|
Log-Analyse und Auswertung: Winows 7: Avast meldet ständig "Bösartige Website blockiert"Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
09.10.2013, 22:29 | #1 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" Hallo zusammen Avast meldet bei mir immer mal zwischendurch, dass ein "Bösartige Website" blockiert wurde (manchmal auch ohne dass ein Browser läuft). Als Objekt wird hxxp://wpad.net/wpad.dat gemeldet, Infektion: Mal und der Prozess ist immer ein anderes Programm, zum Beispiel Firefox.exe, Skype.exe... Ich habe mit Avast einen Schnellscan und einen vollständigen Scan gemacht, es wurde aber überhaupt nichts infiziertes gefunden. Microsoft Malicious Software Removal Tool hat auf die Schnelle auch nichts gefunden, also habe ich beschlossen C: zu formatieren und ein neues Windows zu installieren. Zwei weitere Partitionen habe ich sein lassen (vielleicht keine so gute Idee). Nach der Neuinstallation und ca. einer Stunde problemlosen Betriebs war ich überzeugt, das Problem los zu sein, und hängte eine Festplatte sowie mein NAS wieder an, um alle meine Programme wieder zu installieren. Ca. eine Stunde später war das Problem wieder da(wenn auch viel weniger oft, stundenlang passiert nichts), ich bin aber nicht sicher, ob es jemals weg war, oder ob da noch was auf meinen externen Speichern geblieben ist. Das ganze ist schwierig zu lokalisieren, da keine Antivirensoftware etwas aufspürt. Ich hoffe ihr könnt etwas Licht ins Dunkel bringen Meine Logs sind leider zu lang, daher muss ich sie als Archiv anhängen. |
10.10.2013, 07:23 | #2 |
/// the machine /// TB-Ausbilder | Winows 7: Avast meldet ständig "Bösartige Website blockiert" hi,
__________________Logs bitte immer in Codetags in den Thread posten, zur Not teilen.
__________________ |
10.10.2013, 19:33 | #3 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" Hi Schrauber
__________________Entschuldige, das Forum hat mich gebeten die Logfiles als Archiv anzuhängen weil sie zu lang sind Sie sind natürlich nach wie vor zu lang, selbst einzeln, also kann ich sie nicht als Codetags in den Thread posten. Was meinst du mit teilen? |
11.10.2013, 08:34 | #4 |
/// the machine /// TB-Ausbilder | Winows 7: Avast meldet ständig "Bösartige Website blockiert" Das Logfile in Stücke hacken und posten, benutze mehrere Posts wenn nötig Ich kann keine Anhänge auf Arbeit öffnen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
12.10.2013, 09:13 | #5 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" FRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-10-2013 Ran by Angela *** at 2013-10-09 22:20:25 Running from C:\Users\Angela ***\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C} AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117) ASUS Power4Gear Hybrid (Version: 1.1.42) Atheros Client Installation Program (x32 Version: 7.0) ATK Package (x32 Version: 1.0.0007) avast! Free Antivirus (x32 Version: 8.0.1497.0) Bluetooth Win7 Suite (64) (Version: 7.02.000.55) Fresco Logic USB3.0 Host Controller (Version: 3.0.116.3) Google Chrome (x32 Version: 30.0.1599.69) Google Toolbar for Internet Explorer (x32 Version: 1.0.0) Google Toolbar for Internet Explorer (x32 Version: 7.5.4601.54) Google Update Helper (x32 Version: 1.3.21.153) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Mozilla Firefox 24.0 (x86 de) (x32 Version: 24.0) Mozilla Maintenance Service (x32 Version: 24.0) NVIDIA 3D Vision Treiber 285.62 (Version: 285.62) NVIDIA Grafiktreiber 285.62 (Version: 285.62) NVIDIA HD-Audiotreiber 1.2.24.0 (Version: 1.2.24.0) NVIDIA Install Application (Version: 2.1002.46.235) NVIDIA PhysX (x32 Version: 9.11.0621) NVIDIA PhysX-Systemsoftware 9.11.0621 (Version: 9.11.0621) NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.8562) NVIDIA Systemsteuerung 285.62 (Version: 285.62) NVIDIA Update 1.5.20 (Version: 1.5.20) NVIDIA Update Components (Version: 1.5.20) Realtek Ethernet Controller Driver (x32 Version: 7.37.1229.2010) Realtek High Definition Audio Driver (x32 Version: 6.0.1.6273) Realtek USB 2.0 Reader Driver (x32 Version: 6.1.7600.10001) Skype™ 6.9 (x32 Version: 6.9.106) Überwachungstool für die Intel® Turbo-Boost-Technik (Version: 1.0.400.4) Unity Web Player (HKCU Version: ) Wireless Console 3 (x32 Version: 3.0.19) ==================== Restore Points ========================= 06-10-2013 14:48:00 Windows Update 06-10-2013 14:51:47 Windows Update 06-10-2013 14:58:43 avast! Free Antivirus Setup 06-10-2013 15:34:08 Installed Wireless Console 3 06-10-2013 15:41:12 Installed Bluetooth Win7 Suite (64). 06-10-2013 15:45:05 Installiert Realtek USB 2.0 Reader Driver 06-10-2013 15:49:30 Installed Fresco Logic USB3.0 Host Controller 06-10-2013 15:52:50 Installed ASUS Power4Gear Hybrid 06-10-2013 16:07:41 Installed Intel(R) Turbo Boost Technology Monitor. 06-10-2013 16:33:57 Windows Update 06-10-2013 17:14:11 Gerätetreiber-Paketinstallation: Disc-Soft Systemgeräte 06-10-2013 17:18:53 Microsoft Visual Studio Ultimate 2012 06-10-2013 17:37:20 DirectX wurde installiert 06-10-2013 18:52:14 Wiederherstellungsvorgang 07-10-2013 21:41:23 Windows Update ==================== Hosts content: ========================== 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {0FF7A015-5E1D-42ED-8008-0412B08D4154} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-06] (Google Inc.) Task: {3802A52F-A06F-4AAE-AB58-C8A388B13CD2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated) Task: {72456033-25E6-4E91-A108-8F9F66CD96F2} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2010-11-10] (ASUS) Task: {8104E74F-9B23-4372-9282-25B791259218} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-06] (Google Inc.) Task: {B86BF026-7840-4C71-AC8D-E84C190E4F3D} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17] (ASUS) Task: {B8B6DDE5-5B87-48D4-BC96-5984A62A561C} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2013-08-30] (AVAST Software) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2010-07-14 16:11 - 2010-07-14 16:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll 2013-10-09 18:46 - 2013-10-09 14:33 - 02105344 _____ () C:\Program Files\AVAST Software\Avast\defs\13100900\algo.dll 2013-10-06 17:10 - 2013-09-11 04:26 - 03279768 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll 2011-10-15 00:54 - 2011-10-15 00:54 - 00265536 _____ () C:\Program Files (x86)\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll 2013-10-09 18:55 - 2013-10-09 18:55 - 16233864 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ==================== Safe Mode (whitelisted) =================== ==================== Faulty Device Manager Devices ============= Name: PCI-Kommunikationscontroller (einfach) Description: PCI-Kommunikationscontroller (einfach) Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (10/08/2013 07:11:52 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: daemonu.exe, Version: 1.5.20.0, Zeitstempel: 0x4e991cc9 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x73756a64 ID des fehlerhaften Prozesses: 0x8f0 Startzeit der fehlerhaften Anwendung: 0xdaemonu.exe0 Pfad der fehlerhaften Anwendung: daemonu.exe1 Pfad des fehlerhaften Moduls: daemonu.exe2 Berichtskennung: daemonu.exe3 Error: (10/08/2013 07:11:50 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Ath_CoexAgent.exe, Version: 8.0.0.183, Zeitstempel: 0x4d1a1ad2 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x73756a64 ID des fehlerhaften Prozesses: 0x7d4 Startzeit der fehlerhaften Anwendung: 0xAth_CoexAgent.exe0 Pfad der fehlerhaften Anwendung: Ath_CoexAgent.exe1 Pfad des fehlerhaften Moduls: Ath_CoexAgent.exe2 Berichtskennung: Ath_CoexAgent.exe3 Error: (10/08/2013 07:11:47 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: GFNEXSrv.exe, Version: 1.0.10.1, Zeitstempel: 0x4b26f6d1 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x73756a64 ID des fehlerhaften Prozesses: 0x66c Startzeit der fehlerhaften Anwendung: 0xGFNEXSrv.exe0 Pfad der fehlerhaften Anwendung: GFNEXSrv.exe1 Pfad des fehlerhaften Moduls: GFNEXSrv.exe2 Berichtskennung: GFNEXSrv.exe3 Error: (10/08/2013 07:11:43 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: ASLDRSrv.exe, Version: 1.0.51.1, Zeitstempel: 0x4a361489 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x73756a64 ID des fehlerhaften Prozesses: 0x650 Startzeit der fehlerhaften Anwendung: 0xASLDRSrv.exe0 Pfad der fehlerhaften Anwendung: ASLDRSrv.exe1 Pfad des fehlerhaften Moduls: ASLDRSrv.exe2 Berichtskennung: ASLDRSrv.exe3 Error: (10/08/2013 07:11:43 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: nvSCPAPISvr.exe, Version: 7.17.12.8562, Zeitstempel: 0x4e991ef0 Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000 Ausnahmecode: 0xc0000005 Fehleroffset: 0x73756a64 ID des fehlerhaften Prozesses: 0x88 Startzeit der fehlerhaften Anwendung: 0xnvSCPAPISvr.exe0 Pfad der fehlerhaften Anwendung: nvSCPAPISvr.exe1 Pfad des fehlerhaften Moduls: nvSCPAPISvr.exe2 Berichtskennung: nvSCPAPISvr.exe3 Error: (10/06/2013 09:20:56 PM) (Source: MsiInstaller) (User: STEALTHBOMBER) Description: Produkt: Avira SearchFree Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: Mozilla Firefox Error: (10/06/2013 08:15:06 PM) (Source: .NET Runtime Optimization Service) (User: ) Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: C:\Program Files (x86)\Microsoft SDKs\Windows\v7.0A\bin\x64\aspnet_merge.exe . Error code = 0x800700d8 Error: (10/06/2013 05:01:28 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1". Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (10/06/2013 05:01:28 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1". Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (10/06/2013 04:59:43 PM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1". Die abhängige Assemblierung "Microsoft.VC90.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". System errors: ============= Error: (10/08/2013 07:14:41 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet: %%16405 Error: (10/08/2013 07:11:55 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "avast! Antivirus" wurde aufgrund folgenden Fehlers nicht gestartet: %%1069 Error: (10/08/2013 07:11:55 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "avast! Antivirus" konnte sich nicht als "NT AUTHORITY\SYSTEM" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden: %%50 Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC). Error: (10/08/2013 07:11:52 PM) (Source: Service Control Manager) (User: ) Description: Dienst "NVIDIA Update Service Daemon" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (10/08/2013 07:11:52 PM) (Source: Service Control Manager) (User: ) Description: Dienst "Atheros Bt&Wlan Coex Agent" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (10/08/2013 07:11:50 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "avast! Antivirus" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts. Error: (10/08/2013 07:11:47 PM) (Source: Service Control Manager) (User: ) Description: Dienst "NVIDIA Stereoscopic 3D Driver Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (10/08/2013 07:11:47 PM) (Source: Service Control Manager) (User: ) Description: Dienst "ATKGFNEX Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (10/08/2013 07:11:47 PM) (Source: Service Control Manager) (User: ) Description: Dienst "ASLDR Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert. Error: (10/08/2013 07:10:29 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts. Microsoft Office Sessions: ========================= Error: (10/08/2013 07:11:52 PM) (Source: Application Error)(User: ) Description: daemonu.exe1.5.20.04e991cc9unknown0.0.0.000000000c000000573756a648f001cec4496aa981c5C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exeunknownb9366e37-303c-11e3-923e-e0b9a52e18cd Error: (10/08/2013 07:11:50 PM) (Source: Application Error)(User: ) Description: Ath_CoexAgent.exe8.0.0.1834d1a1ad2unknown0.0.0.000000000c000000573756a647d401cec44903d4efcfC:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exeunknownb7dae54f-303c-11e3-923e-e0b9a52e18cd Error: (10/08/2013 07:11:47 PM) (Source: Application Error)(User: ) Description: GFNEXSrv.exe1.0.10.14b26f6d1unknown0.0.0.000000000c000000573756a6466c01cec44901b63610C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exeunknownb620255c-303c-11e3-923e-e0b9a52e18cd Error: (10/08/2013 07:11:43 PM) (Source: Application Error)(User: ) Description: ASLDRSrv.exe1.0.51.14a361489unknown0.0.0.000000000c000000573756a6465001cec44901b3d4b0C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exeunknownb4016b9d-303c-11e3-923e-e0b9a52e18cd Error: (10/08/2013 07:11:43 PM) (Source: Application Error)(User: ) Description: nvSCPAPISvr.exe7.17.12.85624e991ef0unknown0.0.0.000000000c000000573756a648801cec448fb667492C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeunknownb328ce64-303c-11e3-923e-e0b9a52e18cd Error: (10/06/2013 09:20:56 PM) (Source: MsiInstaller)(User: STEALTHBOMBER) Description: Produkt: Avira SearchFree Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: Mozilla Firefox(NULL)(NULL)(NULL)(NULL)(NULL) Error: (10/06/2013 08:15:06 PM) (Source: .NET Runtime Optimization Service)(User: ) Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to compile: C:\Program Files (x86)\Microsoft SDKs\Windows\v7.0A\bin\x64\aspnet_merge.exe . Error code = 0x800700d8 C:\Program Files (x86)\Microsoft SDKs\Windows\v7.0A\bin\x64\aspnet_merge.exe Error: (10/06/2013 05:01:28 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\AVAST Software\Avast\AvastUI.exe Error: (10/06/2013 05:01:28 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\AVAST Software\Avast\AvastUI.exe Error: (10/06/2013 04:59:43 PM) (Source: SideBySide)(User: ) Description: Microsoft.VC90.ATL,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files\AVAST Software\Avast\asOutExt.dll ==================== Memory info =========================== Percentage of memory in use: 26% Total physical RAM: 8169.16 MB Available physical RAM: 5986.61 MB Total Pagefile: 16336.46 MB Available Pagefile: 13979.84 MB Total Virtual: 8192 MB Available Virtual: 8191.8 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:137.83 GB) (Free:93.38 GB) NTFS Drive d: (DATA) (Fixed) (Total:202.52 GB) (Free:0.33 GB) NTFS Drive e: (GAMES) (Fixed) (Total:125.31 GB) (Free:20.58 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: E0C5913D) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=138 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=328 GB) - (Type=OF Extended) ==================== End Of Log ============================ |
12.10.2013, 09:16 | #6 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" FRST.txt (Teil1) Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013 Ran by Angela ********* (administrator) on STEALTHBOMBER on 09-10-2013 22:19:45 Running from C:\Users\Angela *********\Desktop Windows 7 Professional (X64) OS Language: German Standard Internet Explorer Version 9 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (ASUS) C:\Program Files\P4G\BatteryLife.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (Windows (R) Win 7 DDK provider) C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe (Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_117.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11725928 2010-12-23] (Realtek Semiconductor) HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [615584 2011-01-06] (Atheros Communications) HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2011-01-06] (Atheros Commnucations) HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4156 2010-04-16] () HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20474528 2013-10-02] (Skype Technologies S.A.) HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS) HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software) HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-23] () HKLM-x32\...\Run: [FLxHCIm] - C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe [40448 2011-02-24] (Windows (R) Win 7 DDK provider) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://ch.msn.com/default.aspx?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x10E16758A3C2CE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-ch StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.192.1 FireFox: ======== FF ProfilePath: C:\Users\Angela *********\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll () FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll () FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Angela *********\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Youtube MP3 Podcaster - C:\Users\Angela *********\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\youtubemp3podcaster@jeremy.d.gregorio.com FF Extension: WOT - C:\Users\Angela *********\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} FF Extension: DownloadHelper - C:\Users\Angela *********\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} FF Extension: No Name - C:\Users\Angela *********\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF Chrome: ======= CHR HomePage: hxxp://www.google.com CHR RestoreOnStartup: "hxxp://www.google.com/" CHR Extension: (Google Docs) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Chrome In-App Payments service) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0 CHR Extension: (Gmail) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 ==================== Services (Whitelisted) ================= R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-01-06] (Atheros) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software) ==================== Drivers (Whitelisted) ==================== R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] () R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [81920 2011-02-24] (Fresco Logic) R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-16] () ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-10-09 22:19 - 2013-10-09 22:19 - 00000000 ____D C:\FRST 2013-10-09 22:18 - 2013-10-09 22:18 - 01954124 _____ (Farbar) C:\Users\Angela *********\Desktop\FRST64.exe 2013-10-09 22:17 - 2013-10-09 22:17 - 00000500 _____ C:\Users\Angela *********\Desktop\defogger_disable.log 2013-10-09 22:17 - 2013-10-09 22:17 - 00000000 _____ C:\Users\Angela *********\defogger_reenable 2013-10-09 22:16 - 2013-10-09 22:13 - 00050477 _____ C:\Users\Angela *********\Desktop\Defogger.exe 2013-10-09 19:09 - 2013-10-09 19:09 - 00000000 ____D C:\ProgramData\Google 2013-10-09 19:00 - 2013-10-09 19:00 - 00000000 ___RD C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2013-10-08 21:29 - 2013-10-08 21:29 - 35289352 _____ (Dropbox, Inc.) C:\Users\Angela *********\Downloads\Dropbox 2.4.1.exe 2013-10-08 21:29 - 2013-10-08 21:29 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Dropbox 2013-10-08 19:43 - 2013-10-08 19:43 - 00002515 _____ C:\Users\Public\Desktop\Skype.lnk 2013-10-08 19:24 - 2013-10-08 19:24 - 32531104 _____ (Skype Technologies S.A.) C:\Users\Angela *********\Downloads\SkypeSetupFull.exe 2013-10-08 19:11 - 2013-10-08 19:11 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\CrashDumps 2013-10-08 00:05 - 2009-09-10 08:28 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2013-10-08 00:05 - 2009-09-10 07:52 - 00257024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2013-10-07 23:56 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe 2013-10-07 23:56 - 2009-11-25 12:47 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe 2013-10-07 23:56 - 2009-11-25 12:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe 2013-10-07 23:56 - 2009-11-25 12:47 - 00109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 17833472 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 12335104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-10-07 23:53 - 2013-10-07 23:53 - 04068864 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 03181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-10-07 23:53 - 2013-10-07 23:53 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2013-10-07 23:53 - 2013-10-07 23:53 - 01495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2013-10-07 23:53 - 2013-10-07 23:53 - 00662528 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2013-10-07 23:53 - 2013-10-07 23:53 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll 2013-10-07 23:52 - 2013-10-07 23:55 - 00004602 _____ C:\Windows\IE9_main.log 2013-10-07 23:46 - 2012-12-16 18:52 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2013-10-07 23:46 - 2012-12-16 16:40 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2013-10-07 23:46 - 2012-12-16 16:25 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2013-10-07 23:46 - 2012-12-16 16:25 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2013-10-07 23:46 - 2009-10-19 16:46 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2013-10-07 23:46 - 2009-10-19 16:10 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2013-10-07 23:43 - 2012-03-01 08:54 - 00022896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys 2013-10-07 23:43 - 2012-03-01 08:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll 2013-10-07 23:43 - 2012-03-01 08:35 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll 2013-10-07 23:43 - 2012-03-01 07:45 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll 2013-10-07 23:43 - 2012-03-01 07:40 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll 2013-10-07 23:03 - 2013-10-07 23:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-10-07 19:39 - 2012-11-09 07:34 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2013-10-07 19:39 - 2012-11-09 06:49 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-10-07 19:39 - 2012-03-03 08:29 - 01837568 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2013-10-07 19:39 - 2012-03-03 08:29 - 01541120 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2013-10-07 19:39 - 2012-03-03 08:29 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2013-10-07 19:39 - 2012-03-03 08:29 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2013-10-07 19:39 - 2012-03-03 08:29 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2013-10-07 19:39 - 2012-03-03 07:40 - 01170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2013-10-07 19:39 - 2012-03-03 07:40 - 01074176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2013-10-07 19:39 - 2012-03-03 07:40 - 00739840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2013-10-07 19:39 - 2012-03-03 07:40 - 00218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll 2013-10-07 19:39 - 2012-03-03 07:40 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll 2013-10-07 19:39 - 2011-06-15 11:58 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll 2013-10-07 19:39 - 2011-06-15 11:58 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll 2013-10-07 19:39 - 2011-06-15 11:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll 2013-10-07 19:39 - 2011-06-15 11:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll 2013-10-07 19:39 - 2011-06-15 11:04 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll 2013-10-07 19:39 - 2011-06-15 11:04 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll 2013-10-07 19:39 - 2011-06-15 11:04 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll 2013-10-07 19:39 - 2011-06-15 11:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll 2013-10-07 19:39 - 2011-06-15 11:04 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll 2013-10-07 19:39 - 2011-04-27 04:57 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys 2013-10-07 19:39 - 2010-03-05 09:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2013-10-07 19:39 - 2010-03-05 09:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2013-10-07 19:38 - 2013-02-12 17:42 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2013-10-07 19:38 - 2013-02-12 17:37 - 03138048 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2013-10-07 19:38 - 2013-02-12 17:31 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll 2013-10-07 19:38 - 2013-02-12 17:13 - 02691072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2013-10-07 19:38 - 2013-02-12 17:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2013-10-07 19:38 - 2013-02-12 15:59 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2013-10-07 19:38 - 2012-11-09 07:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2013-10-07 19:38 - 2012-11-09 06:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2013-10-07 19:38 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2013-10-07 19:38 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2013-10-07 19:38 - 2010-12-23 08:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll 2013-10-07 19:38 - 2010-12-23 08:07 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll 2013-10-07 19:38 - 2010-12-23 08:02 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax 2013-10-07 19:38 - 2010-12-23 07:28 - 00850432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll 2013-10-07 19:38 - 2010-12-23 07:28 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll 2013-10-07 19:38 - 2010-12-23 07:24 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax 2013-10-07 19:38 - 2010-08-26 07:27 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll 2013-10-07 19:38 - 2010-08-26 06:39 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll 2013-10-07 19:37 - 2013-03-01 05:32 - 03150848 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-10-07 19:37 - 2011-11-17 09:12 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2013-10-07 19:37 - 2011-11-17 07:39 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll 2013-10-07 19:37 - 2011-10-26 07:22 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2013-10-07 19:37 - 2011-10-26 07:22 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2013-10-07 19:37 - 2011-10-26 06:28 - 01328640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2013-10-07 19:37 - 2011-10-26 06:28 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2013-10-07 19:37 - 2011-07-09 04:44 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2013-10-07 19:37 - 2011-05-04 04:51 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2013-10-07 19:37 - 2011-05-04 04:51 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2013-10-07 19:37 - 2010-11-02 07:18 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll 2013-10-07 19:37 - 2010-11-02 07:17 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll 2013-10-07 19:37 - 2010-11-02 07:17 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll 2013-10-07 19:37 - 2010-11-02 07:16 - 01114624 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2013-10-07 19:37 - 2010-11-02 07:10 - 00464384 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe 2013-10-07 19:37 - 2010-11-02 07:10 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe 2013-10-07 19:37 - 2010-11-02 06:40 - 00496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll 2013-10-07 19:37 - 2010-11-02 06:40 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll 2013-10-07 19:37 - 2010-11-02 06:34 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe 2013-10-07 19:37 - 2010-11-02 06:34 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe 2013-10-07 19:37 - 2010-06-29 07:39 - 02085376 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2013-10-07 19:37 - 2010-06-29 07:02 - 01413632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2013-10-07 19:37 - 2010-05-05 09:37 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2013-10-07 19:37 - 2010-05-05 08:46 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll 2013-10-07 19:37 - 2009-09-03 09:36 - 01975296 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll 2013-10-07 19:37 - 2009-09-03 09:04 - 01320960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll 2013-10-07 19:36 - 2013-04-12 16:36 - 01653096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2013-10-07 19:36 - 2013-02-12 16:02 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys 2013-10-07 19:36 - 2012-06-09 07:30 - 14165504 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2013-10-07 19:36 - 2012-06-09 06:46 - 12868608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2013-10-07 19:36 - 2012-06-02 07:38 - 00152432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2013-10-07 19:36 - 2012-06-02 07:38 - 00095088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2013-10-07 19:36 - 2012-06-02 07:37 - 00459216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2013-10-07 19:36 - 2012-06-02 07:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2013-10-07 19:36 - 2012-06-02 06:48 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-10-07 19:36 - 2012-06-02 06:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-10-07 19:36 - 2012-06-02 06:42 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-10-07 19:36 - 2012-04-26 07:34 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll 2013-10-07 19:36 - 2012-04-26 07:34 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll 2013-10-07 19:36 - 2012-04-26 07:28 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe 2013-10-07 19:36 - 2011-11-17 09:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2013-10-07 19:36 - 2011-11-17 09:11 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2013-10-07 19:36 - 2011-11-17 09:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2013-10-07 19:36 - 2011-11-17 09:08 - 01446912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2013-10-07 19:36 - 2011-11-17 09:05 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2013-10-07 19:36 - 2011-03-11 08:19 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll 2013-10-07 19:36 - 2011-03-11 08:19 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll 2013-10-07 19:36 - 2011-03-11 07:40 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll 2013-10-07 19:36 - 2011-03-11 07:40 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll 2013-10-07 19:36 - 2010-08-21 08:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2013-10-07 19:36 - 2010-08-21 07:33 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2013-10-07 19:36 - 2010-06-19 08:53 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll 2013-10-07 19:36 - 2010-06-19 08:23 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll 2013-10-07 19:36 - 2009-10-31 08:34 - 02870272 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2013-10-07 19:36 - 2009-10-31 07:45 - 02614272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2013-10-07 19:36 - 2009-10-28 08:24 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2013-10-07 19:35 - 2012-11-02 07:30 - 02001408 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2013-10-07 19:35 - 2012-11-02 07:30 - 01880064 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2013-10-07 19:35 - 2012-11-02 06:50 - 01388544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2013-10-07 19:35 - 2012-11-02 06:50 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2013-10-07 19:35 - 2011-03-03 08:17 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2013-10-07 19:35 - 2011-03-03 08:17 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2013-10-07 19:35 - 2011-03-03 08:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe 2013-10-07 19:35 - 2011-03-03 07:29 - 00269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll 2013-10-07 19:35 - 2011-03-03 07:27 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe 2013-10-07 19:35 - 2010-08-21 08:29 - 00558592 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe 2013-10-07 19:35 - 2010-07-29 08:30 - 00082944 _____ (Radius Inc.) C:\Windows\SysWOW64\iccvid.dll 2013-10-07 19:34 - 2013-01-04 07:37 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2013-10-07 19:34 - 2013-01-04 07:37 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2013-10-07 19:34 - 2013-01-04 07:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2013-10-07 19:34 - 2013-01-04 07:36 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2013-10-07 19:34 - 2013-01-04 07:33 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2013-10-07 19:34 - 2013-01-04 07:30 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2013-10-07 19:34 - 2013-01-04 07:30 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:51 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2013-10-07 19:34 - 2013-01-04 06:51 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2013-10-07 19:34 - 2013-01-04 06:51 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 05:19 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2013-10-07 19:34 - 2013-01-04 04:48 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2013-10-07 19:34 - 2013-01-04 04:48 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2013-10-07 19:34 - 2013-01-04 04:48 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2013-10-07 19:34 - 2013-01-04 04:48 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2013-10-07 19:34 - 2013-01-04 04:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 04:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 04:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 04:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2013-10-07 19:34 - 2012-11-20 07:55 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2013-10-07 19:34 - 2012-11-20 07:10 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2013-10-07 19:34 - 2012-11-02 07:27 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2013-10-07 19:34 - 2012-11-02 06:48 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2013-10-07 19:34 - 2012-09-06 19:38 - 00295792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2013-10-07 19:34 - 2012-08-24 20:05 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2013-10-07 19:34 - 2012-08-24 19:10 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2013-10-07 19:34 - 2010-08-21 08:38 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2013-10-07 19:34 - 2010-08-21 07:36 - 00738816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll 2013-10-07 19:34 - 2009-12-19 11:50 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll 2013-10-07 19:34 - 2009-12-19 11:47 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll 2013-10-07 19:34 - 2009-12-19 11:47 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll 2013-10-07 19:34 - 2009-12-19 11:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll 2013-10-07 19:34 - 2009-12-19 11:46 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avifil32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciavi32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iyuv_32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvidc32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrle32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll 2013-10-07 19:33 - 2013-01-04 07:41 - 01893224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-10-07 19:33 - 2013-01-04 07:40 - 00287576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2013-10-07 19:33 - 2012-08-11 02:53 - 00714752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2013-10-07 19:33 - 2012-08-11 01:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2013-10-07 19:33 - 2012-04-28 05:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2013-10-07 19:33 - 2012-03-17 09:55 - 00075632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys 2013-10-07 19:33 - 2011-12-28 05:59 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2013-10-07 19:33 - 2011-08-17 07:32 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll 2013-10-07 19:33 - 2011-08-17 07:27 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax 2013-10-07 19:33 - 2011-08-17 07:27 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax 2013-10-07 19:33 - 2011-08-17 07:27 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax 2013-10-07 19:33 - 2011-08-17 07:27 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax 2013-10-07 19:33 - 2011-08-17 06:26 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll 2013-10-07 19:33 - 2011-08-17 06:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax 2013-10-07 19:33 - 2011-08-17 06:22 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax 2013-10-07 19:33 - 2011-08-17 06:22 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax 2013-10-07 19:33 - 2011-08-17 06:22 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax 2013-10-07 19:33 - 2011-04-29 05:13 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2013-10-07 19:33 - 2011-04-29 05:12 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2013-10-07 19:33 - 2011-04-29 05:12 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2013-10-07 19:32 - 2012-09-26 00:39 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll 2013-10-07 19:32 - 2012-09-25 23:55 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll 2013-10-07 19:32 - 2011-02-05 14:41 - 00640896 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2013-10-07 19:32 - 2011-02-05 14:41 - 00556928 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2013-10-07 19:32 - 2011-02-05 14:41 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll 2013-10-07 19:32 - 2011-02-05 14:41 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll 2013-10-07 19:32 - 2011-02-05 14:41 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll 2013-10-07 19:32 - 2011-02-05 14:39 - 00603976 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2013-10-07 19:32 - 2011-02-05 14:39 - 00518160 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2013-10-07 19:32 - 2010-08-31 06:32 - 00954752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc40.dll 2013-10-07 19:32 - 2010-08-31 06:32 - 00954288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc40u.dll 2013-10-07 19:32 - 2009-08-29 09:50 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll 2013-10-07 19:32 - 2009-08-29 08:57 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msasn1.dll 2013-10-07 19:31 - 2013-03-19 08:19 - 05497688 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-10-07 19:31 - 2013-03-19 07:54 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2013-10-07 19:31 - 2013-03-19 07:06 - 03958120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2013-10-07 19:31 - 2013-03-19 07:06 - 03902312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2013-10-07 19:31 - 2013-03-19 06:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2013-10-07 19:31 - 2013-03-19 05:19 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2013-10-07 19:31 - 2012-07-05 00:04 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll 2013-10-07 19:31 - 2012-07-05 00:01 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll 2013-10-07 19:31 - 2012-07-05 00:01 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll 2013-10-07 19:31 - 2012-07-04 23:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll 2013-10-07 19:31 - 2012-07-04 23:23 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll 2013-10-07 19:31 - 2012-05-14 07:20 - 00956416 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2013-10-07 19:31 - 2011-12-16 10:42 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll 2013-10-07 19:31 - 2011-12-16 09:59 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll 2013-10-07 19:31 - 2011-10-15 08:25 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll 2013-10-07 19:31 - 2011-10-15 07:48 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll 2013-10-07 19:31 - 2011-08-27 07:40 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2013-10-07 19:31 - 2011-08-27 07:40 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll 2013-10-07 19:31 - 2011-08-27 06:43 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2013-10-07 19:31 - 2011-08-27 06:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll 2013-10-07 19:31 - 2011-05-24 13:21 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll 2013-10-07 19:31 - 2011-05-24 12:34 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll 2013-10-07 19:31 - 2011-05-24 12:34 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll 2013-10-07 19:31 - 2011-05-24 12:34 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll 2013-10-07 19:31 - 2011-05-24 12:32 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe 2013-10-07 19:31 - 2011-05-03 07:21 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2013-10-07 19:31 - 2011-05-03 06:50 - 00740864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2013-10-07 19:31 - 2011-02-23 07:15 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys 2013-10-07 19:31 - 2011-02-12 08:14 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe 2013-10-07 19:31 - 2010-12-18 08:08 - 01097216 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2013-10-07 19:31 - 2010-12-18 07:26 - 01034240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2013-10-07 19:31 - 2010-10-16 07:23 - 00112000 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2013-10-07 19:31 - 2010-09-01 07:21 - 14627840 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2013-10-07 19:31 - 2010-09-01 07:12 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2013-10-07 19:31 - 2010-09-01 06:29 - 11406848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2013-10-07 19:31 - 2010-09-01 06:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2013-10-07 19:30 - 2011-11-17 09:14 - 01739160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-10-07 19:30 - 2011-11-17 07:41 - 01292592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2013-10-07 19:30 - 2010-10-16 07:17 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll 2013-10-07 19:30 - 2010-10-16 06:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll 2013-10-07 19:30 - 2010-08-27 08:14 - 00236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2013-10-07 19:30 - 2010-08-27 07:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll 2013-10-07 19:29 - 2012-06-02 07:25 - 01462784 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-10-07 19:29 - 2012-06-02 07:25 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2013-10-07 19:29 - 2012-06-02 07:25 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2013-10-07 19:29 - 2012-06-02 06:45 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-10-07 19:29 - 2012-06-02 06:45 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-10-07 19:29 - 2012-06-02 06:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-10-07 19:20 - 2013-10-07 19:23 - 246695752 _____ (NVIDIA Corporation) C:\Users\Angela *********\Downloads\327.23-notebook-win8-win7-64bit-international-whql.exe 2013-10-07 19:15 - 2011-11-19 17:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2013-10-07 19:15 - 2011-11-19 16:06 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2013-10-06 22:12 - 2013-10-09 21:55 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-10-06 22:12 - 2013-10-09 18:55 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-10-06 22:12 - 2013-10-09 18:55 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-10-06 22:12 - 2013-10-09 18:55 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\system32\Macromed 2013-10-06 21:21 - 2013-10-06 21:21 - 00000000 ____D C:\Windows\system32\appmgmt 2013-10-06 21:16 - 2013-10-06 21:16 - 00000000 ____D C:\ProgramData\APN 2013-10-06 21:04 - 2013-10-06 21:16 - 00000000 ____D C:\ProgramData\Avira 2013-10-06 20:59 - 2013-10-06 20:59 - 02296952 _____ C:\Users\Angela *********\Downloads\avira_free_antivirus.exe 2013-10-06 20:28 - 2013-10-09 22:15 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Skype 2013-10-06 20:28 - 2013-10-08 19:43 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-10-06 20:28 - 2013-10-08 19:43 - 00000000 ____D C:\ProgramData\Skype 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Macromedia 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Adobe 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela *********\AppData\Local\Macromedia 2013-10-06 19:54 - 2013-10-06 21:09 - 00057560 _____ C:\Users\Angela *********\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-06 19:54 - 2013-10-06 19:57 - 00000000 ____D C:\Users\Angela *********\Documents\Visual Studio 2012 2013-10-06 19:50 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2013-10-06 19:47 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Application Verifier 2013-10-06 19:47 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\Application Verifier 2013-10-06 19:47 - 2013-10-06 19:47 - 00000000 ____D C:\ProgramData\Windows App Certification Kit 2013-10-06 19:45 - 2013-10-06 19:45 - 00000000 ____D C:\ProgramData\PreEmptive Solutions 2013-10-06 19:42 - 2013-10-06 19:43 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2013-10-06 19:40 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools 2013-10-06 19:39 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\IIS Express 2013-10-06 19:39 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\IIS Express 2013-10-06 19:39 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\IIS 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\NuGet 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services 2013-10-06 19:37 - 2013-10-06 19:37 - 00000000 ____D C:\Program Files (x86)\Windows Kits 2013-10-06 19:31 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2013-10-06 19:31 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2013-10-06 19:31 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer 2013-10-06 19:27 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2013-10-06 19:27 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0 2013-10-06 19:19 - 2013-10-06 20:54 - 00000000 ____D C:\ProgramData\Package Cache 2013-10-06 19:13 - 2013-10-06 19:16 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\DAEMON Tools Lite 2013-10-06 19:13 - 2013-10-06 19:13 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2013-10-06 18:56 - 2013-10-06 18:56 - 00000000 ____D C:\ProgramData\Synology 2013-10-06 18:53 - 2013-10-06 20:47 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Unity 2013-10-06 18:41 - 2013-10-06 20:51 - 00000000 ____D C:\ProgramData\Unity 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Apple Computer 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela *********\AppData\Local\Apple Computer 2013-10-06 18:33 - 2013-10-06 20:55 - 00000000 ____D C:\ad0016c4ac5f942d515088274291 2013-10-06 18:33 - 2013-10-06 18:33 - 00000000 ___HT C:\Windows\wusa.lock 2013-10-06 18:32 - 2013-10-06 18:32 - 00000000 ____D C:\Users\Angela *********\AppData\Local\Unity 2013-10-06 18:31 - 2013-10-06 18:31 - 00001116 _____ C:\Users\Public\Desktop\Unity.lnk 2013-10-06 18:31 - 2013-10-06 18:31 - 00000000 ____D C:\Users\Public\Documents\Unity Projects 2013-10-06 18:25 - 2013-10-06 18:25 - 00000000 ____D C:\Program Files (x86)\Unity 2013-10-06 18:17 - 2013-10-09 19:00 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Public\Documents\Atheros 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Angela *********\AppData\Local\BMExplorer 2013-10-06 18:08 - 2013-10-06 18:08 - 00003148 _____ C:\Windows\System32\Tasks\SidebarExecute 2013-10-06 18:07 - 2013-10-06 18:07 - 00000000 ____D C:\Program Files\Intel 2013-10-06 17:53 - 2013-10-06 17:53 - 00003042 _____ C:\Windows\System32\Tasks\ASUS P4G 2013-10-06 17:52 - 2013-10-06 20:55 - 00000000 ____D C:\ProgramData\P4G 2013-10-06 17:52 - 2013-10-06 18:17 - 00000000 ____D C:\Program Files\P4G 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIh_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIc_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____D C:\Program Files\Fresco Logic Inc 2013-10-06 17:45 - 2013-10-06 17:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-10-06 17:45 - 2010-08-03 18:43 - 00290920 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\rtsuvstor.sys 2013-10-06 17:45 - 2010-07-13 21:21 - 00015464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\diskperf64.sys 2013-10-06 17:45 - 2009-11-25 14:21 - 07367200 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUVStoricon.dll 2013-10-06 17:43 - 2013-10-06 17:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-10-06 17:42 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Angela *********\Documents\Bluetooth Folder 2013-10-06 17:41 - 2013-10-06 17:42 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Program Files\Realtek 2013-10-06 17:35 - 2010-12-23 15:45 - 02684136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2013-10-06 17:35 - 2010-12-22 13:13 - 00397912 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll 2013-10-06 17:35 - 2010-12-22 13:13 - 00309336 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll 2013-10-06 17:35 - 2010-12-22 11:28 - 02828392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2013-10-06 17:35 - 2010-12-22 11:28 - 02328168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2013-10-06 17:35 - 2010-11-29 18:47 - 02578576 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2013-10-06 17:35 - 2010-11-23 18:45 - 01247848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2013-10-06 17:35 - 2010-11-22 11:39 - 00626792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2013-10-06 17:35 - 2010-11-11 13:27 - 00083048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2013-10-06 17:35 - 2010-11-03 18:31 - 01146984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2013-10-06 17:35 - 2010-11-03 18:31 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2013-10-06 17:35 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2013-10-06 17:35 - 2010-10-29 10:29 - 01937312 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2013-10-06 17:35 - 2010-10-28 10:46 - 01251944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2013-10-06 17:35 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2013-10-06 17:35 - 2010-07-22 16:37 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2013-10-06 17:35 - 2010-07-02 19:40 - 00080984 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2013-10-06 17:35 - 2009-11-18 18:42 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2013-10-06 17:35 - 2009-11-18 07:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys 2013-10-06 17:35 - 2009-11-17 18:12 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2013-10-06 17:35 - 2009-04-02 16:43 - 00000520 _____ C:\Windows\system32\Drivers\SamSfPa.dat 2013-10-06 17:22 - 2013-10-06 21:18 - 00002472 _____ C:\Windows\PFRO.log 2013-10-06 17:16 - 2013-10-09 18:45 - 00000000 ____D C:\ProgramData\NVIDIA 2013-10-06 17:16 - 2013-10-06 17:17 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-10-06 17:16 - 2013-10-06 17:16 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2013-10-06 17:16 - 2011-10-15 10:53 - 10406208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 05067584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 03074368 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 01640768 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2013-10-06 17:16 - 2011-10-15 10:53 - 00837952 _____ (NVIDIA Corporation) C:\Windows\system32\easyupdatusapiu64.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 00539456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhotkey.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 00222528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 00137536 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2013-10-06 17:16 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-10-06 17:16 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-10-06 17:15 - 2013-10-06 17:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2013-10-06 17:15 - 2011-10-15 10:53 - 24796992 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 24742720 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 18871616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 17248576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 15693120 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 13205312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 12971840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2013-10-06 17:15 - 2011-10-15 10:53 - 08791360 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 07581504 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 07041856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 05578560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02808128 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02542912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02458432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02401088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02232128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02099520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 01533248 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 01454400 _____ (NVIDIA Corporation) C:\Windows\system32\nvgenco64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 00068928 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 00061248 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 00007384 _____ C:\Windows\system32\nvinfo.pb 2013-10-06 17:15 - 2011-07-08 01:21 - 01452648 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420102.dll 2013-10-06 17:15 - 2011-07-08 01:21 - 00174184 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2013-10-06 17:15 - 2011-07-08 01:21 - 00029288 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2013-10-06 17:14 - 2013-10-06 17:14 - 00000000 ____D C:\NVIDIA 2013-10-06 17:10 - 2013-10-07 22:58 - 00000000 ____D C:\Users\Angela *********\AppData\Local\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00001143 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\ProgramData\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-10-06 17:02 - 2013-08-07 04:22 - 00278800 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2013-10-06 17:01 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files\Google 2013-10-06 17:01 - 2013-10-06 16:26 - 00000000 ____D C:\Windows\Panther 2013-10-06 17:00 - 2013-10-06 17:00 - 00002251 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-10-06 16:59 - 2013-10-09 22:09 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-06 16:59 - 2013-10-09 19:02 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2013-10-06 16:59 - 2013-10-09 19:00 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-06 16:59 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Google 2013-10-06 16:59 - 2013-10-06 17:27 - 00000000 ____D C:\Users\Angela *********\AppData\Local\Google 2013-10-06 16:59 - 2013-10-06 17:04 - 00004132 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-10-06 16:59 - 2013-10-06 17:04 - 00003880 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-10-06 16:59 - 2013-10-06 16:59 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-10-06 16:59 - 2013-10-06 16:59 - 00000000 _____ C:\Windows\SysWOW64\config.nt 2013-10-06 16:59 - 2013-08-30 09:48 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00204880 _____ C:\Windows\system32\Drivers\aswVmm.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00080816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00064288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00033400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys 2013-10-06 16:59 - 2013-08-30 09:47 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2013-10-06 16:59 - 2013-08-30 09:47 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr 2013-10-06 16:58 - 2013-10-06 16:58 - 00000000 ____D C:\Program Files\AVAST Software 2013-10-06 16:53 - 2013-10-06 16:58 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-06 16:51 - 2012-02-15 08:27 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll 2013-10-06 16:51 - 2012-02-15 07:44 - 00826368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll 2013-10-06 16:51 - 2012-02-15 06:46 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys 2013-10-06 16:51 - 2010-01-09 09:19 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll 2013-10-06 16:51 - 2010-01-09 08:52 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabview.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2013-10-06 16:48 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2013-10-06 16:48 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2013-10-06 16:48 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2013-10-06 16:48 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2013-10-06 16:48 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2013-10-06 16:43 - 2013-10-06 16:43 - 00000000 ____D C:\Program Files (x86)\Atheros 2013-10-06 16:43 - 2010-07-15 04:08 - 00056092 _____ C:\Windows\system32\athrextx.cat 2013-10-06 16:43 - 2010-07-08 02:03 - 02228736 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys 2013-10-06 16:43 - 2010-07-08 02:03 - 02228736 _____ (Atheros Communications, Inc.) C:\Windows\system32\athrx.sys 2013-10-06 16:41 - 2013-10-06 16:43 - 00000000 ____D C:\ProgramData\Atheros 2013-10-06 16:40 - 2013-10-06 16:40 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\InstallShield 2013-10-06 16:38 - 2013-10-06 17:34 - 00000000 ____D C:\Program Files (x86)\ASUS 2013-10-06 16:38 - 2013-10-06 16:38 - 00002978 _____ C:\Windows\System32\Tasks\ATKOSD2 2013-10-06 16:32 - 2013-10-06 16:32 - 00000000 ____D C:\Program Files (x86)\Intel 2013-10-06 16:32 - 2010-10-04 13:02 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2013-10-06 16:29 - 2013-10-06 16:29 - 00000000 ____D C:\Intel 2013-10-06 16:28 - 2013-10-06 17:58 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-10-06 16:28 - 2013-10-06 17:45 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-10-06 16:28 - 2011-09-03 19:46 - 00412776 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys 2013-10-06 16:28 - 2011-09-03 19:46 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll 2013-10-06 16:28 - 2011-09-03 19:46 - 00074272 _____ C:\Windows\system32\RtNicProp64.dll 2013-10-06 16:26 - 2013-10-09 22:17 - 00000000 ____D C:\Users\Angela ********* 2013-10-06 16:26 - 2013-10-08 19:23 - 00001435 _____ C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-06 16:26 - 2013-10-08 19:23 - 00001401 _____ C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2013-10-06 16:26 - 2013-10-08 19:23 - 00000000 ___RD C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-10-06 16:26 - 2013-10-08 19:23 - 00000000 ___RD C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-10-06 16:26 - 2013-10-06 16:26 - 00000020 ___SH C:\Users\Angela *********\ntuser.ini 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 __SHD C:\Recovery 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 ____D C:\Users\Angela *********\AppData\Local\VirtualStore 2013-10-06 16:26 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-10-06 16:26 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-10-06 16:07 - 2013-10-09 21:41 - 01475062 _____ C:\Windows\WindowsUpdate.log 2013-10-06 16:07 - 2013-10-06 16:07 - 00001313 _____ C:\Windows\TSSysprep.log ==================== One Month Modified Files and Folders ======= 2013-10-09 22:19 - 2013-10-09 22:19 - 00000000 ____D C:\FRST 2013-10-09 22:18 - 2013-10-09 22:18 - 01954124 _____ (Farbar) C:\Users\Angela *********\Desktop\FRST64.exe 2013-10-09 22:17 - 2013-10-09 22:17 - 00000500 _____ C:\Users\Angela *********\Desktop\defogger_disable.log 2013-10-09 22:17 - 2013-10-09 22:17 - 00000000 _____ C:\Users\Angela *********\defogger_reenable 2013-10-09 22:17 - 2013-10-06 16:26 - 00000000 ____D C:\Users\Angela ********* 2013-10-09 22:15 - 2013-10-06 20:28 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Skype 2013-10-09 22:13 - 2013-10-09 22:16 - 00050477 _____ C:\Users\Angela *********\Desktop\Defogger.exe 2013-10-09 22:09 - 2013-10-06 16:59 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-09 21:55 - 2013-10-06 22:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-10-09 21:41 - 2013-10-06 16:07 - 01475062 _____ C:\Windows\WindowsUpdate.log 2013-10-09 19:09 - 2013-10-09 19:09 - 00000000 ____D C:\ProgramData\Google 2013-10-09 19:02 - 2013-10-06 16:59 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2013-10-09 19:00 - 2013-10-09 19:00 - 00000000 ___RD C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2013-10-09 19:00 - 2013-10-06 18:17 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini 2013-10-09 19:00 - 2013-10-06 16:59 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-09 18:55 - 2013-10-06 22:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-10-09 18:55 - 2013-10-06 22:12 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-10-09 18:55 - 2013-10-06 22:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-10-09 18:53 - 2009-07-14 06:45 - 00014624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-10-09 18:53 - 2009-07-14 06:45 - 00014624 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-10-09 18:50 - 2009-07-14 19:58 - 00643866 _____ C:\Windows\system32\perfh007.dat 2013-10-09 18:50 - 2009-07-14 19:58 - 00126394 _____ C:\Windows\system32\perfc007.dat 2013-10-09 18:50 - 2009-07-14 07:13 - 01472002 _____ C:\Windows\system32\PerfStringBackup.INI 2013-10-09 18:45 - 2013-10-06 17:16 - 00000000 ____D C:\ProgramData\NVIDIA 2013-10-09 18:45 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-10-09 18:45 - 2009-07-14 06:51 - 00020714 _____ C:\Windows\setupact.log 2013-10-08 21:29 - 2013-10-08 21:29 - 35289352 _____ (Dropbox, Inc.) C:\Users\Angela *********\Downloads\Dropbox 2.4.1.exe 2013-10-08 21:29 - 2013-10-08 21:29 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Dropbox 2013-10-08 21:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-10-08 19:43 - 2013-10-08 19:43 - 00002515 _____ C:\Users\Public\Desktop\Skype.lnk 2013-10-08 19:43 - 2013-10-06 20:28 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-10-08 19:43 - 2013-10-06 20:28 - 00000000 ____D C:\ProgramData\Skype 2013-10-08 19:24 - 2013-10-08 19:24 - 32531104 _____ (Skype Technologies S.A.) C:\Users\Angela *********\Downloads\SkypeSetupFull.exe 2013-10-08 19:23 - 2013-10-06 16:26 - 00001435 _____ C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-08 19:23 - 2013-10-06 16:26 - 00001401 _____ C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2013-10-08 19:23 - 2013-10-06 16:26 - 00000000 ___RD C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-10-08 19:23 - 2013-10-06 16:26 - 00000000 ___RD C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-10-08 19:12 - 2009-07-14 06:45 - 00274464 _____ C:\Windows\system32\FNTCACHE.DAT 2013-10-08 19:11 - 2013-10-08 19:11 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\CrashDumps 2013-10-08 19:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-10-08 19:10 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System 2013-10-08 19:09 - 2009-07-14 20:18 - 00000000 ____D C:\Program Files\Windows Journal 2013-10-07 23:55 - 2013-10-07 23:52 - 00004602 _____ C:\Windows\IE9_main.log 2013-10-07 23:54 - 2013-10-07 23:54 - 17833472 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 12335104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-10-07 23:53 - 2013-10-07 23:53 - 04068864 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 03181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-10-07 23:53 - 2013-10-07 23:53 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2013-10-07 23:53 - 2013-10-07 23:53 - 01495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2013-10-07 23:53 - 2013-10-07 23:53 - 00662528 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2013-10-07 23:53 - 2013-10-07 23:53 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll 2013-10-07 23:03 - 2013-10-07 23:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-10-07 22:58 - 2013-10-06 17:10 - 00000000 ____D C:\Users\Angela *********\AppData\Local\Mozilla 2013-10-07 19:23 - 2013-10-07 19:20 - 246695752 _____ (NVIDIA Corporation) C:\Users\Angela *********\Downloads\327.23-notebook-win8-win7-64bit-international-whql.exe 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\system32\Macromed 2013-10-06 21:21 - 2013-10-06 21:21 - 00000000 ____D C:\Windows\system32\appmgmt 2013-10-06 21:18 - 2013-10-06 17:22 - 00002472 _____ C:\Windows\PFRO.log 2013-10-06 21:16 - 2013-10-06 21:16 - 00000000 ____D C:\ProgramData\APN 2013-10-06 21:16 - 2013-10-06 21:04 - 00000000 ____D C:\ProgramData\Avira 2013-10-06 21:09 - 2013-10-06 19:54 - 00057560 _____ C:\Users\Angela *********\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-06 20:59 - 2013-10-06 20:59 - 02296952 _____ C:\Users\Angela *********\Downloads\avira_free_antivirus.exe 2013-10-06 20:55 - 2013-10-06 19:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-10-06 20:55 - 2013-10-06 19:47 - 00000000 ____D C:\Program Files (x86)\Application Verifier 2013-10-06 20:55 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\IIS Express 2013-10-06 20:55 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2013-10-06 20:55 - 2013-10-06 19:27 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2013-10-06 20:55 - 2013-10-06 18:33 - 00000000 ____D C:\ad0016c4ac5f942d515088274291 2013-10-06 20:55 - 2013-10-06 17:52 - 00000000 ____D C:\ProgramData\P4G 2013-10-06 20:55 - 2013-10-06 17:01 - 00000000 ____D C:\Program Files\Google 2013-10-06 20:55 - 2013-10-06 16:59 - 00000000 ____D C:\Program Files (x86)\Google 2013-10-06 20:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\MUI 2013-10-06 20:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\MUI 2013-10-06 20:54 - 2013-10-06 19:47 - 00000000 ____D C:\Program Files\Application Verifier 2013-10-06 20:54 - 2013-10-06 19:40 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools 2013-10-06 20:54 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files\IIS Express 2013-10-06 20:54 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files\IIS 2013-10-06 20:54 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2013-10-06 20:54 - 2013-10-06 19:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0 2013-10-06 20:54 - 2013-10-06 19:19 - 00000000 ____D C:\ProgramData\Package Cache 2013-10-06 20:53 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\MSBuild 2013-10-06 20:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration 2013-10-06 20:51 - 2013-10-06 18:41 - 00000000 ____D C:\ProgramData\Unity 2013-10-06 20:47 - 2013-10-06 18:53 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Unity 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Macromedia 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Adobe 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela *********\AppData\Local\Macromedia 2013-10-06 19:57 - 2013-10-06 19:54 - 00000000 ____D C:\Users\Angela *********\Documents\Visual Studio 2012 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2013-10-06 19:47 - 2013-10-06 19:47 - 00000000 ____D C:\ProgramData\Windows App Certification Kit 2013-10-06 19:45 - 2013-10-06 19:45 - 00000000 ____D C:\ProgramData\PreEmptive Solutions 2013-10-06 19:43 - 2013-10-06 19:42 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\NuGet 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services 2013-10-06 19:37 - 2013-10-06 19:37 - 00000000 ____D C:\Program Files (x86)\Windows Kits 2013-10-06 19:31 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer 2013-10-06 19:16 - 2013-10-06 19:13 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\DAEMON Tools Lite 2013-10-06 19:13 - 2013-10-06 19:13 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2013-10-06 18:56 - 2013-10-06 18:56 - 00000000 ____D C:\ProgramData\Synology 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Apple Computer 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela *********\AppData\Local\Apple Computer 2013-10-06 18:33 - 2013-10-06 18:33 - 00000000 ___HT C:\Windows\wusa.lock 2013-10-06 18:32 - 2013-10-06 18:32 - 00000000 ____D C:\Users\Angela *********\AppData\Local\Unity 2013-10-06 18:31 - 2013-10-06 18:31 - 00001116 _____ C:\Users\Public\Desktop\Unity.lnk 2013-10-06 18:31 - 2013-10-06 18:31 - 00000000 ____D C:\Users\Public\Documents\Unity Projects 2013-10-06 18:25 - 2013-10-06 18:25 - 00000000 ____D C:\Program Files (x86)\Unity 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Public\Documents\Atheros 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Angela *********\AppData\Local\BMExplorer 2013-10-06 18:17 - 2013-10-06 17:52 - 00000000 ____D C:\Program Files\P4G 2013-10-06 18:17 - 2013-10-06 17:42 - 00000000 ____D C:\Users\Angela *********\Documents\Bluetooth Folder 2013-10-06 18:08 - 2013-10-06 18:08 - 00003148 _____ C:\Windows\System32\Tasks\SidebarExecute 2013-10-06 18:07 - 2013-10-06 18:07 - 00000000 ____D C:\Program Files\Intel 2013-10-06 17:58 - 2013-10-06 16:28 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-10-06 17:53 - 2013-10-06 17:53 - 00003042 _____ C:\Windows\System32\Tasks\ASUS P4G 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIh_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIc_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____D C:\Program Files\Fresco Logic Inc 2013-10-06 17:45 - 2013-10-06 17:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-10-06 17:45 - 2013-10-06 16:28 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-10-06 17:43 - 2013-10-06 17:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-10-06 17:42 - 2013-10-06 17:41 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-10-06 17:42 - 2011-01-06 19:55 - 00246804 _____ C:\Windows\system32\Drivers\AtherosBt.bin 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Program Files\Realtek 2013-10-06 17:34 - 2013-10-06 16:38 - 00000000 ____D C:\Program Files (x86)\ASUS 2013-10-06 17:27 - 2013-10-06 16:59 - 00000000 ____D C:\Users\Angela *********\AppData\Local\Google 2013-10-06 17:17 - 2013-10-06 17:16 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-10-06 17:16 - 2013-10-06 17:16 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2013-10-06 17:16 - 2013-10-06 17:15 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2013-10-06 17:16 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help 2013-10-06 17:14 - 2013-10-06 17:14 - 00000000 ____D C:\NVIDIA 2013-10-06 17:10 - 2013-10-06 17:10 - 00001143 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\ProgramData\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-10-06 17:04 - 2013-10-06 16:59 - 00004132 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-10-06 17:04 - 2013-10-06 16:59 - 00003880 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-10-06 17:01 - 2009-07-14 07:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2013-10-06 17:01 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2013-10-06 17:00 - 2013-10-06 17:00 - 00002251 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-10-06 16:59 - 2013-10-06 16:59 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-10-06 16:59 - 2013-10-06 16:59 - 00000000 _____ C:\Windows\SysWOW64\config.nt 2013-10-06 16:58 - 2013-10-06 16:58 - 00000000 ____D C:\Program Files\AVAST Software 2013-10-06 16:58 - 2013-10-06 16:53 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-06 16:49 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2013-10-06 16:43 - 2013-10-06 16:43 - 00000000 ____D C:\Program Files (x86)\Atheros 2013-10-06 16:43 - 2013-10-06 16:41 - 00000000 ____D C:\ProgramData\Atheros 2013-10-06 16:40 - 2013-10-06 16:40 - 00000000 ____D C:\Users\Angela *********\AppData\Roaming\InstallShield 2013-10-06 16:38 - 2013-10-06 16:38 - 00002978 _____ C:\Windows\System32\Tasks\ATKOSD2 2013-10-06 16:32 - 2013-10-06 16:32 - 00000000 ____D C:\Program Files (x86)\Intel 2013-10-06 16:29 - 2013-10-06 16:29 - 00000000 ____D C:\Intel 2013-10-06 16:28 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore 2013-10-06 16:26 - 2013-10-06 17:01 - 00000000 ____D C:\Windows\Panther 2013-10-06 16:26 - 2013-10-06 16:26 - 00000020 ___SH C:\Users\Angela *********\ntuser.ini 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela *********\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela |
12.10.2013, 09:19 | #7 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" FRST.txt (Teil 2) Code:
ATTFilter *********\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 __SHD C:\Recovery 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 ____D C:\Users\Angela *********\AppData\Local\VirtualStore 2013-10-06 16:26 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default 2013-10-06 16:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Recovery 2013-10-06 16:26 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT 2013-10-06 16:07 - 2013-10-06 16:07 - 00001313 _____ C:\Windows\TSSysprep.log 2013-10-06 16:07 - 2009-07-14 06:46 - 00001774 _____ C:\Windows\DtcInstall.log 2013-10-06 16:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep 2013-10-06 16:03 - 2009-07-14 20:18 - 00000000 ____D C:\Windows\CSC Some content of TEMP: ==================== C:\Users\Angela *********\AppData\Local\Temp\fp_pl_pfs_installer.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-10-08 21:01 ==================== End Of Log ============================ Code:
ATTFilter GMER 2.1.19163 - hxxp://www.gmer.net Rootkit scan 2013-10-09 22:51:59 Windows 6.1.7600 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 ST9500423AS rev.0002SDM1 465.76GB Running: gmer_2.1.19163.exe; Driver: C:\Users\ANGELA~1\AppData\Local\Temp\kgtiipog.sys ---- User code sections - GMER 2.1 ---- .text C:\Windows\system32\wininit.exe[696] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\services.exe[752] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\lsass.exe[780] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\winlogon.exe[852] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\svchost.exe[940] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\nvvsvc.exe[1020] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe[140] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Windows\system32\svchost.exe[336] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\System32\svchost.exe[548] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\System32\svchost.exe[708] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\svchost.exe[652] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\svchost.exe[1144] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe[1408] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\nvvsvc.exe[1420] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\svchost.exe[1648] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe[1736] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe[1760] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Windows\System32\spoolsv.exe[1888] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\svchost.exe[1932] C:\Windows\system32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe[1320] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010021075c .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001002103a4 .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100210b14 .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100210ecc .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010021163c .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100211284 .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001002119f4 .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Program Files (x86)\Bluetooth Suite\adminservice.exe[2248] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010033075c .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001003303a4 .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100330b14 .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100330ecc .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010033163c .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100331284 .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001003319f4 .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Program Files\Intel\TurboBoost\TurboBoost.exe[2448] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 00000001002b075c .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001002b03a4 .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 00000001002b0b14 .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 00000001002b0ecc .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 00000001002b163c .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 00000001002b1284 .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001002b19f4 .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\system32\svchost.exe[2792] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 00000001001c075c .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001001c03a4 .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 00000001001c0b14 .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 00000001001c0ecc .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 00000001001c163c .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 00000001001c1284 .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001001c19f4 .text C:\Windows\system32\svchost.exe[2836] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\system32\svchost.exe[2836] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\ntdll.dll!NtAllocateVirtualMemory 000000007782fa50 5 bytes JMP 0000000100030600 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\ntdll.dll!NtFreeVirtualMemory 000000007782fae8 5 bytes JMP 0000000100030804 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\ntdll.dll!NtTerminateProcess 000000007782fc40 5 bytes JMP 0000000100030c0c .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\ntdll.dll!NtProtectVirtualMemory 000000007782ffc8 5 bytes JMP 0000000100030a08 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\ntdll.dll!NtSetContextThread 00000000778318b0 5 bytes JMP 0000000100030e10 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\ntdll.dll!LdrLoadDll 000000007784c4aa 5 bytes JMP 00000001000301f8 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\ntdll.dll!LdrUnloadDll 0000000077851247 5 bytes JMP 00000001000303fc .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075a41465 2 bytes [A4, 75] .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000075a414bb 2 bytes [A4, 75] .text ... * 2 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\syswow64\USER32.dll!SetWinEventHook 000000007521f0e6 5 bytes JMP 00000001002501f8 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\syswow64\USER32.dll!UnhookWinEvent 0000000075223907 5 bytes JMP 00000001002503fc .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\syswow64\USER32.dll!SetWindowsHookExA 0000000075228364 5 bytes JMP 0000000100250600 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\syswow64\USER32.dll!SetWindowsHookExW 00000000752306b3 5 bytes JMP 0000000100250804 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\syswow64\USER32.dll!UnhookWindowsHookEx 0000000075240efc 3 bytes JMP 0000000100250a08 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\syswow64\USER32.dll!UnhookWindowsHookEx + 4 0000000075240f00 1 byte [8B] .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\sechost.dll!SetServiceObjectSecurity 00000000754e5181 5 bytes JMP 0000000100261014 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigA 00000000754e5254 5 bytes JMP 0000000100260804 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigW 00000000754e53d5 5 bytes JMP 0000000100260a08 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2A 00000000754e54c2 5 bytes JMP 0000000100260c0c .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2W 00000000754e55e2 5 bytes JMP 0000000100260e10 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\sechost.dll!CreateServiceA 00000000754e567c 5 bytes JMP 00000001002601f8 .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\sechost.dll!CreateServiceW 00000000754e589f 5 bytes JMP 00000001002603fc .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[1660] C:\Windows\SysWOW64\sechost.dll!DeleteService 00000000754e5a22 5 bytes JMP 0000000100260600 .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010027075c .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001002703a4 .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100270b14 .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100270ecc .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010027163c .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100271284 .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001002719f4 .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\System32\svchost.exe[2544] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010038075c .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001003803a4 .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100380b14 .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100380ecc .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010038163c .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100381284 .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001003819f4 .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\system32\SearchIndexer.exe[2844] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010018075c .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001001803a4 .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100180b14 .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100180ecc .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010018163c .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100181284 .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001001819f4 .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\system32\wbem\wmiprvse.exe[2760] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010025075c .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001002503a4 .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100250b14 .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100250ecc .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010025163c .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100251284 .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001002519f4 .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\system32\taskhost.exe[3404] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010042075c .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001004203a4 .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100420b14 .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100420ecc .