40:55.0013 8040 IPMIDRV - ok
11:40:55.0029 8040 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:40:55.0075 8040 IPNAT - ok
11:40:55.0107 8040 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:40:55.0122 8040 IRENUM - ok
11:40:55.0153 8040 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:40:55.0169 8040 isapnp - ok
11:40:55.0185 8040 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:40:55.0216 8040 iScsiPrt - ok
11:40:55.0231 8040 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
11:40:55.0247 8040 kbdclass - ok
11:40:55.0278 8040 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
11:40:55.0309 8040 kbdhid - ok
11:40:55.0341 8040 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
11:40:55.0356 8040 KeyIso - ok
11:40:55.0372 8040 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:40:55.0387 8040 KSecDD - ok
11:40:55.0403 8040 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:40:55.0419 8040 KSecPkg - ok
11:40:55.0434 8040 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:40:55.0512 8040 ksthunk - ok
11:40:55.0559 8040 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
11:40:55.0606 8040 KtmRm - ok
11:40:55.0637 8040 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
11:40:55.0684 8040 LanmanServer - ok
11:40:55.0715 8040 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:40:55.0762 8040 LanmanWorkstation - ok
11:40:55.0793 8040 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:40:55.0840 8040 lltdio - ok
11:40:55.0871 8040 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:40:55.0918 8040 lltdsvc - ok
11:40:55.0933 8040 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:40:55.0980 8040 lmhosts - ok
11:40:56.0027 8040 [ D7E0BED3EA21D7BDDD410ADE51708D90 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
11:40:56.0058 8040 LMS - ok
11:40:56.0089 8040 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
11:40:56.0105 8040 LSI_FC - ok
11:40:56.0121 8040 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
11:40:56.0136 8040 LSI_SAS - ok
11:40:56.0136 8040 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
11:40:56.0152 8040 LSI_SAS2 - ok
11:40:56.0152 8040 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
11:40:56.0167 8040 LSI_SCSI - ok
11:40:56.0183 8040 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
11:40:56.0214 8040 luafv - ok
11:40:56.0277 8040 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:40:56.0308 8040 Mcx2Svc - ok
11:40:56.0323 8040 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
11:40:56.0339 8040 megasas - ok
11:40:56.0355 8040 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
11:40:56.0370 8040 MegaSR - ok
11:40:56.0401 8040 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
11:40:56.0417 8040 MEIx64 - ok
11:40:56.0448 8040 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
11:40:56.0495 8040 MMCSS - ok
11:40:56.0526 8040 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
11:40:56.0573 8040 Modem - ok
11:40:56.0589 8040 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:40:56.0620 8040 monitor - ok
11:40:56.0667 8040 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:40:56.0682 8040 mouclass - ok
11:40:56.0698 8040 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:40:56.0729 8040 mouhid - ok
11:40:56.0776 8040 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:40:56.0807 8040 mountmgr - ok
11:40:56.0823 8040 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
11:40:56.0838 8040 mpio - ok
11:40:56.0838 8040 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:40:56.0885 8040 mpsdrv - ok
11:40:56.0916 8040 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:40:57.0010 8040 MpsSvc - ok
11:40:57.0025 8040 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:40:57.0057 8040 MRxDAV - ok
11:40:57.0088 8040 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:40:57.0150 8040 mrxsmb - ok
11:40:57.0181 8040 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:40:57.0228 8040 mrxsmb10 - ok
11:40:57.0259 8040 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:40:57.0275 8040 mrxsmb20 - ok
11:40:57.0306 8040 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
11:40:57.0322 8040 msahci - ok
11:40:57.0337 8040 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:40:57.0353 8040 msdsm - ok
11:40:57.0369 8040 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
11:40:57.0415 8040 MSDTC - ok
11:40:57.0431 8040 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:40:57.0478 8040 Msfs - ok
11:40:57.0493 8040 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:40:57.0571 8040 mshidkmdf - ok
11:40:57.0587 8040 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:40:57.0587 8040 msisadrv - ok
11:40:57.0618 8040 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:40:57.0681 8040 MSiSCSI - ok
11:40:57.0681 8040 msiserver - ok
11:40:57.0712 8040 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:40:57.0743 8040 MSKSSRV - ok
11:40:57.0759 8040 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:40:57.0805 8040 MSPCLOCK - ok
11:40:57.0837 8040 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:40:57.0883 8040 MSPQM - ok
11:40:57.0915 8040 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:40:57.0961 8040 MsRPC - ok
11:40:57.0977 8040 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:40:57.0993 8040 mssmbios - ok
11:40:58.0008 8040 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:40:58.0055 8040 MSTEE - ok
11:40:58.0055 8040 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
11:40:58.0071 8040 MTConfig - ok
11:40:58.0071 8040 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
11:40:58.0086 8040 Mup - ok
11:40:58.0149 8040 [ 1571E40EE767B28DF9A94B68D69C9605 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
11:40:58.0164 8040 MyWiFiDHCPDNS - ok
11:40:58.0195 8040 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
11:40:58.0242 8040 napagent - ok
11:40:58.0273 8040 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:40:58.0320 8040 NativeWifiP - ok
11:40:58.0367 8040 [ 7BE93DBB02B66E72872FF76D8A92E662 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110106.003\ENG64.SYS
11:40:58.0398 8040 NAVENG - ok
11:40:58.0476 8040 [ BE99EDBBA322CA59B3F2FE17B9BF987A ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110106.003\EX64.SYS
11:40:58.0570 8040 NAVEX15 - ok
11:40:58.0601 8040 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:40:58.0617 8040 NDIS - ok
11:40:58.0648 8040 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:40:58.0726 8040 NdisCap - ok
11:40:58.0741 8040 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:40:58.0804 8040 NdisTapi - ok
11:40:58.0804 8040 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:40:58.0835 8040 Ndisuio - ok
11:40:58.0835 8040 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:40:58.0897 8040 NdisWan - ok
11:40:58.0929 8040 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:40:59.0007 8040 NDProxy - ok
11:40:59.0022 8040 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:40:59.0069 8040 NetBIOS - ok
11:40:59.0100 8040 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:40:59.0131 8040 NetBT - ok
11:40:59.0163 8040 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
11:40:59.0178 8040 Netlogon - ok
11:40:59.0209 8040 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
11:40:59.0256 8040 Netman - ok
11:40:59.0272 8040 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
11:40:59.0303 8040 netprofm - ok
11:40:59.0334 8040 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:40:59.0350 8040 NetTcpPortSharing - ok
11:40:59.0537 8040 [ 2B26C8A6B4FB519E1849101A10E6C68D ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys
11:40:59.0802 8040 NETwNs64 - ok
11:40:59.0833 8040 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
11:40:59.0849 8040 nfrd960 - ok
11:41:00.0036 8040 [ E78A365CC3E0FBFC018A33DCE01909F8 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
11:41:00.0067 8040 NIS - ok
11:41:00.0130 8040 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:41:00.0177 8040 NlaSvc - ok
11:41:00.0208 8040 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:41:00.0270 8040 Npfs - ok
11:41:00.0286 8040 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
11:41:00.0333 8040 nsi - ok
11:41:00.0348 8040 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:41:00.0395 8040 nsiproxy - ok
11:41:00.0489 8040 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:41:00.0582 8040 Ntfs - ok
11:41:00.0613 8040 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
11:41:00.0645 8040 Null - ok
11:41:00.0676 8040 [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub C:\Windows\system32\DRIVERS\nusb3hub.sys
11:41:00.0691 8040 nusb3hub - ok
11:41:00.0707 8040 [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc C:\Windows\system32\DRIVERS\nusb3xhc.sys
11:41:00.0738 8040 nusb3xhc - ok
11:41:00.0769 8040 [ A85B4F2EF3A7304A5399EF0526423040 ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x64.sys
11:41:00.0832 8040 NVENETFD - ok
11:41:00.0879 8040 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:41:00.0910 8040 nvraid - ok
11:41:00.0941 8040 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:41:00.0957 8040 nvstor - ok
11:41:00.0988 8040 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:41:01.0003 8040 nv_agp - ok
11:41:01.0019 8040 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:41:01.0050 8040 ohci1394 - ok
11:41:01.0066 8040 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:41:01.0128 8040 p2pimsvc - ok
11:41:01.0159 8040 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
11:41:01.0206 8040 p2psvc - ok
11:41:01.0237 8040 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
11:41:01.0269 8040 Parport - ok
11:41:01.0300 8040 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:41:01.0331 8040 partmgr - ok
11:41:01.0362 8040 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:41:01.0425 8040 PcaSvc - ok
11:41:01.0456 8040 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
11:41:01.0471 8040 pci - ok
11:41:01.0471 8040 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
11:41:01.0487 8040 pciide - ok
11:41:01.0503 8040 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:41:01.0518 8040 pcmcia - ok
11:41:01.0534 8040 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
11:41:01.0549 8040 pcw - ok
11:41:01.0565 8040 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:41:01.0627 8040 PEAUTH - ok
11:41:01.0737 8040 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:41:01.0768 8040 PerfHost - ok
11:41:01.0815 8040 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
11:41:01.0877 8040 pla - ok
11:41:01.0924 8040 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:41:02.0033 8040 PlugPlay - ok
11:41:02.0049 8040 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:41:02.0111 8040 PNRPAutoReg - ok
11:41:02.0173 8040 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:41:02.0205 8040 PNRPsvc - ok
11:41:02.0345 8040 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:41:02.0470 8040 PolicyAgent - ok
11:41:02.0517 8040 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
11:41:02.0563 8040 Power - ok
11:41:02.0579 8040 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:41:02.0641 8040 PptpMiniport - ok
11:41:02.0673 8040 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
11:41:02.0704 8040 Processor - ok
11:41:02.0751 8040 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
11:41:02.0875 8040 ProfSvc - ok
11:41:02.0891 8040 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:41:02.0907 8040 ProtectedStorage - ok
11:41:02.0953 8040 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:41:03.0031 8040 Psched - ok
11:41:03.0250 8040 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
11:41:03.0499 8040 ql2300 - ok
11:41:03.0609 8040 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
11:41:03.0671 8040 ql40xx - ok
11:41:03.0687 8040 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
11:41:03.0733 8040 QWAVE - ok
11:41:03.0749 8040 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:41:03.0796 8040 QWAVEdrv - ok
11:41:03.0827 8040 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:41:03.0858 8040 RasAcd - ok
11:41:03.0889 8040 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:41:04.0233 8040 RasAgileVpn - ok
11:41:04.0295 8040 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
11:41:04.0435 8040 RasAuto - ok
11:41:04.0451 8040 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:41:04.0545 8040 Rasl2tp - ok
11:41:04.0576 8040 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
11:41:04.0623 8040 RasMan - ok
11:41:04.0638 8040 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:41:04.0685 8040 RasPppoe - ok
11:41:04.0685 8040 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:41:04.0732 8040 RasSstp - ok
11:41:04.0763 8040 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:41:04.0825 8040 rdbss - ok
11:41:04.0841 8040 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
11:41:04.0857 8040 rdpbus - ok
11:41:04.0872 8040 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:41:04.0919 8040 RDPCDD - ok
11:41:04.0919 8040 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:41:04.0966 8040 RDPENCDD - ok
11:41:04.0981 8040 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:41:05.0013 8040 RDPREFMP - ok
11:41:05.0044 8040 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:41:05.0122 8040 RDPWD - ok
11:41:05.0153 8040 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:41:05.0200 8040 rdyboost - ok
11:41:05.0247 8040 [ 156757A092B9350F475D24353239E78E ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
11:41:05.0309 8040 RegSrvc - ok
11:41:05.0340 8040 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:41:05.0387 8040 RemoteAccess - ok
11:41:05.0418 8040 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:41:05.0496 8040 RemoteRegistry - ok
11:41:05.0527 8040 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
11:41:05.0559 8040 RFCOMM - ok
11:41:05.0574 8040 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:41:05.0621 8040 RpcEptMapper - ok
11:41:05.0637 8040 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
11:41:05.0730 8040 RpcLocator - ok
11:41:05.0793 8040 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
11:41:05.0855 8040 RpcSs - ok
11:41:05.0964 8040 [ D5C3E1629A3F7F0857D27949252B94CE ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
11:41:06.0011 8040 RSPCIESTOR - ok
11:41:06.0073 8040 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:41:06.0151 8040 rspndr - ok
11:41:06.0214 8040 [ ED5873F7DFB2F96D37F13322211B6BDC ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
11:41:06.0261 8040 RTL8167 - ok
11:41:06.0276 8040 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
11:41:06.0292 8040 SamSs - ok
11:41:06.0323 8040 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:41:06.0339 8040 sbp2port - ok
11:41:06.0401 8040 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:41:06.0526 8040 SCardSvr - ok
11:41:06.0541 8040 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:41:06.0573 8040 scfilter - ok
11:41:06.0635 8040 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
11:41:06.0744 8040 Schedule - ok
11:41:06.0760 8040 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
11:41:06.0791 8040 SCPolicySvc - ok
11:41:06.0838 8040 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
11:41:06.0916 8040 sdbus - ok
11:41:06.0947 8040 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:41:07.0041 8040 SDRSVC - ok
11:41:07.0087 8040 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
11:41:07.0119 8040 SeaPort - ok
11:41:07.0165 8040 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:41:07.0243 8040 secdrv - ok
11:41:07.0275 8040 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
11:41:07.0321 8040 seclogon - ok
11:41:07.0353 8040 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
11:41:07.0399 8040 SENS - ok
11:41:07.0446 8040 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:41:07.0524 8040 SensrSvc - ok
11:41:07.0540 8040 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
11:41:07.0571 8040 Serenum - ok
11:41:07.0587 8040 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
11:41:07.0618 8040 Serial - ok
11:41:07.0633 8040 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
11:41:07.0649 8040 sermouse - ok
11:41:07.0680 8040 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
11:41:07.0727 8040 SessionEnv - ok
11:41:07.0758 8040 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:41:07.0774 8040 sffdisk - ok
11:41:07.0774 8040 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:41:07.0805 8040 sffp_mmc - ok
11:41:07.0805 8040 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:41:07.0836 8040 sffp_sd - ok
11:41:07.0852 8040 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
11:41:07.0914 8040 sfloppy - ok
11:41:07.0945 8040 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:41:07.0992 8040 SharedAccess - ok
11:41:08.0023 8040 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:41:08.0086 8040 ShellHWDetection - ok
11:41:08.0117 8040 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
11:41:08.0148 8040 SiSRaid2 - ok
11:41:08.0164 8040 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:41:08.0195 8040 SiSRaid4 - ok
11:41:08.0211 8040 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:41:08.0273 8040 Smb - ok
11:41:08.0304 8040 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:41:08.0351 8040 SNMPTRAP - ok
11:41:08.0367 8040 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
11:41:08.0398 8040 spldr - ok
11:41:08.0429 8040 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
11:41:08.0491 8040 Spooler - ok
11:41:08.0601 8040 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
11:41:08.0694 8040 sppsvc - ok
11:41:08.0757 8040 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:41:08.0835 8040 sppuinotify - ok
11:41:08.0913 8040 [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS
11:41:08.0975 8040 SRTSP - ok
11:41:08.0975 8040 [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS
11:41:09.0006 8040 SRTSPX - ok
11:41:09.0037 8040 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
11:41:09.0147 8040 srv - ok
11:41:09.0193 8040 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:41:09.0256 8040 srv2 - ok
11:41:09.0287 8040 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
11:41:09.0334 8040 SrvHsfHDA - ok
11:41:09.0381 8040 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
11:41:09.0505 8040 SrvHsfV92 - ok
11:41:09.0521 8040 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
11:41:09.0552 8040 SrvHsfWinac - ok
11:41:09.0583 8040 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:41:09.0599 8040 srvnet - ok
11:41:09.0630 8040 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:41:09.0677 8040 SSDPSRV - ok
11:41:09.0677 8040 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:41:09.0708 8040 SstpSvc - ok
11:41:09.0755 8040 [ 86678C2F5081FEA3517D78E92230B5FF ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
11:41:09.0802 8040 STacSV - ok
11:41:09.0911 8040 [ 9E1380328C39D661E085B24D6A6E044E ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
11:41:09.0942 8040 Steam Client Service - ok
11:41:09.0973 8040 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
11:41:09.0989 8040 stexstor - ok
11:41:10.0036 8040 [ 74387B34B43F94E380608888C56A5CCD ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
11:41:10.0114 8040 STHDA - ok
11:41:10.0161 8040 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
11:41:10.0239 8040 stisvc - ok
11:41:10.0254 8040 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
11:41:10.0270 8040 swenum - ok
11:41:10.0301 8040 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
11:41:10.0379 8040 swprv - ok
11:41:10.0395 8040 [ 6160145C7A87FC7672E8E3B886888176 ] SymDS C:\Windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS
11:41:10.0426 8040 SymDS - ok
11:41:10.0488 8040 [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA C:\Windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS
11:41:10.0566 8040 SymEFA - ok
11:41:10.0597 8040 [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
11:41:10.0644 8040 SymEvent - ok
11:41:10.0675 8040 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS
11:41:10.0722 8040 SymIRON - ok
11:41:10.0738 8040 [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] SymNetS C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS
11:41:10.0785 8040 SymNetS - ok
11:41:10.0863 8040 [ 33E6A285DAA5134D8EA2247914C86C09 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:41:10.0909 8040 SynTP - ok
11:41:10.0972 8040 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
11:41:11.0019 8040 SysMain - ok
11:41:11.0034 8040 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:41:11.0050 8040 TabletInputService - ok
11:41:11.0065 8040 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:41:11.0097 8040 TapiSrv - ok
11:41:11.0112 8040 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
11:41:11.0143 8040 TBS - ok
11:41:11.0237 8040 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:41:11.0315 8040 Tcpip - ok
11:41:11.0393 8040 [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:41:11.0440 8040 TCPIP6 - ok
11:41:11.0471 8040 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:41:11.0487 8040 tcpipreg - ok
11:41:11.0518 8040 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:41:11.0580 8040 TDPIPE - ok
11:41:11.0611 8040 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:41:11.0658 8040 TDTCP - ok
11:41:11.0689 8040 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:41:11.0736 8040 tdx - ok
11:41:11.0736 8040 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
11:41:11.0752 8040 TermDD - ok
11:41:11.0799 8040 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
11:41:11.0845 8040 TermService - ok
11:41:11.0861 8040 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
11:41:11.0892 8040 Themes - ok
11:41:11.0908 8040 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
11:41:11.0939 8040 THREADORDER - ok
11:41:11.0970 8040 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
11:41:12.0064 8040 TrkWks - ok
11:41:12.0111 8040 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:41:12.0173 8040 TrustedInstaller - ok
11:41:12.0173 8040 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:41:12.0220 8040 tssecsrv - ok
11:41:12.0251 8040 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:41:12.0282 8040 TsUsbFlt - ok
11:41:12.0282 8040 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
11:41:12.0298 8040 TsUsbGD - ok
11:41:12.0329 8040 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:41:12.0438 8040 tunnel - ok
11:41:12.0438 8040 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:41:12.0454 8040 uagp35 - ok
11:41:12.0469 8040 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:41:12.0516 8040 udfs - ok
11:41:12.0547 8040 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:41:12.0563 8040 UI0Detect - ok
11:41:12.0594 8040 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:41:12.0610 8040 uliagpkx - ok
11:41:12.0641 8040 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
11:41:12.0672 8040 umbus - ok
11:41:12.0703 8040 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
11:41:12.0719 8040 UmPass - ok
11:41:12.0859 8040 [ A678E5DDD974903DD71F503BDCACA218 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
11:41:12.0922 8040 UNS - ok
11:41:12.0937 8040 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
11:41:13.0000 8040 upnphost - ok
11:41:13.0031 8040 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:41:13.0062 8040 usbccgp - ok
11:41:13.0093 8040 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:41:13.0140 8040 usbcir - ok
