Win 8.1 x64: Yontoo 2.052 kann nicht deinstalliert werden

marDin · 22.10.2013, 13:07

Hallo,

Habe heute bemerkt, dass ich Yontoo 2.052 am Pc habe. Dies lässt sich nicht deinstallieren ('Setup initialization error'). Jetzt habe ich mich durch ein paar Theras hier gelesen und erfahren, dass da theoretisch mehr dahinterstecken könnte (Malware, RootKits, etc.).
Da ich aber weiß, dass das nicht sein MUSS, hab ich mal 'garnichts' gemacht - außer den Logfiles, die angefordert wurden:

defogger hab ich ausgeführt - Fehlermeldung gabs keine. Re-enable hab ich nicht angerührt.

GMER - hier kam folgende Fehlermeldung:

C:\WINDOWS\system32\config\system: Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.

(Ein Neustart half hier nichts.)
Der Scan ließ sich aber trotzdem starten.
Dann kam wieder obige Fehlermeldung, gefolgt von der Meldung

C:\Users\marDin\ntuser.dat: Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.

Danach kam die Meldung, dass der Scan erfolgreich beendet wurde.

Code:

ATTFilter

GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-10-22 13:47:47
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\00000032 Samsung_SSD_840_Series rev.DXT06B0Q 232,89GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\marDin\AppData\Local\Temp\ugeoikoc.sys


---- User code sections - GMER 2.1 ----

.text   C:\WINDOWS\system32\dwm.exe[440] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506                    00007ffe63e9169a 4 bytes JMP 00007ffe64691502
.text   C:\WINDOWS\system32\dwm.exe[440] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514                    00007ffe63e916a2 4 bytes JMP 00007ffe6469150a
.text   C:\WINDOWS\system32\dwm.exe[440] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118                       00007ffe63e9181a 4 bytes JMP 00007ffe64691682
.text   C:\WINDOWS\system32\dwm.exe[440] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142                       00007ffe63e91832 4 bytes JMP 00007ffe6469169a
.text   C:\WINDOWS\system32\nvvsvc.exe[576] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506                 00007ffe63e9169a 4 bytes JMP 00007ffe64691502
.text   C:\WINDOWS\system32\nvvsvc.exe[576] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514                 00007ffe63e916a2 4 bytes JMP 00007ffe6469150a
.text   C:\WINDOWS\system32\nvvsvc.exe[576] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118                    00007ffe63e9181a 4 bytes JMP 00007ffe64691682
.text   C:\WINDOWS\system32\nvvsvc.exe[576] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142                    00007ffe63e91832 4 bytes JMP 00007ffe6469169a
.text   C:\WINDOWS\Explorer.EXE[1948] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 506                       00007ffe63e9169a 4 bytes JMP 00007ffe64691502
.text   C:\WINDOWS\Explorer.EXE[1948] C:\WINDOWS\system32\PSAPI.DLL!GetModuleBaseNameA + 514                       00007ffe63e916a2 4 bytes JMP 00007ffe6469150a
.text   C:\WINDOWS\Explorer.EXE[1948] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 118                          00007ffe63e9181a 4 bytes JMP 00007ffe64691682
.text   C:\WINDOWS\Explorer.EXE[1948] C:\WINDOWS\system32\PSAPI.DLL!QueryWorkingSet + 142                          00007ffe63e91832 4 bytes JMP 00007ffe6469169a
.text   C:\Windows\System\HsMgr64.exe[5372] C:\WINDOWS\SYSTEM32\combase.dll!CoCreateInstance                       00007ffe619322d0 7 bytes JMP 00007fff618e00d8
.text   C:\Windows\System\HsMgr64.exe[5372] C:\WINDOWS\SYSTEM32\combase.dll!CoCreateInstanceEx                     00007ffe61978130 7 bytes JMP 00007fff618e0110
.text   C:\Windows\System\HsMgr64.exe[5372] C:\WINDOWS\SYSTEM32\DSOUND.dll!DirectSoundCreate8                      00007ffe4d47ae88 7 bytes JMP 00007ffe618e0180
.text   C:\Windows\System\HsMgr64.exe[5372] C:\WINDOWS\SYSTEM32\DSOUND.dll!DirectSoundCaptureCreate8               00007ffe4d481d10 7 bytes JMP 00007ffe618e05a8
.text   C:\Windows\System\HsMgr64.exe[5372] C:\WINDOWS\SYSTEM32\DSOUND.dll!DirectSoundCaptureCreate                00007ffe4d48d2dc 7 bytes JMP 00007ffe618e0570
.text   C:\Windows\System\HsMgr64.exe[5372] C:\WINDOWS\SYSTEM32\DSOUND.dll!DirectSoundCreate                       00007ffe4d48d3ec 7 bytes JMP 00007ffe618e0148
.text   C:\Windows\System\HsMgr64.exe[5372] C:\WINDOWS\SYSTEM32\DSOUND.dll!DirectSoundFullDuplexCreate             00007ffe4d48d4fc 5 bytes JMP 00007ffe618e05e0
.text   C:\Program Files\Windows Media Player\wmpnetwk.exe[6392] C:\WINDOWS\SYSTEM32\WSOCK32.dll!setsockopt + 194  00007ffe59661f6a 4 bytes [66, 59, FE, 7F]
.text   C:\Program Files\Windows Media Player\wmpnetwk.exe[6392] C:\WINDOWS\SYSTEM32\WSOCK32.dll!setsockopt + 218  00007ffe59661f82 4 bytes [66, 59, FE, 7F]

---- Threads - GMER 2.1 ----

Thread  C:\WINDOWS\system32\csrss.exe [684:708]                                                                    fffff960009a54d0
Thread  C:\WINDOWS\system32\csrss.exe [684:848]                                                                    fffff960009a54d0
Thread  C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1828:4104]                                 00007ffe598f4094
Thread  C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1828:4112]                                 00007ffe598f4094
Thread  C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [1828:4120]                                 00007ffe4ee0c680
Thread  C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [1836:4984]                                00007ffe598f4094
Thread  C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [1836:4988]                                00007ffe4ef6838c
Thread  C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [1836:4992]                                00007ffe598f4094
Thread  C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [1836:4996]                                00007ffe4ee0c680
Thread  C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [1836:5000]                                00007ffe598f4094

---- Disk sectors - GMER 2.1 ----

Disk    \Device\Harddisk0\DR0                                                                                      unknown MBR code

---- EOF - GMER 2.1 ----

FRST - Logfiles:
FRST.txt war extrem lang und zu groß (ich hätte die Maximalzeichen und die maximale Dateigröße überschritten), deshalb hab ich sie gezippt und angehängt. Sorry.

und Addition.txt

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-10-2013
Ran by marDin at 2013-10-22 13:32:07
Running from C:\Users\marDin\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

µTorrent (x32 Version: 3.3.0.29342)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Alien Nations (x32)
Antichamber (x32)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
ASUS USB-N13 WLAN Card Utilities & Driver (x32 Version: 1.0.0.5)
ASUS Xonar DGX Audio (x32 Version:  )
Audacity 2.0.3 (x32 Version: 2.0.3)
Battlefield 3™ (x32 Version: 1.6.0.0)
Battlelog Web Plugins (x32 Version: 2.1.7)
Bonjour (Version: 3.0.0.10)
Catan - Die erste Insel (x32)
CCleaner (Version: 4.06)
Chime (x32)
Cities in Motion (x32)
Corsair Headset Software (x32 Version: 2.0.7)
D3DX10 (x32 Version: 15.4.2368.0902)
Die Gilde Gold Update v. 2.06  (x32)
Die Gilde Gold-Edition (x32 Version: 2.06)
Die Sims™ 3 (x32 Version: 1.57.62)
Die Sims™ 3 Late Night (x32 Version: 6.5.1)
Die Sims™ 3 Luxus-Accessoires (x32 Version: 3.0.38)
Don't Starve (x32)
Dota 2 (x32)
Dropbox (HKCU Version: 2.4.2)
Dungeon Keeper 2 (x32)
Dwarfs!? (x32)
Element4l (x32)
ESN Sonar (x32 Version: 0.70.4)
Eufloria (x32)
FEZ (x32)
FileZilla Client 3.7.0.1 (x32 Version: 3.7.0.1)
Firebird SQL Server - MAGIX Edition (x32 Version: 2.1.32.0)
Fotogalerie (x32 Version: 16.4.3505.0912)
Fractal: Make Blooms Not War (x32)
Fraps (remove only) (x32)
Free Studio version 2013 (x32 Version: 6.1.11.827)
Free YouTube to MP3 Converter version 3.12.12.827 (x32 Version: 3.12.12.827)
From Dust (x32)
GeForce Experience NvStream Client Components (Version: 0.1.87)
GIMP 2.8.4 (Version: 2.8.4)
GPGNet (x32 Version: 1.0.0)
Guild Wars 2 (x32)
Half Minute Hero: Super Mega Neo Climax Ultimate Boy (x32)
Harvest: Massive Encounter (x32)
iCloud (Version: 3.0.2.163)
Intel(R) Control Center (x32 Version: 1.2.1.1008)
Intel(R) Management Engine Components (x32 Version: 8.1.0.1252)
Intel(R) Rapid Storage Technology (x32 Version: 11.5.0.1207)
Intel® Trusted Connect Service Client (Version: 1.24.388.1)
IrfanView (remove only) (x32 Version: 4.35)
iTunes (Version: 11.1.1.11)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32)
JDownloader 0.9 (x32 Version: 0.9)
Kaspersky Internet Security (x32 Version: 14.0.0.4651)
LAME v3.99.3 (for Windows) (x32)
League of Legends (x32 Version: 3.0.1)
LibreOffice 4.0.1.2 (x32 Version: 4.0.1.2)
Little Inferno (x32)
Magicka (x32)
MAGIX Content und Soundpools (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Demosongs) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Demosongs) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Introductory videos) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Introductory videos) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Synthesizer und Effekte) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Synthesizer und Effekte) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Version: 19.0.1.36)
MAGIX Music Maker 2013 Premium (Visuals) (Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (Visuals) (x32 Version: 1.0.0.0)
MAGIX Music Maker 2013 Premium (x32 Version: 19.0.1.36)
MAGIX Music Maker 2013 Premium Soundpools (Version: 1.0.0.0)
MAGIX Music Maker 2013 Soundpools (Version: 1.0.0.0)
MAGIX Screenshare (Version: 4.3.6.1987)
MAGIX Screenshare (x32 Version: 4.3.6.1987)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6)
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6)
MAGIX Video Pro X5 (Version: 12.0.10.28)
MAGIX Video Pro X5 (x32 Version: 12.0.10.28)
MAGIX Vita Solo Instruments (Century Keys) for MAGIX Music Maker 2013 Premium (x32 Version: 1.1.0.0)
MAGIX Vita Solo Instruments (Jazz Drums) for MAGIX Music Maker 2013 Premium (x32 Version: 1.1.0.0)
MAGIX Vita Solo Instruments (Saxophonia) for MAGIX Music Maker 2013 Premium (x32 Version: 1.1.0.0)
MAGIX Vita Solo Instruments (Space Pad) for MAGIX Music Maker 2013 Premium (x32 Version: 1.1.0.0)
MAGIX Vita Solo Instruments (Upright Bass) for MAGIX Music Maker 2013 Premium (x32 Version: 1.1.0.0)
MAGIX Vita Solo Instruments (Vibraphone) for MAGIX Music Maker 2013 Premium (x32 Version: 1.1.0.0)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106)
Microsoft XNA Framework Redistributable 3.1 (x32 Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 Refresh (x32 Version: 4.0.30901.0)
Microsoft-Maus- und Tastatur-Center (Version: 2.2.173.0)
Movie Maker (x32 Version: 16.4.3505.0912)
Mozilla Firefox 24.0 (x86 de) (x32 Version: 24.0)
Mozilla Maintenance Service (x32 Version: 24.0)
Mozilla Thunderbird 17.0.6 (x86 de) (x32 Version: 17.0.6)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
My Game Long Name
Nexus Mod Manager (Version: 0.44.11)
NightSky (x32)
Nimbus (x32)
NVIDIA 3D Vision Controller-Treiber 331.58 (Version: 331.58)
NVIDIA 3D Vision Treiber 331.58 (Version: 331.58)
NVIDIA GeForce Experience 1.6.1 (Version: 1.6.1)
NVIDIA Grafiktreiber 331.58 (Version: 331.58)
NVIDIA HD-Audiotreiber 1.3.26.4 (Version: 1.3.26.4)
NVIDIA Install Application (Version: 2.1002.133.902)
NVIDIA PhysX (x32 Version: 9.13.0725)
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3158)
NVIDIA Systemsteuerung 331.58 (Version: 331.58)
NVIDIA Update 8.3.14 (Version: 8.3.14)
NVIDIA Update Components (Version: 8.3.14)
NVIDIA Virtual Audio 1.2.5 (Version: 1.2.5)
Open Broadcaster Software (x32)
OpenAL (x32)
OpenTTD 1.3.2 (x32 Version: 1.3.2)
Origin (x32 Version: 9.1.15.109)
Overwolf (x32 Version: 0.44.256)
Paint.NET v3.5.11 (Version: 3.61.0)
Pando Media Booster (x32 Version: 2.6.0.7)
Papers, Please (x32)
Peggle Deluxe (x32)
Perspective 1.0 (x32 Version: 1.0)
Photo Gallery (x32 Version: 16.4.3505.0912)
Plants vs. Zombies: Game of the Year (x32)
Pokki (HKCU Version: 0.263.13.325)
Pokki Download Helper (HKCU Version: 1.3.1.282)
Prison Architect (x32)
Puddle (x32)
PunkBuster Services (x32 Version: 0.991)
QuickTime (x32 Version: 7.74.80.86)
Realtek Ethernet Controller Driver (x32 Version: 8.7.1025.2012)
Recuva (Version: 1.45)
Reus (x32)
Rogue Legacy (x32)
RPG Maker VX Ace (x32)
Sanctum 2 (x32)
SHIELD Streaming (Version: 1.05.28)
SimCity 2000 Special Edition (x32 Version: 2.0.0.14)
SpaceChem (x32)
Spelunky (x32)
SPORE™ (x32 Version: 1.00.0000)
Steam (x32 Version: 1.0.0.0)
Super Hexagon (x32)
Supreme Commander - Forged Alliance (HKCU Version: 1.00.0000)
Supreme Commander (HKCU Version: 1.00.0000)
Supreme Commander: Forged Alliance (x32)
Symphony (x32)
Team Fortress 2 (x32)
TeamSpeak 3 Client (Version: 3.0.13)
TEdit 3 (x32 Version: 3.4.13282.2)
Terrafirma (x32 Version: 1.9.8)
Terraria (x32)
Text-To-Speech-Runtime (x32 Version: 1.0.0.0)
The Binding of Isaac (x32)
The Elder Scrolls V: Skyrim (x32)
The Mighty Quest For Epic Loot Version 1.213647 (x32 Version: 1.213647)
The Wonderful End of the World (x32)
Tower Wars (x32)
Tunngle beta (x32)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
Unity Web Player (HKCU Version: )
Unlocker 1.9.2 (Version: 1.9.2)
Update for 2007 Microsoft Office System (KB967642) (x32)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32)
Update für Microsoft Office Word 2007 Help (KB963665) (x32)
Vampires Dawn II: Ancient Blood (MP3) (x32 Version: Vampires Dawn 2 - Version 1.23 (MP3))
Vampires Dawn: Reign of Blood (x32 Version: Vampires Dawn: Reign of Blood 1.31)
Vita 2 (Version: 1.0.0.0)
Vita 2 Zusatzcontent (Version: 1.0.0.0)
Vita Bass Machine (Version: 1.0.0.0)
Vita Century Guitar (Version: 1.0.0.0)
Vita Concert Guitar (Version: 1.0.0.0)
Vita Drum Engine (Version: 1.0.0.0)
Vita Electric Bass (Version: 1.0.0.0)
Vita Lead Synth (Version: 1.0.0.0)
Vita Rock Drums (Version: 1.0.0.0)
Vita Soundtrack Percussion (Version: 1.0.0.0)
Vita String Ensemble (Version: 1.0.0.0)
Vita World Percussion (Version: 1.0.0.0)
VLC media player 2.0.7 (Version: 2.0.7)
Windows Live Communications Platform (x32 Version: 16.4.3505.0912)
Windows Live Essentials (x32 Version: 16.4.3505.0912)
Windows Live Installer (x32 Version: 16.4.3505.0912)
Windows Live Photo Common (x32 Version: 16.4.3505.0912)
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912)
Windows Live SOXE (x32 Version: 16.4.3505.0912)
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912)
Windows Live UX Platform (x32 Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
WinRAR 5.00 (32-bit) (x32 Version: 5.00.0)
World of Goo (x32)
XAMPP 1.8.1 (x32)
XMedia Recode Version 3.1.4.8 (x32 Version: 3.1.4.8)
YNAB 4 version 4.3.196 (x32 Version: 4.3.196)
Yontoo 2.052 (Version: 2.052)