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010042163c .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100421284 .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001004219f4 .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\system32\Dwm.exe[3684] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010010075c .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001001003a4 .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100100b14 .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100100ecc .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010010163c .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100101284 .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001001019f4 .text C:\Windows\Explorer.EXE[3748] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\Explorer.EXE[3748] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 00000001002f075c .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001002f03a4 .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 00000001002f0b14 .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 00000001002f0ecc .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 00000001002f163c .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 00000001002f1284 .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001002f19f4 .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\system32\taskeng.exe[3936] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 00000001003f075c .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001003f03a4 .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 00000001003f0b14 .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 00000001003f0ecc .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 00000001003f163c .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 00000001003f1284 .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001003f19f4 .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\system32\taskeng.exe[3216] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 00000001003f075c .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001003f03a4 .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 00000001003f0b14 .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 00000001003f0ecc .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 00000001003f163c .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 00000001003f1284 .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001003f19f4 .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe[1460] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 00000001003e075c .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001003e03a4 .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 00000001003e0b14 .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 00000001003e0ecc .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 00000001003e163c .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 00000001003e1284 .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001003e19f4 .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe[3088] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 00000001002e075c .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001002e03a4 .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 00000001002e0b14 .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 00000001002e0ecc .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 00000001002e163c .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 00000001002e1284 .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001002e19f4 .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe[3496] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010044075c .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001004403a4 .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100440b14 .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100440ecc .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010044163c .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100441284 .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001004419f4 .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Program Files\Windows Sidebar\sidebar.exe[3480] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\ntdll.dll!NtAllocateVirtualMemory 000000007782fa50 5 bytes JMP 0000000100030600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\ntdll.dll!NtFreeVirtualMemory 000000007782fae8 5 bytes JMP 0000000100030804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\ntdll.dll!NtTerminateProcess 000000007782fc40 5 bytes JMP 0000000100030c0c .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\ntdll.dll!NtProtectVirtualMemory 000000007782ffc8 5 bytes JMP 0000000100030a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\ntdll.dll!NtSetContextThread 00000000778318b0 5 bytes JMP 0000000100030e10 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\ntdll.dll!LdrLoadDll 000000007784c4aa 5 bytes JMP 00000001000301f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\ntdll.dll!LdrUnloadDll 0000000077851247 5 bytes JMP 00000001000303fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\syswow64\USER32.dll!SetWinEventHook 000000007521f0e6 5 bytes JMP 00000001002401f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\syswow64\USER32.dll!UnhookWinEvent 0000000075223907 5 bytes JMP 00000001002403fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\syswow64\USER32.dll!SetWindowsHookExA 0000000075228364 5 bytes JMP 0000000100240600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\syswow64\USER32.dll!SetWindowsHookExW 00000000752306b3 5 bytes JMP 0000000100240804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\syswow64\USER32.dll!UnhookWindowsHookEx 0000000075240efc 5 bytes JMP 0000000100240a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\sechost.dll!SetServiceObjectSecurity 00000000754e5181 5 bytes JMP 0000000100251014 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigA 00000000754e5254 5 bytes JMP 0000000100250804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigW 00000000754e53d5 5 bytes JMP 0000000100250a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2A 00000000754e54c2 5 bytes JMP 0000000100250c0c .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2W 00000000754e55e2 5 bytes JMP 0000000100250e10 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\sechost.dll!CreateServiceA 00000000754e567c 5 bytes JMP 00000001002501f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\sechost.dll!CreateServiceW 00000000754e589f 5 bytes JMP 00000001002503fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe[3788] C:\Windows\SysWOW64\sechost.dll!DeleteService 00000000754e5a22 5 bytes JMP 0000000100250600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\ntdll.dll!NtAllocateVirtualMemory 000000007782fa50 5 bytes JMP 0000000100030600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\ntdll.dll!NtFreeVirtualMemory 000000007782fae8 5 bytes JMP 0000000100030804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\ntdll.dll!NtTerminateProcess 000000007782fc40 5 bytes JMP 0000000100030c0c .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\ntdll.dll!NtProtectVirtualMemory 000000007782ffc8 5 bytes JMP 0000000100030a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\ntdll.dll!NtSetContextThread 00000000778318b0 5 bytes JMP 0000000100030e10 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\ntdll.dll!LdrLoadDll 000000007784c4aa 5 bytes JMP 00000001000301f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\ntdll.dll!LdrUnloadDll 0000000077851247 5 bytes JMP 00000001000303fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\syswow64\USER32.dll!SetWinEventHook 000000007521f0e6 5 bytes JMP 00000001002401f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\syswow64\USER32.dll!UnhookWinEvent 0000000075223907 5 bytes JMP 00000001002403fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\syswow64\USER32.dll!SetWindowsHookExA 0000000075228364 5 bytes JMP 0000000100240600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\syswow64\USER32.dll!SetWindowsHookExW 00000000752306b3 5 bytes JMP 0000000100240804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\syswow64\USER32.dll!UnhookWindowsHookEx 0000000075240efc 5 bytes JMP 0000000100240a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\sechost.dll!SetServiceObjectSecurity 00000000754e5181 5 bytes JMP 0000000100251014 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigA 00000000754e5254 5 bytes JMP 0000000100250804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigW 00000000754e53d5 5 bytes JMP 0000000100250a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2A 00000000754e54c2 5 bytes JMP 0000000100250c0c .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2W 00000000754e55e2 5 bytes JMP 0000000100250e10 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\sechost.dll!CreateServiceA 00000000754e567c 5 bytes JMP 00000001002501f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\sechost.dll!CreateServiceW 00000000754e589f 5 bytes JMP 00000001002503fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe[600] C:\Windows\SysWOW64\sechost.dll!DeleteService 00000000754e5a22 5 bytes JMP 0000000100250600 .text C:\Program Files\AVAST Software\Avast\AvastUI.exe[2076] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010017075c .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001001703a4 .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100170b14 .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100170ecc .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010017163c .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100171284 .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001001719f4 .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe[2372] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\ntdll.dll!NtAllocateVirtualMemory 000000007782fa50 5 bytes JMP 0000000100030600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\ntdll.dll!NtFreeVirtualMemory 000000007782fae8 5 bytes JMP 0000000100030804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\ntdll.dll!NtTerminateProcess 000000007782fc40 5 bytes JMP 0000000100030c0c .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\ntdll.dll!NtProtectVirtualMemory 000000007782ffc8 5 bytes JMP 0000000100030a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\ntdll.dll!NtSetContextThread 00000000778318b0 5 bytes JMP 0000000100030e10 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\ntdll.dll!LdrLoadDll 000000007784c4aa 5 bytes JMP 00000001000301f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\ntdll.dll!LdrUnloadDll 0000000077851247 5 bytes JMP 00000001000303fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\syswow64\USER32.dll!SetWinEventHook 000000007521f0e6 5 bytes JMP 00000001002401f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\syswow64\USER32.dll!UnhookWinEvent 0000000075223907 5 bytes JMP 00000001002403fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\syswow64\USER32.dll!SetWindowsHookExA 0000000075228364 5 bytes JMP 0000000100240600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\syswow64\USER32.dll!SetWindowsHookExW 00000000752306b3 5 bytes JMP 0000000100240804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\syswow64\USER32.dll!UnhookWindowsHookEx 0000000075240efc 5 bytes JMP 0000000100240a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\sechost.dll!SetServiceObjectSecurity 00000000754e5181 5 bytes JMP 0000000100251014 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigA 00000000754e5254 5 bytes JMP 0000000100250804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigW 00000000754e53d5 5 bytes JMP 0000000100250a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2A 00000000754e54c2 5 bytes JMP 0000000100250c0c .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2W 00000000754e55e2 5 bytes JMP 0000000100250e10 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\sechost.dll!CreateServiceA 00000000754e567c 5 bytes JMP 00000001002501f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\sechost.dll!CreateServiceW 00000000754e589f 5 bytes JMP 00000001002503fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe[3392] C:\Windows\SysWOW64\sechost.dll!DeleteService 00000000754e5a22 5 bytes JMP 0000000100250600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\ntdll.dll!NtAllocateVirtualMemory 000000007782fa50 5 bytes JMP 0000000100030600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\ntdll.dll!NtFreeVirtualMemory 000000007782fae8 5 bytes JMP 0000000100030804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\ntdll.dll!NtTerminateProcess 000000007782fc40 5 bytes JMP 0000000100030c0c .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\ntdll.dll!NtProtectVirtualMemory 000000007782ffc8 5 bytes JMP 0000000100030a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\ntdll.dll!NtSetContextThread 00000000778318b0 5 bytes JMP 0000000100030e10 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\ntdll.dll!LdrLoadDll 000000007784c4aa 5 bytes JMP 00000001000301f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\ntdll.dll!LdrUnloadDll 0000000077851247 5 bytes JMP 00000001000303fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\syswow64\USER32.dll!SetWinEventHook 000000007521f0e6 5 bytes JMP 00000001002401f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\syswow64\USER32.dll!UnhookWinEvent 0000000075223907 5 bytes JMP 00000001002403fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\syswow64\USER32.dll!SetWindowsHookExA 0000000075228364 5 bytes JMP 0000000100240600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\syswow64\USER32.dll!SetWindowsHookExW 00000000752306b3 5 bytes JMP 0000000100240804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\syswow64\USER32.dll!UnhookWindowsHookEx 0000000075240efc 5 bytes JMP 0000000100240a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\sechost.dll!SetServiceObjectSecurity 00000000754e5181 5 bytes JMP 0000000100251014 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigA 00000000754e5254 5 bytes JMP 0000000100250804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigW 00000000754e53d5 5 bytes JMP 0000000100250a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2A 00000000754e54c2 5 bytes JMP 0000000100250c0c .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2W 00000000754e55e2 5 bytes JMP 0000000100250e10 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\sechost.dll!CreateServiceA 00000000754e567c 5 bytes JMP 00000001002501f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\sechost.dll!CreateServiceW 00000000754e589f 5 bytes JMP 00000001002503fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe[4260] C:\Windows\SysWOW64\sechost.dll!DeleteService 00000000754e5a22 5 bytes JMP 0000000100250600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\ntdll.dll!NtAllocateVirtualMemory 000000007782fa50 5 bytes JMP 0000000100030600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\ntdll.dll!NtFreeVirtualMemory 000000007782fae8 5 bytes JMP 0000000100030804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\ntdll.dll!NtTerminateProcess 000000007782fc40 5 bytes JMP 0000000100030c0c .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\ntdll.dll!NtProtectVirtualMemory 000000007782ffc8 5 bytes JMP 0000000100030a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\ntdll.dll!NtSetContextThread 00000000778318b0 5 bytes JMP 0000000100030e10 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\ntdll.dll!LdrLoadDll 000000007784c4aa 5 bytes JMP 00000001000301f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\ntdll.dll!LdrUnloadDll 0000000077851247 5 bytes JMP 00000001000303fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\syswow64\KERNEL32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\syswow64\USER32.dll!SetWinEventHook 000000007521f0e6 5 bytes JMP 00000001001d01f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\syswow64\USER32.dll!UnhookWinEvent 0000000075223907 5 bytes JMP 00000001001d03fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\syswow64\USER32.dll!SetWindowsHookExA 0000000075228364 5 bytes JMP 00000001001d0600 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\syswow64\USER32.dll!SetWindowsHookExW 00000000752306b3 5 bytes JMP 00000001001d0804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\syswow64\USER32.dll!UnhookWindowsHookEx 0000000075240efc 5 bytes JMP 00000001001d0a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\sechost.dll!SetServiceObjectSecurity 00000000754e5181 5 bytes JMP 00000001001e1014 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigA 00000000754e5254 5 bytes JMP 00000001001e0804 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfigW 00000000754e53d5 5 bytes JMP 00000001001e0a08 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2A 00000000754e54c2 5 bytes JMP 00000001001e0c0c .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\sechost.dll!ChangeServiceConfig2W 00000000754e55e2 5 bytes JMP 00000001001e0e10 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\sechost.dll!CreateServiceA 00000000754e567c 5 bytes JMP 00000001001e01f8 .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\sechost.dll!CreateServiceW 00000000754e589f 5 bytes JMP 00000001001e03fc .text C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe[4344] C:\Windows\SysWOW64\sechost.dll!DeleteService 00000000754e5a22 5 bytes JMP 00000001001e0600 .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 000000010018075c .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001001803a4 .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 0000000100180b14 .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 0000000100180ecc .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 000000010018163c .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 0000000100181284 .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001001819f4 .text C:\Windows\System32\svchost.exe[4848] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\System32\svchost.exe[4848] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\ntdll.dll!LdrUnloadDll 0000000077652c90 5 bytes JMP 00000001001f075c .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\ntdll.dll!LdrLoadDll 0000000077664420 5 bytes JMP 00000001001f03a4 .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\ntdll.dll!NtAllocateVirtualMemory 000000007767f830 5 bytes JMP 00000001001f0b14 .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\ntdll.dll!NtFreeVirtualMemory 000000007767f890 5 bytes JMP 00000001001f0ecc .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\ntdll.dll!NtTerminateProcess 000000007767f970 5 bytes JMP 00000001001f163c .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\ntdll.dll!NtProtectVirtualMemory 000000007767fbb0 5 bytes JMP 00000001001f1284 .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\ntdll.dll!NtSetContextThread 0000000077680be0 5 bytes JMP 00000001001f19f4 .text C:\Windows\system32\svchost.exe[3172] C:\Windows\system32\KERNEL32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\sechost.dll!SetServiceObjectSecurity 000007fefe436e00 5 bytes JMP 000007ff7e451dac .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigA 000007fefe436f2c 5 bytes JMP 000007ff7e450ecc .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfigW 000007fefe437220 5 bytes JMP 000007ff7e451284 .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2A 000007fefe43739c 5 bytes JMP 000007ff7e45163c .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\sechost.dll!ChangeServiceConfig2W 000007fefe437538 5 bytes JMP 000007ff7e4519f4 .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\sechost.dll!CreateServiceA 000007fefe4375e8 5 bytes JMP 000007ff7e4503a4 .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\sechost.dll!CreateServiceW 000007fefe43790c 5 bytes JMP 000007ff7e45075c .text C:\Windows\system32\svchost.exe[3172] C:\Windows\SYSTEM32\sechost.dll!DeleteService 000007fefe437ab4 5 bytes JMP 000007ff7e450b14 .text C:\Windows\system32\AUDIODG.EXE[3420] C:\Windows\System32\kernel32.dll!GetBinaryTypeW + 189 00000000770af1fd 1 byte [62] .text C:\Users\Angela *****\Desktop\gmer_2.1.19163.exe[5864] C:\Windows\syswow64\kernel32.dll!GetBinaryTypeW + 112 000000007556b0c5 1 byte [62] |
12.10.2013, 09:20 | #8 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" Gmer.txt (Teil 2) Code:
ATTFilter ---- Threads - GMER 2.1 ---- Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [476:1176] 000007feff753570 Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [476:2424] 000007fefbff2a88 Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [476:2152] 000007fef5a2c0b0 Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [476:3140] 000007fef8df5124 Thread C:\Program Files\Windows Media Player\wmpnetwk.exe [476:6040] 000007feff753570 ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Type 2 Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Start 2 Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@DisplayName aswFsBlk Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Group FSFilter Activity Monitor Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@DependOnService FltMgr? Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Description avast! mini-filter driver (aswFsBlk) Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk@Tag 2 Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances@DefaultInstance aswFsBlk Instance Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances\aswFsBlk Instance Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances\aswFsBlk Instance@Altitude 388400 Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk\Instances\aswFsBlk Instance@Flags 0 Reg HKLM\SYSTEM\CurrentControlSet\services\aswFsBlk Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Type 2 Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Start 2 Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@ImagePath \??\C:\Windows\system32\drivers\aswMonFlt.sys Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@DisplayName aswMonFlt Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Group FSFilter Anti-Virus Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@DependOnService FltMgr? Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt@Description avast! mini-filter driver (aswMonFlt) Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances@DefaultInstance aswMonFlt Instance Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances\aswMonFlt Instance Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances\aswMonFlt Instance@Altitude 320700 Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt\Instances\aswMonFlt Instance@Flags 0 Reg HKLM\SYSTEM\CurrentControlSet\services\aswMonFlt Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr@ImagePath \SystemRoot\System32\Drivers\aswrdr2.sys Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Type 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Start 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr@DisplayName aswRdr Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Group PNP_TDI Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr@DependOnService tcpip? Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr@Description avast! WFP Redirect driver Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr\Parameters Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr\Parameters@MSIgnoreLSPDefault Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr\Parameters@WSIgnoreLSPDefault nl_lsp.dll,imon.dll,xfire_lsp.dll,mslsp.dll,mssplsp.dll,cwhook.dll,spi.dll,bmnet.dll,winsflt.dll Reg HKLM\SYSTEM\CurrentControlSet\services\aswRdr Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@Type 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@Start 0 Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@DisplayName aswRvrt Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt@Description avast! Revert Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@BootCounter 11 Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@TickCounter 47906 Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@SystemRoot \Device\Harddisk0\Partition2\Windows Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt\Parameters@ImproperShutdown 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswRvrt Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Type 2 Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Start 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx@DisplayName aswSnx Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Group FSFilter Virtualization Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx@DependOnService FltMgr? Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Description avast! virtualization driver (aswSnx) Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx@Tag 2 Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances@DefaultInstance aswSnx Instance Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances\aswSnx Instance Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances\aswSnx Instance@Altitude 137600 Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Instances\aswSnx Instance@Flags 0 Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Parameters Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Parameters@ProgramFolder \DosDevices\C:\Program Files\AVAST Software\Avast Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx\Parameters@DataFolder \DosDevices\C:\ProgramData\AVAST Software\Avast Reg HKLM\SYSTEM\CurrentControlSet\services\aswSnx Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP@Type 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP@Start 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP@DisplayName aswSP Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP@Description avast! Self Protection Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@BehavShield 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@ProgramFolder \DosDevices\C:\Program Files\AVAST Software\Avast Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@DataFolder \DosDevices\C:\ProgramData\AVAST Software\Avast Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP\Parameters@ProgramFilesFolder \DosDevices\C:\Program Files Reg HKLM\SYSTEM\CurrentControlSet\services\aswSP Reg HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Type 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Start 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswTdi@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswTdi@DisplayName avast! Network Shield Support Reg HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Group PNP_TDI Reg HKLM\SYSTEM\CurrentControlSet\services\aswTdi@DependOnService tcpip? Reg HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Description avast! Network Shield TDI driver Reg HKLM\SYSTEM\CurrentControlSet\services\aswTdi@Tag 9 Reg HKLM\SYSTEM\CurrentControlSet\services\aswTdi Reg HKLM\SYSTEM\CurrentControlSet\services\aswVmm@Type 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswVmm@Start 0 Reg HKLM\SYSTEM\CurrentControlSet\services\aswVmm@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\aswVmm@DisplayName aswVmm Reg HKLM\SYSTEM\CurrentControlSet\services\aswVmm@Description avast! VM Monitor Reg HKLM\SYSTEM\CurrentControlSet\services\aswVmm\Parameters Reg HKLM\SYSTEM\CurrentControlSet\services\aswVmm Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Type 32 Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Start 2 Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ErrorControl 1 Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ImagePath "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@DisplayName avast! Antivirus Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Group ShellSvcGroup Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@DependOnService aswMonFlt?RpcSS? Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@WOW64 1 Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ObjectName LocalSystem Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@ServiceSidType 1 Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus@Description Verwaltet und implementiert avast! Antivirus-Dienste f?r diesen Computer. Dies beinhaltet den Echtzeit-Schutz, den Virus-Container und den Planer. Reg HKLM\SYSTEM\CurrentControlSet\services\avast! Antivirus Reg HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\e0b9a52e18cd Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Type 2 Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Start 2 Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk@ErrorControl 1 Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk@DisplayName aswFsBlk Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Group FSFilter Activity Monitor Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk@DependOnService FltMgr? Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Description avast! mini-filter driver (aswFsBlk) Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk@Tag 2 Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances@DefaultInstance aswFsBlk Instance Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances\aswFsBlk Instance (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances\aswFsBlk Instance@Altitude 388400 Reg HKLM\SYSTEM\ControlSet002\services\aswFsBlk\Instances\aswFsBlk Instance@Flags 0 Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Type 2 Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Start 2 Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt@ErrorControl 1 Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt@ImagePath \??\C:\Windows\system32\drivers\aswMonFlt.sys Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt@DisplayName aswMonFlt Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Group FSFilter Anti-Virus Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt@DependOnService FltMgr? Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt@Description avast! mini-filter driver (aswMonFlt) Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances@DefaultInstance aswMonFlt Instance Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances\aswMonFlt Instance (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances\aswMonFlt Instance@Altitude 320700 Reg HKLM\SYSTEM\ControlSet002\services\aswMonFlt\Instances\aswMonFlt Instance@Flags 0 Reg HKLM\SYSTEM\ControlSet002\services\aswRdr@ImagePath \SystemRoot\System32\Drivers\aswrdr2.sys Reg HKLM\SYSTEM\ControlSet002\services\aswRdr@Type 1 Reg HKLM\SYSTEM\ControlSet002\services\aswRdr@Start 1 Reg HKLM\SYSTEM\ControlSet002\services\aswRdr@ErrorControl 1 Reg HKLM\SYSTEM\ControlSet002\services\aswRdr@DisplayName aswRdr Reg HKLM\SYSTEM\ControlSet002\services\aswRdr@Group PNP_TDI Reg HKLM\SYSTEM\ControlSet002\services\aswRdr@DependOnService tcpip? Reg HKLM\SYSTEM\ControlSet002\services\aswRdr@Description avast! WFP Redirect driver Reg HKLM\SYSTEM\ControlSet002\services\aswRdr\Parameters (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\aswRdr\Parameters@MSIgnoreLSPDefault Reg HKLM\SYSTEM\ControlSet002\services\aswRdr\Parameters@WSIgnoreLSPDefault nl_lsp.dll,imon.dll,xfire_lsp.dll,mslsp.dll,mssplsp.dll,cwhook.dll,spi.dll,bmnet.dll,winsflt.dll Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt@Type 1 Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt@Start 0 Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt@ErrorControl 1 Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt@DisplayName aswRvrt Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt@Description avast! Revert Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@BootCounter 11 Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@TickCounter 47906 Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@SystemRoot \Device\Harddisk0\Partition2\Windows Reg HKLM\SYSTEM\ControlSet002\services\aswRvrt\Parameters@ImproperShutdown 1 Reg HKLM\SYSTEM\ControlSet002\services\aswSnx@Type 2 Reg HKLM\SYSTEM\ControlSet002\services\aswSnx@Start 1 Reg HKLM\SYSTEM\ControlSet002\services\aswSnx@ErrorControl 1 Reg HKLM\SYSTEM\ControlSet002\services\aswSnx@DisplayName aswSnx Reg HKLM\SYSTEM\ControlSet002\services\aswSnx@Group FSFilter Virtualization Reg HKLM\SYSTEM\ControlSet002\services\aswSnx@DependOnService FltMgr? Reg HKLM\SYSTEM\ControlSet002\services\aswSnx@Description avast! virtualization driver (aswSnx) Reg HKLM\SYSTEM\ControlSet002\services\aswSnx@Tag 2 Reg HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances@DefaultInstance aswSnx Instance Reg HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances\aswSnx Instance (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances\aswSnx Instance@Altitude 137600 Reg HKLM\SYSTEM\ControlSet002\services\aswSnx\Instances\aswSnx Instance@Flags 0 Reg HKLM\SYSTEM\ControlSet002\services\aswSnx\Parameters (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\aswSnx\Parameters@ProgramFolder \DosDevices\C:\Program Files\AVAST Software\Avast Reg HKLM\SYSTEM\ControlSet002\services\aswSnx\Parameters@DataFolder \DosDevices\C:\ProgramData\AVAST Software\Avast Reg HKLM\SYSTEM\ControlSet002\services\aswSP@Type 1 Reg HKLM\SYSTEM\ControlSet002\services\aswSP@Start 1 Reg HKLM\SYSTEM\ControlSet002\services\aswSP@ErrorControl 1 Reg HKLM\SYSTEM\ControlSet002\services\aswSP@DisplayName aswSP Reg HKLM\SYSTEM\ControlSet002\services\aswSP@Description avast! Self Protection Reg HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@BehavShield 1 Reg HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@ProgramFolder \DosDevices\C:\Program Files\AVAST Software\Avast Reg HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@DataFolder \DosDevices\C:\ProgramData\AVAST Software\Avast Reg HKLM\SYSTEM\ControlSet002\services\aswSP\Parameters@ProgramFilesFolder \DosDevices\C:\Program Files Reg HKLM\SYSTEM\ControlSet002\services\aswTdi@Type 1 Reg HKLM\SYSTEM\ControlSet002\services\aswTdi@Start 1 Reg HKLM\SYSTEM\ControlSet002\services\aswTdi@ErrorControl 1 Reg HKLM\SYSTEM\ControlSet002\services\aswTdi@DisplayName avast! Network Shield Support Reg HKLM\SYSTEM\ControlSet002\services\aswTdi@Group PNP_TDI Reg HKLM\SYSTEM\ControlSet002\services\aswTdi@DependOnService tcpip? Reg HKLM\SYSTEM\ControlSet002\services\aswTdi@Description avast! Network Shield TDI driver Reg HKLM\SYSTEM\ControlSet002\services\aswTdi@Tag 9 Reg HKLM\SYSTEM\ControlSet002\services\aswVmm@Type 1 Reg HKLM\SYSTEM\ControlSet002\services\aswVmm@Start 0 Reg HKLM\SYSTEM\ControlSet002\services\aswVmm@ErrorControl 1 Reg HKLM\SYSTEM\ControlSet002\services\aswVmm@DisplayName aswVmm Reg HKLM\SYSTEM\ControlSet002\services\aswVmm@Description avast! VM Monitor Reg HKLM\SYSTEM\ControlSet002\services\aswVmm\Parameters (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Type 32 Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Start 2 Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ErrorControl 1 Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ImagePath "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@DisplayName avast! Antivirus Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Group ShellSvcGroup Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@DependOnService aswMonFlt?RpcSS? Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@WOW64 1 Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ObjectName LocalSystem Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@ServiceSidType 1 Reg HKLM\SYSTEM\ControlSet002\services\avast! Antivirus@Description Verwaltet und implementiert avast! Antivirus-Dienste f?r diesen Computer. Dies beinhaltet den Echtzeit-Schutz, den Virus-Container und den Planer. Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\e0b9a52e18cd (not active ControlSet) ---- EOF - GMER 2.1 ---- |
12.10.2013, 15:26 | #9 |
/// the machine /// TB-Ausbilder | Winows 7: Avast meldet ständig "Bösartige Website blockiert" Hängst Du als einziger in dem Netzwerk? Downloade Dir bitte Malwarebytes Anti-Malware
Downloade Dir bitte AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
13.10.2013, 11:03 | #10 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" Der betroffene Laptop ist nicht das einzige Gerät im Netzwerk, aber ich benutze das Netzwerk alleine. Neben 2 Android Geräten hängt manchmal noch ein weiterer Windows Laptop drin, aber selten. Malwarebytes Log Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.10.13.02 Windows 7 x64 NTFS Internet Explorer 9.0.8112.16421 Angela *** :: STEALTHBOMBER [Administrator] Schutz: Aktiviert 13.10.2013 11:22:45 mbam-log-2013-10-13 (11-22-45).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 215914 Laufzeit: 1 Minute(n), 24 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 1 C:\Users\Angela ***\AppData\Local\Temp\c3upoD+V.exe.part (PUP.Optional.Amonetize) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) Code:
ATTFilter # AdwCleaner v3.007 - Bericht erstellt am 13/10/2013 um 11:33:12 # Updated 09/10/2013 von Xplode # Betriebssystem : Windows 7 Professional (64 bits) # Benutzername : Angela *** - STEALTHBOMBER # Gestartet von : C:\Users\Angela ***\Desktop\adwcleaner.exe # Option : Löschen ***** [ Dienste ] ***** ***** [ Dateien / Ordner ] ***** Ordner Gelöscht : C:\ProgramData\apn Ordner Gelöscht : C:\Users\ANGELA~1\AppData\Local\Temp\apn ***** [ Verknüpfungen ] ***** ***** [ Registrierungsdatenbank ] ***** Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1 Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32 Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5} Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} ***** [ Browser ] ***** -\\ Internet Explorer v9.0.8112.16506 -\\ Mozilla Firefox v24.0 (de) [ Datei : C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\prefs.js ] -\\ Google Chrome v30.0.1599.69 [ Datei : C:\Users\Angela ***\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [1884 octets] - [13/10/2013 11:31:20] AdwCleaner[S0].txt - [1739 octets] - [13/10/2013 11:33:12] ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1799 octets] ########## Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.0.4 (10.06.2013:1) OS: Windows 7 Professional x64 Ran by Angela *** on 13.10.2013 at 11:39:16.32 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 13.10.2013 at 11:46:07.22 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013 Ran by Angela *** (administrator) on STEALTHBOMBER on 13-10-2013 11:51:28 Running from C:\Users\Angela ***\Desktop Windows 7 Professional (X64) OS Language: German Standard Internet Explorer Version 9 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS) C:\Program Files\P4G\BatteryLife.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (Windows (R) Win 7 DDK provider) C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11725928 2010-12-23] (Realtek Semiconductor) HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [615584 2011-01-06] (Atheros Communications) HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2011-01-06] (Atheros Commnucations) HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4156 2010-04-16] () HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20474528 2013-10-02] (Skype Technologies S.A.) HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS) HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software) HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-23] () HKLM-x32\...\Run: [FLxHCIm] - C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe [40448 2011-02-24] (Windows (R) Win 7 DDK provider) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://ch.msn.com/default.aspx?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x10E16758A3C2CE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-ch StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.192.1 FireFox: ======== FF ProfilePath: C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll () FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll () FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Angela ***\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Youtube MP3 Podcaster - C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\youtubemp3podcaster@jeremy.d.gregorio.com FF Extension: WOT - C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} FF Extension: DownloadHelper - C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} FF Extension: No Name - C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF Chrome: ======= CHR HomePage: hxxp://www.google.com CHR RestoreOnStartup: "hxxp://www.google.com/" CHR Extension: (Google Docs) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Chrome In-App Payments service) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0 CHR Extension: (Gmail) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 ==================== Services (Whitelisted) ================= R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-01-06] (Atheros) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) ==================== Drivers (Whitelisted) ==================== R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] () R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [81920 2011-02-24] (Fresco Logic) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-16] () ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-10-13 11:46 - 2013-10-13 11:46 - 00000639 _____ C:\Users\Angela ***\Desktop\JRT.txt 2013-10-13 11:39 - 2013-10-13 11:39 - 00000000 ____D C:\Windows\ERUNT 2013-10-13 11:37 - 2013-10-13 11:37 - 01032220 _____ (Thisisu) C:\Users\Angela ***\Desktop\JRT.exe 2013-10-13 11:36 - 2013-10-13 11:36 - 00001891 _____ C:\Users\Angela ***\Desktop\AdwCleaner[S0].txt 2013-10-13 11:35 - 2013-10-13 11:35 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2013-10-13 11:31 - 2013-10-13 11:33 - 00000000 ____D C:\AdwCleaner 2013-10-13 11:28 - 2013-10-13 11:28 - 01048960 _____ C:\Users\Angela ***\Desktop\adwcleaner.exe 2013-10-13 11:17 - 2013-10-13 11:17 - 00001105 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Malwarebytes 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-10-13 11:17 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-10-13 11:15 - 2013-10-13 11:15 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Angela ***\Downloads\mbam-setup-1.75.0.1300.exe 2013-10-10 22:58 - 2011-04-28 05:58 - 00552448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys 2013-10-10 22:58 - 2011-04-28 05:58 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS 2013-10-09 23:24 - 2013-10-09 23:24 - 00031050 _____ C:\Users\Angela ***\Desktop\Logfiles.zip 2013-10-09 22:51 - 2013-10-09 22:52 - 00128780 _____ C:\Users\Angela ***\Desktop\Gmer.txt 2013-10-09 22:21 - 2013-10-09 22:21 - 00377856 _____ C:\Users\Angela ***\Desktop\gmer_2.1.19163.exe 2013-10-09 22:20 - 2013-10-12 10:13 - 00016828 _____ C:\Users\Angela ***\Desktop\Addition.txt 2013-10-09 22:19 - 2013-10-09 22:19 - 00000000 ____D C:\FRST 2013-10-09 22:18 - 2013-10-09 22:18 - 01954124 _____ (Farbar) C:\Users\Angela ***\Desktop\FRST64.exe 2013-10-09 22:17 - 2013-10-09 22:17 - 00000500 _____ C:\Users\Angela ***\Desktop\defogger_disable.log 2013-10-09 22:17 - 2013-10-09 22:17 - 00000000 _____ C:\Users\Angela ***\defogger_reenable 2013-10-09 22:16 - 2013-10-09 22:13 - 00050477 _____ C:\Users\Angela ***\Desktop\Defogger.exe 2013-10-09 19:09 - 2013-10-09 19:09 - 00000000 ____D C:\ProgramData\Google 2013-10-08 21:29 - 2013-10-08 21:29 - 35289352 _____ (Dropbox, Inc.) C:\Users\Angela ***\Downloads\Dropbox 2.4.1.exe 2013-10-08 21:29 - 2013-10-08 21:29 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Dropbox 2013-10-08 19:43 - 2013-10-08 19:43 - 00002515 _____ C:\Users\Public\Desktop\Skype.lnk 2013-10-08 19:24 - 2013-10-08 19:24 - 32531104 _____ (Skype Technologies S.A.) C:\Users\Angela ***\Downloads\SkypeSetupFull.exe 2013-10-08 19:11 - 2013-10-08 19:11 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\CrashDumps 2013-10-08 00:05 - 2009-09-10 08:28 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2013-10-08 00:05 - 2009-09-10 07:52 - 00257024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2013-10-07 23:56 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe 2013-10-07 23:56 - 2009-11-25 12:47 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe 2013-10-07 23:56 - 2009-11-25 12:47 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe 2013-10-07 23:56 - 2009-11-25 12:47 - 00109912 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00049472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll 2013-10-07 23:56 - 2009-11-25 12:47 - 00048960 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 17833472 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 12335104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-10-07 23:53 - 2013-10-07 23:53 - 04068864 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 03181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-10-07 23:53 - 2013-10-07 23:53 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2013-10-07 23:53 - 2013-10-07 23:53 - 01495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2013-10-07 23:53 - 2013-10-07 23:53 - 00662528 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2013-10-07 23:53 - 2013-10-07 23:53 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll 2013-10-07 23:52 - 2013-10-07 23:55 - 00004602 _____ C:\Windows\IE9_main.log 2013-10-07 23:46 - 2012-12-16 18:52 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2013-10-07 23:46 - 2012-12-16 16:40 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2013-10-07 23:46 - 2012-12-16 16:25 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2013-10-07 23:46 - 2012-12-16 16:25 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2013-10-07 23:46 - 2009-10-19 16:46 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2013-10-07 23:46 - 2009-10-19 16:10 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2013-10-07 23:43 - 2012-03-01 08:54 - 00022896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys 2013-10-07 23:43 - 2012-03-01 08:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll 2013-10-07 23:43 - 2012-03-01 08:35 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll 2013-10-07 23:43 - 2012-03-01 07:45 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll 2013-10-07 23:43 - 2012-03-01 07:40 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll 2013-10-07 23:03 - 2013-10-07 23:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-10-07 19:39 - 2012-11-09 07:34 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2013-10-07 19:39 - 2012-11-09 06:49 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-10-07 19:39 - 2012-03-03 08:29 - 01837568 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2013-10-07 19:39 - 2012-03-03 08:29 - 01541120 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2013-10-07 19:39 - 2012-03-03 08:29 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2013-10-07 19:39 - 2012-03-03 08:29 - 00320512 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2013-10-07 19:39 - 2012-03-03 08:29 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2013-10-07 19:39 - 2012-03-03 07:40 - 01170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2013-10-07 19:39 - 2012-03-03 07:40 - 01074176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2013-10-07 19:39 - 2012-03-03 07:40 - 00739840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2013-10-07 19:39 - 2012-03-03 07:40 - 00218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll 2013-10-07 19:39 - 2012-03-03 07:40 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll 2013-10-07 19:39 - 2011-06-15 11:58 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll 2013-10-07 19:39 - 2011-06-15 11:58 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll 2013-10-07 19:39 - 2011-06-15 11:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll 2013-10-07 19:39 - 2011-06-15 11:58 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll 2013-10-07 19:39 - 2011-06-15 11:04 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll 2013-10-07 19:39 - 2011-06-15 11:04 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll 2013-10-07 19:39 - 2011-06-15 11:04 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll 2013-10-07 19:39 - 2011-06-15 11:04 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll 2013-10-07 19:39 - 2011-06-15 11:04 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll 2013-10-07 19:39 - 2011-04-27 04:57 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys 2013-10-07 19:39 - 2010-03-05 09:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2013-10-07 19:39 - 2010-03-05 09:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2013-10-07 19:38 - 2013-02-12 17:42 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2013-10-07 19:38 - 2013-02-12 17:37 - 03138048 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2013-10-07 19:38 - 2013-02-12 17:31 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll 2013-10-07 19:38 - 2013-02-12 17:13 - 02691072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2013-10-07 19:38 - 2013-02-12 17:07 - 00131072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2013-10-07 19:38 - 2013-02-12 15:59 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2013-10-07 19:38 - 2012-11-09 07:34 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2013-10-07 19:38 - 2012-11-09 06:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2013-10-07 19:38 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2013-10-07 19:38 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2013-10-07 19:38 - 2010-12-23 08:07 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll 2013-10-07 19:38 - 2010-12-23 08:07 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll 2013-10-07 19:38 - 2010-12-23 08:02 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax 2013-10-07 19:38 - 2010-12-23 07:28 - 00850432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll 2013-10-07 19:38 - 2010-12-23 07:28 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll 2013-10-07 19:38 - 2010-12-23 07:24 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax 2013-10-07 19:38 - 2010-08-26 07:27 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll 2013-10-07 19:38 - 2010-08-26 06:39 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll 2013-10-07 19:37 - 2013-03-01 05:32 - 03150848 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-10-07 19:37 - 2011-11-17 09:12 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2013-10-07 19:37 - 2011-11-17 07:39 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll 2013-10-07 19:37 - 2011-10-26 07:22 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2013-10-07 19:37 - 2011-10-26 07:22 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2013-10-07 19:37 - 2011-10-26 06:28 - 01328640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2013-10-07 19:37 - 2011-10-26 06:28 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2013-10-07 19:37 - 2011-07-09 04:44 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2013-10-07 19:37 - 2011-05-04 04:51 - 00157696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2013-10-07 19:37 - 2011-05-04 04:51 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2013-10-07 19:37 - 2010-11-02 07:18 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll 2013-10-07 19:37 - 2010-11-02 07:17 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll 2013-10-07 19:37 - 2010-11-02 07:17 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll 2013-10-07 19:37 - 2010-11-02 07:16 - 01114624 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2013-10-07 19:37 - 2010-11-02 07:10 - 00464384 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe 2013-10-07 19:37 - 2010-11-02 07:10 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe 2013-10-07 19:37 - 2010-11-02 06:40 - 00496128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll 2013-10-07 19:37 - 2010-11-02 06:40 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll 2013-10-07 19:37 - 2010-11-02 06:34 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe 2013-10-07 19:37 - 2010-11-02 06:34 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe 2013-10-07 19:37 - 2010-06-29 07:39 - 02085376 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2013-10-07 19:37 - 2010-06-29 07:02 - 01413632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2013-10-07 19:37 - 2010-05-05 09:37 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2013-10-07 19:37 - 2010-05-05 08:46 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll 2013-10-07 19:37 - 2009-09-03 09:36 - 01975296 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll 2013-10-07 19:37 - 2009-09-03 09:04 - 01320960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll 2013-10-07 19:36 - 2013-04-12 16:36 - 01653096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2013-10-07 19:36 - 2013-02-12 16:02 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys 2013-10-07 19:36 - 2012-06-09 07:30 - 14165504 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2013-10-07 19:36 - 2012-06-09 06:46 - 12868608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2013-10-07 19:36 - 2012-06-02 07:38 - 00152432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2013-10-07 19:36 - 2012-06-02 07:38 - 00095088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2013-10-07 19:36 - 2012-06-02 07:37 - 00459216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2013-10-07 19:36 - 2012-06-02 07:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2013-10-07 19:36 - 2012-06-02 06:48 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-10-07 19:36 - 2012-06-02 06:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-10-07 19:36 - 2012-06-02 06:42 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-10-07 19:36 - 2012-04-26 07:34 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll 2013-10-07 19:36 - 2012-04-26 07:34 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll 2013-10-07 19:36 - 2012-04-26 07:28 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe 2013-10-07 19:36 - 2011-11-17 09:11 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2013-10-07 19:36 - 2011-11-17 09:11 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2013-10-07 19:36 - 2011-11-17 09:11 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2013-10-07 19:36 - 2011-11-17 09:08 - 01446912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2013-10-07 19:36 - 2011-11-17 09:05 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2013-10-07 19:36 - 2011-03-11 08:19 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll 2013-10-07 19:36 - 2011-03-11 08:19 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll 2013-10-07 19:36 - 2011-03-11 07:40 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll 2013-10-07 19:36 - 2011-03-11 07:40 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll 2013-10-07 19:36 - 2010-08-21 08:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2013-10-07 19:36 - 2010-08-21 07:33 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2013-10-07 19:36 - 2010-06-19 08:53 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll 2013-10-07 19:36 - 2010-06-19 08:23 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll 2013-10-07 19:36 - 2009-10-31 08:34 - 02870272 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2013-10-07 19:36 - 2009-10-31 07:45 - 02614272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2013-10-07 19:36 - 2009-10-28 08:24 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2013-10-07 19:35 - 2012-11-02 07:30 - 02001408 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2013-10-07 19:35 - 2012-11-02 07:30 - 01880064 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2013-10-07 19:35 - 2012-11-02 06:50 - 01388544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2013-10-07 19:35 - 2012-11-02 06:50 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2013-10-07 19:35 - 2011-03-03 08:17 - 00356352 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2013-10-07 19:35 - 2011-03-03 08:17 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2013-10-07 19:35 - 2011-03-03 08:14 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe 2013-10-07 19:35 - 2011-03-03 07:29 - 00269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll 2013-10-07 19:35 - 2011-03-03 07:27 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe 2013-10-07 19:35 - 2010-08-21 08:29 - 00558592 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe 2013-10-07 19:35 - 2010-07-29 08:30 - 00082944 _____ (Radius Inc.) C:\Windows\SysWOW64\iccvid.dll 2013-10-07 19:34 - 2013-01-04 07:37 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2013-10-07 19:34 - 2013-01-04 07:37 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2013-10-07 19:34 - 2013-01-04 07:37 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2013-10-07 19:34 - 2013-01-04 07:36 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2013-10-07 19:34 - 2013-01-04 07:33 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2013-10-07 19:34 - 2013-01-04 07:30 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2013-10-07 19:34 - 2013-01-04 07:30 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 07:26 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:51 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2013-10-07 19:34 - 2013-01-04 06:51 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2013-10-07 19:34 - 2013-01-04 06:51 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 06:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 05:19 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2013-10-07 19:34 - 2013-01-04 04:48 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2013-10-07 19:34 - 2013-01-04 04:48 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2013-10-07 19:34 - 2013-01-04 04:48 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2013-10-07 19:34 - 2013-01-04 04:48 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2013-10-07 19:34 - 2013-01-04 04:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 04:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 04:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2013-10-07 19:34 - 2013-01-04 04:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2013-10-07 19:34 - 2012-11-20 07:55 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2013-10-07 19:34 - 2012-11-20 07:10 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2013-10-07 19:34 - 2012-11-02 07:27 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2013-10-07 19:34 - 2012-11-02 06:48 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2013-10-07 19:34 - 2012-09-06 19:38 - 00295792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2013-10-07 19:34 - 2012-08-24 20:05 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2013-10-07 19:34 - 2012-08-24 19:10 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2013-10-07 19:34 - 2010-08-21 08:38 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2013-10-07 19:34 - 2010-08-21 07:36 - 00738816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll 2013-10-07 19:34 - 2009-12-19 11:50 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll 2013-10-07 19:34 - 2009-12-19 11:47 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll 2013-10-07 19:34 - 2009-12-19 11:47 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll 2013-10-07 19:34 - 2009-12-19 11:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll 2013-10-07 19:34 - 2009-12-19 11:46 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avifil32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciavi32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iyuv_32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvidc32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrle32.dll 2013-10-07 19:34 - 2009-12-19 11:02 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll 2013-10-07 19:33 - 2013-01-04 07:41 - 01893224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-10-07 19:33 - 2013-01-04 07:40 - 00287576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2013-10-07 19:33 - 2012-08-11 02:53 - 00714752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2013-10-07 19:33 - 2012-08-11 01:54 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2013-10-07 19:33 - 2012-04-28 05:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2013-10-07 19:33 - 2012-03-17 09:55 - 00075632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys 2013-10-07 19:33 - 2011-12-28 05:59 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2013-10-07 19:33 - 2011-08-17 07:32 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll 2013-10-07 19:33 - 2011-08-17 07:27 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax 2013-10-07 19:33 - 2011-08-17 07:27 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax 2013-10-07 19:33 - 2011-08-17 07:27 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax 2013-10-07 19:33 - 2011-08-17 07:27 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax 2013-10-07 19:33 - 2011-08-17 06:26 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll 2013-10-07 19:33 - 2011-08-17 06:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax 2013-10-07 19:33 - 2011-08-17 06:22 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax 2013-10-07 19:33 - 2011-08-17 06:22 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax 2013-10-07 19:33 - 2011-08-17 06:22 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax 2013-10-07 19:33 - 2011-04-29 05:13 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2013-10-07 19:33 - 2011-04-29 05:12 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2013-10-07 19:33 - 2011-04-29 05:12 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2013-10-07 19:32 - 2012-09-26 00:39 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll 2013-10-07 19:32 - 2012-09-25 23:55 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll 2013-10-07 19:32 - 2011-02-05 14:41 - 00640896 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2013-10-07 19:32 - 2011-02-05 14:41 - 00556928 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2013-10-07 19:32 - 2011-02-05 14:41 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll 2013-10-07 19:32 - 2011-02-05 14:41 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll 2013-10-07 19:32 - 2011-02-05 14:41 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll 2013-10-07 19:32 - 2011-02-05 14:39 - 00603976 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2013-10-07 19:32 - 2011-02-05 14:39 - 00518160 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2013-10-07 19:32 - 2010-08-31 06:32 - 00954752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc40.dll 2013-10-07 19:32 - 2010-08-31 06:32 - 00954288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc40u.dll 2013-10-07 19:32 - 2009-08-29 09:50 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll 2013-10-07 19:32 - 2009-08-29 08:57 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msasn1.dll 2013-10-07 19:31 - 2013-03-19 08:19 - 05497688 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-10-07 19:31 - 2013-03-19 07:54 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2013-10-07 19:31 - 2013-03-19 07:06 - 03958120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2013-10-07 19:31 - 2013-03-19 07:06 - 03902312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2013-10-07 19:31 - 2013-03-19 06:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2013-10-07 19:31 - 2013-03-19 05:19 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2013-10-07 19:31 - 2012-07-05 00:04 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll 2013-10-07 19:31 - 2012-07-05 00:01 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll 2013-10-07 19:31 - 2012-07-05 00:01 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll 2013-10-07 19:31 - 2012-07-04 23:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll 2013-10-07 19:31 - 2012-07-04 23:23 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll 2013-10-07 19:31 - 2012-05-14 07:20 - 00956416 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2013-10-07 19:31 - 2011-12-16 10:42 - 00634368 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll 2013-10-07 19:31 - 2011-12-16 09:59 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll 2013-10-07 19:31 - 2011-10-15 08:25 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll 2013-10-07 19:31 - 2011-10-15 07:48 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll 2013-10-07 19:31 - 2011-08-27 07:40 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2013-10-07 19:31 - 2011-08-27 07:40 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll 2013-10-07 19:31 - 2011-08-27 06:43 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2013-10-07 19:31 - 2011-08-27 06:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll 2013-10-07 19:31 - 2011-05-24 13:21 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll 2013-10-07 19:31 - 2011-05-24 12:34 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll 2013-10-07 19:31 - 2011-05-24 12:34 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll 2013-10-07 19:31 - 2011-05-24 12:34 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll 2013-10-07 19:31 - 2011-05-24 12:32 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe 2013-10-07 19:31 - 2011-05-03 07:21 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2013-10-07 19:31 - 2011-05-03 06:50 - 00740864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2013-10-07 19:31 - 2011-02-23 07:15 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys 2013-10-07 19:31 - 2011-02-12 08:14 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe 2013-10-07 19:31 - 2010-12-18 08:08 - 01097216 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2013-10-07 19:31 - 2010-12-18 07:26 - 01034240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2013-10-07 19:31 - 2010-10-16 07:23 - 00112000 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2013-10-07 19:31 - 2010-09-01 07:21 - 14627840 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2013-10-07 19:31 - 2010-09-01 07:12 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2013-10-07 19:31 - 2010-09-01 06:29 - 11406848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2013-10-07 19:31 - 2010-09-01 06:23 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2013-10-07 19:30 - 2011-11-17 09:14 - 01739160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-10-07 19:30 - 2011-11-17 07:41 - 01292592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2013-10-07 19:30 - 2010-10-16 07:17 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll 2013-10-07 19:30 - 2010-10-16 06:34 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll 2013-10-07 19:30 - 2010-08-27 08:14 - 00236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2013-10-07 19:30 - 2010-08-27 07:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll 2013-10-07 19:29 - 2012-06-02 07:25 - 01462784 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-10-07 19:29 - 2012-06-02 07:25 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2013-10-07 19:29 - 2012-06-02 07:25 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2013-10-07 19:29 - 2012-06-02 06:45 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-10-07 19:29 - 2012-06-02 06:45 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-10-07 19:29 - 2012-06-02 06:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-10-07 19:20 - 2013-10-07 19:23 - 246695752 _____ (NVIDIA Corporation) C:\Users\Angela ***\Downloads\327.23-notebook-win8-win7-64bit-international-whql.exe 2013-10-07 19:15 - 2011-11-19 17:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2013-10-07 19:15 - 2011-11-19 16:06 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2013-10-06 22:12 - 2013-10-13 11:09 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-10-06 22:12 - 2013-10-09 18:55 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-10-06 22:12 - 2013-10-09 18:55 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-10-06 22:12 - 2013-10-09 18:55 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\system32\Macromed 2013-10-06 21:21 - 2013-10-06 21:21 - 00000000 ____D C:\Windows\system32\appmgmt 2013-10-06 21:04 - 2013-10-06 21:16 - 00000000 ____D C:\ProgramData\Avira 2013-10-06 20:59 - 2013-10-06 20:59 - 02296952 _____ C:\Users\Angela ***\Downloads\avira_free_antivirus.exe 2013-10-06 20:28 - 2013-10-13 11:36 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Skype 2013-10-06 20:28 - 2013-10-08 19:43 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-10-06 20:28 - 2013-10-08 19:43 - 00000000 ____D C:\ProgramData\Skype 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Macromedia 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Adobe 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Macromedia 2013-10-06 19:54 - 2013-10-06 21:09 - 00057560 _____ C:\Users\Angela ***\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-06 19:54 - 2013-10-06 19:57 - 00000000 ____D C:\Users\Angela ***\Documents\Visual Studio 2012 2013-10-06 19:50 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight |
13.10.2013, 11:05 | #11 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" FRST (Teil2) Code:
ATTFilter 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2013-10-06 19:47 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Application Verifier 2013-10-06 19:47 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\Application Verifier 2013-10-06 19:47 - 2013-10-06 19:47 - 00000000 ____D C:\ProgramData\Windows App Certification Kit 2013-10-06 19:45 - 2013-10-06 19:45 - 00000000 ____D C:\ProgramData\PreEmptive Solutions 2013-10-06 19:42 - 2013-10-06 19:43 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2013-10-06 19:40 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools 2013-10-06 19:39 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\IIS Express 2013-10-06 19:39 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\IIS Express 2013-10-06 19:39 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\IIS 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\NuGet 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services 2013-10-06 19:37 - 2013-10-06 19:37 - 00000000 ____D C:\Program Files (x86)\Windows Kits 2013-10-06 19:31 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2013-10-06 19:31 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2013-10-06 19:31 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer 2013-10-06 19:27 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2013-10-06 19:27 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0 2013-10-06 19:19 - 2013-10-06 20:54 - 00000000 ____D C:\ProgramData\Package Cache 2013-10-06 19:13 - 2013-10-06 19:16 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\DAEMON Tools Lite 2013-10-06 19:13 - 2013-10-06 19:13 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2013-10-06 18:56 - 2013-10-06 18:56 - 00000000 ____D C:\ProgramData\Synology 2013-10-06 18:53 - 2013-10-06 20:47 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Unity 2013-10-06 18:41 - 2013-10-06 20:51 - 00000000 ____D C:\ProgramData\Unity 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Apple Computer 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Apple Computer 2013-10-06 18:33 - 2013-10-06 20:55 - 00000000 ____D C:\ad0016c4ac5f942d515088274291 2013-10-06 18:33 - 2013-10-06 18:33 - 00000000 ___HT C:\Windows\wusa.lock 2013-10-06 18:32 - 2013-10-06 18:32 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Unity 2013-10-06 18:31 - 2013-10-06 18:31 - 00001116 _____ C:\Users\Public\Desktop\Unity.lnk 2013-10-06 18:31 - 2013-10-06 18:31 - 00000000 ____D C:\Users\Public\Documents\Unity Projects 2013-10-06 18:25 - 2013-10-06 18:25 - 00000000 ____D C:\Program Files (x86)\Unity 2013-10-06 18:17 - 2013-10-13 11:35 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Public\Documents\Atheros 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Angela ***\AppData\Local\BMExplorer 2013-10-06 18:08 - 2013-10-06 18:08 - 00003148 _____ C:\Windows\System32\Tasks\SidebarExecute 2013-10-06 18:07 - 2013-10-06 18:07 - 00000000 ____D C:\Program Files\Intel 2013-10-06 17:53 - 2013-10-06 17:53 - 00003042 _____ C:\Windows\System32\Tasks\ASUS P4G 2013-10-06 17:52 - 2013-10-06 20:55 - 00000000 ____D C:\ProgramData\P4G 2013-10-06 17:52 - 2013-10-06 18:17 - 00000000 ____D C:\Program Files\P4G 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIh_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIc_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____D C:\Program Files\Fresco Logic Inc 2013-10-06 17:45 - 2013-10-06 17:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-10-06 17:45 - 2010-08-03 18:43 - 00290920 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\rtsuvstor.sys 2013-10-06 17:45 - 2010-07-13 21:21 - 00015464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\diskperf64.sys 2013-10-06 17:45 - 2009-11-25 14:21 - 07367200 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUVStoricon.dll 2013-10-06 17:43 - 2013-10-06 17:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-10-06 17:42 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Angela ***\Documents\Bluetooth Folder 2013-10-06 17:41 - 2013-10-06 17:42 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Program Files\Realtek 2013-10-06 17:35 - 2010-12-23 15:45 - 02684136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2013-10-06 17:35 - 2010-12-22 13:13 - 00397912 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll 2013-10-06 17:35 - 2010-12-22 13:13 - 00309336 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll 2013-10-06 17:35 - 2010-12-22 11:28 - 02828392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2013-10-06 17:35 - 2010-12-22 11:28 - 02328168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2013-10-06 17:35 - 2010-11-29 18:47 - 02578576 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2013-10-06 17:35 - 2010-11-23 18:45 - 01247848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2013-10-06 17:35 - 2010-11-22 11:39 - 00626792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2013-10-06 17:35 - 2010-11-11 13:27 - 00083048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2013-10-06 17:35 - 2010-11-03 18:31 - 01146984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2013-10-06 17:35 - 2010-11-03 18:31 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2013-10-06 17:35 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2013-10-06 17:35 - 2010-10-29 10:29 - 01937312 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2013-10-06 17:35 - 2010-10-28 10:46 - 01251944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2013-10-06 17:35 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2013-10-06 17:35 - 2010-07-22 16:37 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2013-10-06 17:35 - 2010-07-02 19:40 - 00080984 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2013-10-06 17:35 - 2009-11-18 18:42 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2013-10-06 17:35 - 2009-11-18 07:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys 2013-10-06 17:35 - 2009-11-17 18:12 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2013-10-06 17:35 - 2009-04-02 16:43 - 00000520 _____ C:\Windows\system32\Drivers\SamSfPa.dat 2013-10-06 17:22 - 2013-10-13 11:34 - 00003894 _____ C:\Windows\PFRO.log 2013-10-06 17:16 - 2013-10-13 11:35 - 00000000 ____D C:\ProgramData\NVIDIA 2013-10-06 17:16 - 2013-10-06 17:17 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-10-06 17:16 - 2013-10-06 17:16 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2013-10-06 17:16 - 2011-10-15 10:53 - 10406208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 05067584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 03074368 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 01640768 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2013-10-06 17:16 - 2011-10-15 10:53 - 00837952 _____ (NVIDIA Corporation) C:\Windows\system32\easyupdatusapiu64.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 00539456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhotkey.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 00222528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 00137536 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2013-10-06 17:16 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-10-06 17:16 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-10-06 17:15 - 2013-10-06 17:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2013-10-06 17:15 - 2011-10-15 10:53 - 24796992 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 24742720 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 18871616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 17248576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 15693120 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 13205312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 12971840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2013-10-06 17:15 - 2011-10-15 10:53 - 08791360 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 07581504 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 07041856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 05578560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02808128 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02542912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02458432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02401088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02232128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02099520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 01533248 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 01454400 _____ (NVIDIA Corporation) C:\Windows\system32\nvgenco64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 00068928 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 00061248 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 00007384 _____ C:\Windows\system32\nvinfo.pb 2013-10-06 17:15 - 2011-07-08 01:21 - 01452648 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420102.dll 2013-10-06 17:15 - 2011-07-08 01:21 - 00174184 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2013-10-06 17:15 - 2011-07-08 01:21 - 00029288 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2013-10-06 17:14 - 2013-10-06 17:14 - 00000000 ____D C:\NVIDIA 2013-10-06 17:10 - 2013-10-07 22:58 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00001143 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\ProgramData\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-10-06 17:02 - 2013-08-07 04:22 - 00278800 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2013-10-06 17:01 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files\Google 2013-10-06 17:01 - 2013-10-06 16:26 - 00000000 ____D C:\Windows\Panther 2013-10-06 17:00 - 2013-10-06 17:00 - 00002251 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-10-06 16:59 - 2013-10-13 11:35 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-06 16:59 - 2013-10-13 11:14 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-06 16:59 - 2013-10-13 11:09 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2013-10-06 16:59 - 2013-10-13 01:09 - 00004132 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-10-06 16:59 - 2013-10-13 01:09 - 00003880 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-10-06 16:59 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Google 2013-10-06 16:59 - 2013-10-06 17:27 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Google 2013-10-06 16:59 - 2013-10-06 16:59 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-10-06 16:59 - 2013-10-06 16:59 - 00000000 _____ C:\Windows\SysWOW64\config.nt 2013-10-06 16:59 - 2013-08-30 09:48 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00204880 _____ C:\Windows\system32\Drivers\aswVmm.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00080816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00064288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00033400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys 2013-10-06 16:59 - 2013-08-30 09:47 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2013-10-06 16:59 - 2013-08-30 09:47 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr 2013-10-06 16:58 - 2013-10-06 16:58 - 00000000 ____D C:\Program Files\AVAST Software 2013-10-06 16:53 - 2013-10-06 16:58 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-06 16:51 - 2012-02-15 08:27 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll 2013-10-06 16:51 - 2012-02-15 07:44 - 00826368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll 2013-10-06 16:51 - 2012-02-15 06:46 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys 2013-10-06 16:51 - 2010-01-09 09:19 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll 2013-10-06 16:51 - 2010-01-09 08:52 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabview.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2013-10-06 16:48 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2013-10-06 16:48 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2013-10-06 16:48 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2013-10-06 16:48 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2013-10-06 16:48 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2013-10-06 16:43 - 2013-10-06 16:43 - 00000000 ____D C:\Program Files (x86)\Atheros 2013-10-06 16:43 - 2010-07-15 04:08 - 00056092 _____ C:\Windows\system32\athrextx.cat 2013-10-06 16:43 - 2010-07-08 02:03 - 02228736 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys 2013-10-06 16:43 - 2010-07-08 02:03 - 02228736 _____ (Atheros Communications, Inc.) C:\Windows\system32\athrx.sys 2013-10-06 16:41 - 2013-10-06 16:43 - 00000000 ____D C:\ProgramData\Atheros 2013-10-06 16:40 - 2013-10-06 16:40 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\InstallShield 2013-10-06 16:38 - 2013-10-06 17:34 - 00000000 ____D C:\Program Files (x86)\ASUS 2013-10-06 16:38 - 2013-10-06 16:38 - 00002978 _____ C:\Windows\System32\Tasks\ATKOSD2 2013-10-06 16:32 - 2013-10-06 16:32 - 00000000 ____D C:\Program Files (x86)\Intel 2013-10-06 16:32 - 2010-10-04 13:02 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2013-10-06 16:29 - 2013-10-06 16:29 - 00000000 ____D C:\Intel 2013-10-06 16:28 - 2013-10-06 17:58 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-10-06 16:28 - 2013-10-06 17:45 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-10-06 16:28 - 2011-09-03 19:46 - 00412776 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys 2013-10-06 16:28 - 2011-09-03 19:46 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll 2013-10-06 16:28 - 2011-09-03 19:46 - 00074272 _____ C:\Windows\system32\RtNicProp64.dll 2013-10-06 16:26 - 2013-10-09 22:17 - 00000000 ____D C:\Users\Angela *** 2013-10-06 16:26 - 2013-10-08 19:23 - 00001435 _____ C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-06 16:26 - 2013-10-08 19:23 - 00001401 _____ C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2013-10-06 16:26 - 2013-10-08 19:23 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-10-06 16:26 - 2013-10-08 19:23 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-10-06 16:26 - 2013-10-06 16:26 - 00000020 ___SH C:\Users\Angela ***\ntuser.ini 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 __SHD C:\Recovery 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 ____D C:\Users\Angela ***\AppData\Local\VirtualStore 2013-10-06 16:26 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-10-06 16:26 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-10-06 16:07 - 2013-10-13 11:34 - 01759503 _____ C:\Windows\WindowsUpdate.log 2013-10-06 16:07 - 2013-10-06 16:07 - 00001313 _____ C:\Windows\TSSysprep.log ==================== One Month Modified Files and Folders ======= 2013-10-13 11:50 - 2013-10-06 16:07 - 01759503 _____ C:\Windows\WindowsUpdate.log 2013-10-13 11:46 - 2013-10-13 11:46 - 00000639 _____ C:\Users\Angela ***\Desktop\JRT.txt 2013-10-13 11:42 - 2009-07-14 19:58 - 00643866 _____ C:\Windows\system32\perfh007.dat 2013-10-13 11:42 - 2009-07-14 19:58 - 00126394 _____ C:\Windows\system32\perfc007.dat 2013-10-13 11:42 - 2009-07-14 07:13 - 01472002 _____ C:\Windows\system32\PerfStringBackup.INI 2013-10-13 11:42 - 2009-07-14 06:45 - 00014848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-10-13 11:42 - 2009-07-14 06:45 - 00014848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-10-13 11:39 - 2013-10-13 11:39 - 00000000 ____D C:\Windows\ERUNT 2013-10-13 11:37 - 2013-10-13 11:37 - 01032220 _____ (Thisisu) C:\Users\Angela ***\Desktop\JRT.exe 2013-10-13 11:36 - 2013-10-13 11:36 - 00001891 _____ C:\Users\Angela ***\Desktop\AdwCleaner[S0].txt 2013-10-13 11:36 - 2013-10-06 20:28 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Skype 2013-10-13 11:35 - 2013-10-13 11:35 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2013-10-13 11:35 - 2013-10-06 18:17 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini 2013-10-13 11:35 - 2013-10-06 17:16 - 00000000 ____D C:\ProgramData\NVIDIA 2013-10-13 11:35 - 2013-10-06 16:59 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-13 11:35 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-10-13 11:35 - 2009-07-14 06:51 - 00021386 _____ C:\Windows\setupact.log 2013-10-13 11:34 - 2013-10-06 17:22 - 00003894 _____ C:\Windows\PFRO.log 2013-10-13 11:33 - 2013-10-13 11:31 - 00000000 ____D C:\AdwCleaner 2013-10-13 11:28 - 2013-10-13 11:28 - 01048960 _____ C:\Users\Angela ***\Desktop\adwcleaner.exe 2013-10-13 11:17 - 2013-10-13 11:17 - 00001105 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Malwarebytes 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-10-13 11:15 - 2013-10-13 11:15 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Angela ***\Downloads\mbam-setup-1.75.0.1300.exe 2013-10-13 11:14 - 2013-10-06 16:59 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-13 11:09 - 2013-10-06 22:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-10-13 11:09 - 2013-10-06 16:59 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2013-10-13 01:09 - 2013-10-06 16:59 - 00004132 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-10-13 01:09 - 2013-10-06 16:59 - 00003880 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-10-12 10:13 - 2013-10-09 22:20 - 00016828 _____ C:\Users\Angela ***\Desktop\Addition.txt 2013-10-09 23:24 - 2013-10-09 23:24 - 00031050 _____ C:\Users\Angela ***\Desktop\Logfiles.zip 2013-10-09 22:53 - 2009-07-14 20:18 - 00000000 ___RD C:\Users\Public\Recorded TV 2013-10-09 22:52 - 2013-10-09 22:51 - 00128780 _____ C:\Users\Angela ***\Desktop\Gmer.txt 2013-10-09 22:21 - 2013-10-09 22:21 - 00377856 _____ C:\Users\Angela ***\Desktop\gmer_2.1.19163.exe 2013-10-09 22:19 - 2013-10-09 22:19 - 00000000 ____D C:\FRST 2013-10-09 22:18 - 2013-10-09 22:18 - 01954124 _____ (Farbar) C:\Users\Angela ***\Desktop\FRST64.exe 2013-10-09 22:17 - 2013-10-09 22:17 - 00000500 _____ C:\Users\Angela ***\Desktop\defogger_disable.log 2013-10-09 22:17 - 2013-10-09 22:17 - 00000000 _____ C:\Users\Angela ***\defogger_reenable 2013-10-09 22:17 - 2013-10-06 16:26 - 00000000 ____D C:\Users\Angela *** 2013-10-09 22:13 - 2013-10-09 22:16 - 00050477 _____ C:\Users\Angela ***\Desktop\Defogger.exe 2013-10-09 19:09 - 2013-10-09 19:09 - 00000000 ____D C:\ProgramData\Google 2013-10-09 18:55 - 2013-10-06 22:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-10-09 18:55 - 2013-10-06 22:12 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-10-09 18:55 - 2013-10-06 22:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-10-08 21:29 - 2013-10-08 21:29 - 35289352 _____ (Dropbox, Inc.) C:\Users\Angela ***\Downloads\Dropbox 2.4.1.exe 2013-10-08 21:29 - 2013-10-08 21:29 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Dropbox 2013-10-08 21:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-10-08 19:43 - 2013-10-08 19:43 - 00002515 _____ C:\Users\Public\Desktop\Skype.lnk 2013-10-08 19:43 - 2013-10-06 20:28 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-10-08 19:43 - 2013-10-06 20:28 - 00000000 ____D C:\ProgramData\Skype 2013-10-08 19:24 - 2013-10-08 19:24 - 32531104 _____ (Skype Technologies S.A.) C:\Users\Angela ***\Downloads\SkypeSetupFull.exe 2013-10-08 19:23 - 2013-10-06 16:26 - 00001435 _____ C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-08 19:23 - 2013-10-06 16:26 - 00001401 _____ C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2013-10-08 19:23 - 2013-10-06 16:26 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-10-08 19:23 - 2013-10-06 16:26 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-10-08 19:12 - 2009-07-14 06:45 - 00274464 _____ C:\Windows\system32\FNTCACHE.DAT 2013-10-08 19:11 - 2013-10-08 19:11 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\CrashDumps 2013-10-08 19:10 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-10-08 19:10 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System 2013-10-08 19:09 - 2009-07-14 20:18 - 00000000 ____D C:\Program Files\Windows Journal 2013-10-07 23:55 - 2013-10-07 23:52 - 00004602 _____ C:\Windows\IE9_main.log 2013-10-07 23:54 - 2013-10-07 23:54 - 17833472 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 12335104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-10-07 23:53 - 2013-10-07 23:53 - 04068864 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 03181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-10-07 23:53 - 2013-10-07 23:53 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2013-10-07 23:53 - 2013-10-07 23:53 - 01495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2013-10-07 23:53 - 2013-10-07 23:53 - 00662528 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2013-10-07 23:53 - 2013-10-07 23:53 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2013-10-07 23:53 - 2013-10-07 23:53 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll 2013-10-07 23:03 - 2013-10-07 23:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-10-07 22:58 - 2013-10-06 17:10 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Mozilla 2013-10-07 19:23 - 2013-10-07 19:20 - 246695752 _____ (NVIDIA Corporation) C:\Users\Angela ***\Downloads\327.23-notebook-win8-win7-64bit-international-whql.exe 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\system32\Macromed 2013-10-06 21:21 - 2013-10-06 21:21 - 00000000 ____D C:\Windows\system32\appmgmt 2013-10-06 21:16 - 2013-10-06 21:04 - 00000000 ____D C:\ProgramData\Avira 2013-10-06 21:09 - 2013-10-06 19:54 - 00057560 _____ C:\Users\Angela ***\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-06 20:59 - 2013-10-06 20:59 - 02296952 _____ C:\Users\Angela ***\Downloads\avira_free_antivirus.exe 2013-10-06 20:55 - 2013-10-06 19:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-10-06 20:55 - 2013-10-06 19:47 - 00000000 ____D C:\Program Files (x86)\Application Verifier 2013-10-06 20:55 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\IIS Express 2013-10-06 20:55 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2013-10-06 20:55 - 2013-10-06 19:27 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2013-10-06 20:55 - 2013-10-06 18:33 - 00000000 ____D C:\ad0016c4ac5f942d515088274291 2013-10-06 20:55 - 2013-10-06 17:52 - 00000000 ____D C:\ProgramData\P4G 2013-10-06 20:55 - 2013-10-06 17:01 - 00000000 ____D C:\Program Files\Google 2013-10-06 20:55 - 2013-10-06 16:59 - 00000000 ____D C:\Program Files (x86)\Google 2013-10-06 20:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\MUI 2013-10-06 20:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\MUI 2013-10-06 20:54 - 2013-10-06 19:47 - 00000000 ____D C:\Program Files\Application Verifier 2013-10-06 20:54 - 2013-10-06 19:40 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools 2013-10-06 20:54 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files\IIS Express 2013-10-06 20:54 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files\IIS 2013-10-06 20:54 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2013-10-06 20:54 - 2013-10-06 19:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0 2013-10-06 20:54 - 2013-10-06 19:19 - 00000000 ____D C:\ProgramData\Package Cache 2013-10-06 20:53 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\MSBuild 2013-10-06 20:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration 2013-10-06 20:51 - 2013-10-06 18:41 - 00000000 ____D C:\ProgramData\Unity 2013-10-06 20:47 - 2013-10-06 18:53 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Unity 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Macromedia 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Adobe 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Macromedia 2013-10-06 19:57 - 2013-10-06 19:54 - 00000000 ____D C:\Users\Angela ***\Documents\Visual Studio 2012 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2013-10-06 19:47 - 2013-10-06 19:47 - 00000000 ____D C:\ProgramData\Windows App Certification Kit 2013-10-06 19:45 - 2013-10-06 19:45 - 00000000 ____D C:\ProgramData\PreEmptive Solutions 2013-10-06 19:43 - 2013-10-06 19:42 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\NuGet 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services 2013-10-06 19:37 - 2013-10-06 19:37 - 00000000 ____D C:\Program Files (x86)\Windows Kits 2013-10-06 19:31 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer 2013-10-06 19:16 - 2013-10-06 19:13 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\DAEMON Tools Lite 2013-10-06 19:13 - 2013-10-06 19:13 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2013-10-06 18:56 - 2013-10-06 18:56 - 00000000 ____D C:\ProgramData\Synology 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Apple Computer 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Apple Computer 2013-10-06 18:33 - 2013-10-06 18:33 - 00000000 ___HT C:\Windows\wusa.lock 2013-10-06 18:32 - 2013-10-06 18:32 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Unity 2013-10-06 18:31 - 2013-10-06 18:31 - 00001116 _____ C:\Users\Public\Desktop\Unity.lnk 2013-10-06 18:31 - 2013-10-06 18:31 - 00000000 ____D C:\Users\Public\Documents\Unity Projects 2013-10-06 18:25 - 2013-10-06 18:25 - 00000000 ____D C:\Program Files (x86)\Unity 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Public\Documents\Atheros 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Angela ***\AppData\Local\BMExplorer 2013-10-06 18:17 - 2013-10-06 17:52 - 00000000 ____D C:\Program Files\P4G 2013-10-06 18:17 - 2013-10-06 17:42 - 00000000 ____D C:\Users\Angela ***\Documents\Bluetooth Folder 2013-10-06 18:08 - 2013-10-06 18:08 - 00003148 _____ C:\Windows\System32\Tasks\SidebarExecute 2013-10-06 18:07 - 2013-10-06 18:07 - 00000000 ____D C:\Program Files\Intel 2013-10-06 17:58 - 2013-10-06 16:28 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-10-06 17:53 - 2013-10-06 17:53 - 00003042 _____ C:\Windows\System32\Tasks\ASUS P4G 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIh_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIc_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____D C:\Program Files\Fresco Logic Inc 2013-10-06 17:45 - 2013-10-06 17:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-10-06 17:45 - 2013-10-06 16:28 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-10-06 17:43 - 2013-10-06 17:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-10-06 17:42 - 2013-10-06 17:41 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-10-06 17:42 - 2011-01-06 19:55 - 00246804 _____ C:\Windows\system32\Drivers\AtherosBt.bin 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Program Files\Realtek 2013-10-06 17:34 - 2013-10-06 16:38 - 00000000 ____D C:\Program Files (x86)\ASUS 2013-10-06 17:27 - 2013-10-06 16:59 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Google 2013-10-06 17:17 - 2013-10-06 17:16 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-10-06 17:16 - 2013-10-06 17:16 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2013-10-06 17:16 - 2013-10-06 17:15 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2013-10-06 17:16 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help 2013-10-06 17:14 - 2013-10-06 17:14 - 00000000 ____D C:\NVIDIA 2013-10-06 17:10 - 2013-10-06 17:10 - 00001143 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\ProgramData\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-10-06 17:01 - 2009-07-14 07:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2013-10-06 17:01 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2013-10-06 17:00 - 2013-10-06 17:00 - 00002251 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-10-06 16:59 - 2013-10-06 16:59 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-10-06 16:59 - 2013-10-06 16:59 - 00000000 _____ C:\Windows\SysWOW64\config.nt 2013-10-06 16:58 - 2013-10-06 16:58 - 00000000 ____D C:\Program Files\AVAST Software 2013-10-06 16:58 - 2013-10-06 16:53 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-06 16:49 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2013-10-06 16:43 - 2013-10-06 16:43 - 00000000 ____D C:\Program Files (x86)\Atheros 2013-10-06 16:43 - 2013-10-06 16:41 - 00000000 ____D C:\ProgramData\Atheros 2013-10-06 16:40 - 2013-10-06 16:40 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\InstallShield 2013-10-06 16:38 - 2013-10-06 16:38 - 00002978 _____ C:\Windows\System32\Tasks\ATKOSD2 2013-10-06 16:32 - 2013-10-06 16:32 - 00000000 ____D C:\Program Files (x86)\Intel 2013-10-06 16:29 - 2013-10-06 16:29 - 00000000 ____D C:\Intel 2013-10-06 16:28 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore 2013-10-06 16:26 - 2013-10-06 17:01 - 00000000 ____D C:\Windows\Panther 2013-10-06 16:26 - 2013-10-06 16:26 - 00000020 ___SH C:\Users\Angela ***\ntuser.ini 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 __SHD C:\Recovery 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 ____D C:\Users\Angela ***\AppData\Local\VirtualStore 2013-10-06 16:26 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default 2013-10-06 16:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Recovery 2013-10-06 16:26 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT 2013-10-06 16:07 - 2013-10-06 16:07 - 00001313 _____ C:\Windows\TSSysprep.log 2013-10-06 16:07 - 2009-07-14 06:46 - 00001774 _____ C:\Windows\DtcInstall.log 2013-10-06 16:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep 2013-10-06 16:03 - 2009-07-14 20:18 - 00000000 ____D C:\Windows\CSC Some content of TEMP: ==================== C:\Users\Angela ***\AppData\Local\Temp\fp_pl_pfs_installer.exe C:\Users\Angela ***\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-10-12 11:57 ==================== End Of Log ============================ |
13.10.2013, 14:33 | #12 |
/// the machine /// TB-Ausbilder | Winows 7: Avast meldet ständig "Bösartige Website blockiert"ESET Online Scanner
Downloade Dir bitte SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
15.10.2013, 06:30 | #13 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" So, ich musste den Scan nachts ausführen und beim ersten Mal hat evtl. Windows Update dazwischengefunkt. Zumindest nachdem ich Eset ausgeführt hatte war das Problem noch vorhanden. Den Virus den er da gefunden hat (Jeefo) hatte ich mal vor über 2 Jahren und seither keine Probleme mehr damit. Eset log Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=c413c711c7ad934db80f211359585f38 # engine=15482 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=false # unsafe_checked=false # antistealth_checked=true # utc_time=2013-10-15 01:04:05 # local_time=2013-10-15 03:04:05 (+0100, Mitteleuropäische Sommerzeit) # country="Switzerland" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=774 16777213 85 91 712052 158508917 0 0 # compatibility_mode=5893 16776573 100 94 0 133428895 0 0 # scanned=512841 # found=46 # cleaned=0 # scan_time=15981 sh=3191451DBEC8EC7374D39BF9849091A62C200A10 ft=1 fh=5a0f1a387d3883b2 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\shoot_the_fish_1.0.exe" sh=C2E5C3EE69D8C1A3CA1599923E61AD382C30CB26 ft=1 fh=c158f838b1ea5a53 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\as3\as3tests\03_export\bin\data\swf\My Flash Application.exe" sh=3191451DBEC8EC7374D39BF9849091A62C200A10 ft=1 fh=5a0f1a387d3883b2 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\bict-lessons\Workshop Game\fishgame\shoot_the_fish_1.0.exe" sh=E74876CA7AE09BCB45C3500DEADAEF34D72FE65A ft=1 fh=e8c582a5d6be3db7 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\example_fscommand\projector.exe" sh=723C0EDD258B4E6B1255F610A158751063404797 ft=1 fh=e7596a4f2bd4899b vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\idpa_sarbach\idpa.exe" sh=C8EAE50A24E08530FFFC930CED88708DAFB69525 ft=1 fh=c158f838a3e4642a vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\kundencd\03_export\bin\Weiterbildung und neue Lernmedien.exe" sh=68E82D670506D8C9B0D34D2AA2E3FB25391A8779 ft=1 fh=47dbc3939ce56a4f vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\kundencd\03_export\bin\data\projects\erecruiting\d\start.exe" sh=3DC143855764EEBCD0F148309DEBD86AA81E770C ft=1 fh=95564c0f224318bd vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\kundencd\03_export\bin\data\projects\oekologie\d\oekologie.exe" sh=7D7FD5D5962AFFCE77F5E9B47AAA0D84F91A905B ft=1 fh=db890d219ce56a4f vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\kundencd\03_export\bin\data\projects\oekologie\d\start.exe" sh=065F7DA3C2DBCB2DCFD02001C2F3385AD5525996 ft=1 fh=f8a1b6ed2f241b04 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\kundencd\03_export\bin\data\projects\postauto\d\postauto.exe" sh=7D7FD5D5962AFFCE77F5E9B47AAA0D84F91A905B ft=1 fh=db890d219ce56a4f vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\kundencd\03_export\bin\data\projects\rema\d\start.exe" sh=514C42653F170E5E61D25272E3665D0C3C86C8EE ft=1 fh=5a0f1a386f526e5e vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\memento_1.1\MEMENTO_1.1.exe" sh=6DC16306C1FEA323502E405C5B62C9ABAFDBA556 ft=1 fh=5a0f1a387f3a2492 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\pingugame\aquarium1.0.exe" sh=3191451DBEC8EC7374D39BF9849091A62C200A10 ft=1 fh=5a0f1a387d3883b2 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\shoot_the_fish\shoot_the_fish_1.0.exe" sh=487A6A4961BCAE96AE1AE448450578E3C468F5FB ft=1 fh=e8c582a559fed7b2 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\slot_machine\bandit_0.5.exe" sh=CD854A5794B30073C02374CF6F842FBABD647E18 ft=1 fh=5e65d535cbfa7ef3 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\smarties\smarties.exe" sh=A6E4B63D899BC23EF24C66D5A48F9174289CDFA1 ft=1 fh=5a0f1a3892972bf1 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\vergaenglichkeit\vergaengtlichkeit.exe" sh=933E1953DC877BD2C73040AA29420D2429BA502C ft=1 fh=5a0f1a38d7f2729e vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\wahrsager\wahrsager0.3.exe" sh=1146BBDBFE80EAC0685B4498766BB72F01E632CD ft=1 fh=5a0f1a38a77d15c0 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$R6RFJQD\wahrsager\wahrsager0.4.exe" sh=3050BEA847795391EBCBD2B6810A510323C3029F ft=1 fh=c4bb877bb5e59f61 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RB1QJ40\game_graphics\game_redesign\_avw_praesi\VLCPortable\VLCPortable.exe" sh=A23CD3BE0B4CDA94FBE9C0E7B78F0EDBF6D10BCB ft=1 fh=085066f9d1d6e95e vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RB1QJ40\game_graphics\game_redesign\_avw_praesi\VLCPortable\App\vlc\vlc.exe" sh=A585CE7C9F8F43B17BDF1AF53EA70589D5FA973C ft=1 fh=5318909acf2c2df4 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\flyer_BEA\2010\dirzahl.exe" sh=E4DCA43D57F7294BEDC1788106FC2F63B0671E97 ft=1 fh=5574a2b93903eaee vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\flyer_BEA\2010\GoogleEarthPluginSetup.exe" sh=92F5C848C023FE1732FF26962D4B1A0B0274EC2F ft=1 fh=bacd27e0c9664718 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\flyer_BEA\2010\googleupdatesetup.exe" sh=7CD15CE40041F5AC997E59CF57914098B670179A ft=1 fh=281295b380cccb64 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\flyer_BEA\2010\install_flashplayer10_chra_aih.exe" sh=64BF9A52F357709FB26E336F1BC08C6B642D61C4 ft=1 fh=9013841df2a414c3 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\My Documents\Philips_Intelligent_Agent_2.1_Setup.exe" sh=07AF122D19F73BA04951B93C29F31587A94C806F ft=1 fh=44a11a9a7483b18c vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\My Documents\Downloads\install_flash_player.exe" sh=1CD3227C475EC9194AA38A291A78AA6EE3F427EA ft=1 fh=bf4fd9a9919de0fc vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Firefox_Setup_3.5.4.exe" sh=D7CC4B8062C5BC0B95FCB3DC31C61013890A42A1 ft=1 fh=9aef27203ee603bb vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\vlc-1.0.2-win32.exe" sh=498291A73EE2F59C8D9751F381EBFEFDB394E81F ft=1 fh=32aebbd854f7ca49 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\CLVIEW.EXE" sh=83E452F0F227B7B1B2212BF81C745E2D895C5624 ft=1 fh=40aedf0d7b9e8204 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\CNFNOT32.EXE" sh=04ABB3E8CC561B4052F80B891A5923EC172FCA71 ft=1 fh=6d7a8b2119621c36 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\GRAPH.EXE" sh=885629BFFBCD02144B432B850F3F293C3A63F3D2 ft=1 fh=0fbe17fd78a7acfb vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\GROOVEMN.EXE" sh=17F1BD793EE4E3B9EE77FE44E5E7162F04AB5BBC ft=1 fh=4cdfc2e37515f1ed vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\MSOSYNC.EXE" sh=11CADE73FAF45F445E30E10D89340B02F3E701D4 ft=1 fh=fb90966bf10923b4 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\MSOUC.EXE" sh=AACCCC61BCC92157B57920BFC74F3627A0A72BBE ft=1 fh=01b4b4e27ea525f5 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\MSQRY32.EXE" sh=1C1DEA5875D4FD8405C650DAAB4D4AB906D5F2D7 ft=1 fh=e409d9840c82f8af vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\MSTORDB.EXE" sh=D72F7A9023160DC253E321CAD4A57AAB29CFA6B7 ft=1 fh=163ecc963af837e3 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\MSTORE.EXE" sh=074832323BA54E44FF7C6B35EBA23B50FB24930F ft=1 fh=0b946c34c8a5002d vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\OIS.EXE" sh=ACF222E05F3651C9ED13E346A69CCE277FC9E178 ft=1 fh=991283111c74f11e vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\OUTLOOK.EXE" sh=C44732B689112028EA113D7179F0343372868B55 ft=1 fh=bc19efdf7ba961f2 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\SELFCERT.EXE" sh=743E4751C1A294347386646CE4FEA66315775F49 ft=1 fh=ba3ff513a2950847 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\programme\Office2010\Office14\VPREVIEW.EXE" sh=70E7B550FC9EE8F8054D5DA4E07084D1C220F7BA ft=1 fh=e864499cb899cef7 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\SolothurnTax 2008\SolothurnTax 2008.exe" sh=121A65182181B365764CC32FC2CBEE59AADBFC02 ft=1 fh=a422d2307409f639 vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\SolothurnTax 2008\uninstall.exe" sh=1795314EB17A2DD2938706746EBB6943731918B1 ft=1 fh=81ac0b0aebc8e13d vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\SolothurnTax 2008\jre\bin\jucheck.exe" sh=4F435805C2F88461D51A8A736A3CCC9C49F8F991 ft=1 fh=aea6b550e5e8e4ac vn="Win32/Jeefo.A virus" ac=I fn="G:\$RECYCLE.BIN\S-1-5-21-3519848775-610427252-4172266325-1000\$RNTENE0\_FOTOS\de_office_professional_plus_2010_w32_x16-32254\de_office_professional_plus_2010_w32_x16-32254.exe" Code:
ATTFilter Results of screen317's Security Check version 0.99.74 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` avast! Antivirus Antivirus up to date! (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 Adobe Flash Player 11.9.900.117 Mozilla Firefox (24.0) Google Chrome 30.0.1599.69 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe Malwarebytes' Anti-Malware mbamscheduler.exe AVAST Software Avast AvastSvc.exe AVAST Software Avast AvastUI.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013 Ran by Angela *** (administrator) on STEALTHBOMBER on 15-10-2013 07:20:18 Running from C:\Users\Angela ***\Desktop Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard Internet Explorer Version 9 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Intel(R) Corporation) C:\Program Files\Intel\TurboBoost\TurboBoost.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe (Windows (R) Win 7 DDK provider) C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe (ASUS) C:\Program Files\P4G\BatteryLife.exe (ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11725928 2010-12-23] (Realtek Semiconductor) HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [615584 2011-01-06] (Atheros Communications) HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2011-01-06] (Atheros Commnucations) HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4156 2010-04-16] () HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20474528 2013-10-02] (Skype Technologies S.A.) HKLM-x32\...\Run: [ATKMEDIA] - C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS) HKLM-x32\...\Run: [HControlUser] - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS) HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software) HKLM-x32\...\Run: [Wireless Console 3] - C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [1601536 2010-09-23] () HKLM-x32\...\Run: [FLxHCIm] - C:\Program Files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe [40448 2011-02-24] (Windows (R) Win 7 DDK provider) ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://ch.msn.com/default.aspx?ocid=iehp HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x10E16758A3C2CE01 HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-ch StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations) BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.) Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.192.1 FireFox: ======== FF ProfilePath: C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll () FF Plugin: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll () FF Plugin-x32: @microsoft.com/GENUINE - disabled No File FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Angela ***\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Youtube MP3 Podcaster - C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\youtubemp3podcaster@jeremy.d.gregorio.com FF Extension: WOT - C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} FF Extension: DownloadHelper - C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} FF Extension: No Name - C:\Users\Angela ***\AppData\Roaming\Mozilla\Firefox\Profiles\x25tieo2.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF Chrome: ======= CHR HomePage: hxxp://www.google.com CHR RestoreOnStartup: "hxxp://www.google.com/" CHR Extension: (Google Docs) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (YouTube) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 CHR Extension: (Google Search) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Chrome In-App Payments service) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0 CHR Extension: (Gmail) - C:\Users\ANGELA~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 ==================== Services (Whitelisted) ================= R2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [138400 2011-01-06] (Atheros) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software) R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation) ==================== Drivers (Whitelisted) ==================== R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-08-30] (AVAST Software) R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [72016 2013-08-30] (AVAST Software) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-08-30] () R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1030952 2013-08-30] (AVAST Software) R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [378944 2013-08-30] (AVAST Software) R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [64288 2013-08-30] (AVAST Software) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [204880 2013-08-30] () R3 FLxHCIh; C:\Windows\System32\DRIVERS\FLxHCIh.sys [81920 2011-02-24] (Fresco Logic) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation) S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.) R2 TurboB; C:\Windows\System32\DRIVERS\TurboB.sys [13832 2010-04-16] () ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-10-15 07:17 - 2013-10-15 07:16 - 00891167 _____ C:\Users\Angela ***\Desktop\SecurityCheck.exe 2013-10-15 07:15 - 2013-10-15 07:15 - 00891167 _____ C:\Users\Angela ***\Downloads\SecurityCheck.exe 2013-10-14 22:29 - 2013-10-14 22:29 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2013-10-14 03:00 - 2013-10-14 03:00 - 00000000 ____D C:\Windows\system32\SPReview 2013-10-14 03:00 - 2013-10-14 03:00 - 00000000 ____D C:\Windows\system32\EventProviders 2013-10-13 23:25 - 2010-11-20 15:39 - 05066752 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll 2013-10-13 23:25 - 2010-11-20 15:33 - 00951680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2013-10-13 23:25 - 2010-11-20 15:33 - 00299392 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll 2013-10-13 23:25 - 2010-11-20 15:33 - 00273792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys 2013-10-13 23:25 - 2010-11-20 15:33 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys 2013-10-13 23:25 - 2010-11-20 15:33 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys 2013-10-13 23:25 - 2010-11-20 15:32 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys 2013-10-13 23:25 - 2010-11-20 15:27 - 14633472 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 03860992 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 03650560 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 03027968 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL 2013-10-13 23:25 - 2010-11-20 15:27 - 03008000 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 02652160 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 02543616 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 02314752 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 02086912 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 02018304 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01900544 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL 2013-10-13 23:25 - 2010-11-20 15:27 - 01753088 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01646080 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01556992 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01509888 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01326080 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01281024 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01219584 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01212416 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01197056 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 01008128 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00867840 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00849920 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00800256 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00750080 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00695808 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00577536 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00512000 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00481280 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL 2013-10-13 23:25 - 2010-11-20 15:27 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00326144 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00263168 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00214528 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll 2013-10-13 23:25 - 2010-11-20 15:27 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 04120064 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 03391488 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 03205120 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 02067456 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 01866240 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 01632256 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 01340416 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 01244160 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2013-10-13 23:25 - 2010-11-20 15:26 - 00828416 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 00787968 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 00784896 _____ (Microsoft Corporation) C:\Windows\system32\gpprefcl.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 00777728 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 00658944 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 00317952 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore.dll 2013-10-13 23:25 - 2010-11-20 15:26 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\framedynos.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 03957760 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe 2013-10-13 23:25 - 2010-11-20 15:25 - 01975296 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 01927680 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 01600512 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2013-10-13 23:25 - 2010-11-20 15:25 - 01504256 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe 2013-10-13 23:25 - 2010-11-20 15:25 - 01116672 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe 2013-10-13 23:25 - 2010-11-20 15:25 - 00958464 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 00902144 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 00897536 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe 2013-10-13 23:25 - 2010-11-20 15:25 - 00594432 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 00464384 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe 2013-10-13 23:25 - 2010-11-20 15:25 - 00390656 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe 2013-10-13 23:25 - 2010-11-20 15:25 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe 2013-10-13 23:25 - 2010-11-20 15:25 - 00359424 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe 2013-10-13 23:25 - 2010-11-20 15:25 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll 2013-10-13 23:25 - 2010-11-20 15:25 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe 2013-10-13 23:25 - 2010-11-20 15:25 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\PushPrinterConnections.exe 2013-10-13 23:25 - 2010-11-20 15:24 - 02872320 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2013-10-13 23:25 - 2010-11-20 15:24 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\lsm.exe 2013-10-13 23:25 - 2010-11-20 14:32 - 05066752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuthFWSnapin.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 01548288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 01128448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 01115136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RacEngn.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 00870912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFolder.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 00505856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskschd.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 00283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2013-10-13 23:25 - 2010-11-20 14:21 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll 2013-10-13 23:25 - 2010-11-20 14:20 - 01414144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll 2013-10-13 23:25 - 2010-11-20 14:20 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbc32.dll 2013-10-13 23:25 - 2010-11-20 14:20 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll 2013-10-13 23:25 - 2010-11-20 14:19 - 03207680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll 2013-10-13 23:25 - 2010-11-20 14:19 - 01698816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll 2013-10-13 23:25 - 2010-11-20 14:19 - 01493504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll 2013-10-13 23:25 - 2010-11-20 14:19 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll 2013-10-13 23:25 - 2010-11-20 14:19 - 00954752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc40.dll 2013-10-13 23:25 - 2010-11-20 14:19 - 00954288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc40u.dll 2013-10-13 23:25 - 2010-11-20 14:18 - 01828352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll 2013-10-13 23:25 - 2010-11-20 14:18 - 01371136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2013-10-13 23:25 - 2010-11-20 14:18 - 01334272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertEnroll.dll 2013-10-13 23:25 - 2010-11-20 14:18 - 01171456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2013-10-13 23:25 - 2010-11-20 14:18 - 00739840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2013-10-13 23:25 - 2010-11-20 14:18 - 00342016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2013-10-13 23:25 - 2010-11-20 14:18 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3api.dll 2013-10-13 23:25 - 2010-11-20 14:17 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2013-10-13 23:25 - 2010-11-20 14:17 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe 2013-10-13 23:25 - 2010-11-20 14:17 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe 2013-10-13 23:25 - 2010-11-20 14:17 - 00322048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe 2013-10-13 23:25 - 2010-11-20 14:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PushPrinterConnections.exe 2013-10-13 23:25 - 2010-11-20 13:07 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys 2013-10-13 23:25 - 2010-11-20 13:05 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\rdpdd.dll 2013-10-13 23:25 - 2010-11-20 11:27 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\csc.sys 2013-10-13 23:25 - 2010-11-20 11:25 - 00753664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys 2013-10-13 23:25 - 2010-11-20 11:23 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys 2013-10-13 23:25 - 2010-11-20 11:21 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys 2013-10-13 23:25 - 2010-11-20 05:52 - 00419880 _____ C:\Windows\SysWOW64\locale.nls 2013-10-13 23:25 - 2010-11-20 05:52 - 00419880 _____ C:\Windows\system32\locale.nls 2013-10-13 23:25 - 2010-11-05 04:20 - 00347904 _____ C:\Windows\system32\systemsf.ebd 2013-10-13 23:25 - 2010-11-05 03:58 - 01130824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll 2013-10-13 23:25 - 2010-11-05 03:58 - 00297808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscoree.dll 2013-10-13 23:25 - 2010-11-05 03:57 - 01942856 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll 2013-10-13 23:25 - 2010-11-05 03:57 - 00444752 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll 2013-10-13 23:25 - 2010-11-05 03:57 - 00048976 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll 2013-10-13 23:25 - 2010-11-05 03:53 - 00320352 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe 2013-10-13 23:25 - 2010-11-05 03:53 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHost.exe 2013-10-13 23:25 - 2010-11-05 03:53 - 00109928 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll 2013-10-13 23:25 - 2010-11-05 03:53 - 00099176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationHostProxy.dll 2013-10-13 23:25 - 2009-07-14 03:16 - 00629760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pmcsnap.dll 2013-10-13 23:25 - 2009-07-14 03:16 - 00238080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ppcsnap.dll 2013-10-13 23:25 - 2009-07-14 03:16 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpmonui.dll 2013-10-13 23:24 - 2010-11-20 15:44 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe 2013-10-13 23:24 - 2010-11-20 15:44 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\NAPHLPR.DLL 2013-10-13 23:24 - 2010-11-20 15:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\NAPCRYPT.DLL 2013-10-13 23:24 - 2010-11-20 15:34 - 00363392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys 2013-10-13 23:24 - 2010-11-20 15:34 - 00295808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys 2013-10-13 23:24 - 2010-11-20 15:34 - 00215936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys 2013-10-13 23:24 - 2010-11-20 15:34 - 00199552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys 2013-10-13 23:24 - 2010-11-20 15:34 - 00071552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys 2013-10-13 23:24 - 2010-11-20 15:34 - 00046464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmstorfl.sys 2013-10-13 23:24 - 2010-11-20 15:34 - 00034688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storvsc.