11:41:13.0156 8040 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
11:41:13.0187 8040 usbehci - ok
11:41:13.0218 8040 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:41:13.0249 8040 usbhub - ok
11:41:13.0265 8040 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:41:13.0296 8040 usbohci - ok
11:41:13.0327 8040 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
11:41:13.0359 8040 usbprint - ok
11:41:13.0405 8040 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
11:41:13.0468 8040 USBSTOR - ok
11:41:13.0483 8040 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:41:13.0546 8040 usbuhci - ok
11:41:13.0577 8040 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
11:41:13.0639 8040 usbvideo - ok
11:41:13.0671 8040 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
11:41:13.0749 8040 UxSms - ok
11:41:13.0764 8040 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
11:41:13.0780 8040 VaultSvc - ok
11:41:13.0795 8040 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:41:13.0811 8040 vdrvroot - ok
11:41:13.0842 8040 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
11:41:13.0936 8040 vds - ok
11:41:13.0967 8040 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:41:13.0983 8040 vga - ok
11:41:13.0998 8040 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
11:41:14.0045 8040 VgaSave - ok
11:41:14.0061 8040 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:41:14.0076 8040 vhdmp - ok
11:41:14.0076 8040 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
11:41:14.0092 8040 viaide - ok
11:41:14.0123 8040 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:41:14.0139 8040 volmgr - ok
11:41:14.0154 8040 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:41:14.0170 8040 volmgrx - ok
11:41:14.0201 8040 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:41:14.0217 8040 volsnap - ok
11:41:14.0248 8040 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:41:14.0263 8040 vsmraid - ok
11:41:14.0310 8040 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
11:41:14.0373 8040 VSS - ok
11:41:14.0404 8040 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:41:14.0451 8040 vwifibus - ok
11:41:14.0466 8040 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:41:14.0513 8040 vwififlt - ok
11:41:14.0529 8040 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
11:41:14.0544 8040 vwifimp - ok
11:41:14.0575 8040 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
11:41:14.0622 8040 W32Time - ok
11:41:14.0638 8040 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
11:41:14.0669 8040 WacomPen - ok
11:41:14.0700 8040 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:41:14.0747 8040 WANARP - ok
11:41:14.0747 8040 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:41:14.0778 8040 Wanarpv6 - ok
11:41:14.0872 8040 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:41:14.0934 8040 WatAdminSvc - ok
11:41:15.0137 8040 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
11:41:15.0371 8040 wbengine - ok
11:41:15.0433 8040 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:41:15.0558 8040 WbioSrvc - ok
11:41:15.0605 8040 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:41:15.0636 8040 wcncsvc - ok
11:41:15.0667 8040 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:41:15.0777 8040 WcsPlugInService - ok
11:41:15.0823 8040 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
11:41:15.0886 8040 Wd - ok
11:41:15.0948 8040 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:41:16.0042 8040 Wdf01000 - ok
11:41:16.0089 8040 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:41:16.0213 8040 WdiServiceHost - ok
11:41:16.0229 8040 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:41:16.0260 8040 WdiSystemHost - ok
11:41:16.0323 8040 [ 5E1640435DD54D00451156CA5340B109 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys
11:41:16.0369 8040 wdkmd - ok
11:41:16.0401 8040 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
11:41:16.0494 8040 WebClient - ok
11:41:16.0541 8040 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:41:16.0666 8040 Wecsvc - ok
11:41:16.0697 8040 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:41:16.0728 8040 wercplsupport - ok
11:41:16.0806 8040 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
11:41:16.0853 8040 WerSvc - ok
11:41:16.0931 8040 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:41:17.0025 8040 WfpLwf - ok
11:41:17.0056 8040 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:41:17.0087 8040 WIMMount - ok
11:41:17.0134 8040 WinDefend - ok
11:41:17.0134 8040 WinHttpAutoProxySvc - ok
11:41:17.0368 8040 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:41:17.0461 8040 Winmgmt - ok
11:41:17.0773 8040 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
11:41:17.0992 8040 WinRM - ok
11:41:18.0054 8040 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys
11:41:18.0148 8040 WinUsb - ok
11:41:18.0257 8040 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
11:41:18.0413 8040 Wlansvc - ok
11:41:18.0569 8040 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
11:41:18.0647 8040 wlcrasvc - ok
11:41:19.0053 8040 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:41:19.0193 8040 wlidsvc - ok
11:41:19.0302 8040 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:41:19.0380 8040 WmiAcpi - ok
11:41:19.0427 8040 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:41:19.0677 8040 wmiApSrv - ok
11:41:19.0723 8040 WMPNetworkSvc - ok
11:41:19.0770 8040 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:41:19.0833 8040 WPCSvc - ok
11:41:19.0895 8040 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:41:19.0926 8040 WPDBusEnum - ok
11:41:19.0957 8040 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:41:20.0035 8040 ws2ifsl - ok
11:41:20.0067 8040 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
11:41:20.0145 8040 wscsvc - ok
11:41:20.0145 8040 WSearch - ok
11:41:20.0472 8040 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
11:41:20.0581 8040 wuauserv - ok
11:41:20.0597 8040 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:41:20.0659 8040 WudfPf - ok
11:41:20.0722 8040 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:41:20.0800 8040 WUDFRd - ok
11:41:20.0847 8040 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:41:20.0925 8040 wudfsvc - ok
11:41:20.0987 8040 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
11:41:21.0096 8040 WwanSvc - ok
11:41:21.0127 8040 [ 2C6BC21B2D5B58D8B1D638C1704CB494 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
11:41:21.0174 8040 xusb21 - ok
11:41:21.0205 8040 ================ Scan global ===============================
11:41:21.0221 8040 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:41:21.0299 8040 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
11:41:21.0330 8040 [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
11:41:21.0377 8040 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:41:21.0439 8040 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:41:21.0455 8040 [Global] - ok
11:41:21.0455 8040 ================ Scan MBR ==================================
11:41:21.0471 8040 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:41:22.0547 8040 \Device\Harddisk0\DR0 - ok
11:41:22.0563 8040 ================ Scan VBR ==================================
11:41:22.0594 8040 [ 3DE0E59DCEF0CD8D7CBAC4B9CD04E48D ] \Device\Harddisk0\DR0\Partition1
11:41:22.0594 8040 \Device\Harddisk0\DR0\Partition1 - ok
11:41:22.0625 8040 [ FD347C630F91BD44C3469FE3949E15FD ] \Device\Harddisk0\DR0\Partition2
11:41:22.0625 8040 \Device\Harddisk0\DR0\Partition2 - ok
11:41:22.0672 8040 [ A12D4489CF3FDF7A1D3B04CFDB14393E ] \Device\Harddisk0\DR0\Partition3
11:41:22.0687 8040 \Device\Harddisk0\DR0\Partition3 - ok
11:41:22.0719 8040 [ 43DBF729144B81EE4A7EFAB0A189BFA0 ] \Device\Harddisk0\DR0\Partition4
11:41:22.0719 8040 \Device\Harddisk0\DR0\Partition4 - ok
11:41:22.0719 8040 ============================================================
11:41:22.0719 8040 Scan finished
11:41:22.0719 8040 ============================================================
11:41:22.0734 8032 Detected object count: 3
11:41:22.0734 8032 Actual detected object count: 3
11:44:29.0170 8032 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - skipped by user
11:44:29.0170 8032 Bluetooth Device Monitor ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:44:29.0170 8032 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:44:29.0170 8032 Bluetooth Media Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:44:29.0170 8032 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - skipped by user
11:44:29.0170 8032 Bluetooth OBEX Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
11:44:32.0197 7436 Deinitialize success
|
|
13.08.2013, 10:49
| #47 |
| | Google chrom offnet sich unkontrolliertFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-08-2013
Ran by bob (administrator) on 13-08-2013 11:47:29
Running from C:\Users\bob\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(HP) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Hewlett-Packard Company) C:\Windows\system32\Hpservice.exe
(AMD) C:\Windows\system32\atieclxx.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Adobe Systems Incorporated) C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_94_ActiveX.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-11] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2480936 2010-12-17] (Synaptics Incorporated)
HKLM\...\Run: [IntelWireless] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1933584 2011-02-04] (Intel(R) Corporation)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10355200 2011-01-24] (Intel Corporation)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1807272 2013-07-27] (Valve Corporation)
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-13] (Intel Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-03-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [HPConnectionManager] - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [94264 2011-02-15] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [87336 2010-02-03] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] - C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2011-01-25] (cyberlink)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [586296 2010-11-09] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-03-16] (EasyBits Software AS)
HKLM-x32\...\Run: [HPOSD] - C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [318520 2011-01-27] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [345144 2013-07-31] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1558480 2013-07-26] (APN)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT/4
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {20F6E0BA-D9AE-43EA-A258-276EF4814812} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
BHO: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
BHO-x32: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll (Symantec Corporation)
BHO-x32: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWow64\EZUPBH~1.DLL [52920 2011-03-31] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll No File
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\IPSFFPlgn\
FF Extension: Symantec IPS - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\IPSFFPlgn\
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\coFFPlgn_2011_7_13_2
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\coFFPlgn_2011_7_13_2
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-07-31] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-07-31] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [589368 2013-07-31] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [168400 2013-07-26] (APN LLC.)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2011-01-25] (CyberLink)
R2 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-16] (Hewlett-Packard)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-02-04] ()
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe [130008 2011-04-17] (Symantec Corporation)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [100712 2013-07-31] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130016 2013-07-31] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-07-31] (Avira Operations GmbH & Co. KG)
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20101123.003\BHDrvx64.sys [953904 2010-11-23] (Symantec Corporation)
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\BASHDefs\20101123.003\BHDrvx64.sys [953904 2010-11-23] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20101201.001\IDSVia64.sys [476792 2010-11-11] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\IPSDefs\20101201.001\IDSVia64.sys [476792 2010-11-11] (Symantec Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110106.003\ENG64.SYS [117880 2011-01-06] (Symantec Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110106.003\ENG64.SYS [117880 2011-01-06] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110106.003\EX64.SYS [1791096 2011-01-06] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.5.0.125\Definitions\VirusDefs\20110106.003\EX64.SYS [1791096 2011-01-06] (Symantec Corporation)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS [744568 2011-03-31] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS [40568 2011-03-31] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1207020.003\SYMDS64.SYS [450680 2011-01-27] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1207020.003\SYMEFA64.SYS [912504 2011-03-15] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2013-07-31] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS [171128 2011-01-27] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS [386168 2011-04-21] (Symantec Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-08-13 11:39 - 2013-08-13 11:39 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\bob\Desktop\tdsskiller.exe
2013-08-12 21:05 - 2013-08-12 21:05 - 00032535 _____ C:\ComboFix.txt
2013-08-12 20:56 - 2013-08-12 21:05 - 00000000 ____D C:\Qoobox
2013-08-12 20:56 - 2013-08-12 21:04 - 00000000 ____D C:\Windows\erdnt
2013-08-12 20:56 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-08-12 20:56 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-08-12 20:56 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-08-12 20:55 - 2013-08-12 20:55 - 05102975 ____R (Swearware) C:\Users\bob\Desktop\ComboFix.exe
2013-08-12 12:18 - 2013-08-12 12:18 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-08-09 13:38 - 2013-08-09 13:38 - 00000000 ____D C:\Users\bob\AppData\Local\Hewlett-Packard_Developme
2013-08-09 13:29 - 2013-08-09 22:19 - 00000000 ____D C:\Program Files (x86)\Google
2013-08-09 13:20 - 2013-08-09 13:20 - 00448512 _____ (OldTimer Tools) C:\Users\bob\Desktop\TFC.exe
2013-08-08 16:30 - 2013-08-12 12:20 - 00000000 ____D C:\Users\bob\Desktop\Freller virusproblem aufnahme
2013-08-08 15:52 - 2013-08-08 15:52 - 00000000 ____D C:\Windows\System32\Tasks\Symantec
2013-08-02 08:53 - 2013-08-02 08:53 - 00000000 ____D C:\20484d99fc5b2b608b
2013-08-01 21:06 - 2012-07-06 22:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-08-01 21:06 - 2011-04-28 05:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-08-01 21:06 - 2011-03-25 05:29 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-08-01 21:06 - 2011-03-25 05:29 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-08-01 21:06 - 2011-03-25 05:29 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-08-01 21:06 - 2011-03-25 05:29 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-08-01 21:06 - 2011-03-25 05:29 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-08-01 21:06 - 2011-03-25 05:29 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-08-01 21:06 - 2011-03-25 05:28 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-08-01 21:06 - 2011-03-11 08:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2013-08-01 21:06 - 2011-03-11 08:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-08-01 21:06 - 2011-03-11 08:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2013-08-01 21:06 - 2011-03-11 08:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2013-08-01 21:06 - 2011-03-11 08:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2013-08-01 21:06 - 2011-03-11 08:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2013-08-01 21:06 - 2011-03-11 08:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-08-01 21:06 - 2011-03-11 08:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2013-08-01 21:06 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-08-01 21:06 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2013-08-01 21:06 - 2011-03-11 06:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-08-01 20:49 - 2013-08-01 20:49 - 00083672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-08-01 12:05 - 2012-06-02 16:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-08-01 12:04 - 2012-07-26 06:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-08-01 12:04 - 2012-07-26 06:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-08-01 12:04 - 2012-07-26 04:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-08-01 11:57 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-08-01 11:46 - 2012-12-16 19:11 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-08-01 11:46 - 2012-12-16 16:45 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-08-01 11:46 - 2012-12-16 16:13 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-08-01 11:46 - 2012-12-16 16:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-08-01 11:44 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-08-01 11:44 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-08-01 11:44 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-08-01 11:44 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-08-01 11:44 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-08-01 11:44 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-08-01 11:44 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-08-01 11:44 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-08-01 11:40 - 2013-05-29 08:15 - 17829376 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-01 11:40 - 2013-05-29 07:50 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-01 11:40 - 2013-05-29 07:43 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-01 11:40 - 2013-05-29 07:36 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-01 11:40 - 2013-05-29 07:35 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-01 11:40 - 2013-05-29 07:34 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-01 11:40 - 2013-05-29 07:33 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-01 11:40 - 2013-05-29 07:31 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-01 11:40 - 2013-05-29 07:29 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-01 11:40 - 2013-05-29 07:29 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-01 11:40 - 2013-05-29 07:29 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-01 11:40 - 2013-05-29 07:27 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-01 11:40 - 2013-05-29 07:27 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-01 11:40 - 2013-05-29 07:25 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-01 11:40 - 2013-05-29 07:25 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-01 11:40 - 2013-05-29 07:18 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-01 11:40 - 2013-05-29 03:56 - 12333568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-01 11:40 - 2013-05-29 03:50 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-01 11:40 - 2013-05-29 03:48 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-01 11:40 - 2013-05-29 03:41 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-08-01 11:40 - 2013-05-29 03:41 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-01 11:40 - 2013-05-29 03:41 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-01 11:40 - 2013-05-29 03:40 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-08-01 11:40 - 2013-05-29 03:38 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-01 11:40 - 2013-05-29 03:37 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-08-01 11:40 - 2013-05-29 03:36 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-08-01 11:40 - 2013-05-29 03:35 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-01 11:40 - 2013-05-29 03:35 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-01 11:40 - 2013-05-29 03:33 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-01 11:40 - 2013-05-29 03:33 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-01 11:40 - 2013-05-29 03:33 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-08-01 11:40 - 2013-05-29 03:29 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-01 11:36 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-08-01 11:36 - 2012-03-01 08:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-08-01 11:36 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-08-01 11:36 - 2012-03-01 07:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-08-01 11:36 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-08-01 11:34 - 2013-08-01 11:34 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-08-01 11:34 - 2013-08-01 11:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-08-01 11:23 - 2013-08-13 11:43 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-01 11:23 - 2013-08-01 11:24 - 00000000 ____D C:\Users\bob\AppData\Local\Adobe
2013-08-01 11:23 - 2013-08-01 11:23 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-01 11:23 - 2013-08-01 11:23 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-01 11:23 - 2013-08-01 11:23 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-01 11:23 - 2013-08-01 11:23 - 00000000 ____D C:\Windows\system32\Macromed
2013-08-01 11:21 - 2013-08-01 11:21 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-08-01 11:21 - 2013-08-01 11:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-08-01 11:21 - 2013-08-01 11:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-08-01 11:21 - 2013-08-01 11:21 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-08-01 11:21 - 2013-08-01 11:21 - 00000000 ____D C:\Program Files (x86)\Java
2013-07-31 21:15 - 2013-07-31 21:15 - 00000000 ____D C:\Users\bob\Documents\Games for Windows - LIVE Demos
2013-07-31 20:49 - 2013-07-31 20:49 - 00891098 _____ C:\Users\bob\Desktop\SecurityCheck.exe
2013-07-31 20:48 - 2013-07-31 20:48 - 02347384 _____ (ESET) C:\Users\bob\Desktop\esetsmartinstaller_enu.exe