==================== Restore Points  =========================

17-10-2013 15:13:21 Installed Corsair Headset Software
17-10-2013 15:19:12 Wiederherstellungsvorgang
20-10-2013 09:16:23 Entfernt ASUS Xonar DGX Audio
21-10-2013 20:26:54 Removed League of Legends

==================== Hosts content: ==========================

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {01FDE12B-FB2D-4A1E-81E8-8EC804AAB4A7} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {03D6AD94-BDAB-4130-A1BC-021134ACACBE} - System32\Tasks\Baidu PC Faster Update => $szInstallingDir\Updater.exe
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {33D4C0CE-C4C6-4150-8F8D-D657DBE8BCF9} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2013-09-14] (Apple Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3FF70E24-4F98-43D3-BE72-4AB123FD7750} - System32\Tasks\Express FilesUpdate => C:\Program Files (x86)\ExpressFiles\EFUpdater.exe
Task: {40B6B023-1B53-4CA7-83F2-0802FCF54991} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {4192CFF8-D915-4FF8-81DD-D9BDF7B8E094} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4BD5A38B-60BF-4C72-A86D-F8F9510CA4BF} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {55F86DF4-7EF8-4A23-8075-D5952BF3AE70} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2013-08-22] (Microsoft Corporation)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => C:\Windows\system32\AppxDeploymentClient.dll [2013-09-30] (Microsoft Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {C1FFD89E-554F-44E1-BEA5-260AA9818B35} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe [2013-02-26] (Beepa P/L)
Task: {C67E9E8F-963C-4A12-BB1F-4372D7AF366A} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D59C99F8-58C6-490C-9123-0E2ECCE0351A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-09-19] (Piriform Ltd)
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E4ADCC2C-9175-47B8-9C12-34C8185E6B18} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-09] (Adobe Systems Incorporated)
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {EDE8CE21-4E12-407A-8E65-AC8F4693035B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2013-08-22 15:37 - 2013-08-22 15:37 - 00031136 _____ () C:\Program Files (x86)\Overwolf\x64\OWExplorer-2006.dll
2013-06-06 03:02 - 2013-06-06 03:02 - 01741080 _____ () C:\Users\marDin\AppData\Local\Pokki\ocdeskband_0.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2013-10-17 22:58 - 2013-10-17 22:58 - 00183808 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20279_x64__8wekyb3d8bbwe\ErrorReporting.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00031648 _____ () C:\Program Files (x86)\Overwolf\x64\OWExplorerLauncher.dll
2012-10-29 12:08 - 2013-10-02 09:57 - 00302056 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2012-10-29 12:08 - 2013-10-02 09:57 - 00320488 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2012-10-29 12:08 - 2013-10-02 09:57 - 00186344 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\appscanner_plugin.dll
2012-10-29 12:08 - 2013-10-02 09:57 - 00565224 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2013-09-10 08:28 - 2013-10-02 09:57 - 00700904 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\teamspeak_control_plugin.dll
2013-01-28 14:08 - 2013-01-28 14:08 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2013-01-28 14:08 - 2013-01-28 14:08 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-06-17 12:35 - 2013-06-17 12:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll
2013-05-08 14:52 - 2013-05-08 14:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll
2013-03-03 08:15 - 2009-12-09 22:20 - 00126976 _____ () C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\EnumDevLib.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00078240 _____ () C:\Program Files (x86)\Overwolf\OWExplorer-2006.dll
2013-01-26 04:53 - 2013-01-26 04:53 - 00716288 _____ () C:\Users\marDin\AppData\Local\Pokki\Engine\libglesv2.dll
2013-01-26 04:53 - 2013-01-26 04:53 - 00130048 _____ () C:\Users\marDin\AppData\Local\Pokki\Engine\libegl.dll
2013-01-26 04:53 - 2013-01-26 04:53 - 00569856 _____ () C:\Users\marDin\AppData\Local\Pokki\Engine\ppGoogleNaClPluginChrome.dll
2013-01-26 00:07 - 2013-01-26 00:07 - 01400846 _____ () C:\Users\marDin\AppData\Local\Pokki\Engine\avcodec-54.dll
2013-01-26 00:07 - 2013-01-26 00:07 - 00151054 _____ () C:\Users\marDin\AppData\Local\Pokki\Engine\avutil-51.dll
2013-01-26 00:07 - 2013-01-26 00:07 - 00222734 _____ () C:\Users\marDin\AppData\Local\Pokki\Engine\avformat-54.dll
2013-09-17 17:04 - 2013-09-17 17:04 - 03279768 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-09-14 01:51 - 2013-09-14 01:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 01:50 - 2013-09-14 01:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2013-10-20 11:17 - 2012-06-06 09:56 - 00143360 ____N () C:\Program Files\ASUS Xonar DGX Audio\Customapp\VmixP8.dll
2013-03-12 18:10 - 2013-08-22 00:18 - 00687104 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2013-02-25 08:39 - 2013-10-09 04:19 - 01121704 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2013-02-19 12:48 - 2013-09-11 00:20 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2012-12-11 10:51 - 2013-06-15 01:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2012-12-11 10:51 - 2013-06-15 01:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2012-12-11 10:51 - 2013-06-15 01:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 21636024 _____ () C:\Program Files (x86)\Overwolf\OverWolf.Client.Core.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00065536 _____ () C:\Program Files (x86)\Overwolf\de\OverWolf.Client.Core.resources.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00091576 _____ () C:\Program Files (x86)\Overwolf\OverWolf.BL.Interfaces.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00010240 _____ () C:\Program Files (x86)\Overwolf\ODK.AddIns.V2.HostView.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00124320 _____ () C:\Program Files (x86)\Overwolf\OWService.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00940960 _____ () C:\Program Files (x86)\Overwolf\OWServer.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00037280 _____ () C:\Program Files (x86)\Overwolf\OWLog.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00669088 _____ () C:\Program Files (x86)\Overwolf\OWAgent.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00087552 _____ () C:\Program Files (x86)\Overwolf\BrowserWindow.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00027040 _____ () C:\Program Files (x86)\Overwolf\OWExplorerLauncher.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 01213633 _____ () C:\Program Files (x86)\Overwolf\Purplizer\libxml2-2.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00055808 _____ () C:\Program Files (x86)\Overwolf\Purplizer\zlib1.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00301681 _____ () C:\Program Files (x86)\Overwolf\Purplizer\plugins\libmsn.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00904525 _____ () C:\Program Files (x86)\Overwolf\Purplizer\libcairo-2.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00482872 _____ () C:\Program Files (x86)\Overwolf\Purplizer\libgio-2.0-0.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00095189 _____ () C:\Program Files (x86)\Overwolf\Purplizer\libpangocairo-1.0-0.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00219305 _____ () C:\Program Files (x86)\Overwolf\Purplizer\libpng14-14.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00279059 _____ () C:\Program Files (x86)\Overwolf\Purplizer\libfontconfig-1.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00535264 _____ () C:\Program Files (x86)\Overwolf\Purplizer\freetype6.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00143096 _____ () C:\Program Files (x86)\Overwolf\Purplizer\libexpat-1.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00016371 _____ () C:\Program Files (x86)\Overwolf\Purplizer\plugins\libxmpp.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00323844 _____ () C:\Program Files (x86)\Overwolf\Purplizer\libjabber.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00016330 _____ () C:\Program Files (x86)\Overwolf\Purplizer\plugins\libyahoo.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00190138 _____ () C:\Program Files (x86)\Overwolf\Purplizer\libymsg.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00018706 _____ () C:\Program Files (x86)\Overwolf\Purplizer\plugins\ssl-nss.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00006526 _____ () C:\Program Files (x86)\Overwolf\Purplizer\plugins\ssl.dll
2013-08-22 15:37 - 2013-08-22 15:37 - 00417501 _____ () C:\Program Files (x86)\Overwolf\Purplizer\sqlite3.dll
2013-03-13 22:48 - 2013-03-13 22:48 - 24978944 _____ () C:\Users\marDin\AppData\Roaming\Dropbox\bin\libcef.dll
2013-04-29 20:06 - 2013-10-22 13:10 - 00013600 _____ () C:\Users\marDin\AppData\Roaming\Yontoo\dat\Desktop.OS.Plugin.dll
2013-10-19 15:27 - 2013-10-19 15:27 - 00016384 _____ () C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\PSIClient\a9dd3b12fecb739b31c31ede665bd0c2\PSIClient.ni.dll
2013-03-03 07:22 - 2012-06-25 11:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Users\marDin\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\marDin\Desktop\FINANZEN.XLS:com.dropbox.attributes
AlternateDataStreams: C:\Users\marDin\Desktop\ProgrammPeterskirche.doc:com.dropbox.attributes

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SystemEventsBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SystemEventsBroker => ""="Service"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/22/2013 11:25:14 AM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.


Details:
	Das angegebene Objekt wurde nicht gefunden. Geben Sie den Namen eines vorhandenen Objekts an.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (10/22/2013 11:25:14 AM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Kontext: Windows Anwendung


Details:
	Das angegebene Objekt wurde nicht gefunden. Geben Sie den Namen eines vorhandenen Objekts an.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (10/22/2013 11:25:14 AM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Das angegebene Objekt wurde nicht gefunden. Geben Sie den Namen eines vorhandenen Objekts an.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (10/22/2013 11:25:14 AM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
	Das angegebene Objekt wurde nicht gefunden. Geben Sie den Namen eines vorhandenen Objekts an.  (HRESULT : 0x80040d06) (0x80040d06)

Error: (10/22/2013 11:25:14 AM) (Source: Windows Search Service) (User: )
Description: Der Plug-In-Manager <Search.TripoliIndexer> kann nicht initialisiert werden.

Kontext: Windows Anwendung


Details:
	(HRESULT : 0x8e5e0210) (0x8e5e0210)

Error: (10/22/2013 11:25:14 AM) (Source: Windows Search Service) (User: )
Description: Windows Search wird aufgrund eines Problems bei der Indizierung The catalog is corrupt beendet.


Details:
	Der Inhaltsindexkatalog ist fehlerhaft.   0xc0041801 (0xc0041801)

Error: (10/22/2013 11:25:14 AM) (Source: Windows Search Service) (User: )
Description: Vom Suchdienst wurden beschädigte Datendateien im Index {id=4810 - enduser\mssearch2\search\ytrip\common\util\jetutil.cpp (167)} erkannt. Vom Dienst wird versucht, dieses Problem durch Neuerstellung des Indexes automatisch zu beheben.


Details:
	 0x8e5e0210 (0x8e5e0210)

Error: (10/22/2013 11:25:14 AM) (Source: ESENT) (User: )
Description: SearchIndexer (3920) Windows: Fehler -1811 (0xfffff8ed) beim Öffnen von Protokolldatei C:\ProgramData\Microsoft\Search\Data\Applications\Windows\edb004A6.log.

Error: (10/21/2013 11:12:30 PM) (Source: BugSplat) (User: )
Description: lol_beta_riotgames_comLOL_Public84108387

Error: (10/21/2013 10:26:56 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.


System errors:
=============
Error: (10/22/2013 01:13:14 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (10/22/2013 01:08:21 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (10/22/2013 01:05:58 PM) (Source: Service Control Manager) (User: )
Description: Dienst "Baidu PC Faster Service 3.7.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/22/2013 11:28:11 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (10/22/2013 11:25:41 AM) (Source: DCOM) (User: MARDINS_MACHINE)
Description: 1053WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (10/22/2013 11:25:41 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (10/22/2013 11:25:41 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Search erreicht.