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00366976 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00289664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00263040 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll 2013-10-13 23:24 - 2010-11-20 15:33 - 00213888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00184704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00171392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00155008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00140672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00103808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00094592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00078720 _____ (Hewlett-Packard Company) C:\Windows\system32\Drivers\HpSAMD.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00063360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00052096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00031104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys 2013-10-13 23:24 - 2010-11-20 15:33 - 00014720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys 2013-10-13 23:24 - 2010-11-20 15:32 - 02217856 _____ (Microsoft Corporation) C:\Windows\system32\bootres.dll 2013-10-13 23:24 - 2010-11-20 15:32 - 00334208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys 2013-10-13 23:24 - 2010-11-20 15:32 - 00179072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2013-10-13 23:24 - 2010-11-20 15:32 - 00155520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys 2013-10-13 23:24 - 2010-11-20 15:32 - 00112000 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2013-10-13 23:24 - 2010-11-20 15:32 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys 2013-10-13 23:24 - 2010-11-20 15:29 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll 2013-10-13 23:24 - 2010-11-20 15:28 - 00780008 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2013-10-13 23:24 - 2010-11-20 15:28 - 00298104 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll 2013-10-13 23:24 - 2010-11-20 15:28 - 00223248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys 2013-10-13 23:24 - 2010-11-20 15:28 - 00166784 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 03211776 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 02262528 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 02250752 _____ (Microsoft Corporation) C:\Windows\system32\SensorsCpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 02193920 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 02146816 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 02072576 _____ (Microsoft Corporation) C:\Windows\system32\WMPEncEn.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01911808 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01808384 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01689600 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01672704 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01363968 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01243136 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01232896 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL 2013-10-13 23:24 - 2010-11-20 15:27 - 01190400 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL 2013-10-13 23:24 - 2010-11-20 15:27 - 01158656 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01098240 _____ (Microsoft Corporation) C:\Windows\system32\Vault.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01082880 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01080320 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01050624 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL 2013-10-13 23:24 - 2010-11-20 15:27 - 00933888 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00898560 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00812032 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00799744 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00781312 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\sdcpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00691200 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00681472 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL 2013-10-13 23:24 - 2010-11-20 15:27 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00633344 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00625664 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00625664 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00605696 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00594432 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00582656 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\mspbda.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\msdri.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00527872 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00483840 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00451072 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00446976 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese30.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00435712 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00421888 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00418816 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\prnfldr.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00392192 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00372736 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00366080 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00358400 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00337920 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\netdiagfx.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00300032 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00268288 _____ (Microsoft Corporation) C:\Windows\system32\MSAC3ENC.DLL 2013-10-13 23:24 - 2010-11-20 15:27 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\QAGENT.DLL 2013-10-13 23:24 - 2010-11-20 15:27 - 00264192 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00263168 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\qasf.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\qdv.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\mstask.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00236032 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00232960 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceSyncProvider.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\wmpsrcwp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL 2013-10-13 23:24 - 2010-11-20 15:27 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\OnLineIDCpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00207360 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\netjoin.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\provsvc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\prncache.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\qcap.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\netid.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\ocsetapi.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\prntvpt.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\ntlanman.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\wiavideo.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL 2013-10-13 23:24 - 2010-11-20 15:27 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL 2013-10-13 23:24 - 2010-11-20 15:27 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\nci.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\QCLIPROV.DLL 2013-10-13 23:24 - 2010-11-20 15:27 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\napdsnap.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\rdpd3d.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\vss_ps.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\PrintIsolationProxy.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\msdmo.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\profprov.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\netutils.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\rdprefdrvapi.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TRAPI.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\nrpsrv.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2013-10-13 23:24 - 2010-11-20 15:27 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2013-10-13 23:24 - 2010-11-20 15:27 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 02746880 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 01457664 _____ (Microsoft Corporation) C:\Windows\system32\DxpTaskSync.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\DiagCpl.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 01087488 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 01066496 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 01009152 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00934912 _____ (Microsoft Corporation) C:\Windows\system32\FirewallControlPanel.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\dsuiext.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00675328 _____ (Microsoft Corporation) C:\Windows\system32\DXPTaskRingtone.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00630272 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00573952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00551936 _____ (Microsoft Corporation) C:\Windows\system32\localsec.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCenter.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00503296 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00501248 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL 2013-10-13 23:24 - 2010-11-20 15:26 - 00495104 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\DXP.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00403968 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00399872 _____ (Microsoft Corporation) C:\Windows\system32\dpx.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00348160 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\hgcpl.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\dot3ui.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\efscore.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\iTVData.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00281600 _____ (Microsoft) C:\Windows\system32\DShowRdpFilter.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\framedyn.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00239616 _____ (Microsoft Corporation) C:\Windows\system32\dskquoui.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\hgprint.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00233984 _____ (Microsoft Corporation) C:\Windows\system32\defaultlocationcpl.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\ListSvc.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingFolder.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\mprddm.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00186880 _____ (Microsoft Corporation) |
15.10.2013, 06:32 | #14 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" Neues FRST log (Teil 2) Code:
ATTFilter C:\Windows\system32\logoncli.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\ifsutil.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\fde.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\dps.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL 2013-10-13 23:24 - 2010-11-20 15:26 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\fphc.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\dnscmmc.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00116224 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\fms.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapistub.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\KMSVC.DLL 2013-10-13 23:24 - 2010-11-20 15:26 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\Mcx2Svc.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\dot3api.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\inetmib1.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\lsmproxy.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\luainstall.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\FXSMON.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\mciqtz32.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\iscsium.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dsauth.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\HotStartUserAgent.dll 2013-10-13 23:24 - 2010-11-20 15:26 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\elsTrans.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 03745792 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 03524608 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 01264640 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 01065984 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00840192 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenter.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00749568 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00705024 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2013-10-13 23:24 - 2010-11-20 15:25 - 00692224 _____ (Microsoft Corporation) C:\Windows\system32\cscsvc.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00577024 _____ (Microsoft Corporation) C:\Windows\system32\AdmTmpl.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00549888 _____ (Microsoft Corporation) C:\Windows\system32\ActionCenterCPL.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\biocpl.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\cscui.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00472064 _____ (Microsoft Corporation) C:\Windows\system32\azroleui.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00460800 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\nltest.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00349696 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeResults.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00293888 _____ (Microsoft Corporation) C:\Windows\system32\wsqmcons.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\schtasks.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\taskmgr.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\cscobj.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\recdisc.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\ActionQueue.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\perfmon.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\bcdsrv.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\net1.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00137216 _____ (Microsoft Corporation) C:\Windows\system32\CscMig.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00128000 _____ (Microsoft) C:\Windows\system32\Robocopy.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\AxInstSv.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\cca.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\cabinet.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\amstream.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\setupcl.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\tabcal.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\CertPolEng.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\takeown.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\tzutil.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\runonce.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\acppage.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\repair-bde.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\MultiDigiMon.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\proquota.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\AzSqlExt.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\userinit.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\qprocess.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\bitsperf.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\tskill.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\qappsrv.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\tscon.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\tsdiscon.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\shadow.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\rwinsta.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\reset.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\query.exe 2013-10-13 23:24 - 2010-11-20 15:25 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\BWUnpairElevated.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll 2013-10-13 23:24 - 2010-11-20 15:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\C_ISCII.DLL 2013-10-13 23:24 - 2010-11-20 15:25 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00957440 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00899584 _____ (Microsoft Corporation) C:\Windows\system32\Bubbles.scr 2013-10-13 23:24 - 2010-11-20 15:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl 2013-10-13 23:24 - 2010-11-20 15:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00777728 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00763904 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl 2013-10-13 23:24 - 2010-11-20 15:24 - 00721408 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl 2013-10-13 23:24 - 2010-11-20 15:24 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\FXSSVC.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\TabletPC.cpl 2013-10-13 23:24 - 2010-11-20 15:24 - 00653312 _____ (Microsoft Corporation) C:\Windows\system32\lpksetup.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00606208 _____ (Microsoft Corporation) C:\Windows\system32\dfrgui.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl 2013-10-13 23:24 - 2010-11-20 15:24 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\main.cpl 2013-10-13 23:24 - 2010-11-20 15:24 - 00477696 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr 2013-10-13 23:24 - 2010-11-20 15:24 - 00474112 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx 2013-10-13 23:24 - 2010-11-20 15:24 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv 2013-10-13 23:24 - 2010-11-20 15:24 - 00378880 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00373248 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl 2013-10-13 23:24 - 2010-11-20 15:24 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\sysdm.cpl 2013-10-13 23:24 - 2010-11-20 15:24 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\bcdedit.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00345088 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\ssText3d.scr 2013-10-13 23:24 - 2010-11-20 15:24 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp 2013-10-13 23:24 - 2010-11-20 15:24 - 00300032 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00272896 _____ (Microsoft Corporation) C:\Windows\system32\mcbuilder.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00250880 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax 2013-10-13 23:24 - 2010-11-20 15:24 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\Mystify.scr 2013-10-13 23:24 - 2010-11-20 15:24 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\Ribbons.scr 2013-10-13 23:24 - 2010-11-20 15:24 - 00232448 _____ (Microsoft Corporation) C:\Windows\system32\bitsadmin.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv 2013-10-13 23:24 - 2010-11-20 15:24 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\VBICodec.ax 2013-10-13 23:24 - 2010-11-20 15:24 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\bcdboot.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl 2013-10-13 23:24 - 2010-11-20 15:24 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\iscsicli.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\MdSched.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax 2013-10-13 23:24 - 2010-11-20 15:24 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\desk.cpl 2013-10-13 23:24 - 2010-11-20 15:24 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\aitagent.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\kstvtune.ax 2013-10-13 23:24 - 2010-11-20 15:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\mobsync.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\WSTPager.ax 2013-10-13 23:24 - 2010-11-20 15:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\cmstp.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\isoburn.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\manage-bde.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00071168 _____ (Microsoft Corporation) C:\Windows\bfsvc.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\ksxbar.ax 2013-10-13 23:24 - 2010-11-20 15:24 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\djoin.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\g711codc.ax 2013-10-13 23:24 - 2010-11-20 15:24 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\vbisurf.ax 2013-10-13 23:24 - 2010-11-20 15:24 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\choice.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\LogonUI.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\chgport.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\chglogon.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\logoff.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\chgusr.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\FXSUNATD.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\fixmapi.exe 2013-10-13 23:24 - 2010-11-20 15:24 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\change.exe 2013-10-13 23:24 - 2010-11-20 15:16 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2013-10-13 23:24 - 2010-11-20 15:15 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll 2013-10-13 23:24 - 2010-11-20 15:14 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwizres.dll 2013-10-13 23:24 - 2010-11-20 15:13 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\RDPENCDD.dll 2013-10-13 23:24 - 2010-11-20 15:13 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\nlsbres.dll 2013-10-13 23:24 - 2010-11-20 15:12 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\pifmgr.dll 2013-10-13 23:24 - 2010-11-20 15:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\vmicres.dll 2013-10-13 23:24 - 2010-11-20 15:09 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\vmbusres.dll 2013-10-13 23:24 - 2010-11-20 15:09 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\vmstorfltres.dll 2013-10-13 23:24 - 2010-11-20 15:02 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME 2013-10-13 23:24 - 2010-11-20 15:02 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime 2013-10-13 23:24 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUQ.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDTUF.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDSG.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\kbdlk41a.dll 2013-10-13 23:24 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDGKL.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\KBDCZ1.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDSF.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDPO.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDNEPR.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTAM.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDINBEN.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\KBDGR1.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDUS.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDUGHR1.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTURME.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAJIK.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDMON.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDMAORI.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDLT1.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINTEL.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINORI.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINMAR.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINKAN.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDINHIN.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBULG.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBLR.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL 2013-10-13 23:24 - 2010-11-20 15:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDGEO.DLL 2013-10-13 23:24 - 2010-11-20 14:55 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2013-10-13 23:24 - 2010-11-20 14:54 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\BlbEvents.dll 2013-10-13 23:24 - 2010-11-20 14:51 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2013-10-13 23:24 - 2010-11-20 14:51 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-ums-l1-1-0.dll 2013-10-13 23:24 - 2010-11-20 14:36 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NAPHLPR.DLL 2013-10-13 23:24 - 2010-11-20 14:36 - 00046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NAPCRYPT.DLL 2013-10-13 23:24 - 2010-11-20 14:23 - 00144768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\basecsp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 02983424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbon.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 02755072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 02311168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 02202624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsCpl.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 02157568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themecpl.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 02146304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SyncCenter.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 01712640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xpsservices.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 01667584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 01624064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPEncEn.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 01619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL 2013-10-13 23:24 - 2010-11-20 14:21 - 01363456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Query.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 01326592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanpref.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 01227776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 01175040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 01010688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 01003008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMNetMgr.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00933376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Vault.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00902656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL 2013-10-13 23:24 - 2010-11-20 14:21 - 00782336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webservices.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00778240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlsrv32.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00755200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sud.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00739328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL 2013-10-13 23:24 - 2010-11-20 14:21 - 00738816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpmde.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00638976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VAN.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00626176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00616960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00600064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00560128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00541184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVSDECD.DLL 2013-10-13 23:24 - 2010-11-20 14:21 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmdev.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00473600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched20.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00464896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrptadm.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00458752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00444928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmnet.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00428544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shwebsvc.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00416768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiadefui.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlangpui.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\systemcpl.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00410112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanui.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00406528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00380416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sxs.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00372224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00363520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StructuredQuery.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wbemcomn.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\termmgr.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizeng.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00352256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpeffects.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDSp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00350208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shlwapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00346624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSATAPI.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00328192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsvcs.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\zipfldr.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00318976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\raschap.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqlcese30.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00307712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskcomp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srchadmin.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00299520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpdxm.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00276992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcncsvc.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00269824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wldap32.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00246272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scansetting.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tapisrv.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00228352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00222208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wavemsp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVolSSO.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ws2_32.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdwcn.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppcomapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdscore.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sqmapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00186368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpencom.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpsrcwp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00181760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tcpipcfg.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasppp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scecli.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vdsbas.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syncui.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remotepg.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twext.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpps.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00140800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00134656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxlib.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00113664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SessEnv.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00111104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00109568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiavideo.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\t2embed.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00108032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WPDShServiceObj.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmpshell.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppinst.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srvcli.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00087552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\thumbcache.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userenv.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QUTIL.DLL 2013-10-13 23:24 - 2010-11-20 14:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserAccountControlSettings.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\regapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tlscsp.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spbcd.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdmat.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vfwwdm32.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpd3d.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsnmp32.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00051200 _____ (Twain Working Group) C:\Windows\twain_32.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samcli.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wkscli.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00046080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RpcRtRemote.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00040448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wtsapi32.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtutils.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimgvw.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\utildll.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vpnikeapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wsdchngr.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TRAPI.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdprefdrvapi.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shgina.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00019968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spopk.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sisbkup.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schedcli.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\syssetup.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slwga.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsbyuv.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshirda.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shunimpl.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\riched32.dll 2013-10-13 23:24 - 2010-11-20 14:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx 2013-10-13 23:24 - 2010-11-20 14:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 02504192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVCORE.DLL 2013-10-13 23:24 - 2010-11-20 14:20 - 02494464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netshell.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 02130944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\networkmap.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 01750528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pnidui.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 01661440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\networkexplorer.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 01644032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcenter.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 01508864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pla.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 01160192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpcServices.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 01111552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onexui.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\propsys.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00932352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\printui.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00859648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OobeFldr.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00801280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NaturalLanguage6.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00656384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00600576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PerfCenterCPL.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00563712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netlogon.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00547840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceApi.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercpl.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceStatus.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00406528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00395264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prnfldr.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00346112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshipsec.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00324608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00297472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntprint.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00283136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdv.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00236544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdh.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netdiagfx.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00218112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OnLineIDCpl.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00206848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qasf.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\onex.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00190976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qcap.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00183296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PortableDeviceSyncProvider.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00175616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00174592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetapi.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QAGENT.DLL 2013-10-13 23:24 - 2010-11-20 14:20 - 00167936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL 2013-10-13 23:24 - 2010-11-20 14:20 - 00166400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiohlp.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00165376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\provsvc.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netjoin.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00136192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mydocs.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00121344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prntvpt.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netid.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prncache.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00099328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL 2013-10-13 23:24 - 2010-11-20 14:20 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olepro32.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nci.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00077824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\olethk32.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QCLIPROV.DLL 2013-10-13 23:24 - 2010-11-20 14:20 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntlanman.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\napdsnap.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptui.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pdhui.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcconf.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netutils.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfts.dll 2013-10-13 23:24 - 2010-11-20 14:20 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 02341376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 02151936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmcndmgr.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00856576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallControlPanel.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00830464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL 2013-10-13 23:24 - 2010-11-20 14:19 - 00828928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontext.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00732160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2fs.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00592384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpprefcl.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00488448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00481792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00429056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\localsec.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ipsmsnap.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00392192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imapi2.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxclu.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hgcpl.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprddm.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MediaMetadataHandler.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00257024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00232448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAC3ENC.DLL 2013-10-13 23:24 - 2010-11-20 14:19 - 00219648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iTVData.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL 2013-10-13 23:24 - 2010-11-20 14:19 - 00213504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MMDevAPI.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstask.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00206336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedynos.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\framedyn.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00176128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrad.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00167936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msutb.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprapi.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00148992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ifsutil.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logoncli.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00124416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fde.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasrecst.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00120320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvfw32.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL 2013-10-13 23:24 - 2010-11-20 14:19 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\migisol.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fphc.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00093696 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\SysWOW64\fms.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciavi32.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00082944 _____ (Radius Inc.) C:\Windows\SysWOW64\iccvid.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iasacct.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapistub.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mapi32.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hbaapi.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdeploy.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00052736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetmib1.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iyuv_32.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mimefilt.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\luainstall.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mciqtz32.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\httpapi.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msasn1.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvidc32.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdmo.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsium.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msyuv.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lsmproxy.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll 2013-10-13 23:24 - 2010-11-20 14:19 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrle32.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 03727872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\accessibilitycpl.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 02522624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 01792000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 01555456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certmgr.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 01400320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DxpTaskSync.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 01040384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 01003520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00854016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00762880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroles.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00744448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenter.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00743424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00740864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\batmeter.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00685056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsuiext.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00665600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AuxiliaryDisplayCpl.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00630784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DXPTaskRingtone.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00537600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActionCenterCPL.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00522752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00508416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00484864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceCenter.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00438272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AdmTmpl.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00402944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00333824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3ui.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\azroleui.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00257024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpx.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00252928 _____ (Microsoft) C:\Windows\SysWOW64\DShowRdpFilter.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\audiodev.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00242176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00230912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00222208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\defaultlocationcpl.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00211456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairingFolder.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxdiagn.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00205312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\efscore.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00202752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\activeds.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dskquoui.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adsldp.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoplay.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscobj.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabview.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00128512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EhStorAPI.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3msm.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscmmc.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\avifil32.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dot3cfg.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cabinet.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\amstream.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00066560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cca.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CertPolEng.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\acppage.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscapi.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsauth.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00028160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AzSqlExt.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscdll.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elsTrans.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00019456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsperf.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2013-10-13 23:24 - 2010-11-20 14:18 - 00011264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\C_ISCII.DLL 2013-10-13 23:24 - 2010-11-20 14:18 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browseui.dll 2013-10-13 23:24 - 2010-11-20 14:17 - 00586752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfrgui.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00327680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimserv.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00314368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SndVol.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00303104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinfo32.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00288256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eudcedit.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00280064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00276480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskraid.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sethc.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskmgr.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mcbuilder.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00209920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PkgMgr.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ocsetup.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskeng.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00179712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schtasks.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00157184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\perfmon.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00144896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iscsicli.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\net1.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\diskpart.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00113152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupugc.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00101376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mobsync.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00098816 _____ (Microsoft) C:\Windows\SysWOW64\Robocopy.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00098304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nslookup.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00095232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logagent.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\isoburn.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cmstp.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\logman.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MuiUnattend.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\w32tm.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00062976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\findstr.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\takeown.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\runonce.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzutil.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00042496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00037888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\relog.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unlodctr.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\proquota.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00026624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\userinit.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netiougc.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netbtugc.exe 2013-10-13 23:24 - 2010-11-20 14:17 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe 2013-10-13 23:24 - 2010-11-20 14:16 - 00905216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmsys.cpl 2013-10-13 23:24 - 2010-11-20 14:16 - 00878592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Bubbles.scr 2013-10-13 23:24 - 2010-11-20 14:16 - 00776192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe 2013-10-13 23:24 - 2010-11-20 14:16 - 00692736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl 2013-10-13 23:24 - 2010-11-20 14:16 - 00679424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autoconv.exe 2013-10-13 23:24 - 2010-11-20 14:16 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe 2013-10-13 23:24 - 2010-11-20 14:16 - 00658944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autofmt.exe 2013-10-13 23:24 - 2010-11-20 14:16 - 00649216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appwiz.cpl 2013-10-13 23:24 - 2010-11-20 14:16 - 00516096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\main.cpl 2013-10-13 23:24 - 2010-11-20 14:16 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl 2013-10-13 23:24 - 2010-11-20 14:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoScreensaver.scr 2013-10-13 23:24 - 2010-11-20 14:16 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx 2013-10-13 23:24 - 2010-11-20 14:16 - 00345088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl 2013-10-13 23:24 - 2010-11-20 14:16 - 00326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysdm.cpl 2013-10-13 23:24 - 2010-11-20 14:16 - 00320000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv 2013-10-13 23:24 - 2010-11-20 14:16 - 00293888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ssText3d.scr 2013-10-13 23:24 - 2010-11-20 14:16 - 00281088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unimdm.tsp 2013-10-13 23:24 - 2010-11-20 14:16 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mystify.scr 2013-10-13 23:24 - 2010-11-20 14:16 - 00220672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Ribbons.scr 2013-10-13 23:24 - 2010-11-20 14:16 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax 2013-10-13 23:24 - 2010-11-20 14:16 - 00186368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bitsadmin.exe 2013-10-13 23:24 - 2010-11-20 14:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdmaud.drv 2013-10-13 23:24 - 2010-11-20 14:16 - 00153600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBICodec.ax 2013-10-13 23:24 - 2010-11-20 14:16 - 00142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl 2013-10-13 23:24 - 2010-11-20 14:16 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\desk.cpl 2013-10-13 23:24 - 2010-11-20 14:16 - 00107008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Kswdmcap.ax 2013-10-13 23:24 - 2010-11-20 14:16 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kstvtune.ax 2013-10-13 23:24 - 2010-11-20 14:16 - 00068608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSTPager.ax 2013-10-13 23:24 - 2010-11-20 14:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksxbar.ax 2013-10-13 23:24 - 2010-11-20 14:16 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\g711codc.ax 2013-10-13 23:24 - 2010-11-20 14:16 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbisurf.ax 2013-10-13 23:24 - 2010-11-20 14:08 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00833024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll 2013-10-13 23:24 - 2010-11-20 14:08 - 00663040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2013-10-13 23:24 - 2010-11-20 14:08 - 00311296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2013-10-13 23:24 - 2010-11-20 14:08 - 00119808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imm32.dll 2013-10-13 23:24 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTUQ.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTUF.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDSG.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kbdlk41a.dll 2013-10-13 23:24 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDGR1.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDGKL.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDCZ1.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDSF.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDPO.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDNEPR.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINTAM.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINORI.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINMAR.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINKAN.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINHIN.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINBEN.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDUS.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDUGHR1.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTURME.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAJIK.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDMON.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDMAORI.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDLT1.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDINTEL.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDGEO.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBULG.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBLR.DLL 2013-10-13 23:24 - 2010-11-20 14:08 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL 2013-10-13 23:24 - 2010-11-20 14:07 - 01164800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIRibbonRes.dll 2013-10-13 23:24 - 2010-11-20 14:07 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwizres.dll 2013-10-13 23:24 - 2010-11-20 14:06 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlsbres.dll 2013-10-13 23:24 - 2010-11-20 14:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pifmgr.dll 2013-10-13 23:24 - 2010-11-20 14:00 - 01027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME 2013-10-13 23:24 - 2010-11-20 14:00 - 00430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime 2013-10-13 23:24 - 2010-11-20 13:37 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbrpm.sys 2013-10-13 23:24 - 2010-11-20 13:06 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpdr.sys 2013-10-13 23:24 - 2010-11-20 13:04 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe 2013-10-13 23:24 - 2010-11-20 13:04 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2013-10-13 23:24 - 2010-11-20 12:52 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys 2013-10-13 23:24 - 2010-11-20 12:52 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys 2013-10-13 23:24 - 2010-11-20 12:52 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys 2013-10-13 23:24 - 2010-11-20 12:52 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspptp.sys 2013-10-13 23:24 - 2010-11-20 12:52 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys 2013-10-13 23:24 - 2010-11-20 12:52 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ipfltdrv.sys 2013-10-13 23:24 - 2010-11-20 12:52 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys 2013-10-13 23:24 - 2010-11-20 12:51 - 00125440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys 2013-10-13 23:24 - 2010-11-20 12:51 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys 2013-10-13 23:24 - 2010-11-20 12:50 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndisuio.sys 2013-10-13 23:24 - 2010-11-20 12:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys 2013-10-13 23:24 - 2010-11-20 12:44 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys 2013-10-13 23:24 - 2010-11-20 12:44 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys 2013-10-13 23:24 - 2010-11-20 12:44 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys 2013-10-13 23:24 - 2010-11-20 12:44 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\1394ohci.sys 2013-10-13 23:24 - 2010-11-20 12:44 - 00184960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys 2013-10-13 23:24 - 2010-11-20 12:44 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys 2013-10-13 23:24 - 2010-11-20 12:44 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS 2013-10-13 23:24 - 2010-11-20 12:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\umbus.sys 2013-10-13 23:24 - 2010-11-20 12:44 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys 2013-10-13 23:24 - 2010-11-20 12:43 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys 2013-10-13 23:24 - 2010-11-20 12:43 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys 2013-10-13 23:24 - 2010-11-20 12:43 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys 2013-10-13 23:24 - 2010-11-20 12:43 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys 2013-10-13 23:24 - 2010-11-20 12:43 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winusb.sys 2013-10-13 23:24 - 2010-11-20 12:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys 2013-10-13 23:24 - 2010-11-20 12:42 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys 2013-10-13 23:24 - 2010-11-20 12:34 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys 2013-10-13 23:24 - 2010-11-20 12:33 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys 2013-10-13 23:24 - 2010-11-20 12:33 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\CompositeBus.sys 2013-10-13 23:24 - 2010-11-20 12:33 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys 2013-10-13 23:24 - 2010-11-20 12:14 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys 2013-10-13 23:24 - 2010-11-20 12:09 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scfilter.sys 2013-10-13 23:24 - 2010-11-20 12:04 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys 2013-10-13 23:24 - 2010-11-20 11:58 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\vmicsvc.exe 2013-10-13 23:24 - 2010-11-20 11:57 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\VmbusCoinstaller.dll 2013-10-13 23:24 - 2010-11-20 11:57 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\VmdCoinstall.dll 2013-10-13 23:24 - 2010-11-20 11:57 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\IcCoinstall.dll 2013-10-13 23:24 - 2010-11-20 11:57 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\vmictimeprovider.dll 2013-10-13 23:24 - 2010-11-20 11:57 - 00021760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\VMBusHID.sys 2013-10-13 23:24 - 2010-11-20 11:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\vmbuspipe.dll 2013-10-13 23:24 - 2010-11-20 11:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vms3cap.sys 2013-10-13 23:24 - 2010-11-20 11:49 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2013-10-13 23:24 - 2010-11-20 11:30 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpipmi.sys 2013-10-13 23:24 - 2010-11-20 11:27 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys 2013-10-13 23:24 - 2010-11-20 11:26 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys 2013-10-13 23:24 - 2010-11-20 11:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2013-10-13 23:24 - 2010-11-20 11:26 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys 2013-10-13 23:24 - 2010-11-20 11:22 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdi.sys 2013-10-13 23:24 - 2010-11-20 11:19 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys 2013-10-13 23:24 - 2010-11-10 03:48 - 00010429 _____ C:\Windows\system32\ScavengeSpace.xml 2013-10-13 23:24 - 2010-11-05 04:20 - 00105559 _____ C:\Windows\SysWOW64\RacRules.xml 2013-10-13 23:24 - 2010-11-05 04:20 - 00105559 _____ C:\Windows\system32\RacRules.xml 2013-10-13 23:24 - 2010-11-05 04:11 - 00433512 _____ (Microsoft Corporation) C:\Windows\system32\MCEWMDRMNDBootstrap.dll 2013-10-13 23:24 - 2010-11-05 04:11 - 00312168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MCEWMDRMNDBootstrap.dll 2013-10-13 23:24 - 2010-11-05 03:58 - 00155472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll 2013-10-13 23:24 - 2010-11-05 03:58 - 00080720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll 2013-10-13 23:24 - 2010-11-05 03:58 - 00049488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netfxperf.dll 2013-10-13 23:24 - 2010-11-05 03:57 - 00154960 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll 2013-10-13 23:24 - 2009-06-10 23:40 - 00146389 _____ C:\Windows\SysWOW64\printmanagement.msc 2013-10-13 23:24 - 2009-06-10 23:39 - 00001041 _____ C:\Windows\SysWOW64\tcpbidi.xml 2013-10-13 23:23 - 2010-11-20 15:27 - 00529408 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll 2013-10-13 23:23 - 2010-11-20 15:27 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll 2013-10-13 20:40 - 2013-10-13 20:40 - 02347384 _____ (ESET) C:\Users\Angela ***\Desktop\esetsmartinstaller_enu.exe 2013-10-13 11:46 - 2013-10-13 11:59 - 00000630 _____ C:\Users\Angela ***\Desktop\JRT.txt 2013-10-13 11:39 - 2013-10-13 11:39 - 00000000 ____D C:\Windows\ERUNT 2013-10-13 11:37 - 2013-10-13 11:37 - 01032220 _____ (Thisisu) C:\Users\Angela ***\Desktop\JRT.exe 2013-10-13 11:36 - 2013-10-13 11:59 - 00001855 _____ C:\Users\Angela ***\Desktop\AdwCleaner[S0].txt 2013-10-13 11:31 - 2013-10-13 11:33 - 00000000 ____D C:\AdwCleaner 2013-10-13 11:28 - 2013-10-13 11:28 - 01048960 _____ C:\Users\Angela ***\Desktop\adwcleaner.exe 2013-10-13 11:17 - 2013-10-13 11:17 - 00001105 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Malwarebytes 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-10-13 11:17 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2013-10-13 11:15 - 2013-10-13 11:15 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Angela ***\Downloads\mbam-setup-1.75.0.1300.exe 2013-10-10 22:58 - 2011-04-28 05:55 - 00552960 _____ (Microsoft Corporation) |
15.10.2013, 06:33 | #15 |
| Winows 7: Avast meldet ständig "Bösartige Website blockiert" Neues FRST log (Teil 3) Code:
ATTFilter C:\Windows\system32\Drivers\bthport.sys 2013-10-10 22:58 - 2011-04-28 05:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS 2013-10-10 22:58 - 2010-11-20 15:24 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe 2013-10-09 23:24 - 2013-10-09 23:24 - 00031050 _____ C:\Users\Angela ***\Desktop\Logfiles.zip 2013-10-09 22:51 - 2013-10-09 22:52 - 00128780 _____ C:\Users\Angela ***\Desktop\Gmer.txt 2013-10-09 22:21 - 2013-10-09 22:21 - 00377856 _____ C:\Users\Angela ***\Desktop\gmer_2.1.19163.exe 2013-10-09 22:20 - 2013-10-12 10:13 - 00016828 _____ C:\Users\Angela ***\Desktop\Addition.txt 2013-10-09 22:19 - 2013-10-09 22:19 - 00000000 ____D C:\FRST 2013-10-09 22:18 - 2013-10-09 22:18 - 01954124 _____ (Farbar) C:\Users\Angela ***\Desktop\FRST64.exe 2013-10-09 22:17 - 2013-10-09 22:17 - 00000500 _____ C:\Users\Angela ***\Desktop\defogger_disable.log 2013-10-09 22:17 - 2013-10-09 22:17 - 00000000 _____ C:\Users\Angela ***\defogger_reenable 2013-10-09 22:16 - 2013-10-09 22:13 - 00050477 _____ C:\Users\Angela ***\Desktop\Defogger.exe 2013-10-09 19:09 - 2013-10-09 19:09 - 00000000 ____D C:\ProgramData\Google 2013-10-08 21:29 - 2013-10-08 21:29 - 35289352 _____ (Dropbox, Inc.) C:\Users\Angela ***\Downloads\Dropbox 2.4.1.exe 2013-10-08 21:29 - 2013-10-08 21:29 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Dropbox 2013-10-08 19:43 - 2013-10-08 19:43 - 00002515 _____ C:\Users\Public\Desktop\Skype.lnk 2013-10-08 19:24 - 2013-10-08 19:24 - 32531104 _____ (Skype Technologies S.A.) C:\Users\Angela ***\Downloads\SkypeSetupFull.exe 2013-10-08 19:11 - 2013-10-08 19:11 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\CrashDumps 2013-10-07 23:56 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 17833472 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 12335104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-10-07 23:52 - 2013-10-07 23:55 - 00004602 _____ C:\Windows\IE9_main.log 2013-10-07 23:46 - 2012-12-16 19:11 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2013-10-07 23:46 - 2012-12-16 16:45 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2013-10-07 23:46 - 2012-12-16 16:13 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2013-10-07 23:46 - 2012-12-16 16:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2013-10-07 23:46 - 2010-09-30 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2013-10-07 23:46 - 2010-09-30 08:47 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2013-10-07 23:43 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys 2013-10-07 23:43 - 2012-03-01 08:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll 2013-10-07 23:43 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll 2013-10-07 23:43 - 2012-03-01 07:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll 2013-10-07 23:43 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll 2013-10-07 23:03 - 2013-10-07 23:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-10-07 19:39 - 2012-11-09 07:45 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2013-10-07 19:39 - 2012-11-09 06:43 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2013-10-07 19:39 - 2012-03-03 08:35 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2013-10-07 19:39 - 2012-03-03 07:31 - 01077248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2013-10-07 19:39 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll 2013-10-07 19:39 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll 2013-10-07 19:39 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll 2013-10-07 19:39 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll 2013-10-07 19:39 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll 2013-10-07 19:39 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll 2013-10-07 19:39 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll 2013-10-07 19:39 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll 2013-10-07 19:39 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll 2013-10-07 19:38 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll 2013-10-07 19:38 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2013-10-07 19:38 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll 2013-10-07 19:38 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2013-10-07 19:38 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2013-10-07 19:38 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll 2013-10-07 19:38 - 2012-11-09 07:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2013-10-07 19:38 - 2012-11-09 06:42 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll 2013-10-07 19:38 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2013-10-07 19:38 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2013-10-07 19:38 - 2010-12-23 12:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll 2013-10-07 19:38 - 2010-12-23 12:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll 2013-10-07 19:38 - 2010-12-23 12:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax 2013-10-07 19:38 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll 2013-10-07 19:38 - 2010-12-23 07:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll 2013-10-07 19:38 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax 2013-10-07 19:37 - 2013-03-01 05:36 - 03153408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-10-07 19:37 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll 2013-10-07 19:37 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll 2013-10-07 19:37 - 2011-10-26 07:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll 2013-10-07 19:37 - 2011-10-26 07:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll 2013-10-07 19:37 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll 2013-10-07 19:37 - 2011-10-26 06:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll 2013-10-07 19:37 - 2011-07-09 04:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys 2013-10-07 19:37 - 2011-04-27 04:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys 2013-10-07 19:37 - 2011-04-27 04:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys 2013-10-07 19:36 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys 2013-10-07 19:36 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys 2013-10-07 19:36 - 2012-06-09 07:43 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2013-10-07 19:36 - 2012-06-09 06:41 - 12873728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2013-10-07 19:36 - 2012-06-02 07:50 - 00458704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2013-10-07 19:36 - 2012-06-02 07:48 - 00151920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2013-10-07 19:36 - 2012-06-02 07:48 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2013-10-07 19:36 - 2012-06-02 07:45 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2013-10-07 19:36 - 2012-06-02 06:40 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2013-10-07 19:36 - 2012-06-02 06:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2013-10-07 19:36 - 2012-06-02 06:34 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2013-10-07 19:36 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll 2013-10-07 19:36 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll 2013-10-07 19:36 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe 2013-10-07 19:36 - 2011-11-17 08:35 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2013-10-07 19:36 - 2011-11-17 08:35 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2013-10-07 19:36 - 2011-11-17 08:35 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2013-10-07 19:36 - 2011-11-17 08:35 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2013-10-07 19:36 - 2011-11-17 08:33 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2013-10-07 19:36 - 2011-03-11 08:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll 2013-10-07 19:36 - 2011-03-11 08:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll 2013-10-07 19:36 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll 2013-10-07 19:36 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll 2013-10-07 19:35 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2013-10-07 19:35 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2013-10-07 19:35 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2013-10-07 19:35 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2013-10-07 19:35 - 2011-03-03 08:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2013-10-07 19:35 - 2011-03-03 08:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2013-10-07 19:35 - 2011-03-03 08:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe 2013-10-07 19:35 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll 2013-10-07 19:35 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe 2013-10-07 19:35 - 2010-06-26 05:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2013-10-07 19:35 - 2010-06-26 05:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2013-10-07 19:34 - 2013-01-04 07:46 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2013-10-07 19:34 - 2013-01-04 06:51 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2013-10-07 19:34 - 2013-01-04 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2013-10-07 19:34 - 2013-01-04 04:47 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2013-10-07 19:34 - 2013-01-04 04:47 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2013-10-07 19:34 - 2013-01-04 04:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2013-10-07 19:34 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2013-10-07 19:34 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2013-10-07 19:34 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll 2013-10-07 19:34 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll 2013-10-07 19:34 - 2012-10-04 19:46 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2013-10-07 19:34 - 2012-10-04 19:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2013-10-07 19:34 - 2012-10-04 19:46 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2013-10-07 19:34 - 2012-10-04 19:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2013-10-07 19:34 - 2012-10-04 19:41 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2013-10-07 19:34 - 2012-10-04 19:41 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 19:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:47 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2013-10-07 19:34 - 2012-10-04 18:47 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 18:40 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 17:21 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2013-10-07 19:34 - 2012-10-04 16:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 16:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 16:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2013-10-07 19:34 - 2012-10-04 16:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2013-10-07 19:34 - 2012-08-24 20:05 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2013-10-07 19:34 - 2012-08-24 18:57 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2013-10-07 19:34 - 2010-11-20 14:58 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll 2013-10-07 19:34 - 2010-11-20 13:57 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll 2013-10-07 19:33 - 2013-01-03 08:00 - 01913192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2013-10-07 19:33 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2013-10-07 19:33 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2013-10-07 19:33 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2013-10-07 19:33 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2013-10-07 19:33 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys 2013-10-07 19:33 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys 2013-10-07 19:33 - 2011-12-28 05:59 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2013-10-07 19:33 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll 2013-10-07 19:33 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax 2013-10-07 19:33 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll 2013-10-07 19:33 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax 2013-10-07 19:33 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2013-10-07 19:33 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2013-10-07 19:33 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2013-10-07 19:33 - 2010-11-20 15:24 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax 2013-10-07 19:33 - 2010-11-20 15:24 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax 2013-10-07 19:33 - 