2013-07-31 20:08 - 2013-05-08 08:39 - 01910632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-07-31 20:08 - 2013-04-10 08:01 - 00983400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-07-31 20:08 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-07-31 20:08 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-07-31 20:08 - 2013-02-27 07:52 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-07-31 20:08 - 2013-02-27 07:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-07-31 20:08 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-07-31 20:08 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-07-31 20:08 - 2013-02-27 06:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-07-31 20:08 - 2013-02-27 06:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-07-31 20:08 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-07-31 20:08 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-07-31 20:08 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-07-31 20:08 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-07-31 20:08 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-07-31 20:08 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-07-31 20:08 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-07-31 20:08 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-07-31 20:08 - 2012-11-09 07:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-07-31 20:08 - 2012-11-09 06:42 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-07-31 20:08 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-07-31 20:08 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-07-31 20:08 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-07-31 20:08 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-07-31 20:08 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2013-07-31 20:08 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2013-07-31 20:08 - 2011-10-26 07:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-07-31 20:08 - 2011-10-26 07:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-07-31 20:08 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-07-31 20:08 - 2011-10-26 06:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-07-31 20:08 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-07-31 20:08 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2013-07-31 20:08 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-07-31 20:08 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-07-31 20:08 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-07-31 20:08 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-07-31 20:08 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-07-31 20:08 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-07-31 20:08 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-07-31 20:08 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-07-31 20:08 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-07-31 20:08 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-07-31 20:08 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-07-31 20:08 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-07-31 20:08 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-07-31 20:08 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-07-31 20:08 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-07-31 20:08 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-07-31 20:08 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-07-31 20:08 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-07-31 20:08 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-07-31 20:08 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-07-31 20:08 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-07-31 20:08 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-07-31 20:08 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-07-31 20:08 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-07-31 20:08 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-07-31 20:08 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-07-31 20:08 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-07-31 20:08 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-07-31 20:08 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-07-31 20:08 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-07-31 20:08 - 2011-02-25 07:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-07-31 20:08 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-07-31 20:07 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-31 20:07 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-31 20:07 - 2013-05-06 08:03 - 01887744 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-31 20:07 - 2013-05-06 06:56 - 01620480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-31 20:07 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-07-31 20:07 - 2013-03-19 07:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-07-31 20:07 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-07-31 20:07 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-07-31 20:07 - 2013-01-04 07:46 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-07-31 20:07 - 2013-01-04 06:51 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-07-31 20:07 - 2013-01-04 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-07-31 20:07 - 2013-01-04 04:47 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-07-31 20:07 - 2013-01-04 04:47 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-07-31 20:07 - 2013-01-04 04:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-07-31 20:07 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-07-31 20:07 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-07-31 20:07 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-07-31 20:07 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-07-31 20:07 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-07-31 20:07 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-07-31 20:07 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-07-31 20:07 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-07-31 20:07 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-07-31 20:07 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-07-31 20:07 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-07-31 20:07 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-07-31 20:07 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-07-31 20:07 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-07-31 20:07 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-07-31 20:07 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-07-31 20:07 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-07-31 20:07 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-07-31 20:07 - 2012-08-24 20:05 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-07-31 20:07 - 2012-08-24 18:57 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-07-31 20:07 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-07-31 20:07 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-07-31 20:07 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-07-31 20:07 - 2012-08-02 19:58 - 00574464 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-07-31 20:07 - 2012-08-02 18:57 - 00490496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-07-31 20:07 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-07-31 20:07 - 2012-06-02 07:50 - 00458704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-07-31 20:07 - 2012-06-02 07:48 - 00151920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-07-31 20:07 - 2012-06-02 07:48 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-07-31 20:07 - 2012-06-02 07:45 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-07-31 20:07 - 2012-06-02 06:40 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-07-31 20:07 - 2012-06-02 06:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-07-31 20:07 - 2012-06-02 06:34 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-07-31 20:07 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-07-31 20:07 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-07-31 20:07 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-07-31 20:07 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-07-31 20:07 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-07-31 20:07 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-07-31 20:07 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2013-07-31 20:07 - 2011-11-17 08:35 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-07-31 20:07 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-07-31 20:07 - 2011-11-17 08:35 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-07-31 20:07 - 2011-11-17 08:35 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-07-31 20:07 - 2011-11-17 08:35 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-07-31 20:07 - 2011-11-17 08:33 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-07-31 20:07 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-07-31 20:07 - 2011-07-09 04:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-07-31 20:07 - 2011-04-27 04:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-07-31 20:07 - 2011-04-27 04:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-07-31 20:07 - 2011-04-23 00:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-07-31 20:07 - 2011-03-12 14:08 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-07-31 20:07 - 2011-03-12 13:23 - 00870912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-07-31 20:07 - 2010-06-26 05:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-07-31 20:07 - 2010-06-26 05:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-07-31 20:06 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2013-07-31 20:06 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2013-07-31 20:06 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2013-07-31 20:06 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2013-07-31 20:06 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2013-07-31 20:06 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2013-07-31 20:06 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2013-07-31 20:06 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2013-07-31 20:06 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2013-07-31 20:06 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2013-07-31 20:06 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2013-07-31 20:06 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2013-07-31 20:06 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2013-07-31 20:06 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2013-07-31 20:06 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2013-07-31 20:06 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2013-07-31 20:06 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2013-07-31 20:06 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2013-07-31 20:06 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2013-07-31 20:06 - 2012-11-30 07:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-07-31 20:06 - 2012-11-30 07:45 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-07-31 20:06 - 2012-11-30 07:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-07-31 20:06 - 2012-11-30 07:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-07-31 20:06 - 2012-11-30 07:41 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-07-31 20:06 - 2012-11-30 07:41 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-07-31 20:06 - 2012-11-30 06:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 05:23 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-07-31 20:06 - 2012-11-30 04:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 04:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 04:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 04:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-07-31 20:06 - 2012-11-30 01:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2013-07-31 20:06 - 2012-11-30 01:15 - 00420064 _____ C:\Windows\system32\locale.nls
2013-07-31 20:06 - 2012-11-22 07:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-07-31 20:06 - 2012-11-22 06:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2013-07-31 20:06 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-07-31 20:06 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-07-31 20:06 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-07-31 20:06 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-07-31 20:06 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2013-07-31 20:06 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-07-31 20:06 - 2011-12-28 05:59 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-07-31 20:06 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-07-31 20:06 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-07-31 20:06 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-07-31 20:06 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-07-31 20:06 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-07-31 20:06 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-07-31 20:06 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-07-31 20:05 - 2013-06-05 05:34 - 03153920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-31 20:05 - 2013-05-13 07:51 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-07-31 20:05 - 2013-05-13 07:51 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-07-31 20:05 - 2013-05-13 07:51 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-07-31 20:05 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-07-31 20:05 - 2013-05-13 06:45 - 01160192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-07-31 20:05 - 2013-05-13 06:45 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-07-31 20:05 - 2013-05-13 06:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-07-31 20:05 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-07-31 20:05 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-07-31 20:05 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-07-31 20:05 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-07-31 20:05 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-07-31 20:05 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-07-31 20:05 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-07-31 20:05 - 2013-04-10 07:45 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-31 20:05 - 2013-04-10 07:02 - 01077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-31 20:05 - 2013-03-19 08:04 - 05550424 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-07-31 20:05 - 2013-03-19 07:46 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-07-31 20:05 - 2013-03-19 07:04 - 03968856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-07-31 20:05 - 2013-03-19 07:04 - 03913560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-07-31 20:05 - 2013-03-19 06:47 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-07-31 20:05 - 2013-03-19 05:06 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-07-31 20:05 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-07-31 20:05 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-07-31 20:05 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-07-31 20:05 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-07-31 20:05 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-07-31 20:05 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-07-31 20:05 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-07-31 20:05 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-07-31 20:05 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-07-31 20:05 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-07-31 20:05 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2013-07-31 20:05 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-07-31 20:05 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-07-31 20:05 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2013-07-31 20:05 - 2012-02-11 08:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-07-31 20:05 - 2012-02-11 08:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2013-07-31 20:05 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-07-31 20:05 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-07-31 20:05 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-07-31 20:05 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-07-31 20:05 - 2011-11-17 08:41 - 01731920 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-07-31 20:05 - 2011-11-17 07:38 - 01292080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-07-31 20:05 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-07-31 20:05 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-07-31 20:05 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-07-31 20:05 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-07-31 20:05 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-07-31 20:05 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-07-31 20:05 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-07-31 20:05 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-07-31 20:05 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-07-31 20:05 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-07-31 20:05 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-07-31 20:05 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-07-31 20:05 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-07-31 20:05 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2013-07-31 20:05 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2013-07-31 19:53 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-07-31 19:53 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-07-31 19:53 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2013-07-31 19:51 - 2013-07-31 19:51 - 00000000 ____D C:\Users\bob\AppData\Local\NBGI
Code:
ATTFilter 2013-07-31 19:51 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-07-31 19:51 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2013-07-31 19:51 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-07-31 19:51 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2013-07-31 19:51 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2013-07-31 19:51 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-07-31 19:51 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2013-07-31 19:51 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2013-07-31 19:51 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-07-31 19:51 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-07-31 19:51 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2013-07-31 19:51 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-07-31 19:51 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2013-07-31 19:51 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-07-31 19:51 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2013-07-31 19:51 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-07-31 19:51 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2013-07-31 19:51 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-07-31 19:51 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-07-31 19:51 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2013-07-31 19:51 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2013-07-31 19:51 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-07-31 19:51 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2013-07-31 19:51 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-07-31 19:50 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2013-07-31 19:50 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-07-31 19:50 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2013-07-31 19:50 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2013-07-31 19:50 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2013-07-31 19:50 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-07-31 19:50 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2013-07-31 19:50 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-07-31 19:50 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-07-31 19:50 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2013-07-31 19:50 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-07-31 19:50 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2013-07-31 19:50 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2013-07-31 19:50 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2013-07-31 19:50 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2013-07-31 19:50 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2013-07-31 19:50 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2013-07-31 19:50 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2013-07-31 19:50 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2013-07-31 19:50 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2013-07-31 19:50 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2013-07-31 19:50 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2013-07-31 19:50 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-07-31 19:50 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-07-31 19:50 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2013-07-31 19:50 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2013-07-31 19:50 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-07-31 19:50 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2013-07-31 19:50 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-07-31 19:50 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2013-07-31 19:50 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2013-07-31 19:50 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2013-07-31 19:50 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2013-07-31 19:50 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-07-31 19:50 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-07-31 19:50 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-07-31 19:50 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2013-07-31 19:50 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2013-07-31 19:50 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-07-31 19:50 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2013-07-31 19:50 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-07-31 19:50 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-07-31 19:50 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2013-07-31 19:50 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-07-31 19:50 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2013-07-31 19:50 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-07-31 19:50 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2013-07-31 19:50 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2013-07-31 19:50 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2013-07-31 19:50 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2013-07-31 19:50 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2013-07-31 19:50 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2013-07-31 19:50 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2013-07-31 19:50 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2013-07-31 19:50 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2013-07-31 19:50 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2013-07-31 19:50 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2013-07-31 19:50 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2013-07-31 19:50 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2013-07-31 19:50 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2013-07-31 19:50 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2013-07-31 19:50 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2013-07-31 19:50 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2013-07-31 19:50 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2013-07-31 19:50 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2013-07-31 19:50 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2013-07-31 19:50 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2013-07-31 19:50 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2013-07-31 19:50 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2013-07-31 19:50 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2013-07-31 19:50 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2013-07-31 19:50 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2013-07-31 19:50 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2013-07-31 19:50 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2013-07-31 19:50 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2013-07-31 19:50 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2013-07-31 19:50 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2013-07-31 19:50 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2013-07-31 19:50 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2013-07-31 19:50 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2013-07-31 19:50 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2013-07-31 19:50 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2013-07-31 19:50 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2013-07-31 19:50 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2013-07-31 19:50 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2013-07-31 19:50 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2013-07-31 19:50 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2013-07-31 19:50 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2013-07-31 19:50 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2013-07-31 19:50 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2013-07-31 19:50 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2013-07-31 19:50 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2013-07-31 19:50 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2013-07-31 19:50 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2013-07-31 19:50 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2013-07-31 19:50 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2013-07-31 19:50 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2013-07-31 19:50 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2013-07-31 19:50 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2013-07-31 19:43 - 2013-07-31 19:43 - 00000000 ____D C:\Users\bob\AppData\Roaming\Avira