Error: (10/22/2013 11:25:40 AM) (Source: DCOM) (User: MARDINS_MACHINE)
Description: 1053WSearchNicht verfügbar{B52D54BB-4818-4EB9-AA80-F9EACD371DF8}

Error: (10/22/2013 11:25:40 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (10/22/2013 11:25:40 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Search erreicht.


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 38%
Total physical RAM: 8141.94 MB
Available physical RAM: 5016.16 MB
Total Pagefile: 10957.94 MB
Available Pagefile: 7462.92 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.37 GB) (Free:32.8 GB) NTFS
Drive d: () (Fixed) (Total:298.09 GB) (Free:69.41 GB) NTFS
Drive e: (Media-Data) (Fixed) (Total:298.09 GB) (Free:28.29 GB) NTFS
Drive f: (New Volume) (Fixed) (Total:335.35 GB) (Free:168.66 GB) NTFS
Drive g: (kis 2014) (CDROM) (Total:0.52 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 233 GB) (Disk ID: 00000000)

Partition: GPT Partition Type
========================================================
Disk: 1 (Size: 298 GB) (Disk ID: 6D6F6B20)
No partition Table on disk 1.

========================================================
Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 335 GB) (Disk ID: 370CDAA5)
Partition 1: (Not Active) - (Size=335 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: D27AC928)
Partition 1: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Wäre wirklich nett von euch, wenn ihr da mal einen Blick drauf werfen könntet. Das ganze RootKit-Blabla hat mich jetzt schon ein wenig verunsichert.

Liebe Grüße,
marDin

EDIT:
Kaspersky (gekaufte Version) läuft grad noch drüber, ich poste dann die Ergebnisse hier noch rein.

schrauber · 22.10.2013, 13:28

Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

marDin · 22.10.2013, 13:39

Hallo,

Danke für die Antwort.
Bezüglich 'zu groß' - ich hab mich nur an dieses (http://www.trojaner-board.de/69886-a...-beachten.html) Tutorial gehalten, indem steht, dass man es im Zweifelsfall hochladen soll. Doppelpostings wullte ich vermeiden. Aber gut, in Zukunft werde ichs gerne so machen.

Also, hier die FRST.txt

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-10-2013
Ran by marDin (administrator) on MARDINS_MACHINE on 22-10-2013 13:31:42
Running from C:\Users\marDin\Desktop
Windows 8.1 Pro (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Realtek) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtWlan.exe
(Microsoft) C:\Program Files (x86)\Yontoo\Y2Desktop.Updater.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20279_x64__8wekyb3d8bbwe\LiveComm.exe
(Pokki) C:\Users\marDin\AppData\Local\Pokki\Engine\pokki.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Pokki) C:\Users\marDin\AppData\Local\Pokki\Engine\pokki.exe
(Pokki) C:\Users\marDin\AppData\Local\Pokki\Engine\pokki.exe
(Pokki) C:\Users\marDin\AppData\Local\Pokki\Engine\pokki.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\ASUSAUDIOCENTER.EXE
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\System\HsMgr64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Overwolf) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Microsoft) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper.exe
(Overwolf) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
() C:\Program Files (x86)\Overwolf\Purplizer\Purplizer.exe
(Dropbox, Inc.) C:\Users\marDin\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Apple Inc.) E:\Programme\iTunes\iTunesHelper.exe
(Corsair) C:\Program Files (x86)\Corsair\Corsair Headset Software\HeadsetControlPanel.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Yontoo LLC) C:\Users\marDin\AppData\Roaming\Yontoo\YontooDesktop.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\WINDOWS\WinStore\WSHost.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM\...\Run: [Cmaudio8788] - C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] - C:\WINDOWS\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] - C:\WINDOWS\system\HsMgr64.exe [282112 2008-07-11] ()
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1813928 2013-10-09] (Valve Corporation)
HKCU\...\Run: [uTorrent] - C:\Users\marDin\AppData\Roaming\uTorrent\uTorrent.exe [802136 2013-06-07] (BitTorrent Inc.)
HKCU\...\Run: [Yontoo Desktop] - C:\Users\marDin\AppData\Roaming\Yontoo\YontooDesktop.exe [42784 2013-04-17] (Yontoo LLC)
HKCU\...\Run: [Overwolf] - C:\Program Files (x86)\Overwolf\Overwolf.exe [35256 2013-08-22] (Overwolf)
HKCU\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-09-14] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-09-15] (Apple Inc.)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - E:\Programme\iTunes\iTunesHelper.exe [152392 2013-10-01] (Apple Inc.)
HKLM-x32\...\Run: [Corsair Headset Software] - C:\Program Files (x86)\Corsair\Corsair Headset Software\HeadsetControlPanel.exe [3160064 2013-03-25] (Corsair)
HKU\Administrator\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
Startup: C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\marDin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> E:\Programme\Microsoft Office 2007\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PC App Store Uninstall 3.8.8.1435.lnk
ShortcutTarget: PC App Store Uninstall 3.8.8.1435.lnk -> C:\Users\marDin\AppData\Roaming\Baidu Security\PC App Store\3.8.8.1435\Uninstall\PC App Store Uninstall\0\InstallUtility.dll", _OpenUrl -run "PC App Store Uninstall" -ini "OpenUrl.ini (No File)
Startup: C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Steam.lnk
ShortcutTarget: Steam.lnk -> C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Startup: C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TeamSpeak 3 Client.lnk
ShortcutTarget: TeamSpeak 3 Client.lnk -> C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (TeamSpeak Systems GmbH)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.at.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x597162A80334CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-AT,de;q=0.8,en-US;q=0.5,en;q=0.3
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
BHO-x32: Yontoo - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll (Yontoo LLC)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21

FireFox:
========
FF ProfilePath: C:\Users\marDin\AppData\Roaming\Mozilla\Firefox\C:\ProgramData\Kaspersky Lab\SafeBrowser\S-1-5-21-2736238369-3271077903-3660546878-1001\FireFox
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - E:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\marDin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: pokki.com/PokkiDownloadHelper - C:\Users\marDin\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: No Name - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com

==================== Services (Whitelisted) =================

S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [533504 2013-09-30] (Microsoft Corporation)
S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [1302016 2013-09-30] (Microsoft Corporation)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-03] (Kaspersky Lab ZAO)
S3 COMSysApp; C:\Windows\SysWow64\dllhost.exe [17760 2013-08-22] (Microsoft Corporation)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [111616 2013-08-22] (Microsoft Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 lfsvc; C:\Windows\System32\GeofenceMonitorService.dll [491520 2013-09-30] (Microsoft Corporation)
S3 msiserver; C:\Windows\SysWow64\msiexec.exe [55808 2013-08-22] (Microsoft Corporation)
S4 MsKeyboardFilter; C:\Windows\System32\KeyboardFilterSvc.dll [90464 2013-09-30] (Microsoft Corporation)
R3 NcbService; C:\Windows\System32\ncbservice.dll [151040 2013-08-22] (Microsoft Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14997280 2013-08-27] (NVIDIA Corporation)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [18360 2013-08-22] (Overwolf Ltd)
R2 Realtek11nSU; C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe [36864 2010-04-16] (Realtek)
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [130560 2013-08-22] (Microsoft Corporation)
S3 smphost; C:\Windows\System32\smphost.dll [13312 2013-08-22] (Microsoft Corporation)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [759192 2013-09-03] (Tunngle.net GmbH)
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [24576 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1581568 2013-09-30] (Microsoft Corporation)
R2 WSearch; C:\Windows\SysWow64\SearchIndexer.exe [657920 2013-08-22] (Microsoft Corporation)
R2 Yontoo Desktop Updater; C:\Program Files (x86)\Yontoo\Y2Desktop.Updater.exe [23552 2013-04-17] (Microsoft)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [76800 2013-08-22] (Microsoft Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 cmudaxp; C:\Windows\system32\drivers\cmudaxp.sys [2734080 2013-04-11] (C-Media Inc)
R3 CorsairAudioFilter; C:\Windows\system32\DRIVERS\corsveng2kamd64.sys [103296 2013-03-15] (Corsair)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-09-30] (Microsoft Corporation)
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-09-30] (Microsoft Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [7717984 2013-10-03] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [112224 2013-06-08] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [624224 2013-10-03] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-10-03] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2013-10-03] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-10-03] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [64608 2013-05-07] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178784 2013-06-06] (Kaspersky Lab ZAO)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-08-20] (NVIDIA Corporation)
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146272 2013-08-22] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [56672 2013-08-22] (Microsoft Corporation)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [x]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\3.7.0.0\PCFApiUtil64.sys [x]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

NETSVC: lfsvc -> C:\Windows\System32\GeofenceMonitorService.dll (Microsoft Corporation)
NETSVC: MsKeyboardFilter -> C:\Windows\System32\KeyboardFilterSvc.dll (Microsoft Corporation)