2010-11-20 15:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax 2013-10-07 19:33 - 2010-11-20 14:16 - 00204288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSNP.ax 2013-10-07 19:33 - 2010-11-20 14:16 - 00072704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Mpeg2Data.ax 2013-10-07 19:33 - 2010-11-20 14:16 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSDvbNP.ax 2013-10-07 19:32 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll 2013-10-07 19:32 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll 2013-10-07 19:32 - 2011-02-05 19:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi 2013-10-07 19:32 - 2011-02-05 19:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll 2013-10-07 19:32 - 2011-02-05 19:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll 2013-10-07 19:32 - 2011-02-05 19:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll 2013-10-07 19:32 - 2011-02-05 19:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe 2013-10-07 19:32 - 2011-02-05 19:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi 2013-10-07 19:32 - 2011-02-05 19:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe 2013-10-07 19:32 - 2010-11-20 15:27 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll 2013-10-07 19:31 - 2013-03-19 08:04 - 05550424 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2013-10-07 19:31 - 2013-03-19 07:46 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2013-10-07 19:31 - 2013-03-19 07:04 - 03968856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2013-10-07 19:31 - 2013-03-19 07:04 - 03913560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2013-10-07 19:31 - 2013-03-19 06:47 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2013-10-07 19:31 - 2013-03-19 05:06 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2013-10-07 19:31 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll 2013-10-07 19:31 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll 2013-10-07 19:31 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll 2013-10-07 19:31 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll 2013-10-07 19:31 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll 2013-10-07 19:31 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2013-10-07 19:31 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll 2013-10-07 19:31 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll 2013-10-07 19:31 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll 2013-10-07 19:31 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll 2013-10-07 19:31 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2013-10-07 19:31 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll 2013-10-07 19:31 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2013-10-07 19:31 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll 2013-10-07 19:31 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll 2013-10-07 19:31 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll 2013-10-07 19:31 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll 2013-10-07 19:31 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll 2013-10-07 19:31 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe 2013-10-07 19:31 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2013-10-07 19:31 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2013-10-07 19:31 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys 2013-10-07 19:31 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe 2013-10-07 19:31 - 2010-11-20 15:25 - 00974336 _____ (Microsoft Corporation) C:\Windows\system32\WFS.exe 2013-10-07 19:31 - 2010-11-20 15:25 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\cfgmgr32.dll 2013-10-07 19:30 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll 2013-10-07 19:30 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll 2013-10-07 19:30 - 2011-11-17 08:41 - 01731920 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2013-10-07 19:30 - 2011-11-17 07:38 - 01292080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2013-10-07 19:29 - 2012-06-02 07:41 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2013-10-07 19:29 - 2012-06-02 07:41 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2013-10-07 19:29 - 2012-06-02 07:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2013-10-07 19:29 - 2012-06-02 06:36 - 01159680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2013-10-07 19:29 - 2012-06-02 06:36 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2013-10-07 19:29 - 2012-06-02 06:36 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2013-10-07 19:20 - 2013-10-07 19:23 - 246695752 _____ (NVIDIA Corporation) C:\Users\Angela ***\Downloads\327.23-notebook-win8-win7-64bit-international-whql.exe 2013-10-07 19:15 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2013-10-07 19:15 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2013-10-06 22:12 - 2013-10-15 06:55 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-10-06 22:12 - 2013-10-09 18:55 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-10-06 22:12 - 2013-10-09 18:55 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-10-06 22:12 - 2013-10-09 18:55 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\system32\Macromed 2013-10-06 21:21 - 2013-10-06 21:21 - 00000000 ____D C:\Windows\system32\appmgmt 2013-10-06 21:04 - 2013-10-06 21:16 - 00000000 ____D C:\ProgramData\Avira 2013-10-06 20:59 - 2013-10-06 20:59 - 02296952 _____ C:\Users\Angela ***\Downloads\avira_free_antivirus.exe 2013-10-06 20:28 - 2013-10-15 07:07 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Skype 2013-10-06 20:28 - 2013-10-08 19:43 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-10-06 20:28 - 2013-10-08 19:43 - 00000000 ____D C:\ProgramData\Skype 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Macromedia 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Adobe 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Macromedia 2013-10-06 19:54 - 2013-10-06 21:09 - 00057560 _____ C:\Users\Angela ***\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-06 19:54 - 2013-10-06 19:57 - 00000000 ____D C:\Users\Angela ***\Documents\Visual Studio 2012 2013-10-06 19:50 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2013-10-06 19:47 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Application Verifier 2013-10-06 19:47 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\Application Verifier 2013-10-06 19:47 - 2013-10-06 19:47 - 00000000 ____D C:\ProgramData\Windows App Certification Kit 2013-10-06 19:45 - 2013-10-06 19:45 - 00000000 ____D C:\ProgramData\PreEmptive Solutions 2013-10-06 19:42 - 2013-10-06 19:43 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2013-10-06 19:40 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools 2013-10-06 19:39 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\IIS Express 2013-10-06 19:39 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\IIS Express 2013-10-06 19:39 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\IIS 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\NuGet 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services 2013-10-06 19:37 - 2013-10-06 19:37 - 00000000 ____D C:\Program Files (x86)\Windows Kits 2013-10-06 19:31 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2013-10-06 19:31 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2013-10-06 19:31 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer 2013-10-06 19:27 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2013-10-06 19:27 - 2013-10-06 20:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0 2013-10-06 19:19 - 2013-10-06 20:54 - 00000000 ____D C:\ProgramData\Package Cache 2013-10-06 19:13 - 2013-10-06 19:16 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\DAEMON Tools Lite 2013-10-06 19:13 - 2013-10-06 19:13 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2013-10-06 18:56 - 2013-10-06 18:56 - 00000000 ____D C:\ProgramData\Synology 2013-10-06 18:53 - 2013-10-06 20:47 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Unity 2013-10-06 18:41 - 2013-10-06 20:51 - 00000000 ____D C:\ProgramData\Unity 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Apple Computer 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Apple Computer 2013-10-06 18:33 - 2013-10-06 20:55 - 00000000 ____D C:\ad0016c4ac5f942d515088274291 2013-10-06 18:33 - 2013-10-06 18:33 - 00000000 ___HT C:\Windows\wusa.lock 2013-10-06 18:32 - 2013-10-06 18:32 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Unity 2013-10-06 18:31 - 2013-10-06 18:31 - 00001116 _____ C:\Users\Public\Desktop\Unity.lnk 2013-10-06 18:31 - 2013-10-06 18:31 - 00000000 ____D C:\Users\Public\Documents\Unity Projects 2013-10-06 18:25 - 2013-10-06 18:25 - 00000000 ____D C:\Program Files (x86)\Unity 2013-10-06 18:17 - 2013-10-14 22:29 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Public\Documents\Atheros 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Angela ***\AppData\Local\BMExplorer 2013-10-06 18:08 - 2013-10-06 18:08 - 00003148 _____ C:\Windows\System32\Tasks\SidebarExecute 2013-10-06 18:07 - 2013-10-06 18:07 - 00000000 ____D C:\Program Files\Intel 2013-10-06 17:53 - 2013-10-06 17:53 - 00003042 _____ C:\Windows\System32\Tasks\ASUS P4G 2013-10-06 17:52 - 2013-10-06 20:55 - 00000000 ____D C:\ProgramData\P4G 2013-10-06 17:52 - 2013-10-06 18:17 - 00000000 ____D C:\Program Files\P4G 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIh_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIc_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____D C:\Program Files\Fresco Logic Inc 2013-10-06 17:45 - 2013-10-06 17:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-10-06 17:45 - 2010-08-03 18:43 - 00290920 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\rtsuvstor.sys 2013-10-06 17:45 - 2010-07-13 21:21 - 00015464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\diskperf64.sys 2013-10-06 17:45 - 2009-11-25 14:21 - 07367200 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsUVStoricon.dll 2013-10-06 17:43 - 2013-10-06 17:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-10-06 17:42 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Angela ***\Documents\Bluetooth Folder 2013-10-06 17:41 - 2013-10-06 17:42 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Program Files\Realtek 2013-10-06 17:35 - 2010-12-23 15:45 - 02684136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2013-10-06 17:35 - 2010-12-22 13:13 - 00397912 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll 2013-10-06 17:35 - 2010-12-22 13:13 - 00309336 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll 2013-10-06 17:35 - 2010-12-22 11:28 - 02828392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll 2013-10-06 17:35 - 2010-12-22 11:28 - 02328168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2013-10-06 17:35 - 2010-11-29 18:47 - 02578576 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll 2013-10-06 17:35 - 2010-11-23 18:45 - 01247848 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2013-10-06 17:35 - 2010-11-22 11:39 - 00626792 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2013-10-06 17:35 - 2010-11-11 13:27 - 00083048 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2013-10-06 17:35 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2013-10-06 17:35 - 2010-11-03 18:31 - 01146984 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2013-10-06 17:35 - 2010-11-03 18:31 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2013-10-06 17:35 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2013-10-06 17:35 - 2010-10-29 10:29 - 01937312 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2013-10-06 17:35 - 2010-10-28 10:46 - 01251944 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2013-10-06 17:35 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2013-10-06 17:35 - 2010-07-22 16:37 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2013-10-06 17:35 - 2010-07-02 19:40 - 00080984 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2013-10-06 17:35 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2013-10-06 17:35 - 2009-11-18 18:42 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll 2013-10-06 17:35 - 2009-11-18 07:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys 2013-10-06 17:35 - 2009-11-17 18:12 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2013-10-06 17:35 - 2009-04-02 16:43 - 00000520 _____ C:\Windows\system32\Drivers\SamSfPa.dat 2013-10-06 17:22 - 2013-10-14 22:18 - 00008490 _____ C:\Windows\PFRO.log 2013-10-06 17:16 - 2013-10-14 22:18 - 00000000 ____D C:\ProgramData\NVIDIA 2013-10-06 17:16 - 2013-10-06 17:17 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-10-06 17:16 - 2013-10-06 17:16 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2013-10-06 17:16 - 2011-10-15 10:53 - 10406208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 05067584 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 03074368 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 01640768 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2013-10-06 17:16 - 2011-10-15 10:53 - 00837952 _____ (NVIDIA Corporation) C:\Windows\system32\easyupdatusapiu64.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 00539456 _____ (NVIDIA Corporation) C:\Windows\system32\nvhotkey.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 00222528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2013-10-06 17:16 - 2011-10-15 10:53 - 00137536 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2013-10-06 17:16 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-10-06 17:16 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-10-06 17:15 - 2013-10-06 17:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2013-10-06 17:15 - 2011-10-15 10:53 - 24796992 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 24742720 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 18871616 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 17248576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 15693120 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 13205312 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 12971840 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2013-10-06 17:15 - 2011-10-15 10:53 - 08791360 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 07581504 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 07041856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 05578560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02808128 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02542912 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02458432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02401088 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02232128 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 02099520 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 01533248 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 01454400 _____ (NVIDIA Corporation) C:\Windows\system32\nvgenco64.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 00068928 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 00061248 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2013-10-06 17:15 - 2011-10-15 10:53 - 00007384 _____ C:\Windows\system32\nvinfo.pb 2013-10-06 17:15 - 2011-07-08 01:21 - 01452648 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420102.dll 2013-10-06 17:15 - 2011-07-08 01:21 - 00174184 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2013-10-06 17:15 - 2011-07-08 01:21 - 00029288 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2013-10-06 17:14 - 2013-10-06 17:14 - 00000000 ____D C:\NVIDIA 2013-10-06 17:10 - 2013-10-07 22:58 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00001143 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\ProgramData\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-10-06 17:02 - 2013-08-07 04:22 - 00278800 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2013-10-06 17:01 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files\Google 2013-10-06 17:01 - 2013-10-06 16:26 - 00000000 ____D C:\Windows\Panther 2013-10-06 17:00 - 2013-10-06 17:00 - 00002251 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-10-06 16:59 - 2013-10-15 07:14 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-06 16:59 - 2013-10-15 01:14 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-06 16:59 - 2013-10-13 11:09 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2013-10-06 16:59 - 2013-10-13 01:09 - 00004132 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-10-06 16:59 - 2013-10-13 01:09 - 00003880 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-10-06 16:59 - 2013-10-06 20:55 - 00000000 ____D C:\Program Files (x86)\Google 2013-10-06 16:59 - 2013-10-06 17:27 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Google 2013-10-06 16:59 - 2013-10-06 16:59 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-10-06 16:59 - 2013-10-06 16:59 - 00000000 _____ C:\Windows\SysWOW64\config.nt 2013-10-06 16:59 - 2013-08-30 09:48 - 01030952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00378944 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00204880 _____ C:\Windows\system32\Drivers\aswVmm.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00080816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00072016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00065336 _____ C:\Windows\system32\Drivers\aswRvrt.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00064288 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys 2013-10-06 16:59 - 2013-08-30 09:48 - 00033400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys 2013-10-06 16:59 - 2013-08-30 09:47 - 00287840 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2013-10-06 16:59 - 2013-08-30 09:47 - 00041664 _____ (AVAST Software) C:\Windows\avastSS.scr 2013-10-06 16:58 - 2013-10-06 16:58 - 00000000 ____D C:\Program Files\AVAST Software 2013-10-06 16:53 - 2013-10-06 16:58 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-06 16:51 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll 2013-10-06 16:51 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll 2013-10-06 16:51 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys 2013-10-06 16:48 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2013-10-06 16:48 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2013-10-06 16:48 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2013-10-06 16:48 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2013-10-06 16:48 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2013-10-06 16:48 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2013-10-06 16:48 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2013-10-06 16:43 - 2013-10-06 16:43 - 00000000 ____D C:\Program Files (x86)\Atheros 2013-10-06 16:43 - 2010-07-15 04:08 - 00056092 _____ C:\Windows\system32\athrextx.cat 2013-10-06 16:43 - 2010-07-08 02:03 - 02228736 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athrx.sys 2013-10-06 16:43 - 2010-07-08 02:03 - 02228736 _____ (Atheros Communications, Inc.) C:\Windows\system32\athrx.sys 2013-10-06 16:41 - 2013-10-06 16:43 - 00000000 ____D C:\ProgramData\Atheros 2013-10-06 16:40 - 2013-10-06 16:40 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\InstallShield 2013-10-06 16:38 - 2013-10-06 17:34 - 00000000 ____D C:\Program Files (x86)\ASUS 2013-10-06 16:38 - 2013-10-06 16:38 - 00002978 _____ C:\Windows\System32\Tasks\ATKOSD2 2013-10-06 16:32 - 2013-10-06 16:32 - 00000000 ____D C:\Program Files (x86)\Intel 2013-10-06 16:32 - 2010-10-04 13:02 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2013-10-06 16:29 - 2013-10-06 16:29 - 00000000 ____D C:\Intel 2013-10-06 16:28 - 2013-10-06 17:58 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-10-06 16:28 - 2013-10-06 17:45 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-10-06 16:28 - 2011-09-03 19:46 - 00412776 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys 2013-10-06 16:28 - 2011-09-03 19:46 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll 2013-10-06 16:28 - 2011-09-03 19:46 - 00074272 _____ C:\Windows\system32\RtNicProp64.dll 2013-10-06 16:26 - 2013-10-14 07:01 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-10-06 16:26 - 2013-10-14 07:01 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-10-06 16:26 - 2013-10-09 22:17 - 00000000 ____D C:\Users\Angela *** 2013-10-06 16:26 - 2013-10-08 19:23 - 00001435 _____ C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-06 16:26 - 2013-10-08 19:23 - 00001401 _____ C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2013-10-06 16:26 - 2013-10-06 16:26 - 00000020 ___SH C:\Users\Angela ***\ntuser.ini 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 __SHD C:\Recovery 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 ____D C:\Users\Angela ***\AppData\Local\VirtualStore 2013-10-06 16:26 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-10-06 16:26 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-10-06 16:07 - 2013-10-15 03:00 - 01249358 _____ C:\Windows\WindowsUpdate.log 2013-10-06 16:07 - 2013-10-06 16:07 - 00001313 _____ C:\Windows\TSSysprep.log ==================== One Month Modified Files and Folders ======= 2013-10-15 07:16 - 2013-10-15 07:17 - 00891167 _____ C:\Users\Angela ***\Desktop\SecurityCheck.exe 2013-10-15 07:15 - 2013-10-15 07:15 - 00891167 _____ C:\Users\Angela ***\Downloads\SecurityCheck.exe 2013-10-15 07:14 - 2013-10-06 16:59 - 00001136 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-10-15 07:07 - 2013-10-06 20:28 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Skype 2013-10-15 06:55 - 2013-10-06 22:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-10-15 03:00 - 2013-10-06 16:07 - 01249358 _____ C:\Windows\WindowsUpdate.log 2013-10-15 01:14 - 2013-10-06 16:59 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-10-14 22:36 - 2009-07-14 06:45 - 00014848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-10-14 22:36 - 2009-07-14 06:45 - 00014848 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-10-14 22:29 - 2013-10-14 22:29 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2013-10-14 22:29 - 2013-10-06 18:17 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini 2013-10-14 22:24 - 2009-07-14 19:58 - 00643866 _____ C:\Windows\system32\perfh007.dat 2013-10-14 22:24 - 2009-07-14 19:58 - 00126394 _____ C:\Windows\system32\perfc007.dat 2013-10-14 22:24 - 2009-07-14 07:13 - 01472002 _____ C:\Windows\system32\PerfStringBackup.INI 2013-10-14 22:18 - 2013-10-06 17:22 - 00008490 _____ C:\Windows\PFRO.log 2013-10-14 22:18 - 2013-10-06 17:16 - 00000000 ____D C:\ProgramData\NVIDIA 2013-10-14 22:18 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-10-14 22:18 - 2009-07-14 06:51 - 00022349 _____ C:\Windows\setupact.log 2013-10-14 07:01 - 2013-10-06 16:26 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-10-14 07:01 - 2013-10-06 16:26 - 00000000 ___RD C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-10-14 03:54 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache 2013-10-14 03:26 - 2009-07-14 06:45 - 00274464 _____ C:\Windows\system32\FNTCACHE.DAT 2013-10-14 03:23 - 2009-07-14 20:18 - 00000000 ____D C:\Program Files\Windows Journal 2013-10-14 03:23 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar 2013-10-14 03:23 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Portable Devices 2013-10-14 03:23 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2013-10-14 03:23 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender 2013-10-14 03:23 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\DVD Maker 2013-10-14 03:23 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar 2013-10-14 03:23 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Portable Devices 2013-10-14 03:23 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\sppui 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Setup 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\oobe 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\manifeststore 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Dism 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\AdvancedInstallers 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sppui 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Setup 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\oobe 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\migwiz 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\manifeststore 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Dism 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\AdvancedInstallers 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-10-14 03:23 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System 2013-10-14 03:06 - 2009-07-14 04:36 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\msclmd.dll 2013-10-14 03:06 - 2009-07-14 04:36 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msclmd.dll 2013-10-14 03:00 - 2013-10-14 03:00 - 00000000 ____D C:\Windows\system32\SPReview 2013-10-14 03:00 - 2013-10-14 03:00 - 00000000 ____D C:\Windows\system32\EventProviders 2013-10-13 20:40 - 2013-10-13 20:40 - 02347384 _____ (ESET) C:\Users\Angela ***\Desktop\esetsmartinstaller_enu.exe 2013-10-13 11:59 - 2013-10-13 11:46 - 00000630 _____ C:\Users\Angela ***\Desktop\JRT.txt 2013-10-13 11:59 - 2013-10-13 11:36 - 00001855 _____ C:\Users\Angela ***\Desktop\AdwCleaner[S0].txt 2013-10-13 11:39 - 2013-10-13 11:39 - 00000000 ____D C:\Windows\ERUNT 2013-10-13 11:37 - 2013-10-13 11:37 - 01032220 _____ (Thisisu) C:\Users\Angela ***\Desktop\JRT.exe 2013-10-13 11:33 - 2013-10-13 11:31 - 00000000 ____D C:\AdwCleaner 2013-10-13 11:28 - 2013-10-13 11:28 - 01048960 _____ C:\Users\Angela ***\Desktop\adwcleaner.exe 2013-10-13 11:17 - 2013-10-13 11:17 - 00001105 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Malwarebytes 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-10-13 11:17 - 2013-10-13 11:17 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-10-13 11:15 - 2013-10-13 11:15 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Angela ***\Downloads\mbam-setup-1.75.0.1300.exe 2013-10-13 11:09 - 2013-10-06 16:59 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2013-10-13 01:09 - 2013-10-06 16:59 - 00004132 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2013-10-13 01:09 - 2013-10-06 16:59 - 00003880 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2013-10-12 10:13 - 2013-10-09 22:20 - 00016828 _____ C:\Users\Angela ***\Desktop\Addition.txt 2013-10-09 23:24 - 2013-10-09 23:24 - 00031050 _____ C:\Users\Angela ***\Desktop\Logfiles.zip 2013-10-09 22:53 - 2009-07-14 20:18 - 00000000 ___RD C:\Users\Public\Recorded TV 2013-10-09 22:52 - 2013-10-09 22:51 - 00128780 _____ C:\Users\Angela ***\Desktop\Gmer.txt 2013-10-09 22:21 - 2013-10-09 22:21 - 00377856 _____ C:\Users\Angela ***\Desktop\gmer_2.1.19163.exe 2013-10-09 22:19 - 2013-10-09 22:19 - 00000000 ____D C:\FRST 2013-10-09 22:18 - 2013-10-09 22:18 - 01954124 _____ (Farbar) C:\Users\Angela ***\Desktop\FRST64.exe 2013-10-09 22:17 - 2013-10-09 22:17 - 00000500 _____ C:\Users\Angela ***\Desktop\defogger_disable.log 2013-10-09 22:17 - 2013-10-09 22:17 - 00000000 _____ C:\Users\Angela ***\defogger_reenable 2013-10-09 22:17 - 2013-10-06 16:26 - 00000000 ____D C:\Users\Angela *** 2013-10-09 22:13 - 2013-10-09 22:16 - 00050477 _____ C:\Users\Angela ***\Desktop\Defogger.exe 2013-10-09 19:09 - 2013-10-09 19:09 - 00000000 ____D C:\ProgramData\Google 2013-10-09 18:55 - 2013-10-06 22:12 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-10-09 18:55 - 2013-10-06 22:12 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-10-09 18:55 - 2013-10-06 22:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-10-08 21:29 - 2013-10-08 21:29 - 35289352 _____ (Dropbox, Inc.) C:\Users\Angela ***\Downloads\Dropbox 2.4.1.exe 2013-10-08 21:29 - 2013-10-08 21:29 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Dropbox 2013-10-08 19:43 - 2013-10-08 19:43 - 00002515 _____ C:\Users\Public\Desktop\Skype.lnk 2013-10-08 19:43 - 2013-10-06 20:28 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-10-08 19:43 - 2013-10-06 20:28 - 00000000 ____D C:\ProgramData\Skype 2013-10-08 19:24 - 2013-10-08 19:24 - 32531104 _____ (Skype Technologies S.A.) C:\Users\Angela ***\Downloads\SkypeSetupFull.exe 2013-10-08 19:23 - 2013-10-06 16:26 - 00001435 _____ C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-10-08 19:23 - 2013-10-06 16:26 - 00001401 _____ C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk 2013-10-08 19:11 - 2013-10-08 19:11 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\CrashDumps 2013-10-07 23:55 - 2013-10-07 23:52 - 00004602 _____ C:\Windows\IE9_main.log 2013-10-07 23:54 - 2013-10-07 23:54 - 17833472 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 12335104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-10-07 23:54 - 2013-10-07 23:54 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-10-07 23:54 - 2013-10-07 23:54 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 01104896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00434176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00403248 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-10-07 23:54 - 2013-10-07 23:54 - 00353792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00353584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00282112 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieaksie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00203776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00152064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00130560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieakeng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00118784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00101888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\admparse.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00078848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00074752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ie4uinit.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00066048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-10-07 23:54 - 2013-10-07 23:54 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00054272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00031744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-10-07 23:54 - 2013-10-07 23:54 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-10-07 23:54 - 2013-10-07 23:54 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-10-07 23:03 - 2013-10-07 23:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-10-07 22:58 - 2013-10-06 17:10 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Mozilla 2013-10-07 19:23 - 2013-10-07 19:20 - 246695752 _____ (NVIDIA Corporation) C:\Users\Angela ***\Downloads\327.23-notebook-win8-win7-64bit-international-whql.exe 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-10-06 22:12 - 2013-10-06 22:12 - 00000000 ____D C:\Windows\system32\Macromed 2013-10-06 21:21 - 2013-10-06 21:21 - 00000000 ____D C:\Windows\system32\appmgmt 2013-10-06 21:16 - 2013-10-06 21:04 - 00000000 ____D C:\ProgramData\Avira 2013-10-06 21:09 - 2013-10-06 19:54 - 00057560 _____ C:\Users\Angela ***\AppData\Local\GDIPFONTCACHEV1.DAT 2013-10-06 20:59 - 2013-10-06 20:59 - 02296952 _____ C:\Users\Angela ***\Downloads\avira_free_antivirus.exe 2013-10-06 20:55 - 2013-10-06 19:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2013-10-06 20:55 - 2013-10-06 19:47 - 00000000 ____D C:\Program Files (x86)\Application Verifier 2013-10-06 20:55 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\IIS Express 2013-10-06 20:55 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server 2013-10-06 20:55 - 2013-10-06 19:27 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs 2013-10-06 20:55 - 2013-10-06 18:33 - 00000000 ____D C:\ad0016c4ac5f942d515088274291 2013-10-06 20:55 - 2013-10-06 17:52 - 00000000 ____D C:\ProgramData\P4G 2013-10-06 20:55 - 2013-10-06 17:01 - 00000000 ____D C:\Program Files\Google 2013-10-06 20:55 - 2013-10-06 16:59 - 00000000 ____D C:\Program Files (x86)\Google 2013-10-06 20:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\MUI 2013-10-06 20:55 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\MUI 2013-10-06 20:54 - 2013-10-06 19:47 - 00000000 ____D C:\Program Files\Application Verifier 2013-10-06 20:54 - 2013-10-06 19:40 - 00000000 ____D C:\Program Files (x86)\Microsoft Web Tools 2013-10-06 20:54 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files\IIS Express 2013-10-06 20:54 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files\IIS 2013-10-06 20:54 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files\Microsoft SQL Server 2013-10-06 20:54 - 2013-10-06 19:27 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0 2013-10-06 20:54 - 2013-10-06 19:19 - 00000000 ____D C:\ProgramData\Package Cache 2013-10-06 20:53 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\MSBuild 2013-10-06 20:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration 2013-10-06 20:51 - 2013-10-06 18:41 - 00000000 ____D C:\ProgramData\Unity 2013-10-06 20:47 - 2013-10-06 18:53 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Unity 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Macromedia 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Adobe 2013-10-06 20:05 - 2013-10-06 20:05 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Macromedia 2013-10-06 19:57 - 2013-10-06 19:54 - 00000000 ____D C:\Users\Angela ***\Documents\Visual Studio 2012 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-10-06 19:48 - 2013-10-06 19:48 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition 2013-10-06 19:47 - 2013-10-06 19:47 - 00000000 ____D C:\ProgramData\Windows App Certification Kit 2013-10-06 19:45 - 2013-10-06 19:45 - 00000000 ____D C:\ProgramData\PreEmptive Solutions 2013-10-06 19:43 - 2013-10-06 19:42 - 00000000 ____D C:\Program Files (x86)\Microsoft ASP.NET 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\NuGet 2013-10-06 19:39 - 2013-10-06 19:39 - 00000000 ____D C:\Program Files (x86)\Microsoft WCF Data Services 2013-10-06 19:37 - 2013-10-06 19:37 - 00000000 ____D C:\Program Files (x86)\Windows Kits 2013-10-06 19:31 - 2013-10-06 19:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Help Viewer 2013-10-06 19:16 - 2013-10-06 19:13 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\DAEMON Tools Lite 2013-10-06 19:13 - 2013-10-06 19:13 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2013-10-06 18:56 - 2013-10-06 18:56 - 00000000 ____D C:\ProgramData\Synology 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Apple Computer 2013-10-06 18:41 - 2013-10-06 18:41 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Apple Computer 2013-10-06 18:33 - 2013-10-06 18:33 - 00000000 ___HT C:\Windows\wusa.lock 2013-10-06 18:32 - 2013-10-06 18:32 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Unity 2013-10-06 18:31 - 2013-10-06 18:31 - 00001116 _____ C:\Users\Public\Desktop\Unity.lnk 2013-10-06 18:31 - 2013-10-06 18:31 - 00000000 ____D C:\Users\Public\Documents\Unity Projects 2013-10-06 18:25 - 2013-10-06 18:25 - 00000000 ____D C:\Program Files (x86)\Unity 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Public\Documents\Atheros 2013-10-06 18:17 - 2013-10-06 18:17 - 00000000 ____D C:\Users\Angela ***\AppData\Local\BMExplorer 2013-10-06 18:17 - 2013-10-06 17:52 - 00000000 ____D C:\Program Files\P4G 2013-10-06 18:17 - 2013-10-06 17:42 - 00000000 ____D C:\Users\Angela ***\Documents\Bluetooth Folder 2013-10-06 18:08 - 2013-10-06 18:08 - 00003148 _____ C:\Windows\System32\Tasks\SidebarExecute 2013-10-06 18:07 - 2013-10-06 18:07 - 00000000 ____D C:\Program Files\Intel 2013-10-06 17:58 - 2013-10-06 16:28 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-10-06 17:53 - 2013-10-06 17:53 - 00003042 _____ C:\Windows\System32\Tasks\ASUS P4G 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIh_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_FLxHCIc_01009.Wdf 2013-10-06 17:51 - 2013-10-06 17:51 - 00000000 ____D C:\Program Files\Fresco Logic Inc 2013-10-06 17:45 - 2013-10-06 17:45 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-10-06 17:45 - 2013-10-06 16:28 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-10-06 17:43 - 2013-10-06 17:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-10-06 17:42 - 2013-10-06 17:41 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-10-06 17:42 - 2011-01-06 19:55 - 00246804 _____ C:\Windows\system32\Drivers\AtherosBt.bin 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2013-10-06 17:36 - 2013-10-06 17:36 - 00000000 ____D C:\Program Files\Realtek 2013-10-06 17:34 - 2013-10-06 16:38 - 00000000 ____D C:\Program Files (x86)\ASUS 2013-10-06 17:27 - 2013-10-06 16:59 - 00000000 ____D C:\Users\Angela ***\AppData\Local\Google 2013-10-06 17:17 - 2013-10-06 17:16 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-10-06 17:16 - 2013-10-06 17:16 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten 2013-10-06 17:16 - 2013-10-06 17:16 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2013-10-06 17:16 - 2013-10-06 17:15 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2013-10-06 17:16 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Help 2013-10-06 17:14 - 2013-10-06 17:14 - 00000000 ____D C:\NVIDIA 2013-10-06 17:10 - 2013-10-06 17:10 - 00001143 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\ProgramData\Mozilla 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-10-06 17:10 - 2013-10-06 17:10 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-10-06 17:01 - 2009-07-14 07:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2013-10-06 17:01 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2013-10-06 17:00 - 2013-10-06 17:00 - 00002251 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-10-06 16:59 - 2013-10-06 16:59 - 00001922 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-10-06 16:59 - 2013-10-06 16:59 - 00000000 _____ C:\Windows\SysWOW64\config.nt 2013-10-06 16:58 - 2013-10-06 16:58 - 00000000 ____D C:\Program Files\AVAST Software 2013-10-06 16:58 - 2013-10-06 16:53 - 00000000 ____D C:\ProgramData\AVAST Software 2013-10-06 16:49 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries 2013-10-06 16:43 - 2013-10-06 16:43 - 00000000 ____D C:\Program Files (x86)\Atheros 2013-10-06 16:43 - 2013-10-06 16:41 - 00000000 ____D C:\ProgramData\Atheros 2013-10-06 16:40 - 2013-10-06 16:40 - 00000000 ____D C:\Users\Angela ***\AppData\Roaming\InstallShield 2013-10-06 16:38 - 2013-10-06 16:38 - 00002978 _____ C:\Windows\System32\Tasks\ATKOSD2 2013-10-06 16:32 - 2013-10-06 16:32 - 00000000 ____D C:\Program Files (x86)\Intel 2013-10-06 16:29 - 2013-10-06 16:29 - 00000000 ____D C:\Intel 2013-10-06 16:28 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore 2013-10-06 16:26 - 2013-10-06 17:01 - 00000000 ____D C:\Windows\Panther 2013-10-06 16:26 - 2013-10-06 16:26 - 00000020 ___SH C:\Users\Angela ***\ntuser.ini 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Netzwerkumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Lokale Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Eigene Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Druckumgebung 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Documents\Eigene Musik 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Documents\Eigene Bilder 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Local\Verlauf 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\AppData\Local\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Users\Angela ***\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Programme 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 __SHD C:\Recovery 2013-10-06 16:26 - 2013-10-06 16:26 - 00000000 ____D C:\Users\Angela ***\AppData\Local\VirtualStore 2013-10-06 16:26 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default 2013-10-06 16:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Recovery 2013-10-06 16:26 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT 2013-10-06 16:07 - 2013-10-06 16:07 - 00001313 _____ C:\Windows\TSSysprep.log 2013-10-06 16:07 - 2009-07-14 06:46 - 00001774 _____ C:\Windows\DtcInstall.log 2013-10-06 16:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep 2013-10-06 16:03 - 2009-07-14 20:18 - 00000000 ____D C:\Windows\CSC Some content of TEMP: ==================== C:\Users\Angela ***\AppData\Local\Temp\fp_pl_pfs_installer.exe C:\Users\Angela ***\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-10-12 11:57 ==================== End Of Log ============================ |
Themen zu Winows 7: Avast meldet ständig "Bösartige Website blockiert" |
anderes, archiv, avast, avast antivirus, betriebs, blockiert, browser, bösartige website, festplatte, formatieren, hängen, infektion, infiziertes, licht, meldet, neues, neuinstallation, nichts, platte, programm, programme, prozess, software, speicher, speichern, tool, windows, überhaupt |