2013-07-31 19:43 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-07-31 19:43 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-07-31 19:43 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-07-31 19:43 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-07-31 19:43 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-07-31 19:43 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-07-31 19:43 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-07-31 19:43 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-07-31 19:43 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-07-31 19:36 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2013-07-31 19:36 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2013-07-31 19:35 - 2013-07-31 19:35 - 00000000 ____D C:\Users\bob\AppData\Roaming\Mozilla
2013-07-31 19:35 - 2013-07-31 19:35 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2013-07-31 19:35 - 2013-07-31 19:35 - 00000000 ____D C:\ProgramData\APN
2013-07-31 19:35 - 2013-07-31 19:35 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-07-31 19:34 - 2013-07-31 19:34 - 00002066 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-07-31 19:34 - 2013-07-31 19:34 - 00000000 ____D C:\ProgramData\Avira
2013-07-31 19:34 - 2013-07-31 19:34 - 00000000 ____D C:\Program Files (x86)\Avira
2013-07-31 19:34 - 2013-07-31 19:33 - 00130016 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-07-31 19:34 - 2013-07-31 19:33 - 00100712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-07-31 19:34 - 2013-07-31 19:33 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-07-31 19:28 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-07-31 19:27 - 2013-07-31 19:27 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-07-31 19:27 - 2013-07-31 19:27 - 00000000 ____D C:\Users\bob\Documents\nbgi
2013-07-31 19:27 - 2013-07-31 19:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-07-31 19:27 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2013-07-31 19:27 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2013-07-31 19:27 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2013-07-31 19:27 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2013-07-31 19:27 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2013-07-31 19:27 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2013-07-31 19:27 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2013-07-31 19:27 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2013-07-31 19:27 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2013-07-31 19:27 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2013-07-31 19:27 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2013-07-31 19:27 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2013-07-31 19:27 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2013-07-31 19:27 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2013-07-31 19:27 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2013-07-31 19:27 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2013-07-31 19:27 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-07-31 19:27 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2013-07-31 19:27 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2013-07-31 19:27 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2013-07-31 19:27 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2013-07-31 19:27 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2013-07-31 19:27 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2013-07-31 19:27 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2013-07-31 19:27 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2013-07-31 19:27 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2013-07-31 19:27 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2013-07-31 19:27 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2013-07-31 19:27 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2013-07-31 19:27 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2013-07-31 19:27 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2013-07-31 19:27 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2013-07-31 19:27 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2013-07-31 19:27 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2013-07-31 19:27 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2013-07-31 19:27 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2013-07-31 19:27 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2013-07-31 19:27 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2013-07-31 19:27 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2013-07-31 19:27 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2013-07-31 19:27 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2013-07-31 19:27 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2013-07-31 19:27 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2013-07-31 19:27 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2013-07-31 19:27 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2013-07-31 19:27 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2013-07-31 19:27 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2013-07-31 19:27 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2013-07-31 19:11 - 2013-07-31 19:12 - 02092792 _____ C:\Users\bob\Downloads\avira_free_antivirus.exe
2013-07-31 18:56 - 2013-07-31 19:36 - 00000000 ____D C:\Users\bob\AppData\Roaming\TS3Client
2013-07-31 18:35 - 2013-07-31 18:35 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2013-07-31 18:35 - 2013-07-31 18:35 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-07-31 18:27 - 2013-07-31 18:27 - 00000215 _____ C:\Users\bob\Desktop\Dark Souls Prepare to Die Edition.url
2013-07-31 18:27 - 2013-07-31 18:27 - 00000000 ____D C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-07-31 18:24 - 2013-07-31 18:24 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-07-31 18:24 - 2013-07-31 18:24 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-07-31 18:23 - 2013-07-31 18:23 - 07886712 _____ (Microsoft Corporation) C:\Users\bob\Downloads\Xbox360_64Deu.exe
2013-07-31 18:22 - 2013-07-31 18:23 - 36202272 _____ (TeamSpeak Systems GmbH) C:\Users\bob\Downloads\TeamSpeak3-Client-win64-3.0.11.exe
2013-07-31 18:10 - 2013-08-13 11:38 - 00000000 ____D C:\Program Files (x86)\Steam
2013-07-31 18:10 - 2013-07-31 18:10 - 00000917 _____ C:\Users\Public\Desktop\Steam.lnk
2013-07-31 18:10 - 2013-07-31 18:10 - 00000000 ____D C:\Program Files (x86)\dumps
2013-07-31 18:08 - 2013-07-31 18:09 - 08531968 _____ C:\Users\bob\Downloads\SteamInstall_German.msi
2013-07-31 17:59 - 2013-07-31 18:00 - 00000000 ____D C:\Users\bob\AppData\Local\Google
2013-07-31 17:58 - 2013-08-09 13:29 - 00000000 ____D C:\Users\bob\AppData\Local\Deployment
2013-07-31 17:58 - 2013-07-31 17:58 - 00000000 ____D C:\Users\bob\AppData\Local\Apps\2.0
2013-07-31 17:48 - 2013-07-31 17:48 - 00000000 ____D C:\FRST
2013-07-31 17:36 - 2013-07-31 17:36 - 00000000 ____D C:\Windows\ERUNT
2013-07-31 17:30 - 2013-07-31 17:31 - 00001820 _____ C:\AdwCleaner[S1].txt
2013-07-31 17:30 - 2013-07-31 17:30 - 01781589 _____ (Farbar) C:\Users\bob\Downloads\FRST64.exe
2013-07-31 17:30 - 2013-07-31 17:30 - 00666633 _____ C:\Users\bob\Desktop\adwcleaner.exe
2013-07-31 17:30 - 2013-07-31 17:30 - 00562430 _____ (Oleg N. Scherbakov) C:\Users\bob\Desktop\JRT.exe
2013-07-14 03:23 - 2013-07-14 03:23 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-07-14 03:23 - 2013-07-14 03:23 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-07-14 03:23 - 2013-07-14 03:23 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-14 03:23 - 2013-07-14 03:23 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-07-14 03:23 - 2013-07-14 03:23 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-07-14 03:23 - 2013-07-14 03:23 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-07-14 03:23 - 2013-07-14 03:23 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-07-14 03:23 - 2013-07-14 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-07-14 03:22 - 2013-07-14 03:22 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-07-14 03:22 - 2013-07-14 03:22 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-07-14 03:22 - 2013-07-14 03:22 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-07-14 03:22 - 2013-07-14 03:22 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-07-14 03:22 - 2013-07-14 03:22 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-07-14 03:21 - 2013-07-14 03:21 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-07-14 03:20 - 2013-07-14 03:20 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-07-14 03:20 - 2013-07-14 03:20 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-07-14 03:20 - 2013-07-14 03:20 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-07-14 03:20 - 2013-07-14 03:20 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-07-14 03:20 - 2013-07-14 03:20 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-07-14 03:20 - 2013-07-14 03:20 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-07-14 03:19 - 2009-06-10 22:30 - 00048265 _____ C:\Windows\HomePremium.xml
2013-07-14 03:18 - 2013-07-14 03:18 - 00000000 ___RD C:\Users\Public\Recorded TV
==================== One Month Modified Files and Folders =======
2013-08-13 11:46 - 2013-08-13 11:46 - 01575190 _____ (Farbar) C:\Users\bob\Desktop\FRST64.exe
2013-08-13 11:45 - 2009-07-14 06:45 - 00031856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-13 11:45 - 2009-07-14 06:45 - 00031856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-13 11:43 - 2013-08-01 11:23 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-13 11:39 - 2013-08-13 11:39 - 02237968 _____ (Kaspersky Lab ZAO) C:\Users\bob\Desktop\tdsskiller.exe
2013-08-13 11:38 - 2013-07-31 18:10 - 00000000 ____D C:\Program Files (x86)\Steam
2013-08-13 11:37 - 2010-11-21 05:47 - 00110466 _____ C:\Windows\PFRO.log
2013-08-13 11:37 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-13 11:37 - 2009-07-14 06:51 - 00048514 _____ C:\Windows\setupact.log
2013-08-12 22:07 - 2013-07-13 17:34 - 02062147 _____ C:\Windows\WindowsUpdate.log
2013-08-12 21:06 - 2013-07-13 19:16 - 00003700 _____ C:\Windows\System32\Tasks\Registration
2013-08-12 21:05 - 2013-08-12 21:05 - 00032535 _____ C:\ComboFix.txt
2013-08-12 21:05 - 2013-08-12 20:56 - 00000000 ____D C:\Qoobox
2013-08-12 21:04 - 2013-08-12 20:56 - 00000000 ____D C:\Windows\erdnt
2013-08-12 21:03 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2013-08-12 20:56 - 2013-07-13 19:17 - 00003914 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{0658ACE6-D92E-420F-86AC-FEAE60DAFA34}
2013-08-12 20:55 - 2013-08-12 20:55 - 05102975 ____R (Swearware) C:\Users\bob\Desktop\ComboFix.exe
2013-08-12 12:20 - 2013-08-08 16:30 - 00000000 ____D C:\Users\bob\Desktop\Freller virusproblem aufnahme
2013-08-12 12:18 - 2013-08-12 12:18 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-08-09 22:19 - 2013-08-09 13:29 - 00000000 ____D C:\Program Files (x86)\Google
2013-08-09 13:38 - 2013-08-09 13:38 - 00000000 ____D C:\Users\bob\AppData\Local\Hewlett-Packard_Developme
2013-08-09 13:29 - 2013-07-31 17:58 - 00000000 ____D C:\Users\bob\AppData\Local\Deployment
2013-08-09 13:23 - 2009-07-14 07:08 - 00009190 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-09 13:20 - 2013-08-09 13:20 - 00448512 _____ (OldTimer Tools) C:\Users\bob\Desktop\TFC.exe
2013-08-09 13:20 - 2013-07-13 17:47 - 00000000 ____D C:\Program Files (x86)\HP SimplePass 2011
2013-08-08 15:52 - 2013-08-08 15:52 - 00000000 ____D C:\Windows\System32\Tasks\Symantec
2013-08-08 15:44 - 2011-04-01 01:25 - 00654166 _____ C:\Windows\system32\perfh007.dat
2013-08-08 15:44 - 2011-04-01 01:25 - 00130006 _____ C:\Windows\system32\perfc007.dat
2013-08-08 15:44 - 2009-07-14 07:13 - 01498506 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-08 15:41 - 2013-07-13 17:46 - 00000000 ____D C:\Windows\system32\Drivers\NISx64
2013-08-02 08:53 - 2013-08-02 08:53 - 00000000 ____D C:\20484d99fc5b2b608b
2013-08-01 20:49 - 2013-08-01 20:49 - 00083672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-08-01 20:47 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-01 14:42 - 2013-07-13 19:17 - 00001256 _____ C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-08-01 12:53 - 2013-07-13 19:16 - 00058016 _____ C:\Users\bob\AppData\Local\GDIPFONTCACHEV1.DAT
2013-08-01 12:52 - 2013-07-13 19:17 - 00000000 ___RD C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-08-01 12:52 - 2013-07-13 19:17 - 00000000 ___RD C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-08-01 12:50 - 2009-07-14 06:45 - 00276904 _____ C:\Windows\system32\FNTCACHE.DAT
2013-08-01 12:47 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-08-01 12:46 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-08-01 12:46 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-08-01 12:44 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\winrm
2013-08-01 12:44 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\sysprep
2013-08-01 12:44 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2013-08-01 12:44 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-08-01 12:44 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-08-01 12:44 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker
2013-08-01 12:44 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar
2013-08-01 12:44 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-08-01 12:44 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Setup
2013-08-01 12:44 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\oobe
2013-08-01 12:44 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz
2013-08-01 12:44 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing
2013-08-01 12:43 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\WCN
2013-08-01 12:43 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2013-08-01 12:43 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\winrm
2013-08-01 12:43 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\slmgr
2013-08-01 12:43 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\MUI
2013-08-01 12:43 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism
2013-08-01 12:43 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\com
2013-08-01 12:43 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
2013-08-01 12:43 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Setup
2013-08-01 12:43 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe
2013-08-01 12:43 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\migwiz
2013-08-01 12:42 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\WCN
2013-08-01 12:42 - 2010-11-21 09:06 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2013-08-01 12:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\MUI
2013-08-01 12:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism
2013-08-01 12:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\com
2013-08-01 11:34 - 2013-08-01 11:34 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-08-01 11:34 - 2013-08-01 11:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-08-01 11:24 - 2013-08-01 11:23 - 00000000 ____D C:\Users\bob\AppData\Local\Adobe
2013-08-01 11:23 - 2013-08-01 11:23 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-08-01 11:23 - 2013-08-01 11:23 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-08-01 11:23 - 2013-08-01 11:23 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-08-01 11:23 - 2013-08-01 11:23 - 00000000 ____D C:\Windows\system32\Macromed
2013-08-01 11:21 - 2013-08-01 11:21 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-08-01 11:21 - 2013-08-01 11:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-08-01 11:21 - 2013-08-01 11:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-08-01 11:21 - 2013-08-01 11:21 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-08-01 11:21 - 2013-08-01 11:21 - 00000000 ____D C:\Program Files (x86)\Java
2013-08-01 11:21 - 2011-03-31 16:01 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-07-31 21:15 - 2013-07-31 21:15 - 00000000 ____D C:\Users\bob\Documents\Games for Windows - LIVE Demos
2013-07-31 20:49 - 2013-07-31 20:49 - 00891098 _____ C:\Users\bob\Desktop\SecurityCheck.exe
2013-07-31 20:48 - 2013-07-31 20:48 - 02347384 _____ (ESET) C:\Users\bob\Desktop\esetsmartinstaller_enu.exe
2013-07-31 19:51 - 2013-07-31 19:51 - 00000000 ____D C:\Users\bob\AppData\Local\NBGI
2013-07-31 19:50 - 2011-03-31 15:53 - 00082473 _____ C:\Windows\DirectX.log
2013-07-31 19:43 - 2013-07-31 19:43 - 00000000 ____D C:\Users\bob\AppData\Roaming\Avira
2013-07-31 19:36 - 2013-07-31 18:56 - 00000000 ____D C:\Users\bob\AppData\Roaming\TS3Client
2013-07-31 19:35 - 2013-07-31 19:35 - 00000000 ____D C:\Users\bob\AppData\Roaming\Mozilla
2013-07-31 19:35 - 2013-07-31 19:35 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2013-07-31 19:35 - 2013-07-31 19:35 - 00000000 ____D C:\ProgramData\APN
2013-07-31 19:35 - 2013-07-31 19:35 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-07-31 19:34 - 2013-07-31 19:34 - 00002066 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-07-31 19:34 - 2013-07-31 19:34 - 00000000 ____D C:\ProgramData\Avira
2013-07-31 19:34 - 2013-07-31 19:34 - 00000000 ____D C:\Program Files (x86)\Avira
2013-07-31 19:33 - 2013-07-31 19:34 - 00130016 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-07-31 19:33 - 2013-07-31 19:34 - 00100712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-07-31 19:33 - 2013-07-31 19:34 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-07-31 19:27 - 2013-07-31 19:27 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-07-31 19:27 - 2013-07-31 19:27 - 00000000 ____D C:\Users\bob\Documents\nbgi
2013-07-31 19:27 - 2013-07-31 19:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-07-31 19:12 - 2013-07-31 19:11 - 02092792 _____ C:\Users\bob\Downloads\avira_free_antivirus.exe
2013-07-31 18:35 - 2013-07-31 18:35 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2013-07-31 18:35 - 2013-07-31 18:35 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-07-31 18:27 - 2013-07-31 18:27 - 00000215 _____ C:\Users\bob\Desktop\Dark Souls Prepare to Die Edition.url
2013-07-31 18:27 - 2013-07-31 18:27 - 00000000 ____D C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-07-31 18:24 - 2013-07-31 18:24 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-07-31 18:24 - 2013-07-31 18:24 - 00000000 ____D C:\Program Files\Microsoft Xbox 360 Accessories
2013-07-31 18:23 - 2013-07-31 18:23 - 07886712 _____ (Microsoft Corporation) C:\Users\bob\Downloads\Xbox360_64Deu.exe
2013-07-31 18:23 - 2013-07-31 18:22 - 36202272 _____ (TeamSpeak Systems GmbH) C:\Users\bob\Downloads\TeamSpeak3-Client-win64-3.0.11.exe
2013-07-31 18:10 - 2013-07-31 18:10 - 00000917 _____ C:\Users\Public\Desktop\Steam.lnk
2013-07-31 18:10 - 2013-07-31 18:10 - 00000000 ____D C:\Program Files (x86)\dumps
2013-07-31 18:09 - 2013-07-31 18:08 - 08531968 _____ C:\Users\bob\Downloads\SteamInstall_German.msi
2013-07-31 18:00 - 2013-07-31 17:59 - 00000000 ____D C:\Users\bob\AppData\Local\Google
2013-07-31 17:58 - 2013-07-31 17:58 - 00000000 ____D C:\Users\bob\AppData\Local\Apps\2.0
2013-07-31 17:54 - 2013-07-13 17:46 - 00174200 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2013-07-31 17:54 - 2013-07-13 17:46 - 00007488 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2013-07-31 17:54 - 2013-07-13 17:46 - 00000000 ____D C:\Program Files\Symantec
2013-07-31 17:48 - 2013-07-31 17:48 - 00000000 ____D C:\FRST
2013-07-31 17:36 - 2013-07-31 17:36 - 00000000 ____D C:\Windows\ERUNT
2013-07-31 17:31 - 2013-07-31 17:30 - 00001820 _____ C:\AdwCleaner[S1].txt
2013-07-31 17:30 - 2013-07-31 17:30 - 01781589 _____ (Farbar) C:\Users\bob\Downloads\FRST64.exe
2013-07-31 17:30 - 2013-07-31 17:30 - 00666633 _____ C:\Users\bob\Desktop\adwcleaner.exe
2013-07-31 17:30 - 2013-07-31 17:30 - 00562430 _____ (Oleg N. Scherbakov) C:\Users\bob\Desktop\JRT.exe
2013-07-14 05:05 - 2011-03-31 15:45 - 00000000 ____D C:\ProgramData\WildTangent
2013-07-14 05:05 - 2009-07-14 07:38 - 00029696 ___SH C:\Windows\system32\config\BCD-Template.LOG
2013-07-14 05:05 - 2009-07-14 07:32 - 00032768 _____ C:\Windows\system32\config\BCD-Template
2013-07-14 03:23 - 2013-07-14 03:23 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-07-14 03:23 - 2013-07-14 03:23 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-07-14 03:23 - 2013-07-14 03:23 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-14 03:23 - 2013-07-14 03:23 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-07-14 03:23 - 2013-07-14 03:23 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-07-14 03:23 - 2013-07-14 03:23 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-07-14 03:23 - 2013-07-14 03:23 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-07-14 03:23 - 2013-07-14 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-07-14 03:22 - 2013-07-14 03:22 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-07-14 03:22 - 2013-07-14 03:22 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-07-14 03:22 - 2013-07-14 03:22 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-07-14 03:22 - 2013-07-14 03:22 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-07-14 03:22 - 2013-07-14 03:22 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-07-14 03:22 - 2013-07-14 03:22 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-07-14 03:21 - 2013-07-14 03:21 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-07-14 03:20 - 2013-07-14 03:20 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-07-14 03:20 - 2013-07-14 03:20 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-07-14 03:20 - 2013-07-14 03:20 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-07-14 03:20 - 2013-07-14 03:20 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-07-14 03:20 - 2013-07-14 03:20 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-07-14 03:20 - 2013-07-14 03:20 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-07-14 03:20 - 2011-04-01 01:19 - 00000012 _____ C:\Windows\CSUP.txt
2013-07-14 03:18 - 2013-07-14 03:18 - 00000000 ___RD C:\Users\Public\Recorded TV
2013-07-14 03:18 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Microsoft Games
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-31 22:32
==================== End Of Log ============================
|
|
13.08.2013, 17:30
| #48 |
| /// the machine /// TB-Ausbilder    | Google chrom offnet sich unkontrolliert immer noch Probleme?