==================== One Month Created Files and Folders ========

2013-10-22 13:31 - 2013-10-22 13:31 - 00000000 ____D C:\FRST
2013-10-22 13:30 - 2013-10-22 13:30 - 01954682 _____ (Farbar) C:\Users\marDin\Desktop\FRST64.exe
2013-10-22 13:29 - 2013-10-22 13:29 - 00050477 _____ C:\Users\marDin\Desktop\Defogger.exe
2013-10-22 13:29 - 2013-10-22 13:29 - 00000474 _____ C:\Users\marDin\Desktop\defogger_disable.log
2013-10-22 13:29 - 2013-10-22 13:29 - 00000000 _____ C:\Users\marDin\defogger_reenable
2013-10-22 13:22 - 2013-10-22 13:22 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\marDin\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-22 13:06 - 2013-10-22 13:06 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{88A7A2FA-8BAA-47FD-B6D9-518A7822698F}
2013-10-22 13:03 - 2013-10-22 13:03 - 00000000 ____D C:\Users\marDin\Desktop\lol
2013-10-22 11:25 - 2013-10-22 13:09 - 00000924 _____ C:\WINDOWS\PFRO.log
2013-10-21 23:27 - 2013-10-21 23:27 - 00000233 _____ C:\WINDOWS\Directx.log
2013-10-21 23:26 - 2013-10-21 23:26 - 07837320 _____ (Microsoft Corporation) C:\Users\marDin\Desktop\DX81NTger.exe
2013-10-21 22:30 - 2013-10-21 22:30 - 00001597 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-10-21 22:25 - 2013-10-21 22:25 - 00002153 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2013-10-21 22:24 - 2013-10-21 22:24 - 00000000 ____D C:\WINDOWS\LastGood
2013-10-21 22:23 - 2013-10-16 02:48 - 30344992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 25256224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 22933280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 18243632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 12537632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2013-10-21 22:23 - 2013-10-16 02:48 - 11415232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 11362672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 09516872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 09472600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 03131680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 03124512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 02946848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 02747168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433158.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433158.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 01241376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00696096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00655136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00599840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00560416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00479520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00405280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00266984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00168616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00141336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2013-10-20 22:29 - 2013-10-21 12:31 - 462767040 ____R C:\Users\marDin\Desktop\Die_Mondverschwoerung_12.09.23_21-45_3sat_85_TVOON_DE.mpg_ffmpeg-cutted.avi
2013-10-20 21:18 - 2013-10-20 21:56 - 00000000 ____D C:\Users\marDin\Desktop\The Legend of Zelda - Link's Awakening DX
2013-10-20 21:18 - 2013-10-20 21:18 - 00659797 _____ C:\Users\marDin\Desktop\VisualBoyAdvance-1.8.0-beta3.zip
2013-10-20 21:18 - 2013-10-20 21:18 - 00000000 ____D C:\Users\marDin\Desktop\VisualBoyAdvance-1.8.0-beta3
2013-10-20 21:17 - 2013-10-20 21:17 - 00501300 _____ C:\Users\marDin\Desktop\The Legend of Zelda - Link's Awakening DX.zip
2013-10-20 21:02 - 2013-10-20 21:02 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-10-20 16:43 - 2013-10-20 16:43 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-10-20 11:18 - 2013-10-20 11:18 - 00000000 ____D C:\Users\marDin\AppData\Roaming\ASUS
2013-10-20 11:17 - 2013-10-20 11:17 - 00047616 _____ C:\WINDOWS\Cmicnfgp.ini.cfl
2013-10-20 11:17 - 2013-10-20 11:17 - 00001010 _____ C:\WINDOWS\Cmicnfgp.ini.imi
2013-10-20 11:17 - 2013-10-20 11:17 - 00000949 _____ C:\WINDOWS\system\Cmicnfgp.ini
2013-10-20 11:17 - 2013-10-20 11:17 - 00000000 ____D C:\Program Files\ASUS Xonar DGX Audio
2013-10-20 11:17 - 2013-03-21 10:11 - 00827904 ____N C:\WINDOWS\system32\Cmeauoxy.exe
2013-10-20 11:17 - 2013-02-25 11:35 - 00004374 ____N C:\WINDOWS\Cmicnfgp.ini.cfg
2013-10-20 11:17 - 2012-11-20 11:24 - 12935168 ____N (C-Media Corporation) C:\WINDOWS\SysWOW64\CmiCnfgp.dll
2013-10-20 11:17 - 2012-09-28 15:45 - 00465408 ____N (C-Media Electronics Inc.) C:\WINDOWS\system32\cmasiopx.dll
2013-10-20 11:17 - 2012-09-28 15:45 - 00303104 ____N (C-Media Electronics Inc.) C:\WINDOWS\SysWOW64\cmasiop.dll
2013-10-20 11:17 - 2012-06-06 09:56 - 00143360 ____N C:\WINDOWS\SysWOW64\VmixP8.dll
2013-10-20 11:17 - 2012-06-04 14:15 - 04533760 ____N C:\WINDOWS\system32\CmiCnfgp.cpl
2013-10-20 11:17 - 2011-12-29 00:09 - 00000054 ____N C:\WINDOWS\system32\cmasiopx.ini
2013-10-20 11:17 - 2011-12-29 00:08 - 00000049 ____N C:\WINDOWS\SysWOW64\cmasiop.ini
2013-10-20 11:17 - 2011-11-24 18:46 - 00000594 ____N C:\WINDOWS\cmudaxp.ini
2013-10-20 11:17 - 2007-12-13 17:12 - 00122880 ____N (CMedia Electronics Inc.) C:\WINDOWS\SysWOW64\Cm_Oal.dll
2013-10-20 11:17 - 2007-12-13 17:12 - 00122880 ____N (CMedia Electronics Inc.) C:\WINDOWS\system32\Cm_Oal.dll
2013-10-20 11:17 - 2006-09-13 10:21 - 00200704 ____N (C-Media) C:\WINDOWS\SysWOW64\Cmpaoxy.dll
2013-10-20 11:15 - 2013-10-20 11:15 - 14574400 _____ C:\Users\marDin\Desktop\DGX_8_0_8_1821_Win8.rar
2013-10-20 11:15 - 2013-10-20 11:15 - 00000000 ____D C:\Users\marDin\Desktop\DGX_8_0_8_1821_Win8
2013-10-20 11:15 - 2013-04-11 19:21 - 02734080 _____ (C-Media Inc) C:\WINDOWS\system32\Drivers\cmudaxp.sys
2013-10-19 22:59 - 2013-10-19 22:59 - 00013824 ___SH C:\Users\marDin\Downloads\Thumbs.db
2013-10-19 19:54 - 2013-10-19 19:54 - 00000000 ____D C:\Users\marDin\AppData\Roaming\NVIDIA
2013-10-19 17:45 - 2013-10-19 17:45 - 00001367 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2013-10-19 17:44 - 2013-10-19 17:44 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-10-19 17:44 - 2013-10-17 16:50 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Microsoft Help
2013-10-19 17:44 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-19 17:44 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-19 17:44 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-10-19 17:44 - 2013-08-22 17:36 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-19 17:43 - 2013-10-22 13:09 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-19 17:43 - 2013-10-21 22:25 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-19 17:43 - 2013-10-16 02:48 - 00061216 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2013-10-19 17:43 - 2013-10-16 02:48 - 00053024 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2013-10-19 17:43 - 2013-10-15 23:47 - 06665504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2013-10-19 17:43 - 2013-10-15 23:47 - 03489568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2013-10-19 17:43 - 2013-10-15 23:47 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2013-10-19 17:43 - 2013-10-15 23:47 - 00922912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2013-10-19 17:43 - 2013-10-15 23:47 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2013-10-19 17:43 - 2013-10-15 23:47 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-10-19 17:43 - 2013-10-08 21:14 - 03398914 _____ C:\WINDOWS\system32\nvcoproc.bin
2013-10-19 17:42 - 2013-10-16 02:48 - 18290536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 15858664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 15244272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 03067560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 02694664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 01435504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 00023287 _____ C:\WINDOWS\system32\nvinfo.pb
2013-10-19 17:42 - 2013-09-27 10:57 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433140.dll
2013-10-19 17:42 - 2013-09-27 10:57 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433140.dll
2013-10-19 17:42 - 2013-08-20 15:33 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2013-10-19 17:42 - 2013-08-20 15:32 - 00029984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2013-10-19 17:42 - 2013-08-20 15:32 - 00028448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2013-10-19 17:42 - 2013-06-16 14:38 - 00196384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2013-10-19 17:42 - 2013-06-16 14:38 - 00031520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2013-10-19 17:42 - 2013-01-29 10:35 - 01510176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2013-10-19 17:41 - 2013-10-19 17:41 - 252822144 _____ (NVIDIA Corporation) C:\Users\marDin\Desktop\331.40-desktop-win8-win7-winvista-64bit-international-beta.exe
2013-10-19 17:04 - 2013-10-19 17:04 - 00002774 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2013-10-19 17:04 - 2013-10-19 17:04 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-19 17:04 - 2013-10-19 17:04 - 00000000 ____D C:\Program Files\CCleaner
2013-10-19 17:03 - 2013-10-19 17:03 - 00614816 _____ C:\Users\marDin\Desktop\CCleaner - CHIP-Downloader.exe
2013-10-18 14:15 - 2013-10-18 14:15 - 00001464 _____ C:\Users\marDin\AppData\Local\recently-used.xbel
2013-10-17 21:46 - 2013-10-22 13:04 - 00000000 ____D C:\Users\marDin\AppData\Local\PMB Files
2013-10-17 21:46 - 2013-10-22 13:04 - 00000000 ____D C:\ProgramData\PMB Files
2013-10-17 21:44 - 2013-10-21 22:28 - 34888568 _____ (Riot Games) C:\Users\marDin\Desktop\LeagueofLegends_EUW_Installer_06_12_13.exe
2013-10-17 21:18 - 2013-10-19 17:07 - 242200864 _____ (NVIDIA Corporation) C:\Users\marDin\Desktop\327.23-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-10-17 20:06 - 2013-10-21 22:28 - 00142848 ___SH C:\Users\marDin\Desktop\Thumbs.db
2013-10-17 17:45 - 2013-10-19 17:05 - 00000000 ___DC C:\WINDOWS\Panther
2013-10-17 17:45 - 2013-10-17 17:45 - 02144768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01537880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-10-17 17:45 - 2013-10-17 17:45 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00837120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-10-17 17:45 - 2013-10-17 17:45 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00000000 __SHD C:\Recovery
2013-10-17 17:44 - 2013-10-17 17:44 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files\MSBuild
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-10-17 17:43 - 2013-08-03 06:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-10-17 17:43 - 2013-08-03 06:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-17 17:43 - 2013-08-03 06:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-10-17 17:43 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2013-10-17 17:43 - 2013-08-03 06:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-17 17:43 - 2013-08-03 06:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2013-10-17 17:25 - 2013-10-17 17:25 - 00000000 ____D C:\Program Files (x86)\Corsair
2013-10-17 17:13 - 2013-10-17 17:13 - 00000000 ____D C:\Users\marDin\Desktop\Corsair-Vengeance-Headset-Dolby-Driver-2_0_7
2013-10-17 17:09 - 2013-10-17 17:09 - 07107748 _____ C:\Users\marDin\Desktop\Corsair-Vengeance-Headset-Dolby-Driver-2_0_7.zip
2013-10-17 16:57 - 2013-10-22 13:09 - 00000000 __RDO C:\Users\marDin\SkyDrive
2013-10-17 16:56 - 2013-10-17 16:56 - 00001454 _____ C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-17 16:56 - 2013-10-17 16:56 - 00000020 ___SH C:\Users\marDin\ntuser.ini
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-17 16:52 - 2013-10-17 16:52 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-10-17 16:51 - 2013-10-17 16:52 - 00000000 ____D C:\Users\Public\Documents\Baidu Security
2013-10-17 16:50 - 2013-10-17 16:50 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-10-17 16:50 - 2013-10-17 16:50 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-10-17 16:49 - 2013-10-17 16:49 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-10-17 16:48 - 2013-10-22 13:29 - 00000000 ____D C:\Users\marDin
2013-10-17 16:48 - 2013-10-17 17:21 - 00000000 ____D C:\Users\Administrator
2013-10-17 16:48 - 2013-10-17 16:52 - 00040008 _____ C:\WINDOWS\diagwrn.xml
2013-10-17 16:48 - 2013-10-17 16:52 - 00040008 _____ C:\WINDOWS\diagerr.xml
2013-10-17 16:48 - 2013-10-17 16:49 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Vorlagen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Startmenü
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Netzwerkumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Lokale Einstellungen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Eigene Dateien
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Druckumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Documents\Eigene Musik
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Documents\Eigene Bilder
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Local\Verlauf
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Local\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-17 16:46 - 2013-10-22 13:23 - 01070437 _____ C:\WINDOWS\WindowsUpdate.log
2013-10-17 16:46 - 2013-10-21 22:25 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-17 16:46 - 2013-10-19 17:44 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-17 16:46 - 2013-10-17 16:46 - 00003653 _____ C:\WINDOWS\system32\lvcoinst.log
2013-10-17 16:46 - 2013-10-17 16:46 - 00000000 ____D C:\Program Files\Common Files\logishrd
2013-10-17 16:21 - 2013-10-17 16:21 - 00675988 _____ C:\Users\marDin\Desktop\Minecraft.exe
2013-10-16 17:42 - 2013-10-16 17:42 - 00000000 _____ C:\Users\marDin\Desktop\Neues Textdokument.txt
2013-10-15 16:54 - 2013-10-15 16:54 - 00589600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2013-10-14 18:49 - 2013-10-14 18:49 - 00000002 _____ C:\Users\marDin\Downloads\Highscore.hsc
2013-10-11 17:19 - 2013-10-11 17:19 - 00000000 ____D C:\Users\marDin\Documents\Dust
2013-10-11 17:09 - 2013-10-11 17:17 - 00000000 ____D C:\Users\marDin\AppData\Local\Ubisoft Game Launcher
2013-10-11 17:08 - 2013-10-11 17:08 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-10-10 19:15 - 2013-10-16 15:16 - 00000000 ____D C:\Users\marDin\AppData\Roaming\TEdit
2013-10-10 19:15 - 2013-10-10 19:15 - 00610304 _____ C:\Users\marDin\Desktop\TEdit3Installer_3.4.13282.msi
2013-10-10 19:15 - 2013-10-10 19:15 - 00000000 ____D C:\Users\marDin\AppData\Local\TEditXna
2013-10-10 19:15 - 2013-10-10 19:15 - 00000000 ____D C:\Program Files (x86)\TEdit
2013-10-10 19:11 - 2013-10-10 19:11 - 00876027 _____ C:\Users\marDin\Desktop\Terraria-Map-Editor-master.zip
2013-10-10 19:11 - 2013-10-10 19:11 - 00000000 ____D C:\Users\marDin\Desktop\Terraria-Map-Editor-master
2013-10-08 17:05 - 2013-10-17 16:51 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Terrafirma
2013-10-08 17:05 - 2013-10-08 17:05 - 00454656 _____ C:\Users\marDin\Desktop\terrafirma.msi
2013-10-08 17:05 - 2013-10-08 17:05 - 00000961 _____ C:\Users\marDin\Desktop\Terrafirma.lnk
2013-10-08 17:05 - 2013-10-08 17:05 - 00000000 ____D C:\Program Files (x86)\Terrafirma
2013-10-08 17:03 - 2013-10-08 17:05 - 00000000 ____D C:\Users\marDin\AppData\Roaming\MoreTerra
2013-10-08 17:02 - 2013-10-08 17:02 - 00127079 _____ C:\Users\marDin\Desktop\MoreTerra1.11.1.zip
2013-10-08 17:02 - 2013-10-08 17:02 - 00000000 ____D C:\Users\marDin\Desktop\MoreTerra1.11.1
2013-10-04 17:11 - 2013-10-04 17:11 - 00001548 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 17:11 - 2013-10-04 17:11 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 17:11 - 2013-10-04 17:11 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 17:11 - 2013-10-04 17:11 - 00000000 ____D C:\Program Files\iPod
2013-10-04 17:10 - 2013-10-04 17:10 - 00001845 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-10-04 17:10 - 2013-10-04 17:10 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-10-03 21:14 - 2013-10-03 21:27 - 00033792 _____ C:\Users\marDin\Desktop\FINANZEN.XLS
2013-10-03 00:09 - 2013-10-17 19:39 - 00000000 ____D C:\Users\marDin\Desktop\völker
2013-10-03 00:03 - 2013-10-03 00:03 - 00000158 _____ C:\WINDOWS\AlienNations_usa.ini
2013-10-01 14:54 - 2013-10-01 14:54 - 00000000 ____D C:\Users\marDin\Documents\Puddle
2013-09-30 06:17 - 2013-09-30 06:17 - 01641496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-09-30 06:17 - 2013-09-30 06:17 - 01506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-09-30 06:17 - 2013-09-30 06:17 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-09-30 06:17 - 2013-09-30 06:17 - 01344984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-09-30 06:16 - 2013-09-30 06:16 - 04079104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-09-30 06:16 - 2013-09-30 06:16 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-09-30 06:16 - 2013-09-30 06:16 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-09-30 06:14 - 2013-10-22 13:15 - 01780340 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-09-30 06:13 - 2013-09-30 06:13 - 23213568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 21195128 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 18640456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 18576896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 17143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 13172736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 12996096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 12028416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11670528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11366912 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 08875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 08712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 07544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 07401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 06639104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 06353952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04975104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 03524096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02763776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02616832 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02569728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02555224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02328328 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02142424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02131120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02065960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01928656 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01741824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01720552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01662464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01581568 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01534504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01455616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01415168 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01370800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01302016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01225728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01150976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01119576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 01109936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01102336 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 01092896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00996320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00934856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00919552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00911872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00872328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 00813568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00796928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00783504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00707560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00648648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\riched20.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00579416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\recimg.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00552448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00534048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00528048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched20.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00482456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00467800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2013-09-30 06:13 - 2013-09-30 06:13 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2013-09-30 06:13 - 2013-09-30 06:13 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00427096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00407016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2013-09-30 06:13 - 2013-09-30 06:13 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00382224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00371032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00368736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00366688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\livessp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00358384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00312936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdprint.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdprint.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00236376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00205024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCoreConfProv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00180232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00153600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00151384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00123480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WorkFoldersRes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersRes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00098104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00066904 _____ (Microsoft Corporation) C:\WINDOWS\system32\PSHED.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2013-09-30 06:09 - 2013-08-22 07:17 - 02407936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2013-09-30 06:00 - 2013-08-22 08:51 - 00036235 _____ C:\WINDOWS\Professional.xml
2013-09-30 05:59 - 2013-10-17 16:51 - 00000000 ____D C:\WINDOWS\ShellNew
2013-09-30 05:59 - 2013-09-30 05:59 - 03396096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02176000 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsCpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02119680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsCpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSh.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01165824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDistSh.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00935424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCacheProvider.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00788480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mblctr.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmscan.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SnippingTool.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrptadm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AdmTmpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscobj.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SrpUxNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00291808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmstormod.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00267528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddputils.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SNTSearch.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppIdPolicyEngineApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddpchunk.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationSettings.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmstormod.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscobj.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrreg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmshell.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveprompt.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgmts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00147439 _____ C:\WINDOWS\SysWOW64\gpedit.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00147439 _____ C:\WINDOWS\system32\gpedit.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00146389 _____ C:\WINDOWS\system32\printmanagement.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddptrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\adrclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbusr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmshell.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00120458 _____ C:\WINDOWS\system32\secpol.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\baaupdate.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adrclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizardElev.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizard.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00096096 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedapplauncher.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\auditpolmsg.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolmsg.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090464 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeyboardFilterSvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmlib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmlib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmtrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DFDWiz.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintBrmUi.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmtrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsp.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpcivsp.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddp_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditPolicyGPInterop.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistHttpTrans.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\RotMgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfdts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00043566 _____ C:\WINDOWS\SysWOW64\rsop.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00043566 _____ C:\WINDOWS\system32\rsop.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrcomp.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistAD.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00040288 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeyboardFilterCore.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00039264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmbeddedAppLauncherConfig.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00037216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\terminpt.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00034144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KeyboardFilterCore.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwinsta.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00027488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorPerformanceEvents.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\qprocess.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jnwmon.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\quser.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tskill.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\qappsrv.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgport.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsdiscon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbldfltr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetppui.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\rwinsta.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoff.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgusr.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\chglogon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\reset.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\change.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\query.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspiper.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeSysprep.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 ____D C:\WINDOWS\SKB
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 ____D C:\Program Files\Windows Journal
2013-09-30 05:56 - 2013-10-22 13:15 - 00765378 _____ C:\WINDOWS\system32\perfh007.dat
2013-09-30 05:56 - 2013-10-22 13:15 - 00159696 _____ C:\WINDOWS\system32\perfc007.dat
2013-09-30 05:56 - 2013-10-17 16:50 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-09-30 05:56 - 2013-10-17 16:50 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-09-30 05:56 - 2013-10-17 16:50 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-09-30 05:56 - 2013-09-30 05:56 - 00305634 _____ C:\WINDOWS\system32\perfi007.dat
2013-09-30 05:56 - 2013-09-30 05:56 - 00040390 _____ C:\WINDOWS\system32\perfd007.dat
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\de
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\winrm
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\slmgr
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\de
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\0409
2013-09-26 23:15 - 2013-09-26 23:15 - 00000000 ____D C:\Users\marDin\Desktop\zbase-r250
2013-09-26 23:14 - 2013-09-26 23:15 - 286743478 _____ C:\Users\marDin\Desktop\zbase-r250.zip
2013-09-26 22:39 - 2013-09-26 22:39 - 00000000 ____D C:\Program Files (x86)\WinRAR
2013-09-25 17:26 - 2013-10-15 23:29 - 00000000 ____D C:\ProgramData\Tunngle
2013-09-25 17:25 - 2013-09-25 17:25 - 04068392 _____ (Tunngle.net GmbH                                            ) C:\Users\marDin\Desktop\Tunngle_Setup_v4.5.1.3.exe
2013-09-25 17:22 - 2013-09-29 23:58 - 00000000 ____D C:\Users\marDin\Documents\OpenTTD
2013-09-25 17:22 - 2013-09-26 23:17 - 00000000 ____D C:\Program Files\OpenTTD
2013-09-25 17:22 - 2013-09-25 17:22 - 00000796 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2013-09-25 17:21 - 2013-09-25 17:21 - 07492071 _____ (OpenTTD Developers) C:\Users\marDin\Desktop\openttd-1.3.2-windows-win64.exe

[Rest folgt in weiterem Beitrag..]

marDin · 22.10.2013, 18:10

Code:

ATTFilter

==================== One Month Modified Files and Folders =======

2013-10-22 13:31 - 2013-10-22 13:31 - 00000000 ____D C:\FRST
2013-10-22 13:31 - 2013-03-03 06:36 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2736238369-3271077903-3660546878-1001
2013-10-22 13:30 - 2013-10-22 13:30 - 01954682 _____ (Farbar) C:\Users\marDin\Desktop\FRST64.exe
2013-10-22 13:29 - 2013-10-22 13:29 - 00050477 _____ C:\Users\marDin\Desktop\Defogger.exe
2013-10-22 13:29 - 2013-10-22 13:29 - 00000474 _____ C:\Users\marDin\Desktop\defogger_disable.log
2013-10-22 13:29 - 2013-10-22 13:29 - 00000000 _____ C:\Users\marDin\defogger_reenable
2013-10-22 13:29 - 2013-10-17 16:48 - 00000000 ____D C:\Users\marDin
2013-10-22 13:23 - 2013-10-17 16:46 - 01070437 _____ C:\WINDOWS\WindowsUpdate.log
2013-10-22 13:23 - 2013-09-02 22:21 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-10-22 13:22 - 2013-10-22 13:22 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\marDin\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-22 13:15 - 2013-09-30 06:14 - 01780340 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-10-22 13:15 - 2013-09-30 05:56 - 00765378 _____ C:\WINDOWS\system32\perfh007.dat
2013-10-22 13:15 - 2013-09-30 05:56 - 00159696 _____ C:\WINDOWS\system32\perfc007.dat
2013-10-22 13:11 - 2013-03-03 22:29 - 00000000 ____D C:\Users\marDin\Documents\My Games
2013-10-22 13:10 - 2013-09-10 13:00 - 00000000 ____D C:\Users\marDin\AppData\Local\Purplizer
2013-10-22 13:10 - 2013-04-29 20:06 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Yontoo
2013-10-22 13:09 - 2013-10-22 11:25 - 00000924 _____ C:\WINDOWS\PFRO.log
2013-10-22 13:09 - 2013-10-19 17:43 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-22 13:09 - 2013-10-17 16:57 - 00000000 __RDO C:\Users\marDin\SkyDrive
2013-10-22 13:09 - 2013-09-14 09:40 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-10-22 13:09 - 2013-09-10 08:28 - 00000000 ____D C:\Users\marDin\AppData\Local\Overwolf
2013-10-22 13:09 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-10-22 13:09 - 2013-08-22 16:44 - 00537408 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-10-22 13:09 - 2013-03-04 16:24 - 00003154 _____ C:\WINDOWS\System32\Tasks\FRAPS
2013-10-22 13:09 - 2013-03-04 16:21 - 00000000 ____D C:\Fraps
2013-10-22 13:09 - 2013-03-03 08:30 - 00000000 ____D C:\Users\marDin\AppData\Roaming\TS3Client
2013-10-22 13:09 - 2013-03-03 06:31 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-22 13:09 - 2013-03-03 04:43 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Dropbox
2013-10-22 13:09 - 2013-03-03 02:58 - 00000000 ____D C:\Program Files (x86)\Steam
2013-10-22 13:08 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2013-10-22 13:06 - 2013-10-22 13:06 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{88A7A2FA-8BAA-47FD-B6D9-518A7822698F}
2013-10-22 13:05 - 2013-03-03 08:51 - 00000000 ____D C:\ProgramData\Adobe
2013-10-22 13:05 - 2013-03-03 04:17 - 00000000 ____D C:\Program Files (x86)\20Dollars2Surf
2013-10-22 13:04 - 2013-10-17 21:46 - 00000000 ____D C:\Users\marDin\AppData\Local\PMB Files
2013-10-22 13:04 - 2013-10-17 21:46 - 00000000 ____D C:\ProgramData\PMB Files
2013-10-22 13:03 - 2013-10-22 13:03 - 00000000 ____D C:\Users\marDin\Desktop\lol
2013-10-22 13:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-10-22 11:35 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-10-22 00:12 - 2013-03-10 23:33 - 00000000 ____D C:\Users\marDin\AppData\Roaming\uTorrent
2013-10-21 23:27 - 2013-10-21 23:27 - 00000233 _____ C:\WINDOWS\Directx.log
2013-10-21 23:26 - 2013-10-21 23:26 - 07837320 _____ (Microsoft Corporation) C:\Users\marDin\Desktop\DX81NTger.exe
2013-10-21 23:01 - 2013-03-03 06:31 - 00000000 ____D C:\Users\marDin\AppData\Local\Packages
2013-10-21 22:30 - 2013-10-21 22:30 - 00001597 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-10-21 22:30 - 2013-09-02 21:41 - 00000000 __SHD C:\WINDOWS\SysWOW64\AI_RecycleBin
2013-10-21 22:28 - 2013-10-17 21:44 - 34888568 _____ (Riot Games) C:\Users\marDin\Desktop\LeagueofLegends_EUW_Installer_06_12_13.exe
2013-10-21 22:28 - 2013-10-17 20:06 - 00142848 ___SH C:\Users\marDin\Desktop\Thumbs.db
2013-10-21 22:25 - 2013-10-21 22:25 - 00002153 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2013-10-21 22:25 - 2013-10-19 17:43 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-21 22:25 - 2013-10-17 16:46 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-21 22:24 - 2013-10-21 22:24 - 00000000 ____D C:\WINDOWS\LastGood
2013-10-21 18:55 - 2013-06-20 19:49 - 00000000 ____D C:\Users\marDin\AppData\Local\Pokki
2013-10-21 12:31 - 2013-10-20 22:29 - 462767040 ____R C:\Users\marDin\Desktop\Die_Mondverschwoerung_12.09.23_21-45_3sat_85_TVOON_DE.mpg_ffmpeg-cutted.avi
2013-10-21 06:55 - 2013-06-22 11:49 - 00000022 _____ C:\WINDOWS\SysWOW64\.zip
2013-10-20 21:56 - 2013-10-20 21:18 - 00000000 ____D C:\Users\marDin\Desktop\The Legend of Zelda - Link's Awakening DX
2013-10-20 21:18 - 2013-10-20 21:18 - 00659797 _____ C:\Users\marDin\Desktop\VisualBoyAdvance-1.8.0-beta3.zip
2013-10-20 21:18 - 2013-10-20 21:18 - 00000000 ____D C:\Users\marDin\Desktop\VisualBoyAdvance-1.8.0-beta3
2013-10-20 21:17 - 2013-10-20 21:17 - 00501300 _____ C:\Users\marDin\Desktop\The Legend of Zelda - Link's Awakening DX.zip
2013-10-20 21:02 - 2013-10-20 21:02 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-10-20 16:48 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2013-10-20 16:43 - 2013-10-20 16:43 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-10-20 11:18 - 2013-10-20 11:18 - 00000000 ____D C:\Users\marDin\AppData\Roaming\ASUS
2013-10-20 11:18 - 2013-03-03 06:44 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-10-20 11:17 - 2013-10-20 11:17 - 00047616 _____ C:\WINDOWS\Cmicnfgp.ini.cfl
2013-10-20 11:17 - 2013-10-20 11:17 - 00001010 _____ C:\WINDOWS\Cmicnfgp.ini.imi
2013-10-20 11:17 - 2013-10-20 11:17 - 00000949 _____ C:\WINDOWS\system\Cmicnfgp.ini
2013-10-20 11:17 - 2013-10-20 11:17 - 00000000 ____D C:\Program Files\ASUS Xonar DGX Audio
2013-10-20 11:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\System
2013-10-20 11:17 - 2013-03-03 03:42 - 00000134 _____ C:\WINDOWS\system\Dlap.pfx
2013-10-20 11:15 - 2013-10-20 11:15 - 14574400 _____ C:\Users\marDin\Desktop\DGX_8_0_8_1821_Win8.rar
2013-10-20 11:15 - 2013-10-20 11:15 - 00000000 ____D C:\Users\marDin\Desktop\DGX_8_0_8_1821_Win8
2013-10-19 22:59 - 2013-10-19 22:59 - 00013824 ___SH C:\Users\marDin\Downloads\Thumbs.db
2013-10-19 22:59 - 2013-03-10 16:59 - 00000000 ___RD C:\Users\marDin\Downloads\Microsoft.SkypeApp_kzf8qxf38zg5c!App
2013-10-19 19:54 - 2013-10-19 19:54 - 00000000 ____D C:\Users\marDin\AppData\Roaming\NVIDIA
2013-10-19 19:04 - 2013-07-01 18:29 - 00000000 ____D C:\Users\marDin\AppData\Local\NVIDIA
2013-10-19 17:45 - 2013-10-19 17:45 - 00001367 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2013-10-19 17:44 - 2013-10-19 17:44 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-10-19 17:44 - 2013-10-17 16:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-19 17:41 - 2013-10-19 17:41 - 252822144 _____ (NVIDIA Corporation) C:\Users\marDin\Desktop\331.40-desktop-win8-win7-winvista-64bit-international-beta.exe
2013-10-19 17:09 - 2013-04-08 00:40 - 00000000 ____D C:\Users\marDin\Desktop\YT
2013-10-19 17:07 - 2013-10-17 21:18 - 242200864 _____ (NVIDIA Corporation) C:\Users\marDin\Desktop\327.23-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-10-19 17:05 - 2013-10-17 17:45 - 00000000 ___DC C:\WINDOWS\Panther
2013-10-19 17:04 - 2013-10-19 17:04 - 00002774 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2013-10-19 17:04 - 2013-10-19 17:04 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-19 17:04 - 2013-10-19 17:04 - 00000000 ____D C:\Program Files\CCleaner
2013-10-19 17:03 - 2013-10-19 17:03 - 00614816 _____ C:\Users\marDin\Desktop\CCleaner - CHIP-Downloader.exe
2013-10-18 14:15 - 2013-10-18 14:15 - 00001464 _____ C:\Users\marDin\AppData\Local\recently-used.xbel
2013-10-18 14:11 - 2013-03-09 19:30 - 00000000 ____D C:\Users\marDin\.gimp-2.8
2013-10-18 01:48 - 2013-03-04 16:29 - 00000000 ____D C:\Program Files (x86)\OBS
2013-10-17 19:39 - 2013-10-03 00:09 - 00000000 ____D C:\Users\marDin\Desktop\völker
2013-10-17 17:45 - 2013-10-17 17:45 - 02144768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01537880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-10-17 17:45 - 2013-10-17 17:45 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00837120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-10-17 17:45 - 2013-10-17 17:45 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00000000 __SHD C:\Recovery
2013-10-17 17:45 - 2013-08-22 17:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-10-17 17:45 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-10-17 17:45 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Camera
2013-10-17 17:44 - 2013-10-17 17:44 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files\MSBuild
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-10-17 17:25 - 2013-10-17 17:25 - 00000000 ____D C:\Program Files (x86)\Corsair
2013-10-17 17:21 - 2013-10-17 16:48 - 00000000 ____D C:\Users\Administrator
2013-10-17 17:20 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\registration
2013-10-17 17:13 - 2013-10-17 17:13 - 00000000 ____D C:\Users\marDin\Desktop\Corsair-Vengeance-Headset-Dolby-Driver-2_0_7
2013-10-17 17:13 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\restore
2013-10-17 17:09 - 2013-10-17 17:09 - 07107748 _____ C:\Users\marDin\Desktop\Corsair-Vengeance-Headset-Dolby-Driver-2_0_7.zip
2013-10-17 16:56 - 2013-10-17 16:56 - 00001454 _____ C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-17 16:56 - 2013-10-17 16:56 - 00000020 ___SH C:\Users\marDin\ntuser.ini
2013-10-17 16:56 - 2013-09-14 09:41 - 00002350 _____ C:\Users\marDin\Desktop\Sicherer Zahlungsverkehr.lnk
2013-10-17 16:56 - 2013-03-03 06:31 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-17 16:53 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows NT
2013-10-17 16:53 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default
2013-10-17 16:52 - 2013-10-17 16:52 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-10-17 16:52 - 2013-10-17 16:51 - 00000000 ____D C:\Users\Public\Documents\Baidu Security
2013-10-17 16:52 - 2013-10-17 16:48 - 00040008 _____ C:\WINDOWS\diagwrn.xml
2013-10-17 16:52 - 2013-10-17 16:48 - 00040008 _____ C:\WINDOWS\diagerr.xml
2013-10-17 16:52 - 2013-08-22 17:36 - 00000000 __RSD C:\WINDOWS\Media
2013-10-17 16:52 - 2013-08-22 17:36 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-17 16:51 - 2013-10-08 17:05 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Terrafirma
2013-10-17 16:51 - 2013-09-30 05:59 - 00000000 ____D C:\WINDOWS\ShellNew
2013-10-17 16:51 - 2013-09-10 08:28 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2013-10-17 16:51 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2013-10-17 16:51 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2013-10-17 16:51 - 2013-07-02 19:26 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-10-17 16:51 - 2013-04-02 20:24 - 00000000 ____D C:\WINDOWS\de
2013-10-17 16:51 - 2013-03-21 10:53 - 00000000 ____D C:\WINDOWS\SysWOW64\MAGIX
2013-10-17 16:51 - 2013-03-04 16:29 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2013-10-17 16:51 - 2013-03-04 12:11 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-10-17 16:51 - 2013-03-03 04:44 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-10-17 16:50 - 2013-10-19 17:44 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Microsoft Help
2013-10-17 16:50 - 2013-10-17 16:50 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-10-17 16:50 - 2013-10-17 16:50 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-10-17 16:50 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-10-17 16:50 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-10-17 16:50 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-10-17 16:50 - 2013-08-22 17:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\spool
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\IME
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\IME
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-10-17 16:50 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2013-10-17 16:50 - 2013-03-25 23:39 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive
2013-10-17 16:50 - 2013-03-03 06:31 - 00000000 ____D C:\ProgramData\PRICache
2013-10-17 16:50 - 2013-03-03 05:18 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2013-10-17 16:50 - 2012-07-26 07:37 - 00000000 ____D C:\Users\Default.migrated
2013-10-17 16:49 - 2013-10-17 16:49 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-10-17 16:49 - 2013-10-17 16:48 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-17 16:49 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-10-17 16:49 - 2013-07-31 23:32 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2013-10-17 16:49 - 2013-07-01 22:29 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\THQ
2013-10-17 16:49 - 2013-04-07 23:47 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Apache Friends
2013-10-17 16:49 - 2012-07-26 10:12 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Vorlagen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Startmenü
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Netzwerkumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Lokale Einstellungen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Eigene Dateien
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Druckumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Documents\Eigene Musik
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Documents\Eigene Bilder
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Local\Verlauf
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Local\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-17 16:48 - 2013-03-04 12:29 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-17 16:48 - 2013-03-04 12:29 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-17 16:48 - 2013-03-04 12:29 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2013-10-17 16:47 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2013-10-17 16:46 - 2013-10-17 16:46 - 00003653 _____ C:\WINDOWS\system32\lvcoinst.log
2013-10-17 16:46 - 2013-10-17 16:46 - 00000000 ____D C:\Program Files\Common Files\logishrd
2013-10-17 16:38 - 2013-03-14 23:47 - 00000000 ____D C:\Users\marDin\AppData\Roaming\.minecraft
2013-10-17 16:21 - 2013-10-17 16:21 - 00675988 _____ C:\Users\marDin\Desktop\Minecraft.exe
2013-10-17 16:15 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-10-16 17:42 - 2013-10-16 17:42 - 00000000 _____ C:\Users\marDin\Desktop\Neues Textdokument.txt
2013-10-16 15:16 - 2013-10-10 19:15 - 00000000 ____D C:\Users\marDin\AppData\Roaming\TEdit
2013-10-16 02:48 - 2013-10-21 22:23 - 30344992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 25256224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 22933280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 18243632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 12537632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2013-10-16 02:48 - 2013-10-21 22:23 - 11415232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 11362672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 09516872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 09472600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 03131680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 03124512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 02946848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 02747168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433158.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433158.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 01241376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00696096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00655136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00599840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00560416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00479520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00405280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00266984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00168616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00141336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2013-10-16 02:48 - 2013-10-19 17:43 - 00061216 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2013-10-16 02:48 - 2013-10-19 17:43 - 00053024 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 18290536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 15858664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 15244272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 03067560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 02694664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 01435504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 00023287 _____ C:\WINDOWS\system32\nvinfo.pb
2013-10-15 23:47 - 2013-10-19 17:43 - 06665504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2013-10-15 23:47 - 2013-10-19 17:43 - 03489568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2013-10-15 23:47 - 2013-10-19 17:43 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2013-10-15 23:47 - 2013-10-19 17:43 - 00922912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2013-10-15 23:47 - 2013-10-19 17:43 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2013-10-15 23:47 - 2013-10-19 17:43 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-10-15 23:29 - 2013-09-25 17:26 - 00000000 ____D C:\ProgramData\Tunngle
2013-10-15 23:29 - 2013-04-27 22:31 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Tunngle
2013-10-15 16:54 - 2013-10-15 16:54 - 00589600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2013-10-14 18:49 - 2013-10-14 18:49 - 00000002 _____ C:\Users\marDin\Downloads\Highscore.hsc
2013-10-11 17:19 - 2013-10-11 17:19 - 00000000 ____D C:\Users\marDin\Documents\Dust
2013-10-11 17:17 - 2013-10-11 17:09 - 00000000 ____D C:\Users\marDin\AppData\Local\Ubisoft Game Launcher
2013-10-11 17:08 - 2013-10-11 17:08 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-10-10 19:15 - 2013-10-10 19:15 - 00610304 _____ C:\Users\marDin\Desktop\TEdit3Installer_3.4.13282.msi