__________________
__________________ |
|
13.08.2013, 23:14
| #49 |
| | Google chrom offnet sich unkontrolliert ja immer noch das selbe |
|
14.08.2013, 16:00
| #50 |
| /// the machine /// TB-Ausbilder | Google chrom offnet sich unkontrolliert das ist eigentlich so ein wenig unmöglich In allen Browsern? Bitte mal Chrome, IE und Firefox testen und jeweils Screenshots.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
01.09.2013, 23:07
| #51 |
| | Google chrom offnet sich unkontrolliert sorry das es solange gedauert hatt das ich zurück schreibe aber ich wollte wirklich sicher gehen das alles wieder geht. nach einem neustart war das problem vorerst behoben doch seit heute ist das problem wieder genau so schlimm wie vorher. Ich habe echt keinen plan ob der virus wieder da ist oder immer da war.  |
|
02.09.2013, 08:29
| #52 |
| /// the machine /// TB-Ausbilder | Google chrom offnet sich unkontrolliert Mach bitte was ich oben geschrieben hab
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.09.2013, 15:18
| #53 |
| | Google chrom offnet sich unkontrolliert gehen photos mit dem handy camera auch weil ich nichts mehr machen kann sobald der Virus sich einstellt. |
|
02.09.2013, 18:57
| #54 |
| /// the machine /// TB-Ausbilder | Google chrom offnet sich unkontrolliert Was meinst Du mit einstellt? Ich hab dich gebeten alle Browser zu testen und mir zu sagen, in welchem Browser der Fehler auftritt.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.09.2013, 13:41
| #55 |
| | Google chrom offnet sich unkontrolliert ich habe leider keinen plan wie man photos einfügt aber ich hab ne zip gemacht fals das geht. Der virus ist grade etwas launisch manchmal kann ich den pc einschalten und es läuft ohne das sich die browser öffnen und manchmal eben nicht. ich habe alle getestet in chrome aktualisiert sich jedes fenster und neue werden andauernd aufgerufen in fire fox das selbe. beim internet explorer wird nur der aktuelle tab aktualisiert. |
|
04.09.2013, 13:49
| #56 |
| | Google chrom offnet sich unkontrolliert und das 2. |
|
04.09.2013, 16:26
| #57 |
| /// the machine /// TB-Ausbilder | Google chrom offnet sich unkontrolliert FRST öffnen, Haken setzen bei Additional und scanne, poste beide Logfiles.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
05.09.2013, 16:32
| #58 |
| | Google chrom offnet sich unkontrolliertCode:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-09-2013
Ran by bob at 2013-09-05 15:17:00
Running from C:\Users\bob\Desktop
Boot Mode: Normal
==========================================================
==================== Installed Programs =======================
7 Days to Die - Alpha version 0.9.1 (x32 Version: 0.9.1)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.3)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94)
Adobe Reader X MUI (x32 Version: 10.0.0)
Adobe Shockwave Player 11.5 (x32 Version: 11.5.9.620)
Agatha Christie - Peril at End House (x32 Version: 2.2.0.95)
AMD Accelerated Video Transcoding (Version: 12.10.100.30328)
AMD Catalyst Install Manager (Version: 8.0.911.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.80328.2204)
AuthenTec TrueAPI (Version: 1.2.1.33)
Avira Free Antivirus (x32 Version: 13.0.0.4052)
Avira SearchFree Toolbar plus Web Protection (x32 Version: 12.2.2.663)
Beans IDE 7.3.1 (Version: 7.3.1)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95)
Big Rig Europe (x32 Version: 2.2.0.95)
Blasterball 3 (x32 Version: 2.2.0.95)
Bounce Symphony (x32 Version: 2.2.0.95)
Cake Mania (x32 Version: 2.2.0.95)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (x32 Version: 2013.0723.1944.33607)
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225)
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225)
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225)
CCC Help Czech (x32 Version: 2013.0328.2217.38225)
CCC Help Danish (x32 Version: 2013.0328.2217.38225)
CCC Help Dutch (x32 Version: 2013.0328.2217.38225)
CCC Help English (x32 Version: 2013.0328.2217.38225)
CCC Help Finnish (x32 Version: 2013.0328.2217.38225)
CCC Help French (x32 Version: 2013.0328.2217.38225)
CCC Help German (x32 Version: 2013.0328.2217.38225)
CCC Help Greek (x32 Version: 2013.0328.2217.38225)
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225)
CCC Help Italian (x32 Version: 2013.0328.2217.38225)
CCC Help Japanese (x32 Version: 2013.0328.2217.38225)
CCC Help Korean (x32 Version: 2013.0328.2217.38225)
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225)
CCC Help Polish (x32 Version: 2013.0328.2217.38225)
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225)
CCC Help Russian (x32 Version: 2013.0328.2217.38225)
CCC Help Spanish (x32 Version: 2013.0328.2217.38225)
CCC Help Swedish (x32 Version: 2013.0328.2217.38225)
CCC Help Thai (x32 Version: 2013.0328.2217.38225)
CCC Help Turkish (x32 Version: 2013.0328.2217.38225)
ccc-utility64 (Version: 2013.0328.2218.38225)
Chuzzle Deluxe (x32 Version: 2.2.0.95)
Crazy Chicken Kart 2 (x32 Version: 2.2.0.95)
CyberLink PowerDVD 10 (x32 Version: 10.0.3.2714)
CyberLink YouCam (x32 Version: 3.5.1.3908)
D3DX10 (x32 Version: 15.4.2368.0902)
Dark Souls: Prepare to Die Edition (x32)
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95)
Don't Starve (x32)
Driver Fusion (x32 Version: 1.7.0)
Dxtory version 2.0.122 (x32 Version: 2.0.122)
Energy Star Digital Logo (x32 Version: 1.0.1)
erLT (x32 Version: 1.20.0137)
ESU for Microsoft Windows 7 (x32 Version: 1.0.0)
Evernote v. 4.2.2 (x32 Version: 4.2.2.3979)
Fallout 3 (x32)
Farm Frenzy (x32 Version: 2.2.0.95)
FATE (x32 Version: 2.2.0.95)
Fishdom (x32 Version: 2.2.0.95)
Google Chrome (x32 Version: 29.0.1547.62)
Google Update Helper (x32 Version: 1.3.21.153)
HP 3D DriveGuard (Version: 4.1.5.1)
HP Auto (Version: 1.0.12935.3667)
HP Client Services (Version: 1.1.12938.3539)
HP Connection Manager (x32 Version: 4.0.45.1)
HP Customer Experience Enhancements (x32 Version: 6.0.1.7)
HP Documentation (x32 Version: 1.1.0.0)
HP Games (x32 Version: 1.0.2.4)
HP On Screen Display (x32 Version: 1.1.2)
HP Power Manager (x32 Version: 1.2.3)
HP Quick Launch (x32 Version: 2.3.6)
HP Setup (x32 Version: 8.6.4530.3651)
HP Setup Manager (x32 Version: 1.1.13231.3673)
HP SimplePass 2011 (x32 Version: 5.1.0.495)
HP Software Framework (x32 Version: 4.0.110.1)
HP Support Assistant (x32 Version: 5.2.9.2)
HPAsset component for HP Active Support Library (x32 Version: 3.0.2.2)
IDT Audio (x32 Version: 1.0.6329.0)
Intel PROSet Wireless
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (Version: 1.0.2.0511)
Intel(R) PROSet/Wireless WiFi-Software (Version: 14.0.3000)
Intel(R) Rapid Storage Technology (x32 Version: 10.1.2.1004)
Intel(R) Wireless Display
Intel(R) Wireless Display (x32 Version: 2.0.30.0)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
Java SE Development Kit 7 Update 25 (64-bit) (Version: 1.7.0.250)
Java(TM) 6 Update 24 (64-bit) (Version: 6.0.240)
Jewel Quest Solitaire (x32 Version: 2.2.0.95)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
Lagarith Lossless Codec (1.3.27) (x32)
League of Legends (x32 Version: 3.0.1)
Logitech SetPoint 5.20 (Version: 5.20)
LogMeIn Hamachi (x32 Version: 2.1.0.374)
Magic Desktop (x32 Version: 3.0)
Mah Jong Medley (x32 Version: 2.2.0.95)
Mesh Runtime (x32 Version: 15.4.5722.2)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft XNA Framework Redistributable 4.0 Refresh (x32 Version: 4.0.30901.0)
Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
Mystery P.I. - The London Caper (x32 Version: 2.2.0.95)
Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95)
Pando Media Booster (x32 Version: 2.6.0.7)
Penguins! (x32 Version: 2.2.0.95)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95)
Polar Bowler (x32 Version: 2.2.0.95)
PowerXpressHybrid (x32 Version: 1.00.0000)
PX Profile Update (x32 Version: 1.00.1.)
Realtek Ethernet Controller Driver (x32 Version: 7.41.216.2011)
Realtek PCIE Card Reader (x32 Version: 6.1.7600.74)
Recovery Manager (x32 Version: 2.0.0)
Reise nach Nordland (x32)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0)
Rogue Legacy (x32)
Sid Meier's Civilization V (x32)
Skype™ 5.10 (x32 Version: 5.10.116)
Slingo Deluxe (x32 Version: 2.2.0.95)
Steam (x32 Version: 1.0.0.0)
Synaptics TouchPad Driver (Version: 15.3.29.0)
TeamSpeak 3 Client (Version: 3.0.11.1)
The Witcher 2: Assassins of Kings Enhanced Edition (x32)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)
Update Installer for WildTangent Games App (x32)
User's Guides (Version: 1.20.0000)
Validity WBF DDK (Version: 4.3.118.0)
Virtual Villagers - The Secret City (x32 Version: 2.2.0.95)
Wedding Dash (x32 Version: 2.2.0.95)
WildTangent Games App (HP Games) (x32 Version: 4.0.5.2)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3508.1109)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Mesh (x32 Version: 15.4.3502.0922)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Messenger (x32 Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
Zuma Deluxe (x32 Version: 2.2.0.95)
==================== Restore Points =========================
02-09-2013 12:32:02 Windows Update
02-09-2013 20:01:40 DirectX wurde installiert
03-09-2013 10:46:32 DirectX wurde installiert
03-09-2013 21:23:12 DirectX wurde installiert
03-09-2013 21:24:21 Microsoft Visual C++ 2005 Redistributable wird installiert
03-09-2013 21:24:54 Installed Microsoft Games for Windows - LIVE Redistributable
03-09-2013 21:50:26 Installed LogMeIn Hamachi
03-09-2013 21:52:07 Installed 7-Zip 9.20 (x64 edition)
==================== Hosts content: ==========================
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {01029FCD-6FA3-4CCB-B20F-6C40C2D29E44} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-16] (Google Inc.)
Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => Sc.exe start w32time task_started
Task: {05E9565A-A224-475C-A66A-948D4CCFD1F1} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2011-01-31] ()
Task: {1B4DB995-010B-47F7-9FDC-F509F69A2A22} - System32\Tasks\HPCeeScheduleForbob => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)
Task: {8F5C4235-FC64-4B0A-A98F-12798E8043E7} - System32\Tasks\User_Feed_Synchronization-{0658ACE6-D92E-420F-86AC-FEAE60DAFA34} => C:\Windows\system32\msfeedssync.exe [2013-07-13] (Microsoft Corporation)
Task: {A1A39DF7-2037-45EC-8B64-150F93B91AF0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-08-16] (Google Inc.)
Task: {AFE87DF5-97BC-44C7-9EF0-CEE24717DA78} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2013-08-20] (Microsoft)
Task: {BD7A7534-F51B-4579-AA75-E5E9177D3FF8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-01] (Adobe Systems Incorporated)
Task: {C384C9D9-C889-44D0-9D9F-E958A00704A5} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation)
Task: {D10F61FC-FAFD-4F1B-8861-F223C3E1F3A2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {E38F0F29-EFC4-468F-914C-6AC4914A76C3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2011-02-23] (Hewlett-Packard Company)
Task: {EA4365B5-657B-4B9C-B9D5-040ACE793BAE} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {F023EFF1-A580-48A2-98A2-E7F7FEAFB320} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-03-08] (CyberLink)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForbob.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Loaded Modules (whitelisted) =============
2013-07-13 17:33 - 2011-03-11 12:23 - 04642816 _____ (IDT, Inc.) C:\Program Files\IDT\WDM\STLang64.dll
2013-07-13 17:33 - 2011-03-11 12:23 - 00652288 _____ (IDT, Inc.) C:\Windows\system32\stapi64.dll
2010-12-17 04:26 - 2011-10-14 04:35 - 00415528 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2011-10-14 04:35 - 2011-10-14 04:35 - 00226600 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2011-10-14 04:35 - 2011-10-14 04:35 - 10584360 _____ (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPRes.dll
2011-02-04 15:42 - 2011-02-04 15:42 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2011-02-04 16:20 - 2011-02-04 16:20 - 01070080 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
2011-03-02 12:10 - 2011-03-02 12:10 - 00045568 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\LangResources\DEU\FrWrkDEU.dll
2011-02-04 16:21 - 2011-02-04 16:21 - 00817664 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\WiWiTray.dll
2011-03-02 12:25 - 2011-03-02 12:25 - 00006144 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\LangResources\DEU\WiTrDEU.dll
2011-02-04 16:30 - 2011-02-04 16:30 - 01737728 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\FrameworkPlugins\PanTray.dll
2011-02-04 16:21 - 2011-02-04 16:21 - 01044992 _____ (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.DLL
2011-02-04 16:24 - 2011-02-04 16:24 - 01999872 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll
2011-02-04 16:19 - 2011-02-04 16:19 - 00234496 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\WiMAXCoEx.dll
2011-02-04 16:26 - 2011-02-04 16:26 - 01323008 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\MurocApi.dll
2011-02-04 16:21 - 2011-02-04 16:21 - 00831488 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\IntStngs.dll
2011-02-04 16:27 - 2011-02-04 16:27 - 00464384 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\PanApi.dll
2011-02-04 16:19 - 2011-02-04 16:19 - 00176640 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll
2011-03-02 12:18 - 2011-03-02 12:18 - 00096768 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\LangResources\DEU\PanTrDEU.dll
2011-02-04 16:19 - 2011-02-04 16:19 - 00846336 _____ (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\DbEngine.dll
2013-07-13 17:30 - 2011-01-27 18:25 - 00286720 _____ (Intel Corporation) C:\Windows\system32\igfxrDEU.lrc
2013-07-13 17:30 - 2011-01-27 18:11 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-02-15 15:48 - 2011-02-15 15:48 - 00709688 _____ (Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HP.Mobile.dll
2011-02-15 15:53 - 2011-02-15 15:53 - 01919032 _____ (Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpUIFramework.dll
2011-02-15 15:48 - 2011-02-15 15:48 - 00054840 _____ (Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HP.Mobile.Shared.dll
2011-02-15 15:45 - 2011-02-15 15:45 - 00229376 _____ (Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HP.Mobile.Resource.dll
2011-03-31 16:02 - 2011-03-31 16:02 - 00869888 _____ (HP) C:\Windows\assembly\GAC_MSIL\HP.SupportFramework\1.0.0.0__2a4860322af7ba08\HP.SupportFramework.dll
2011-02-15 15:53 - 2011-02-15 15:53 - 00063032 _____ ( ) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\Interop.hpCMSrv.dll
2011-02-15 15:49 - 2011-02-15 15:49 - 00112184 _____ (Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\de\HP.Mobile.Resource.resources.dll
2011-02-17 22:47 - 2011-02-17 22:47 - 01744200 _____ (HP) C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll
2011-02-17 22:47 - 2011-02-17 22:47 - 00379720 _____ (HP) C:\Program Files (x86)\HP SimplePass 2011\x64\BioLayer.dll
2011-02-17 22:47 - 2011-02-17 22:47 - 00179528 _____ (HP) C:\Program Files (x86)\HP SimplePass 2011\x64\TSLog.dll
2011-02-17 22:47 - 2011-02-17 22:47 - 00353096 _____ (HP) C:\Program Files (x86)\HP SimplePass 2011\x64\TokenMachine.dll
2013-08-28 12:21 - 2013-08-28 12:21 - 00211880 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\jp2ssv.dll
2013-08-01 11:23 - 2013-08-01 11:23 - 22633864 ____R (Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\Flash64_11_8_800_94.ocx
2011-02-17 22:47 - 2011-02-17 22:47 - 00265544 _____ (HP) C:\Program Files (x86)\HP SimplePass 2011\x64\DataManager.dll
2011-02-16 03:50 - 2011-02-16 03:50 - 06032712 _____ (AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueAPI.dll
2013-07-31 18:10 - 2013-08-28 23:47 - 00288680 _____ (Valve Corporation) C:\Program Files (x86)\Steam\crashhandler.dll
2013-07-15 14:32 - 2013-07-16 00:32 - 02895272 _____ (Valve Corporation) C:\Program Files (x86)\Steam\steam.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 10654632 _____ (Valve Corporation) C:\Program Files (x86)\Steam\steamui.dll
2013-07-01 08:20 - 2013-08-22 00:18 - 00687104 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 00263080 _____ (Valve Corporation) C:\Program Files (x86)\Steam\tier0_s.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 00236456 _____ (Valve Corporation) C:\Program Files (x86)\Steam\vstdlib_s.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00122864 _____ (Valve) C:\Program Files (x86)\Steam\CSERHelper.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 00169384 _____ (Valve Corporation) C:\Program Files (x86)\Steam\bin\filesystem_stdio.DLL
2013-07-26 14:46 - 2013-08-28 23:47 - 00694696 _____ (Valve Corporation) C:\Program Files (x86)\Steam\bin\vgui2_s.DLL
2013-07-26 14:46 - 2013-08-28 23:47 - 01120680 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2013-07-15 14:32 - 2013-08-07 21:31 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 09955112 _____ (The ICU Project) C:\Program Files (x86)\Steam\bin\icudt.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2013-06-14 15:49 - 2013-06-15 01:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 07745960 _____ (Valve Corporation) C:\Program Files (x86)\Steam\steamclient.dll
2013-07-26 14:46 - 2013-08-28 23:47 - 02449832 _____ (Valve Corporation) c:\program files (x86)\steam\bin\friendsui.DLL
2013-07-26 14:46 - 2013-08-28 23:47 - 01804712 _____ (Valve Corporation) c:\program files (x86)\steam\bin\serverbrowser.DLL
2010-11-21 05:24 - 2010-11-21 05:24 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2009-07-14 01:51 - 2009-07-14 03:14 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vidcap.ax
2010-11-21 05:24 - 2010-11-21 05:24 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kswdmcap.ax
2013-08-28 13:05 - 2010-12-17 23:34 - 00273408 _____ (Dxtory Software) C:\Program Files (x86)\Dxtory Software\Dxtory2.0\DxtoryVideo.dll
2013-08-01 11:23 - 2013-08-01 11:23 - 16230792 ____R (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_8_800_94.ocx
2013-08-17 11:35 - 2013-08-17 11:35 - 00475648 _____ (Intel Corporation) C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\6c1d55eed243331c944206f8608fb850\IAStorUtil.ni.dll
2013-08-08 16:10 - 2013-08-08 16:10 - 00014336 _____ (Intel Corp.) C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\571f0babf15ab38dc80829622caa99d3\IAStorCommon.ni.dll
2010-11-17 19:52 - 2010-11-17 19:52 - 00096904 _____ (Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.dll
2011-02-28 15:06 - 2011-02-28 15:06 - 00797240 _____ (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hputils.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00055352 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\cfglib.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00349752 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccguard.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00029240 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgrdrc.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00229432 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgrdw.dll
2013-07-31 19:34 - 2013-09-04 13:27 - 00419384 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccwgrd.dll
2013-07-31 19:34 - 2013-09-04 13:27 - 00027192 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccwgrdrc.dll
2013-07-31 19:34 - 2013-09-04 13:27 - 00127544 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccwgrdw.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00807992 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgen.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00049720 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccgenrc.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00220216 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccupdate.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00028728 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccupdrc.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00083000 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\cclic.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00009784 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\cclicrc.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00237624 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccmsg.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00010296 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccmsgrc.dll
2013-07-31 19:34 - 2013-09-04 13:26 - 00014392 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\ccmainrc.dll
2013-07-31 19:34 - 2013-09-04 13:27 - 00218168 _____ (Avira Operations GmbH & Co. KG) c:\program files (x86)\avira\antivir desktop\gpipc.dll
2011-03-31 15:59 - 2011-03-31 15:59 - 00052920 _____ (EasyBits Software Corp.) C:\Windows\SysWow64\EZUPBH~1.DLL
==================== Alternate Data Streams (whitelisted) ==========
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (09/05/2013 03:16:22 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x12ac
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/05/2013 03:15:42 PM) (Source: Application Hang) (User: )
Description: Programm FRST64.exe, Version 0.0.0.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 844
Startzeit: 01ceaa39ca777360
Endzeit: 16
Anwendungspfad: C:\Users\bob\Desktop\FRST64.exe
Berichts-ID:
Error: (09/05/2013 03:15:22 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0xe44
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/05/2013 03:14:22 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x498
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/05/2013 03:13:23 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x15dc
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/05/2013 03:11:14 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (09/05/2013 03:10:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/04/2013 09:51:54 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x15c8
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/04/2013 09:50:54 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x8f8
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
Error: (09/04/2013 09:49:54 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: hpCMSrv.exe, Version: 4.0.45.1, Zeitstempel: 0x4d5af3d4
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.1.7601.18015, Zeitstempel: 0x50b83c8a
Ausnahmecode: 0xe06d7363
Fehleroffset: 0x0000c41f
ID des fehlerhaften Prozesses: 0x9bc
Startzeit der fehlerhaften Anwendung: 0xhpCMSrv.exe0
Pfad der fehlerhaften Anwendung: hpCMSrv.exe1
Pfad des fehlerhaften Moduls: hpCMSrv.exe2
Berichtskennung: hpCMSrv.exe3
System errors:
=============
Error: (09/05/2013 03:16:52 PM) (Source: DCOM) (User: )
Description: {2A8DDB1F-EE72-4FB7-A2F8-7B1530D94850}
Error: (09/05/2013 03:16:23 PM) (Source: Service Control Manager) (User: )
Description: Dienst "HP Connection Manager 4.0 Service" wurde unerwartet beendet. Dies ist bereits 4 Mal passiert.