2013-10-10 19:15 - 2013-10-10 19:15 - 00000000 ____D C:\Users\marDin\AppData\Local\TEditXna
2013-10-10 19:15 - 2013-10-10 19:15 - 00000000 ____D C:\Program Files (x86)\TEdit
2013-10-10 19:11 - 2013-10-10 19:11 - 00876027 _____ C:\Users\marDin\Desktop\Terraria-Map-Editor-master.zip
2013-10-10 19:11 - 2013-10-10 19:11 - 00000000 ____D C:\Users\marDin\Desktop\Terraria-Map-Editor-master
2013-10-09 20:23 - 2013-09-02 22:21 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-10-09 15:54 - 2013-08-18 10:08 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-10-09 15:54 - 2013-03-19 20:45 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-09 15:52 - 2013-03-03 03:12 - 80541720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-10-09 15:51 - 2013-03-12 20:37 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-09 15:51 - 2013-03-12 20:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 01:09 - 2013-03-09 09:32 - 00000000 ____D C:\Users\marDin\AppData\Local\Windows Live
2013-10-08 21:14 - 2013-10-19 17:43 - 03398914 _____ C:\WINDOWS\system32\nvcoproc.bin
2013-10-08 17:05 - 2013-10-08 17:05 - 00454656 _____ C:\Users\marDin\Desktop\terrafirma.msi
2013-10-08 17:05 - 2013-10-08 17:05 - 00000961 _____ C:\Users\marDin\Desktop\Terrafirma.lnk
2013-10-08 17:05 - 2013-10-08 17:05 - 00000000 ____D C:\Program Files (x86)\Terrafirma
2013-10-08 17:05 - 2013-10-08 17:03 - 00000000 ____D C:\Users\marDin\AppData\Roaming\MoreTerra
2013-10-08 17:02 - 2013-10-08 17:02 - 00127079 _____ C:\Users\marDin\Desktop\MoreTerra1.11.1.zip
2013-10-08 17:02 - 2013-10-08 17:02 - 00000000 ____D C:\Users\marDin\Desktop\MoreTerra1.11.1
2013-10-04 23:49 - 2013-09-20 16:33 - 00000000 ____D C:\Users\marDin\Desktop\SpeedAutoClicker
2013-10-04 18:20 - 2013-09-20 16:33 - 00094899 _____ C:\Users\marDin\Desktop\SpeedAutoClicker.zip
2013-10-04 17:11 - 2013-10-04 17:11 - 00001548 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-04 17:11 - 2013-10-04 17:11 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-04 17:11 - 2013-10-04 17:11 - 00000000 ____D C:\Program Files\iTunes
2013-10-04 17:11 - 2013-10-04 17:11 - 00000000 ____D C:\Program Files\iPod
2013-10-04 17:10 - 2013-10-04 17:10 - 00001845 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-10-04 17:10 - 2013-10-04 17:10 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-10-03 21:27 - 2013-10-03 21:14 - 00033792 _____ C:\Users\marDin\Desktop\FINANZEN.XLS
2013-10-03 00:03 - 2013-10-03 00:03 - 00000158 _____ C:\WINDOWS\AlienNations_usa.ini
2013-10-03 00:02 - 2013-03-03 08:40 - 00000000 ____D C:\Spiele
2013-10-03 00:01 - 2013-09-14 09:40 - 00624224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2013-10-03 00:01 - 2013-06-10 12:27 - 00030304 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klim6.sys
2013-10-03 00:01 - 2013-05-06 09:22 - 07717984 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kl1.sys
2013-10-03 00:01 - 2013-05-05 22:42 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klmouflt.sys
2013-10-03 00:01 - 2013-05-05 22:42 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2013-10-02 09:57 - 2013-03-03 08:30 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-10-02 03:04 - 2013-08-22 17:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-10-02 03:04 - 2013-08-22 17:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-01 14:54 - 2013-10-01 14:54 - 00000000 ____D C:\Users\marDin\Documents\Puddle
2013-09-30 06:17 - 2013-09-30 06:17 - 01641496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-09-30 06:17 - 2013-09-30 06:17 - 01506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-09-30 06:17 - 2013-09-30 06:17 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-09-30 06:17 - 2013-09-30 06:17 - 01344984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\FileManager
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-09-30 06:17 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2013-09-30 06:17 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-09-30 06:17 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Dism
2013-09-30 06:16 - 2013-09-30 06:16 - 04079104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-09-30 06:16 - 2013-09-30 06:16 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-09-30 06:16 - 2013-09-30 06:16 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 23213568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 21195128 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 18640456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 18576896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 17143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 13172736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 12996096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 12028416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11670528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11366912 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 08875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 08712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 07544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 07401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 06639104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 06353952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04975104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 03524096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02763776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02616832 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02569728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02555224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02328328 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02142424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02131120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02065960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01928656 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01741824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01720552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01662464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01581568 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01534504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01455616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01415168 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01370800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01302016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01225728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01150976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01119576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 01109936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01102336 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 01092896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00996320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00934856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00919552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00911872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00872328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 00813568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00796928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00783504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00707560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00648648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\riched20.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00579416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\recimg.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00552448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00534048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00528048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched20.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00482456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00467800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2013-09-30 06:13 - 2013-09-30 06:13 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2013-09-30 06:13 - 2013-09-30 06:13 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00427096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00407016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2013-09-30 06:13 - 2013-09-30 06:13 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00382224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00371032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00368736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00366688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\livessp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00358384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00312936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdprint.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdprint.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00236376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00205024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCoreConfProv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00180232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00153600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00151384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00123480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WorkFoldersRes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersRes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00098104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00066904 _____ (Microsoft Corporation) C:\WINDOWS\system32\PSHED.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 03396096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02176000 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsCpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02119680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsCpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSh.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01165824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDistSh.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00935424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCacheProvider.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00788480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mblctr.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmscan.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SnippingTool.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrptadm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AdmTmpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscobj.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SrpUxNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00291808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmstormod.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00267528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddputils.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SNTSearch.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppIdPolicyEngineApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddpchunk.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationSettings.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmstormod.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscobj.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrreg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmshell.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveprompt.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgmts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00147439 _____ C:\WINDOWS\SysWOW64\gpedit.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00147439 _____ C:\WINDOWS\system32\gpedit.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00146389 _____ C:\WINDOWS\system32\printmanagement.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddptrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\adrclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbusr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmshell.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00120458 _____ C:\WINDOWS\system32\secpol.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\baaupdate.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adrclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizardElev.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizard.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00096096 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedapplauncher.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\auditpolmsg.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolmsg.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090464 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeyboardFilterSvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmlib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmlib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmtrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DFDWiz.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintBrmUi.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmtrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsp.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpcivsp.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddp_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditPolicyGPInterop.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistHttpTrans.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\RotMgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfdts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00043566 _____ C:\WINDOWS\SysWOW64\rsop.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00043566 _____ C:\WINDOWS\system32\rsop.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrcomp.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistAD.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00040288 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeyboardFilterCore.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00039264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmbeddedAppLauncherConfig.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00037216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\terminpt.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00034144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KeyboardFilterCore.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwinsta.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00027488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorPerformanceEvents.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\qprocess.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jnwmon.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\quser.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tskill.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\qappsrv.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgport.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsdiscon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbldfltr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetppui.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\rwinsta.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoff.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgusr.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\chglogon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\reset.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\change.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\query.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspiper.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeSysprep.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 ____D C:\WINDOWS\SKB
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 ____D C:\Program Files\Windows Journal
2013-09-30 05:59 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\security
2013-09-30 05:59 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-09-30 05:56 - 2013-09-30 05:56 - 00305634 _____ C:\WINDOWS\system32\perfi007.dat
2013-09-30 05:56 - 2013-09-30 05:56 - 00040390 _____ C:\WINDOWS\system32\perfd007.dat
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\de
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\winrm
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\slmgr
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\de
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\0409
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ___SD C:\WINDOWS\system32\dsc
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Com
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-09-30 05:56 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2013-09-30 05:56 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\servicing
2013-09-29 23:58 - 2013-09-25 17:22 - 00000000 ____D C:\Users\marDin\Documents\OpenTTD
2013-09-27 10:57 - 2013-10-19 17:42 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433140.dll
2013-09-27 10:57 - 2013-10-19 17:42 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433140.dll
2013-09-26 23:17 - 2013-09-25 17:22 - 00000000 ____D C:\Program Files\OpenTTD
2013-09-26 23:15 - 2013-09-26 23:15 - 00000000 ____D C:\Users\marDin\Desktop\zbase-r250
2013-09-26 23:15 - 2013-09-26 23:14 - 286743478 _____ C:\Users\marDin\Desktop\zbase-r250.zip
2013-09-26 22:48 - 2013-03-14 00:19 - 00000000 ____D C:\Users\marDin\AppData\Roaming\DVDVideoSoft
2013-09-26 22:47 - 2013-03-14 00:19 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-09-26 22:39 - 2013-09-26 22:39 - 00000000 ____D C:\Program Files (x86)\WinRAR
2013-09-25 17:26 - 2013-04-27 22:31 - 00000000 ____D C:\Program Files (x86)\Tunngle
2013-09-25 17:25 - 2013-09-25 17:25 - 04068392 _____ (Tunngle.net GmbH                                            ) C:\Users\marDin\Desktop\Tunngle_Setup_v4.5.1.3.exe
2013-09-25 17:22 - 2013-09-25 17:22 - 00000796 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2013-09-25 17:21 - 2013-09-25 17:21 - 07492071 _____ (OpenTTD Developers) C:\Users\marDin\Desktop\openttd-1.3.2-windows-win64.exe
2013-09-24 20:08 - 2013-03-03 04:33 - 00000000 ____D C:\Users\marDin\AppData\Local\Apple
2013-09-24 20:07 - 2013-03-03 04:33 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Apple Computer

Some content of TEMP:
====================
C:\Users\marDin\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\marDin\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\marDin\AppData\Local\Temp\nvStereoApiI.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe
[2013-08-22 11:55] - [2013-08-22 11:55] - 0564736 ____A (Microsoft Corporation) 7C94FDA3809015B8F2208D2E1C221F17

C:\Windows\System32\wininit.exe
[2013-08-22 11:58] - [2013-08-22 11:58] - 0144384 ____A (Microsoft Corporation) 48CFA7BE561A7BE144C29BB912055016

C:\Windows\explorer.exe
[2013-09-30 06:13] - [2013-09-30 06:13] - 2328328 ____A (Microsoft Corporation) C1400519D76A364E974E47BBA62B95B0

C:\Windows\SysWOW64\explorer.exe
[2013-09-30 06:13] - [2013-09-30 06:13] - 2065960 ____A (Microsoft Corporation) 712B0D2ADE5297563168C997DDC2DD13

C:\Windows\System32\svchost.exe
[2013-08-22 11:54] - [2013-08-22 14:45] - 0037768 ____A (Microsoft Corporation) E4CA434F251681590D0538BC21C32D2F

C:\Windows\SysWOW64\svchost.exe
[2013-08-22 04:48] - [2013-08-22 07:30] - 0031552 ____A (Microsoft Corporation) 425E22D9F5C01616AFC92987791B19E9

C:\Windows\System32\services.exe
[2013-08-22 15:25] - [2013-08-22 15:25] - 0405488 ____A (Microsoft Corporation) B4B610BBCB002EC478C6FD80CF915697

C:\Windows\System32\User32.dll
[2013-08-22 11:56] - [2013-08-22 14:39] - 1517984 ____A (Microsoft Corporation) 1A811BAFA2114C2FC878507F9F86566C

C:\Windows\SysWOW64\User32.dll
[2013-08-22 04:51] - [2013-08-22 04:51] - 1363456 ____A (Microsoft Corporation) 170A3370144196F72A04038B652732EF

C:\Windows\System32\userinit.exe
[2013-08-22 12:03] - [2013-08-22 12:03] - 0025088 ____A (Microsoft Corporation) 08C191B2917862BE90C33E31CB6B6D79

C:\Windows\SysWOW64\userinit.exe
[2013-08-22 04:54] - [2013-08-22 04:54] - 0021504 ____A (Microsoft Corporation) 41636F77AD6D9A396EA34E4786B96F2B

C:\Windows\System32\Drivers\volsnap.sys
[2013-08-22 13:40] - [2013-08-22 14:39] - 0312160 ____A (Microsoft Corporation) 9F9CE33B50611A1C61A46B8911E0B30B



LastRegBack: 2013-10-17 16:45

==================== End Of Log ============================

Den Rest schicke ich nach - mein Kaspersky läuft noch, und ich glaube nicht, dass es das Beste ist, die Dinge parallel laufen zu lassen.

Lg
marDin

=====================================================================

Kaspersky hat nichts gefunden - Logfile hat er aber auch keines ausgespuckt.

Malwarebytes:

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.10.22.04

Windows 8 x64 NTFS
Internet Explorer 11.0.9600.16384
marDin :: MARDINS_MACHINE [Administrator]

22.10.2013 14:55:56
mbam-log-2013-10-22 (14-55-56).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 264158
Laufzeit: 2 Minute(n), 6 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 1
HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 1
HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 0G2Y1R2X0G1M2S1M0G1S1H -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 5
C:\ProgramData\Tarma Installer (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504} (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Cache (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B} (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Cache (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateien: 13
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.exe (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\marDin\AppData\Roaming\DVDVideoSoft\FreeYouTubeToMP3Converter.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\marDin\Desktop\CCleaner - CHIP-Downloader.exe (PUP.Optional.DownloadSponsor.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\marDin\Downloads\dmge-latest.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\marDin\Downloads\DTLite4471-0333.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.dat (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\Setup.ico (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setup.dll (PUP.Optional.Tarma.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

AdwCleaner:

Code:

ATTFilter

# AdwCleaner v3.010 - Bericht erstellt am 22/10/2013 um 15:18:27
# Updated 20/10/2013 von Xplode
# Betriebssystem : Windows 8.1 Pro  (64 bits)
# Benutzername : marDin - MARDINS_MACHINE
# Gestartet von : C:\Users\marDin\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****

Dienst Gelöscht : Yontoo Desktop Updater

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\apn
Ordner Gelöscht : C:\ProgramData\baidu
Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\Program Files (x86)\20Dollars2Surf
Ordner Gelöscht : C:\Program Files (x86)\Yontoo
Ordner Gelöscht : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\Users\marDin\AppData\Roaming\baidu
Ordner Gelöscht : C:\Users\marDin\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\marDin\AppData\Roaming\ExpressFiles
Ordner Gelöscht : C:\Users\marDin\AppData\Roaming\Yontoo
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Users\marDin\AppData\Roaming\Mozilla\Firefox\Profiles\8vkhhf8l.default\bprotector_extensions.sqlite
Datei Gelöscht : C:\Users\marDin\AppData\Roaming\Mozilla\Firefox\Profiles\8vkhhf8l.default\user.js
Datei Gelöscht : C:\WINDOWS\System32\Tasks\Express FilesUpdate

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Yontoo Desktop]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\ExpressFiles
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKLM\Software\ExpressFiles
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Tarma Installer
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16384


-\\ Mozilla Firefox v24.0 (de)

[ Datei : C:\Users\marDin\AppData\Roaming\Mozilla\Firefox\Profiles\8vkhhf8l.default\prefs.js ]

Zeile gelöscht : user_pref("extensions.AVIRA-V7.com.avira.dnt.rules", "\"{\\\"Version\\\":38,\\\"Companies\\\":[{\\\"company\\\":\\\"Google Inc\\\",\\\"rules\\\":[{\\\"name\\\":\\\"Google Analytics\\\",\\\"category\\\[...]
Zeile gelöscht : user_pref("extensions.AVIRA-V7.domain", "\"avira.search.ask.com\"");
Zeile gelöscht : user_pref("extensions.antigameorigin@antigame.de.AGO_DE_UNI118_134681_Units_Ship", "{\"version\":1,\"34043822\":{\"timeShip\":23015000},\"34046021\":{\"timeShip\":23014996}}");
Zeile gelöscht : user_pref("extentions.y2layers.defaultEnableAppsList", "DropDownDeals,buzzdock,YontooNewOffers");
Zeile gelöscht : user_pref("extentions.y2layers.installId", "73db9e23-713e-4d69-ac99-27b6511bb6e2");

*************************

AdwCleaner[R0].txt - [6192 octets] - [22/10/2013 15:18:01]
AdwCleaner[S0].txt - [5958 octets] - [22/10/2013 15:18:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6018 octets] ##########

JRT:

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows 8.1 Pro x64
Ran by marDin on 22.10.2013 at 15:25:56,05
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\WINDOWS\syswow64\ai_recyclebin"



~~~ FireFox

Successfully deleted the following from C:\Users\marDin\AppData\Roaming\mozilla\firefox\profiles\8vkhhf8l.default\prefs.js

user_pref("social.manifest.facebook", "{\"origin\":\"hxxps://www.facebook.com\",\"name\":\"Facebook Messenger\",\"workerURL\":\"hxxps://www.facebook.com/desktop/fbdesktop2/soc
Emptied folder: C:\Users\marDin\AppData\Roaming\mozilla\firefox\profiles\8vkhhf8l.default\minidumps [212 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 22.10.2013 at 15:28:23,19
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Bin mir jetzt unsicher, ob du diese letzten Infos bekommen hast, schrauber.
Aus welchem Grund auch immer haben sich die neuesten Logs beim alten Post drangehängt. Ich würds ja nochmal posten, aber die Bearbeiten-Funktion ist nicht mehr verfügbar.

Soll jetzt wirklich kein 'Hey, antworte gefälligst!'-Post sein, sondern nur sichergehen, dass du bemerkst, dass ich was drangepostet hab.

Lg
marDin

schrauber · 23.10.2013, 08:13

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

marDin · 23.10.2013, 10:15

Hallo,

ESET:

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=9af04fc94dfa4c4f80eff8e970a56659
# engine=15593
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-10-23 08:55:11
# local_time=2013-10-23 10:55:11 (+0100, Mitteleuropäische Sommerzeit)
# country="Austria"
# lang=1033
# osver=6.2.9200 NT 
# compatibility_mode=771 16777214 16 1 3599863 3599863 0 0
# compatibility_mode=5893 16776574 100 94 2003857 6771395 0 0
# scanned=413596
# found=1
# cleaned=0
# scan_time=5507
sh=4808307C704D29122CDB8EA28287E082E48AC0EF ft=1 fh=d700a127a454b68d vn="a variant of Win32/Adware.Yontoo.A application" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Yontoo\YontooIEClient.dll.vir"

Security Check:

Code:

ATTFilter

 Results of screen317's Security Check version 0.99.74  
   x64 (UAC is enabled)  
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
Kaspersky Internet Security   
Windows Defender              
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware Version 1.75.0.1300  
 Java 7 Update 45  
 Java version out of Date! 
 Adobe Flash Player 	11.9.900.117  
 Mozilla Firefox (24.0) 
 Mozilla Thunderbird (17.0.6) 
````````Process Check: objlist.exe by Laurent````````  
 Kaspersky Lab Kaspersky Internet Security 14.0.0 avp.exe  
 Kaspersky Lab Kaspersky Internet Security 14.0.0 avpui.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````

[Die neueste Version von Java sollte ich eigentlich haben. 7.45 ist lt Homepage die aktuellste Version.]

Frisches FRSTlog folgt separat in wenigen Sekunden.

FRST - Teil 1:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-10-2013
Ran by marDin (administrator) on MARDINS_MACHINE on 23-10-2013 11:12:00
Running from C:\Users\marDin\Desktop
Windows 8.1 Pro (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Realtek) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Pokki) C:\Users\marDin\AppData\Local\Pokki\Engine\pokki.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Pokki) C:\Users\marDin\AppData\Local\Pokki\Engine\pokki.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtWlan.exe
(Pokki) C:\Users\marDin\AppData\Local\Pokki\Engine\pokki.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Pokki) C:\Users\marDin\AppData\Local\Pokki\Engine\pokki.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(CMedia) C:\Program Files\ASUS Xonar DGX Audio\Customapp\ASUSAUDIOCENTER.EXE
() C:\Windows\SysWOW64\HsMgr.exe
() C:\Windows\System\HsMgr64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Overwolf) C:\Program Files (x86)\Overwolf\Overwolf.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Microsoft) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper.exe
(Overwolf) C:\Program Files (x86)\Common Files\Overwolf\OverwolfHelper64.exe
(Dropbox, Inc.) C:\Users\marDin\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Corsair) C:\Program Files (x86)\Corsair\Corsair Headset Software\HeadsetControlPanel.exe
() C:\Program Files (x86)\Overwolf\Purplizer\Purplizer.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
(Microsoft Corporation) C:\WINDOWS\WinStore\WSHost.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) E:\Programme\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Microsoft Corporation) C:\WINDOWS\system32\wwahost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20279_x64__8wekyb3d8bbwe\LiveComm.exe
(Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
(Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\WINDOWS\system32\wwahost.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM\...\Run: [Cmaudio8788] - C:\WINDOWS\syswow64\RunDll32.exe C:\WINDOWS\Syswow64\cmicnfgp.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] - C:\WINDOWS\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] - C:\WINDOWS\system\HsMgr64.exe [282112 2008-07-11] ()
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\steam.exe [1813928 2013-10-09] (Valve Corporation)
HKCU\...\Run: [uTorrent] - C:\Users\marDin\AppData\Roaming\uTorrent\uTorrent.exe [802136 2013-06-07] (BitTorrent Inc.)
HKCU\...\Run: [Overwolf] - C:\Program Files (x86)\Overwolf\Overwolf.exe [35256 2013-08-22] (Overwolf)
HKCU\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-09-14] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-09-15] (Apple Inc.)
HKCU\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [Corsair Headset Software] - C:\Program Files (x86)\Corsair\Corsair Headset Software\HeadsetControlPanel.exe [3160064 2013-03-25] (Corsair)
HKLM-x32\...\Run: [iTunesHelper] - E:\Programme\iTunes\iTunesHelper.exe [152392 2013-10-19] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\Administrator\...\RunOnce: [WAB Migrate] - C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
Startup: C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\marDin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> E:\Programme\Microsoft Office 2007\Office12\ONENOTEM.EXE (Microsoft Corporation)
Startup: C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\PC App Store Uninstall 3.8.8.1435.lnk
ShortcutTarget: PC App Store Uninstall 3.8.8.1435.lnk -> C:\Users\marDin\AppData\Roaming\Baidu Security\PC App Store\3.8.8.1435\Uninstall\PC App Store Uninstall\0\InstallUtility.dll", _OpenUrl -run "PC App Store Uninstall" -ini "OpenUrl.ini (No File)
Startup: C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Steam.lnk
ShortcutTarget: Steam.lnk -> C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
Startup: C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TeamSpeak 3 Client.lnk
ShortcutTarget: TeamSpeak 3 Client.lnk -> C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe (TeamSpeak Systems GmbH)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.at.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x597162A80334CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-AT,de;q=0.8,en-US;q=0.5,en;q=0.3
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21