Error: (09/05/2013 03:15:52 PM) (Source: DCOM) (User: )
Description: {000098D5-6857-477B-B1D2-8B04CD9EB234}
Error: (09/05/2013 03:15:23 PM) (Source: Service Control Manager) (User: )
Description: Dienst "HP Connection Manager 4.0 Service" wurde unerwartet beendet. Dies ist bereits 3 Mal passiert.
Error: (09/05/2013 03:14:52 PM) (Source: DCOM) (User: )
Description: {DCF1FC65-DA3B-404B-B4CC-BF8669E4947C}
Error: (09/05/2013 03:14:23 PM) (Source: Service Control Manager) (User: )
Description: Dienst "HP Connection Manager 4.0 Service" wurde unerwartet beendet. Dies ist bereits 2 Mal passiert.
Error: (09/05/2013 03:13:50 PM) (Source: DCOM) (User: )
Description: {24DB46C8-C842-4E91-9AC4-8A9525A5551D}
Error: (09/05/2013 03:13:24 PM) (Source: Service Control Manager) (User: )
Description: Dienst "HP Connection Manager 4.0 Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/04/2013 09:52:24 PM) (Source: DCOM) (User: )
Description: {2A8DDB1F-EE72-4FB7-A2F8-7B1530D94850}
Error: (09/04/2013 09:51:54 PM) (Source: Service Control Manager) (User: )
Description: Dienst "HP Connection Manager 4.0 Service" wurde unerwartet beendet. Dies ist bereits 4 Mal passiert.
Microsoft Office Sessions:
=========================
Error: (09/05/2013 03:16:22 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f12ac01ceaa3a0c1cf8a1C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll5bb0e16a-162d-11e3-bcb3-ac7289793ea1
Error: (09/05/2013 03:15:42 PM) (Source: Application Hang)(User: )
Description: FRST64.exe0.0.0.084401ceaa39ca77736016C:\Users\bob\Desktop\FRST64.exe
Error: (09/05/2013 03:15:22 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41fe4401ceaa39e85378a7C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll37eaff37-162d-11e3-bcb3-ac7289793ea1
Error: (09/05/2013 03:14:22 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f49801ceaa39c48a24c2C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll141e8cd6-162d-11e3-bcb3-ac7289793ea1
Error: (09/05/2013 03:13:23 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f15dc01ceaa399f365d2eC:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dllf0e60835-162c-11e3-bcb3-ac7289793ea1
Error: (09/05/2013 03:11:14 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\bob\Desktop\virus bekämpfungs tools\esetsmartinstaller_enu.exe
Error: (09/05/2013 03:10:49 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/04/2013 09:51:54 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f15c801cea9a822943da3C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll72288aaa-159b-11e3-afd7-ac7289793ea1
Error: (09/04/2013 09:50:54 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f8f801cea9a7fecc52d4C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll4e655adc-159b-11e3-afd7-ac7289793ea1
Error: (09/04/2013 09:49:54 PM) (Source: Application Error)(User: )
Description: hpCMSrv.exe4.0.45.14d5af3d4KERNELBASE.dll6.1.7601.1801550b83c8ae06d73630000c41f9bc01cea9a7db0419e3C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exeC:\Windows\syswow64\KERNELBASE.dll2a98b50b-159b-11e3-afd7-ac7289793ea1
CodeIntegrity Errors:
===================================
Date: 2013-08-28 18:10:32.102
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2013-08-28 18:10:32.071
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\atikmpag.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Memory info ===========================
Percentage of memory in use: 32%
Total physical RAM: 8139.86 MB
Available physical RAM: 5498.13 MB
Total Pagefile: 16277.9 MB
Available Pagefile: 13448.57 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:683.02 GB) (Free:583.46 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:15.32 GB) (Free:1.67 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: E21A8B36)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=683 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)
==================== End Of Log ============================
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-09-2013
Ran by bob (administrator) on BOB-HP on 05-09-2013 15:16:09
Running from C:\Users\bob\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Logitech Inc.) C:\Program Files\Logitech\SetPoint II\SetPointII.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-11] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [IntelWireless] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1933584 2011-02-04] (Intel(R) Corporation)
HKLM\...\Run: [XboxStat] - C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] - C:\Windows\KHALMNPR.EXE [130576 2009-06-17] (Logitech, Inc.)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\...\Policies\Explorer: [NoDrives] 0
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1811880 2013-08-28] (Valve Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [17418928 2012-07-13] (Skype Technologies S.A.)
HKCU\...\Policies\Explorer: [NoDrives] 0
HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2011-01-13] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-11-17] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [HPConnectionManager] - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [94264 2011-02-15] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [HP Quick Launch] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [586296 2010-11-09] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [61112 2011-03-16] (EasyBits Software AS)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-04] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] - "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [x]
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2255184 2013-06-28] (LogMeIn Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SetPointII.lnk
ShortcutTarget: SetPointII.lnk -> C:\Program Files\Logitech\SetPoint II\SetPointII.exe (Logitech Inc.)
Startup: C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Produktregistrierung.lnk
ShortcutTarget: Logitech . Produktregistrierung.lnk -> C:\Program Files (x86)\Common Files\LogiShrd\eReg\SetPoint\eReg.exe (Leader Technologies/Logitech)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT/4
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {20F6E0BA-D9AE-43EA-A258-276EF4814812} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" No File
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar plus Web Protection - {41564952-412D-5637-00A7-7A786E7484D7} - "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWow64\EZUPBH~1.DLL [52920 2011-03-31] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF ProfilePath: C:\Users\bob\AppData\Roaming\Mozilla\Firefox\Profiles\qucri2eo.default
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll No File
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
Chrome:
=======
CHR HomePage: hxxp://www.youtube.com/?gl=DE&hl=de
CHR RestoreOnStartup: "https://www.youtube.com/feed/subscriptions"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.62\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
CHR Extension: (Google Docs) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Facebook Disconnect) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpepffjfmamnambagiibghpglaidiec\1.3.0_0
CHR Extension: (AdBlock) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.6_0
CHR Extension: (Don't Starve) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiledapehlkhdehbhppgmekfalnlfajc\1.0.0.37_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Gmail) - C:\Users\bob\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [84024 2013-09-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-04] (Avira Operations GmbH & Co. KG)
S4 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [241648 2011-01-25] (CyberLink)
S4 HPAuto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [682040 2011-02-16] (Hewlett-Packard)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-02-04] ()
S4 APNMCP; "C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe" [x]
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105344 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132088 2013-09-04] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-07-31] (Avira Operations GmbH & Co. KG)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-09-05 15:14 - 2013-09-05 15:14 - 01947160 _____ (Farbar) C:\Users\bob\Desktop\FRST64.exe.kvietxr.partial
2013-09-05 15:12 - 2013-09-05 15:12 - 96044050 _____ C:\Windows\SysWOW64\鷗厷蹬L
2013-09-03 23:56 - 2013-09-03 23:56 - 00001073 _____ C:\Users\Public\Desktop\7 Days to Die - Alpha.lnk
2013-09-03 23:56 - 2013-09-03 23:56 - 00000000 ___HD C:\Windows\PIF
2013-09-03 23:55 - 2013-09-03 23:56 - 00000000 ____D C:\Program Files (x86)\7DaysToDie-Alpha
2013-09-03 23:54 - 2013-09-03 23:57 - 00000000 ____D C:\Users\bob\Downloads\Crack
2013-09-03 23:54 - 2013-08-17 13:36 - 00000123 _____ C:\Users\bob\Downloads\Readme.txt
2013-09-03 23:54 - 2013-08-17 12:37 - 314134331 _____ (The Fun Pimps LLC ) C:\Users\bob\Downloads\7DTD_Alpha1_win32.exe
2013-09-03 23:53 - 2013-09-03 23:53 - 00000000 ____D C:\Users\bob\Downloads\7 Days To Die - Alpha1
2013-09-03 23:52 - 2013-09-03 23:52 - 01376768 _____ C:\Users\bob\Downloads\7z920-x64.msi
2013-09-03 23:52 - 2013-09-03 23:52 - 00000000 ____D C:\Program Files\7-Zip
2013-09-03 23:51 - 2013-09-05 15:10 - 00000000 ____D C:\Users\bob\AppData\Local\LogMeIn Hamachi
2013-09-03 23:51 - 2013-09-03 23:51 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-09-03 23:51 - 2009-03-18 18:35 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2013-09-03 23:50 - 2013-09-03 23:50 - 04292608 _____ C:\Users\bob\Downloads\hamachi_2.1.0.362.msi
2013-09-03 23:46 - 2013-09-03 23:50 - 209715200 _____ C:\Users\bob\Downloads\7 Days To Die - Alpha1.part1.rar
2013-09-03 23:46 - 2013-09-03 23:49 - 105230808 _____ C:\Users\bob\Downloads\7 Days To Die - Alpha1.part2.rar
2013-09-03 23:25 - 2013-09-03 23:25 - 00000000 ____D C:\Users\bob\AppData\Local\Fallout3
2013-09-02 22:03 - 2013-09-03 23:23 - 00000000 ____D C:\Users\bob\Documents\My Games
2013-09-02 22:03 - 2013-09-03 12:48 - 00000000 ____D C:\Users\bob\AppData\Local\My Games
2013-09-02 18:01 - 2013-09-02 18:01 - 00000000 ____D C:\Users\bob\AppData\Local\Mozilla
2013-09-02 18:00 - 2013-09-02 18:01 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-02 18:00 - 2013-09-02 18:00 - 00000000 ____D C:\ProgramData\Mozilla
2013-09-02 18:00 - 2013-09-02 18:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-02 14:43 - 2013-09-02 14:43 - 00000000 ____D C:\HP_TOOLS_mountHPSF
2013-09-02 14:32 - 2013-09-02 14:32 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-09-02 14:26 - 2013-09-02 14:26 - 00000000 ____D C:\Users\bob\AppData\Local\LogiShrd
2013-09-02 14:23 - 2013-09-02 14:23 - 00000000 ____D C:\Users\bob\AppData\Roaming\Leadertech
2013-09-02 14:22 - 2013-09-02 14:22 - 00003563 _____ C:\Windows\LDPINST.LOG
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_LMouFilt_01005.Wdf
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_LHidFilt_01005.Wdf
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Users\Public\Documents\LogiShrd
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Program Files\Logitech
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Program Files\Common Files\Logishrd
2013-09-02 14:21 - 2013-09-02 14:22 - 01121848 _____ C:\Windows\SetPointII_000.log
2013-09-02 14:21 - 2013-09-02 14:22 - 00000000 ____D C:\ProgramData\LogiShrd
2013-09-02 14:21 - 2013-09-02 14:21 - 00000000 ____D C:\Users\bob\AppData\Local\Downloaded Installations
2013-09-02 08:05 - 2013-09-05 15:15 - 00000000 ____D C:\Users\bob\Desktop\virus bekämpfungs tools
2013-09-01 18:52 - 2013-09-05 15:16 - 00000000 ____D C:\Users\bob\AppData\Roaming\Skype
2013-09-01 18:52 - 2013-09-02 14:32 - 00000000 ____D C:\ProgramData\Skype
2013-09-01 18:23 - 2013-09-01 18:23 - 00000000 ____D C:\Users\bob\AppData\Roaming\LolClient
2013-09-01 16:07 - 2013-09-01 16:07 - 00000000 ____D C:\Users\bob\AppData\Roaming\.minecraft
2013-09-01 16:02 - 2013-09-01 17:24 - 00000000 ____D C:\Users\bob\Downloads\Direwolf20
2013-09-01 16:01 - 2013-09-01 16:07 - 00000000 ____D C:\Users\bob\AppData\Roaming\ftblauncher
2013-09-01 16:00 - 2013-09-01 16:00 - 00512825 _____ () C:\Users\bob\Desktop\FTB_Launcher.exe
2013-09-01 15:58 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-09-01 15:58 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-09-01 15:58 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-09-01 15:57 - 2013-09-01 15:57 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-09-01 15:55 - 2013-09-01 15:55 - 00000000 ____D C:\Users\bob\AppData\Local\Evernote
2013-09-01 15:35 - 2013-09-01 15:35 - 00000000 ____D C:\Users\bob\unifl_registry_backup
2013-09-01 15:31 - 2013-09-01 15:31 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-09-01 15:29 - 2013-09-01 15:29 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-09-01 15:26 - 2013-09-01 15:26 - 00000000 ____D C:\Program Files\ATI
2013-09-01 15:25 - 2013-09-01 15:28 - 00000000 ____D C:\Program Files\ATI Technologies
2013-09-01 15:19 - 2013-03-29 05:37 - 01155264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00970912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00139696 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00118584 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00112440 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00092304 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2013-09-01 15:19 - 2013-03-29 05:37 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 08272136 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 07233336 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 06985624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 05944264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 05000320 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2013-09-01 15:19 - 2013-03-29 05:36 - 04450264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2013-09-01 15:19 - 2013-03-29 05:35 - 11658752 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2013-09-01 15:19 - 2013-03-29 05:13 - 01187342 _____ C:\Windows\system32\amdocl_as64.exe
2013-09-01 15:19 - 2013-03-29 05:13 - 01061902 _____ C:\Windows\system32\amdocl_ld64.exe
2013-09-01 15:19 - 2013-03-29 05:13 - 00995342 _____ C:\Windows\SysWOW64\amdocl_as32.exe
2013-09-01 15:19 - 2013-03-29 05:13 - 00798734 _____ C:\Windows\SysWOW64\amdocl_ld32.exe
2013-09-01 15:19 - 2013-03-29 05:13 - 00076288 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2013-09-01 15:19 - 2013-03-29 05:13 - 00065536 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2013-09-01 15:19 - 2013-03-29 05:12 - 29150720 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2013-09-01 15:19 - 2013-03-29 05:10 - 23810560 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2013-09-01 15:19 - 2013-03-29 05:04 - 24229376 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2013-09-01 15:19 - 2013-03-29 04:59 - 00522872 _____ C:\Windows\SysWOW64\atiapfxx.blb
2013-09-01 15:19 - 2013-03-29 04:59 - 00522872 _____ C:\Windows\system32\atiapfxx.blb
2013-09-01 15:19 - 2013-03-29 04:57 - 00163840 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2013-09-01 15:19 - 2013-03-29 04:55 - 16082944 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2013-09-01 15:19 - 2013-03-29 04:55 - 00051200 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2013-09-01 15:19 - 2013-03-29 04:55 - 00046080 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2013-09-01 15:19 - 2013-03-29 04:55 - 00044544 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2013-09-01 15:19 - 2013-03-29 04:55 - 00044032 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2013-09-01 15:19 - 2013-03-29 04:51 - 13703168 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2013-09-01 15:19 - 2013-03-29 04:48 - 19870720 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2013-09-01 15:19 - 2013-03-29 04:38 - 03309936 _____ C:\Windows\system32\atiumd6a.cap
2013-09-01 15:19 - 2013-03-29 04:38 - 00204952 _____ C:\Windows\SysWOW64\ativvsvl.dat
2013-09-01 15:19 - 2013-03-29 04:38 - 00204952 _____ C:\Windows\system32\ativvsvl.dat
2013-09-01 15:19 - 2013-03-29 04:38 - 00157144 _____ C:\Windows\SysWOW64\ativvsva.dat
2013-09-01 15:19 - 2013-03-29 04:38 - 00157144 _____ C:\Windows\system32\ativvsva.dat
2013-09-01 15:19 - 2013-03-29 04:35 - 00562688 _____ (AMD) C:\Windows\system32\atieclxx.exe
2013-09-01 15:19 - 2013-03-29 04:35 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2013-09-01 15:19 - 2013-03-29 04:34 - 00241152 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2013-09-01 15:19 - 2013-03-29 04:33 - 00120320 _____ (AMD) C:\Windows\system32\atitmm64.dll
2013-09-01 15:19 - 2013-03-29 04:32 - 00059392 _____ (ATI Technologies, Inc.) C:\Windows\system32\atiedu64.dll
2013-09-01 15:19 - 2013-03-29 04:32 - 00043520 _____ (ATI Technologies, Inc.) C:\Windows\SysWOW64\ati2edxx.dll
2013-09-01 15:19 - 2013-03-29 04:32 - 00026112 _____ (AMD) C:\Windows\system32\atimuixx.dll
2013-09-01 15:19 - 2013-03-29 04:24 - 03342768 _____ C:\Windows\SysWOW64\atiumdva.cap
2013-09-01 15:19 - 2013-03-29 04:10 - 00636416 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2013-09-01 15:19 - 2013-03-29 04:10 - 00430080 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2013-09-01 15:19 - 2013-03-29 04:10 - 00044032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2013-09-01 15:19 - 2013-03-29 04:10 - 00017920 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2013-09-01 15:19 - 2013-03-29 04:10 - 00014848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2013-09-01 15:19 - 2013-03-29 04:09 - 00581120 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2013-09-01 15:19 - 2013-03-29 04:09 - 00034816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2013-09-01 15:19 - 2013-03-29 04:07 - 00053248 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2013-09-01 15:19 - 2013-03-12 08:38 - 00695006 _____ C:\Windows\system32\atiicdxx.dat
2013-09-01 15:19 - 2013-03-04 21:52 - 00230836 _____ C:\Windows\system32\ativvaxy_cik.dat
2013-09-01 15:19 - 2013-02-27 21:08 - 00044066 _____ C:\Windows\atiogl.xml
2013-09-01 15:19 - 2012-11-22 18:14 - 00230064 _____ C:\Windows\system32\ativvaxy_cik_nd.dat
2013-09-01 15:19 - 2011-09-13 01:06 - 00003917 _____ C:\Windows\SysWOW64\atipblag.dat
2013-09-01 15:19 - 2011-09-13 01:06 - 00003917 _____ C:\Windows\system32\atipblag.dat
2013-09-01 14:50 - 2013-09-01 14:50 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-01 14:49 - 2013-09-01 15:11 - 00000000 ____D C:\Program Files (x86)\Driver Fusion
2013-09-01 14:49 - 2013-09-01 14:49 - 00000000 ____D C:\Users\bob\AppData\Roaming\OpenCandy
2013-09-01 14:39 - 2013-09-01 14:39 - 339266608 _____ (leshcat ) C:\Users\bob\Desktop\Catalyst_13.4_WHQL_UnifL_v2.exe
2013-09-01 14:20 - 2013-09-01 15:57 - 00000000 __SHD C:\AI_RecycleBin
2013-09-01 14:20 - 2013-09-01 14:20 - 00000000 ____D C:\Riot Games
2013-09-01 14:17 - 2013-09-04 22:38 - 00000000 ____D C:\Users\bob\AppData\Local\PMB Files
2013-09-01 14:17 - 2013-09-04 22:01 - 00000000 ____D C:\ProgramData\PMB Files
2013-09-01 14:17 - 2013-09-01 14:17 - 00000000 ____D C:\Users\bob\AppData\Roaming\Riot Games
2013-09-01 14:17 - 2013-09-01 14:17 - 00000000 ____D C:\Program Files (x86)\Pando Networks
2013-08-30 20:10 - 2013-08-30 22:48 - 00000000 ____D C:\Users\bob\Documents\Witcher 2
2013-08-30 20:10 - 2013-08-30 20:10 - 00000000 ____D C:\Users\bob\AppData\Local\The Witcher 2
2013-08-29 18:22 - 2013-08-29 18:22 - 417789012 _____ C:\Windows\MEMORY.DMP
2013-08-29 18:22 - 2013-08-29 18:22 - 00266288 _____ C:\Windows\Minidump\082913-25802-01.dmp
2013-08-29 18:22 - 2013-08-29 18:22 - 00000000 ____D C:\Windows\Minidump
2013-08-28 18:19 - 2013-08-28 18:19 - 00000000 ____D C:\ProgramData\AMD
2013-08-28 18:19 - 2013-08-28 18:19 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-08-28 18:09 - 2013-03-29 05:13 - 00222720 _____ C:\Windows\system32\clinfo.exe
2013-08-28 18:09 - 2013-03-29 05:13 - 00064000 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2013-08-28 18:09 - 2013-03-29 05:12 - 00056320 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2013-08-28 18:09 - 2013-03-29 05:09 - 00054784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2013-08-28 18:09 - 2013-03-29 05:09 - 00050176 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2013-08-28 18:09 - 2013-03-29 05:00 - 00076800 _____ (AMD) C:\Windows\system32\coinst_12.104.dll
2013-08-28 18:08 - 2013-02-01 03:14 - 00075600 _____ C:\Windows\system32\ativce02.dat
2013-08-28 17:52 - 2013-08-29 17:49 - 01592836 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-08-28 17:29 - 2013-08-28 17:29 - 00000000 ____D C:\ProgramData\Synaptics
2013-08-28 13:57 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-08-28 13:57 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-08-28 13:57 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-08-28 13:57 - 2012-08-23 16:07 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-08-28 13:57 - 2012-08-23 15:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-08-28 13:57 - 2012-08-23 15:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-08-28 13:57 - 2012-08-23 15:41 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-08-28 13:57 - 2012-08-23 15:40 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-08-28 13:57 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-08-28 13:57 - 2012-08-23 15:20 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-08-28 13:57 - 2012-08-23 15:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-08-28 13:57 - 2012-08-23 15:17 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-08-28 13:57 - 2012-08-23 15:06 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-08-28 13:57 - 2012-08-23 14:52 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-08-28 13:57 - 2012-08-23 13:20 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-08-28 13:57 - 2012-08-23 13:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-08-28 13:57 - 2012-08-23 13:14 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-08-28 13:57 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-08-28 13:57 - 2012-08-23 12:54 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-08-28 13:57 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-08-28 13:57 - 2012-08-23 12:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-08-28 13:57 - 2012-08-23 12:22 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-08-28 13:57 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-08-28 13:57 - 2012-08-23 10:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-08-28 13:57 - 2012-08-23 10:13 - 05773824 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-08-28 13:55 - 2013-08-28 13:57 - 00000000 ____D C:\Windows\system32\MRT
2013-08-28 13:55 - 2013-08-05 16:14 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-28 13:47 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-28 13:47 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-28 13:47 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-28 13:47 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-28 13:47 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-28 13:47 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-28 13:47 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-28 13:47 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-28 13:47 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-28 13:47 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-28 13:47 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-28 13:47 - 2012-08-24 20:13 - 00154480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-08-28 13:47 - 2012-08-24 20:09 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-08-28 13:47 - 2012-08-24 20:05 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-08-28 13:47 - 2012-08-24 20:03 - 01448448 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-08-28 13:47 - 2012-08-24 18:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-08-28 13:47 - 2012-08-24 18:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-08-28 13:47 - 2012-08-24 18:53 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-08-28 13:47 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-08-28 13:47 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-08-28 13:38 - 2013-03-22 09:39 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2013-08-28 13:38 - 2013-03-09 05:10 - 00080384 _____ C:\Windows\system32\igdde64.dll
2013-08-28 13:38 - 2013-03-09 05:10 - 00064512 _____ C:\Windows\SysWOW64\igdde32.dll
2013-08-28 13:38 - 2013-03-09 05:06 - 03511296 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2013-08-28 13:38 - 2013-03-09 05:06 - 03121152 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2013-08-28 13:38 - 2013-03-09 05:06 - 00963452 _____ C:\Windows\SysWOW64\igcodeckrng600.bin
2013-08-28 13:38 - 2013-03-09 05:06 - 00963452 _____ C:\Windows\system32\igcodeckrng600.bin
2013-08-28 13:38 - 2013-03-09 05:06 - 00575488 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2013-08-28 13:38 - 2013-03-09 05:06 - 00542720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2013-08-28 13:38 - 2013-03-09 05:06 - 00272928 _____ C:\Windows\SysWOW64\igvpkrng600.bin
2013-08-28 13:38 - 2013-03-09 05:06 - 00272928 _____ C:\Windows\system32\igvpkrng600.bin
2013-08-28 13:38 - 2013-03-09 05:06 - 00059104 _____ C:\Windows\system32\iglhxc64_dev.vp
2013-08-28 13:38 - 2013-03-09 05:06 - 00058796 _____ C:\Windows\system32\iglhxg64_dev.vp
2013-08-28 13:38 - 2013-03-09 05:06 - 00058109 _____ C:\Windows\system32\iglhxo64_dev.vp
2013-08-28 13:38 - 2011-01-27 18:24 - 00335872 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll
2013-08-28 13:38 - 2011-01-27 18:23 - 00385024 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll
2013-08-28 13:10 - 2013-08-28 13:10 - 00715038 _____ C:\Windows\unins000.exe
2013-08-28 13:10 - 2013-08-28 13:10 - 00001986 _____ C:\Windows\unins000.dat
2013-08-28 13:10 - 2011-12-07 19:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2013-08-28 13:10 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2013-08-28 13:08 - 2013-08-28 13:08 - 00000000 ____D C:\Users\bob\AppData\Roaming\NetBeans
2013-08-28 13:08 - 2013-08-28 13:08 - 00000000 ____D C:\Users\bob\AppData\Local\NetBeans
2013-08-28 13:07 - 2013-08-28 13:07 - 00000000 ____D C:\Users\bob\Documents\Let's Play
2013-08-28 13:05 - 2013-08-28 13:05 - 00000000 ____D C:\Users\bob\AppData\Local\Dxtory Software
2013-08-28 13:05 - 2013-08-28 13:05 - 00000000 ____D C:\Program Files (x86)\Dxtory Software
2013-08-28 13:05 - 2013-02-15 22:44 - 08300544 _____ (Dxtory Software) C:\Windows\SysWOW64\DxtoryCodec.dll
2013-08-28 13:05 - 2013-02-15 22:44 - 08043008 _____ (Dxtory Software) C:\Windows\system32\DxtoryCodec.dll
2013-08-28 12:46 - 2013-08-28 12:48 - 00000000 ____D C:\Program Files\NetBeans 7.3.1
2013-08-28 12:21 - 2013-08-28 12:21 - 01093032 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-08-28 12:21 - 2013-08-28 12:21 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-08-28 12:12 - 2013-08-28 13:06 - 00000000 ____D C:\Users\bob\.nbi
2013-08-27 15:45 - 2013-08-30 15:07 - 00000000 ____D C:\Users\bob\AppData\Roaming\Rogue Legacy
2013-08-27 15:45 - 2013-08-27 15:45 - 00000000 ____D C:\Users\bob\Documents\SavedGames
2013-08-27 15:44 - 2013-08-27 15:44 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-08-25 21:18 - 2013-08-25 21:18 - 00000000 ____D C:\Users\bob\Documents\Klei
2013-08-19 11:38 - 2013-09-02 14:36 - 00000324 _____ C:\Windows\Tasks\HPCeeScheduleForbob.job
2013-08-19 11:38 - 2013-09-02 14:20 - 00003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForbob
2013-08-19 11:38 - 2013-08-19 11:48 - 00000000 ____D C:\Program Files (x86)\Reise nach Nordland
2013-08-19 11:38 - 1998-10-21 18:43 - 00328704 _____ (InstallShield Software Corporation ) C:\Windows\IsUn0407.exe
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\Public\CyberLink
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\bob\Documents\CyberLink
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\bob\AppData\Roaming\CyberLink
2013-08-18 16:30 - 2013-08-18 16:33 - 00000000 ____D C:\Users\bob\Desktop\Camera
2013-08-18 16:25 - 2013-08-18 16:27 - 00000000 ____D C:\Users\bob\Desktop\Images
2013-08-18 16:24 - 2013-08-18 16:24 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-08-17 10:49 - 2013-07-25 05:54 - 17830400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-17 10:49 - 2013-07-25 05:37 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-17 10:49 - 2013-07-25 05:35 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-17 10:49 - 2013-07-25 05:31 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-17 10:49 - 2013-07-25 05:30 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-17 10:49 - 2013-07-25 05:29 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-17 10:49 - 2013-07-25 05:29 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-17 10:49 - 2013-07-25 05:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-17 10:49 - 2013-07-25 05:28 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-17 10:49 - 2013-07-25 05:28 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-17 10:49 - 2013-07-25 05:28 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-17 10:49 - 2013-07-25 05:28 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-17 10:49 - 2013-07-25 05:28 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-17 10:49 - 2013-07-25 05:27 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-17 10:49 - 2013-07-25 05:27 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-17 10:49 - 2013-07-25 05:26 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-17 10:49 - 2013-07-25 04:40 - 12334080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-17 10:49 - 2013-07-25 04:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-17 10:49 - 2013-07-25 04:30 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-17 10:49 - 2013-07-25 04:26 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-17 10:49 - 2013-07-25 04:26 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-17 10:49 - 2013-07-25 04:25 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-08-17 10:49 - 2013-07-25 04:24 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-08-17 10:49 - 2013-07-25 04:24 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-17 10:49 - 2013-07-25 04:23 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-17 10:49 - 2013-07-25 04:23 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-17 10:49 - 2013-07-25 04:23 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-17 10:49 - 2013-07-25 04:23 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-08-17 10:49 - 2013-07-25 04:23 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-08-17 10:49 - 2013-07-25 04:22 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-17 10:49 - 2013-07-25 04:22 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-17 10:49 - 2013-07-25 04:22 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-08-16 14:34 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-16 14:34 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-16 14:34 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-16 14:34 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-16 14:34 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-16 14:34 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-16 14:34 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-16 14:34 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-16 14:34 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-16 14:34 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-16 14:33 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-16 14:33 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-16 14:33 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-16 14:33 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-16 14:33 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-16 14:33 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-16 14:25 - 2013-09-05 15:10 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-16 14:25 - 2013-09-04 22:30 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-16 14:25 - 2013-08-16 14:25 - 00004100 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-08-16 14:25 - 2013-08-16 14:25 - 00003848 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-08-12 21:05 - 2013-08-12 21:05 - 00032535 _____ C:\ComboFix.txt
2013-08-12 20:56 - 2013-08-12 21:05 - 00000000 ____D C:\Qoobox
2013-08-12 20:56 - 2013-08-12 21:04 - 00000000 ____D C:\Windows\erdnt
2013-08-12 20:56 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-08-12 20:56 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-08-12 20:56 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-08-12 20:56 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-08-12 12:18 - 2013-08-26 20:29 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-08-09 13:38 - 2013-08-09 13:38 - 00000000 ____D C:\Users\bob\AppData\Local\Hewlett-Packard_Developme
2013-08-09 13:29 - 2013-08-16 14:25 - 00000000 ____D C:\Program Files (x86)\Google
==================== One Month Modified Files and Folders =======
2013-09-05 15:16 - 2013-09-01 18:52 - 00000000 ____D C:\Users\bob\AppData\Roaming\Skype
2013-09-05 15:15 - 2013-09-02 08:05 - 00000000 ____D C:\Users\bob\Desktop\virus bekämpfungs tools
2013-09-05 15:15 - 2013-07-13 17:34 - 01453633 _____ C:\Windows\WindowsUpdate.log
2013-09-05 15:14 - 2013-09-05 15:14 - 01947160 _____ (Farbar) C:\Users\bob\Desktop\FRST64.exe.kvietxr.partial
2013-09-05 15:12 - 2013-09-05 15:12 - 96044050 _____ C:\Windows\SysWOW64\鷗厷蹬L
2013-09-05 15:11 - 2013-07-31 18:10 - 00000000 ____D C:\Program Files (x86)\Steam
2013-09-05 15:10 - 2013-09-03 23:51 - 00000000 ____D C:\Users\bob\AppData\Local\LogMeIn Hamachi
2013-09-05 15:10 - 2013-08-16 14:25 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-09-05 15:10 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-05 15:10 - 2009-07-14 06:51 - 00052474 _____ C:\Windows\setupact.log
2013-09-04 22:38 - 2013-09-01 14:17 - 00000000 ____D C:\Users\bob\AppData\Local\PMB Files
2013-09-04 22:38 - 2013-07-31 18:56 - 00000000 ____D C:\Users\bob\AppData\Roaming\TS3Client
2013-09-04 22:30 - 2013-08-16 14:25 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-09-04 22:01 - 2013-09-01 14:17 - 00000000 ____D C:\ProgramData\PMB Files
2013-09-04 21:53 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-04 21:53 - 2009-07-14 06:45 - 00032064 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-04 21:43 - 2013-08-01 11:23 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-09-04 18:39 - 2013-07-13 19:17 - 00000000 ___RD C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-09-04 17:28 - 2013-07-13 19:17 - 00003914 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{0658ACE6-D92E-420F-86AC-FEAE60DAFA34}
2013-09-04 13:27 - 2013-08-01 20:49 - 00081112 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-09-04 13:27 - 2013-07-31 19:34 - 00132088 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-09-04 13:27 - 2013-07-31 19:34 - 00105344 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-09-03 23:57 - 2013-09-03 23:54 - 00000000 ____D C:\Users\bob\Downloads\Crack
2013-09-03 23:56 - 2013-09-03 23:56 - 00001073 _____ C:\Users\Public\Desktop\7 Days to Die - Alpha.lnk
2013-09-03 23:56 - 2013-09-03 23:56 - 00000000 ___HD C:\Windows\PIF
2013-09-03 23:56 - 2013-09-03 23:55 - 00000000 ____D C:\Program Files (x86)\7DaysToDie-Alpha
2013-09-03 23:53 - 2013-09-03 23:53 - 00000000 ____D C:\Users\bob\Downloads\7 Days To Die - Alpha1
2013-09-03 23:52 - 2013-09-03 23:52 - 01376768 _____ C:\Users\bob\Downloads\7z920-x64.msi
2013-09-03 23:52 - 2013-09-03 23:52 - 00000000 ____D C:\Program Files\7-Zip
2013-09-03 23:51 - 2013-09-03 23:51 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2013-09-03 23:50 - 2013-09-03 23:50 - 04292608 _____ C:\Users\bob\Downloads\hamachi_2.1.0.362.msi
2013-09-03 23:50 - 2013-09-03 23:46 - 209715200 _____ C:\Users\bob\Downloads\7 Days To Die - Alpha1.part1.rar
2013-09-03 23:49 - 2013-09-03 23:46 - 105230808 _____ C:\Users\bob\Downloads\7 Days To Die - Alpha1.part2.rar
2013-09-03 23:25 - 2013-09-03 23:25 - 00000000 ____D C:\Users\bob\AppData\Local\Fallout3
2013-09-03 23:24 - 2011-03-31 15:53 - 00186487 _____ C:\Windows\DirectX.log
2013-09-03 23:23 - 2013-09-02 22:03 - 00000000 ____D C:\Users\bob\Documents\My Games
2013-09-03 12:48 - 2013-09-02 22:03 - 00000000 ____D C:\Users\bob\AppData\Local\My Games
2013-09-03 12:12 - 2013-07-31 18:27 - 00000000 ____D C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-09-02 18:01 - 2013-09-02 18:01 - 00000000 ____D C:\Users\bob\AppData\Local\Mozilla
2013-09-02 18:01 - 2013-09-02 18:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-09-02 18:01 - 2013-07-31 19:35 - 00000000 ____D C:\Users\bob\AppData\Roaming\Mozilla
2013-09-02 18:00 - 2013-09-02 18:00 - 00000000 ____D C:\ProgramData\Mozilla
2013-09-02 18:00 - 2013-09-02 18:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-09-02 16:13 - 2013-07-13 19:17 - 00001409 _____ C:\Users\bob\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-09-02 14:43 - 2013-09-02 14:43 - 00000000 ____D C:\HP_TOOLS_mountHPSF
2013-09-02 14:36 - 2013-08-19 11:38 - 00000324 _____ C:\Windows\Tasks\HPCeeScheduleForbob.job
2013-09-02 14:32 - 2013-09-02 14:32 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-09-02 14:32 - 2013-09-01 18:52 - 00000000 ____D C:\ProgramData\Skype
2013-09-02 14:26 - 2013-09-02 14:26 - 00000000 ____D C:\Users\bob\AppData\Local\LogiShrd
2013-09-02 14:23 - 2013-09-02 14:23 - 00000000 ____D C:\Users\bob\AppData\Roaming\Leadertech
2013-09-02 14:22 - 2013-09-02 14:22 - 00003563 _____ C:\Windows\LDPINST.LOG
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_LMouFilt_01005.Wdf
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_LHidFilt_01005.Wdf
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Users\Public\Documents\LogiShrd
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Program Files\Logitech
2013-09-02 14:22 - 2013-09-02 14:22 - 00000000 ____D C:\Program Files\Common Files\Logishrd
2013-09-02 14:22 - 2013-09-02 14:21 - 01121848 _____ C:\Windows\SetPointII_000.log
2013-09-02 14:22 - 2013-09-02 14:21 - 00000000 ____D C:\ProgramData\LogiShrd
2013-09-02 14:21 - 2013-09-02 14:21 - 00000000 ____D C:\Users\bob\AppData\Local\Downloaded Installations
2013-09-02 14:20 - 2013-08-19 11:38 - 00003174 _____ C:\Windows\System32\Tasks\HPCeeScheduleForbob
2013-09-02 09:45 - 2013-07-13 19:17 - 00000000 ____D C:\Users\bob\AppData\Roaming\hpqLog
2013-09-01 18:23 - 2013-09-01 18:23 - 00000000 ____D C:\Users\bob\AppData\Roaming\LolClient
2013-09-01 17:24 - 2013-09-01 16:02 - 00000000 ____D C:\Users\bob\Downloads\Direwolf20
2013-09-01 16:07 - 2013-09-01 16:07 - 00000000 ____D C:\Users\bob\AppData\Roaming\.minecraft
2013-09-01 16:07 - 2013-09-01 16:01 - 00000000 ____D C:\Users\bob\AppData\Roaming\ftblauncher
2013-09-01 16:00 - 2013-09-01 16:00 - 00512825 _____ () C:\Users\bob\Desktop\FTB_Launcher.exe
2013-09-01 15:57 - 2013-09-01 15:57 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-09-01 15:57 - 2013-09-01 14:20 - 00000000 __SHD C:\AI_RecycleBin
2013-09-01 15:55 - 2013-09-01 15:55 - 00000000 ____D C:\Users\bob\AppData\Local\Evernote
2013-09-01 15:50 - 2013-07-13 17:46 - 00000000 ____D C:\ProgramData\Norton
2013-09-01 15:50 - 2010-11-21 05:47 - 00433662 _____ C:\Windows\PFRO.log
2013-09-01 15:35 - 2013-09-01 15:35 - 00000000 ____D C:\Users\bob\unifl_registry_backup
2013-09-01 15:35 - 2013-07-13 19:13 - 00000000 ____D C:\Users\bob
2013-09-01 15:31 - 2013-09-01 15:31 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-09-01 15:29 - 2013-09-01 15:29 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-09-01 15:28 - 2013-09-01 15:25 - 00000000 ____D C:\Program Files\ATI Technologies
2013-09-01 15:26 - 2013-09-01 15:26 - 00000000 ____D C:\Program Files\ATI
2013-09-01 15:11 - 2013-09-01 14:49 - 00000000 ____D C:\Program Files (x86)\Driver Fusion
2013-09-01 15:11 - 2013-07-13 19:41 - 00000000 ____D C:\Users\bob\AppData\Local\CrashDumps
2013-09-01 14:56 - 2013-07-13 19:38 - 00000000 ____D C:\Users\bob\AppData\Roaming\ATI
2013-09-01 14:56 - 2013-07-13 19:38 - 00000000 ____D C:\Users\bob\AppData\Local\ATI
2013-09-01 14:56 - 2013-07-13 17:31 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2013-09-01 14:50 - 2013-09-01 14:50 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-09-01 14:49 - 2013-09-01 14:49 - 00000000 ____D C:\Users\bob\AppData\Roaming\OpenCandy
2013-09-01 14:39 - 2013-09-01 14:39 - 339266608 _____ (leshcat ) C:\Users\bob\Desktop\Catalyst_13.4_WHQL_UnifL_v2.exe
2013-09-01 14:20 - 2013-09-01 14:20 - 00000000 ____D C:\Riot Games
2013-09-01 14:17 - 2013-09-01 14:17 - 00000000 ____D C:\Users\bob\AppData\Roaming\Riot Games
2013-09-01 14:17 - 2013-09-01 14:17 - 00000000 ____D C:\Program Files (x86)\Pando Networks
2013-08-30 22:48 - 2013-08-30 20:10 - 00000000 ____D C:\Users\bob\Documents\Witcher 2
2013-08-30 20:10 - 2013-08-30 20:10 - 00000000 ____D C:\Users\bob\AppData\Local\The Witcher 2
2013-08-30 15:07 - 2013-08-27 15:45 - 00000000 ____D C:\Users\bob\AppData\Roaming\Rogue Legacy
2013-08-29 18:22 - 2013-08-29 18:22 - 417789012 _____ C:\Windows\MEMORY.DMP
2013-08-29 18:22 - 2013-08-29 18:22 - 00266288 _____ C:\Windows\Minidump\082913-25802-01.dmp
2013-08-29 18:22 - 2013-08-29 18:22 - 00000000 ____D C:\Windows\Minidump
2013-08-29 17:49 - 2013-08-28 17:52 - 01592836 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-08-29 17:49 - 2011-04-01 01:25 - 00699162 _____ C:\Windows\system32\perfh007.dat
2013-08-29 17:49 - 2011-04-01 01:25 - 00149270 _____ C:\Windows\system32\perfc007.dat
2013-08-29 17:49 - 2009-07-14 07:13 - 01592836 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-28 20:13 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-28 18:19 - 2013-08-28 18:19 - 00000000 ____D C:\ProgramData\AMD
2013-08-28 18:19 - 2013-08-28 18:19 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-08-28 18:06 - 2013-07-13 17:29 - 00000000 ____D C:\Program Files (x86)\Intel
2013-08-28 17:29 - 2013-08-28 17:29 - 00000000 ____D C:\ProgramData\Synaptics
2013-08-28 17:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-08-28 13:57 - 2013-08-28 13:55 - 00000000 ____D C:\Windows\system32\MRT
2013-08-28 13:10 - 2013-08-28 13:10 - 00715038 _____ C:\Windows\unins000.exe
2013-08-28 13:10 - 2013-08-28 13:10 - 00001986 _____ C:\Windows\unins000.dat
2013-08-28 13:08 - 2013-08-28 13:08 - 00000000 ____D C:\Users\bob\AppData\Roaming\NetBeans
2013-08-28 13:08 - 2013-08-28 13:08 - 00000000 ____D C:\Users\bob\AppData\Local\NetBeans
2013-08-28 13:07 - 2013-08-28 13:07 - 00000000 ____D C:\Users\bob\Documents\Let's Play
2013-08-28 13:06 - 2013-08-28 12:12 - 00000000 ____D C:\Users\bob\.nbi
2013-08-28 13:05 - 2013-08-28 13:05 - 00000000 ____D C:\Users\bob\AppData\Local\Dxtory Software
2013-08-28 13:05 - 2013-08-28 13:05 - 00000000 ____D C:\Program Files (x86)\Dxtory Software
2013-08-28 12:48 - 2013-08-28 12:46 - 00000000 ____D C:\Program Files\NetBeans 7.3.1
2013-08-28 12:21 - 2013-08-28 12:21 - 01093032 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-08-28 12:21 - 2013-08-28 12:21 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-08-28 12:21 - 2011-03-31 16:01 - 00972712 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-08-28 12:21 - 2011-03-31 16:01 - 00312232 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-08-28 12:21 - 2011-03-31 16:01 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-08-28 12:21 - 2011-03-31 16:01 - 00188840 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-08-28 12:21 - 2011-03-31 16:01 - 00000000 ____D C:\Program Files\Java
2013-08-27 15:45 - 2013-08-27 15:45 - 00000000 ____D C:\Users\bob\Documents\SavedGames
2013-08-27 15:44 - 2013-08-27 15:44 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-08-26 20:29 - 2013-08-12 12:18 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-08-25 21:18 - 2013-08-25 21:18 - 00000000 ____D C:\Users\bob\Documents\Klei
2013-08-19 17:04 - 2013-07-13 19:14 - 00000000 ____D C:\Users\bob\AppData\Local\VirtualStore
2013-08-19 11:48 - 2013-08-19 11:38 - 00000000 ____D C:\Program Files (x86)\Reise nach Nordland
2013-08-19 11:38 - 2013-07-13 19:15 - 00000000 ____D C:\Users\bob\AppData\Roaming\Hewlett-Packard
2013-08-19 11:38 - 2013-07-13 19:15 - 00000000 ____D C:\Users\bob\AppData\Local\Hewlett-Packard
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\Public\CyberLink
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\bob\Documents\CyberLink
2013-08-19 11:37 - 2013-08-19 11:37 - 00000000 ____D C:\Users\bob\AppData\Roaming\CyberLink
2013-08-19 11:37 - 2013-07-13 17:49 - 00000000 ____D C:\ProgramData\CyberLink
2013-08-18 20:12 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2013-08-18 16:33 - 2013-08-18 16:30 - 00000000 ____D C:\Users\bob\Desktop\Camera
2013-08-18 16:27 - 2013-08-18 16:25 - 00000000 ____D C:\Users\bob\Desktop\Images
2013-08-18 16:24 - 2013-08-18 16:24 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-08-17 20:15 - 2013-07-31 18:35 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-08-17 13:36 - 2013-09-03 23:54 - 00000123 _____ C:\Users\bob\Downloads\Readme.txt
2013-08-17 12:37 - 2013-09-03 23:54 - 314134331 _____ (The Fun Pimps LLC ) C:\Users\bob\Downloads\7DTD_Alpha1_win32.exe
2013-08-16 14:25 - 2013-08-16 14:25 - 00004100 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-08-16 14:25 - 2013-08-16 14:25 - 00003848 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-08-16 14:25 - 2013-08-09 13:29 - 00000000 ____D C:\Program Files (x86)\Google
2013-08-16 14:25 - 2013-07-31 17:58 - 00000000 ____D C:\Users\bob\AppData\Local\Deployment
2013-08-16 14:24 - 2013-07-31 17:58 - 00000000 ____D C:\Users\bob\AppData\Local\Apps\2.0
2013-08-12 21:06 - 2013-07-13 19:16 - 00003700 _____ C:\Windows\System32\Tasks\Registration
2013-08-12 21:05 - 2013-08-12 21:05 - 00032535 _____ C:\ComboFix.txt
2013-08-12 21:05 - 2013-08-12 20:56 - 00000000 ____D C:\Qoobox
2013-08-12 21:04 - 2013-08-12 20:56 - 00000000 ____D C:\Windows\erdnt
2013-08-12 21:03 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2013-08-09 13:38 - 2013-08-09 13:38 - 00000000 ____D C:\Users\bob\AppData\Local\Hewlett-Packard_Developme
2013-08-09 13:23 - 2009-07-14 07:08 - 00014230 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-09 13:20 - 2013-07-13 17:47 - 00000000 ____D C:\Program Files (x86)\HP SimplePass 2011
Files to move or delete:
====================
C:\Users\bob\AppData\Local\Temp\SkypeSetup.exe
C:\Users\bob\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\bob\AppData\Local\Temp\is-T3SL8.tmp\ChatNoir_Info_Final.exe
C:\Users\bob\AppData\Local\Temp\is-T3SL8.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-T3SL8.tmp\sendEmail.exe
C:\Users\bob\AppData\Local\Temp\is-T3SL8.tmp\wakeup_brightness.exe
C:\Users\bob\AppData\Local\Temp\is-T3SL8.tmp\_isetup\_shfoldr.dll
C:\Users\bob\AppData\Local\Temp\is-OPBCN.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-HN9G5.tmp\ChatNoir_Info_Final.exe
C:\Users\bob\AppData\Local\Temp\is-HN9G5.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-HN9G5.tmp\sendEmail.exe
C:\Users\bob\AppData\Local\Temp\is-HN9G5.tmp\wakeup_brightness.exe
C:\Users\bob\AppData\Local\Temp\is-HN9G5.tmp\_isetup\_shfoldr.dll
C:\Users\bob\AppData\Local\Temp\is-FQ1PN.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-CTLUD.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-CJ4MU.tmp\ChatNoir_Info_Final.exe
C:\Users\bob\AppData\Local\Temp\is-CJ4MU.tmp\descctrl.dll
C:\Users\bob\AppData\Local\Temp\is-CJ4MU.tmp\sendEmail.exe
C:\Users\bob\AppData\Local\Temp\is-CJ4MU.tmp\wakeup_brightness.exe
C:\Users\bob\AppData\Local\Temp\is-CJ4MU.tmp\_isetup\_shfoldr.dll
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\aicustact.dll
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\aipackagechainer.exe
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\lzmaextractor.dll
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\Prereq.dll
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\ResourceCleaner.dll
C:\Users\bob\AppData\Local\Temp\AI_EXTUI_BIN_7940\TxtUpdater.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-09-01 00:45
==================== End Of Log ============================
--- --- --- |
|
06.09.2013, 08:07
| #59 | |
| /// the machine /// TB-Ausbilder | Google chrom offnet sich unkontrolliertZitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
06.09.2013, 20:50
| #60 |
| | Google chrom offnet sich unkontrolliert äm mir ein alfa spiel angeguckt 7 days to die ^^ wollte nur wissen ob das kaufenswert ist den den link hab ich aber von freunden und der ist save |
|
| Themen zu Google chrom offnet sich unkontrolliert |
| .exe, .html, dauernd, delete, diverse, gemeldet, google, google chrome webcake, hilfe, kontrolliert, nichts, programme, unkontrolliert, vermutlich, öffnet |
Linear-Darstellung