FireFox:
========
FF ProfilePath: C:\Users\marDin\AppData\Roaming\Mozilla\Firefox\C:\ProgramData\Kaspersky Lab\SafeBrowser\S-1-5-21-2736238369-3271077903-3660546878-1001\FireFox
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - E:\Programme\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll (ESN Social Software AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\marDin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: pokki.com/PokkiDownloadHelper - C:\Users\marDin\AppData\Local\Pokki\Download Helper\npPokkiDownloadHelper.1.2.0.78.dll (Pokki)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com

==================== Services (Whitelisted) =================

S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [533504 2013-09-30] (Microsoft Corporation)
S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [1302016 2013-09-30] (Microsoft Corporation)
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-03] (Kaspersky Lab ZAO)
S3 COMSysApp; C:\Windows\SysWow64\dllhost.exe [17760 2013-08-22] (Microsoft Corporation)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [111616 2013-08-22] (Microsoft Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 lfsvc; C:\Windows\System32\GeofenceMonitorService.dll [491520 2013-09-30] (Microsoft Corporation)
R3 msiserver; C:\Windows\SysWow64\msiexec.exe [55808 2013-08-22] (Microsoft Corporation)
S4 MsKeyboardFilter; C:\Windows\System32\KeyboardFilterSvc.dll [90464 2013-09-30] (Microsoft Corporation)
R3 NcbService; C:\Windows\System32\ncbservice.dll [151040 2013-08-22] (Microsoft Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14997280 2013-08-27] (NVIDIA Corporation)
S3 OverwolfUpdaterService; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [18360 2013-08-22] (Overwolf Ltd)
R2 Realtek11nSU; C:\Program Files (x86)\ASUS\USB-N13 WLAN Card Utilities\RtlService.exe [36864 2010-04-16] (Realtek)
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [130560 2013-08-22] (Microsoft Corporation)
S3 smphost; C:\Windows\System32\smphost.dll [13312 2013-08-22] (Microsoft Corporation)
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [759192 2013-09-03] (Tunngle.net GmbH)
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [24576 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1581568 2013-09-30] (Microsoft Corporation)
R2 WSearch; C:\Windows\SysWow64\SearchIndexer.exe [657920 2013-08-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [76800 2013-08-22] (Microsoft Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 cmudaxp; C:\Windows\system32\drivers\cmudaxp.sys [2734080 2013-04-11] (C-Media Inc)
R3 CorsairAudioFilter; C:\Windows\system32\DRIVERS\corsveng2kamd64.sys [103296 2013-03-15] (Corsair)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-09-30] (Microsoft Corporation)
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-09-30] (Microsoft Corporation)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [7717984 2013-10-03] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [112224 2013-06-08] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [624224 2013-10-03] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2013-10-03] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [29280 2013-10-03] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-10-03] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [64608 2013-05-07] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [178784 2013-06-06] (Kaspersky Lab ZAO)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-08-20] (NVIDIA Corporation)
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146272 2013-08-22] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [56672 2013-08-22] (Microsoft Corporation)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 BprotectEx; \??\C:\Windows\System32\drivers\BprotectEx.sys [x]
S3 PCFApiUtil; \??\C:\Program Files (x86)\Baidu Security\PC Faster\3.7.0.0\PCFApiUtil64.sys [x]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [71680 2013-08-22] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

NETSVC: lfsvc -> C:\Windows\System32\GeofenceMonitorService.dll (Microsoft Corporation)
NETSVC: MsKeyboardFilter -> C:\Windows\System32\KeyboardFilterSvc.dll (Microsoft Corporation)

==================== One Month Created Files and Folders ========

2013-10-23 11:07 - 2013-10-23 11:07 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-10-23 11:07 - 2013-10-23 11:07 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2013-10-23 11:07 - 2013-10-23 11:07 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2013-10-23 11:07 - 2013-10-23 11:07 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-10-23 11:07 - 2013-10-23 11:07 - 00000000 ____D C:\ProgramData\Oracle
2013-10-23 11:07 - 2013-10-23 11:06 - 00312744 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-10-23 11:07 - 2013-10-23 11:06 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-10-23 11:07 - 2013-10-23 11:06 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-10-23 11:07 - 2013-10-23 11:06 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2013-10-23 11:06 - 2013-10-23 11:06 - 30694824 _____ (Oracle Corporation) C:\Users\marDin\Desktop\jre-7u45-windows-x64.exe
2013-10-23 11:06 - 2013-10-23 11:06 - 29040552 _____ (Oracle Corporation) C:\Users\marDin\Desktop\jre-7u45-windows-i586.exe
2013-10-23 11:06 - 2013-10-23 11:06 - 00000000 ____D C:\Program Files\Java
2013-10-23 11:03 - 2013-10-23 11:03 - 00891167 _____ C:\Users\marDin\Desktop\SecurityCheck.exe
2013-10-23 09:20 - 2013-10-23 09:20 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-23 09:19 - 2013-10-23 09:19 - 02347384 _____ (ESET) C:\Users\marDin\Desktop\esetsmartinstaller_enu.exe
2013-10-23 09:08 - 2013-10-23 09:08 - 00001560 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-23 09:08 - 2013-10-23 09:08 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-23 09:08 - 2013-10-23 09:08 - 00000000 ____D C:\Program Files\iTunes
2013-10-23 09:08 - 2013-10-23 09:08 - 00000000 ____D C:\Program Files\iPod
2013-10-22 15:28 - 2013-10-22 15:28 - 00001229 _____ C:\Users\marDin\Desktop\JRT.txt
2013-10-22 15:25 - 2013-10-22 15:25 - 01033335 _____ (Thisisu) C:\Users\marDin\Desktop\JRT.exe
2013-10-22 15:25 - 2013-10-22 15:25 - 00000000 ____D C:\WINDOWS\ERUNT
2013-10-22 15:14 - 2013-10-22 15:18 - 00000000 ____D C:\AdwCleaner
2013-10-22 15:14 - 2013-10-22 15:14 - 01060070 _____ C:\Users\marDin\Desktop\adwcleaner.exe
2013-10-22 14:54 - 2013-10-22 14:54 - 00001125 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-22 14:54 - 2013-10-22 14:54 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Malwarebytes
2013-10-22 14:54 - 2013-10-22 14:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-22 14:54 - 2013-10-22 14:54 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-22 14:54 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2013-10-22 14:04 - 2013-10-22 14:05 - 00017886 _____ C:\Users\marDin\Desktop\FRST.rar
2013-10-22 13:47 - 2013-10-22 14:04 - 00084658 _____ C:\Users\marDin\Desktop\FRST-2.txt
2013-10-22 13:47 - 2013-10-22 13:47 - 00005273 _____ C:\Users\marDin\Desktop\gmer.txt
2013-10-22 13:34 - 2013-10-22 13:34 - 00377856 _____ C:\Users\marDin\Desktop\gmer_2.1.19163.exe
2013-10-22 13:31 - 2013-10-22 13:31 - 00000000 ____D C:\FRST
2013-10-22 13:30 - 2013-10-22 13:30 - 01954682 _____ (Farbar) C:\Users\marDin\Desktop\FRST64.exe
2013-10-22 13:29 - 2013-10-22 13:29 - 00050477 _____ C:\Users\marDin\Desktop\Defogger.exe
2013-10-22 13:29 - 2013-10-22 13:29 - 00000474 _____ C:\Users\marDin\Desktop\defogger_disable.log
2013-10-22 13:29 - 2013-10-22 13:29 - 00000000 _____ C:\Users\marDin\defogger_reenable
2013-10-22 13:22 - 2013-10-22 14:53 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\marDin\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-22 13:06 - 2013-10-23 11:05 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{88A7A2FA-8BAA-47FD-B6D9-518A7822698F}
2013-10-22 13:03 - 2013-10-22 13:03 - 00000000 ____D C:\Users\marDin\Desktop\lol
2013-10-22 11:25 - 2013-10-22 15:15 - 00007252 _____ C:\WINDOWS\PFRO.log
2013-10-21 23:27 - 2013-10-21 23:27 - 00000233 _____ C:\WINDOWS\Directx.log
2013-10-21 23:26 - 2013-10-21 23:26 - 07837320 _____ (Microsoft Corporation) C:\Users\marDin\Desktop\DX81NTger.exe
2013-10-21 22:30 - 2013-10-21 22:30 - 00001597 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-10-21 22:25 - 2013-10-21 22:25 - 00002153 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2013-10-21 22:24 - 2013-10-21 22:24 - 00000000 ____D C:\WINDOWS\LastGood
2013-10-21 22:23 - 2013-10-16 02:48 - 30344992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 25256224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 22933280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 18243632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 12537632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2013-10-21 22:23 - 2013-10-16 02:48 - 11415232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 11362672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 09516872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 09472600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 03131680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 03124512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 02946848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 02747168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433158.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433158.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 01241376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00696096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00655136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00599840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00560416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00479520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00405280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00266984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00168616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2013-10-21 22:23 - 2013-10-16 02:48 - 00141336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2013-10-20 22:29 - 2013-10-21 12:31 - 462767040 ____R C:\Users\marDin\Desktop\Die_Mondverschwoerung_12.09.23_21-45_3sat_85_TVOON_DE.mpg_ffmpeg-cutted.avi
2013-10-20 21:18 - 2013-10-20 21:56 - 00000000 ____D C:\Users\marDin\Desktop\The Legend of Zelda - Link's Awakening DX
2013-10-20 21:18 - 2013-10-20 21:18 - 00659797 _____ C:\Users\marDin\Desktop\VisualBoyAdvance-1.8.0-beta3.zip
2013-10-20 21:18 - 2013-10-20 21:18 - 00000000 ____D C:\Users\marDin\Desktop\VisualBoyAdvance-1.8.0-beta3
2013-10-20 21:17 - 2013-10-20 21:17 - 00501300 _____ C:\Users\marDin\Desktop\The Legend of Zelda - Link's Awakening DX.zip
2013-10-20 21:02 - 2013-10-20 21:02 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-10-20 16:43 - 2013-10-20 16:43 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-10-20 11:18 - 2013-10-20 11:18 - 00000000 ____D C:\Users\marDin\AppData\Roaming\ASUS
2013-10-20 11:17 - 2013-10-20 11:17 - 00047616 _____ C:\WINDOWS\Cmicnfgp.ini.cfl
2013-10-20 11:17 - 2013-10-20 11:17 - 00001010 _____ C:\WINDOWS\Cmicnfgp.ini.imi
2013-10-20 11:17 - 2013-10-20 11:17 - 00000949 _____ C:\WINDOWS\system\Cmicnfgp.ini
2013-10-20 11:17 - 2013-10-20 11:17 - 00000000 ____D C:\Program Files\ASUS Xonar DGX Audio
2013-10-20 11:17 - 2013-03-21 10:11 - 00827904 ____N C:\WINDOWS\system32\Cmeauoxy.exe
2013-10-20 11:17 - 2013-02-25 11:35 - 00004374 ____N C:\WINDOWS\Cmicnfgp.ini.cfg
2013-10-20 11:17 - 2012-11-20 11:24 - 12935168 ____N (C-Media Corporation) C:\WINDOWS\SysWOW64\CmiCnfgp.dll
2013-10-20 11:17 - 2012-09-28 15:45 - 00465408 ____N (C-Media Electronics Inc.) C:\WINDOWS\system32\cmasiopx.dll
2013-10-20 11:17 - 2012-09-28 15:45 - 00303104 ____N (C-Media Electronics Inc.) C:\WINDOWS\SysWOW64\cmasiop.dll
2013-10-20 11:17 - 2012-06-06 09:56 - 00143360 ____N C:\WINDOWS\SysWOW64\VmixP8.dll
2013-10-20 11:17 - 2012-06-04 14:15 - 04533760 ____N C:\WINDOWS\system32\CmiCnfgp.cpl
2013-10-20 11:17 - 2011-12-29 00:09 - 00000054 ____N C:\WINDOWS\system32\cmasiopx.ini
2013-10-20 11:17 - 2011-12-29 00:08 - 00000049 ____N C:\WINDOWS\SysWOW64\cmasiop.ini
2013-10-20 11:17 - 2011-11-24 18:46 - 00000594 ____N C:\WINDOWS\cmudaxp.ini
2013-10-20 11:17 - 2007-12-13 17:12 - 00122880 ____N (CMedia Electronics Inc.) C:\WINDOWS\SysWOW64\Cm_Oal.dll
2013-10-20 11:17 - 2007-12-13 17:12 - 00122880 ____N (CMedia Electronics Inc.) C:\WINDOWS\system32\Cm_Oal.dll
2013-10-20 11:17 - 2006-09-13 10:21 - 00200704 ____N (C-Media) C:\WINDOWS\SysWOW64\Cmpaoxy.dll
2013-10-20 11:15 - 2013-10-20 11:15 - 14574400 _____ C:\Users\marDin\Desktop\DGX_8_0_8_1821_Win8.rar
2013-10-20 11:15 - 2013-10-20 11:15 - 00000000 ____D C:\Users\marDin\Desktop\DGX_8_0_8_1821_Win8
2013-10-20 11:15 - 2013-04-11 19:21 - 02734080 _____ (C-Media Inc) C:\WINDOWS\system32\Drivers\cmudaxp.sys
2013-10-19 22:59 - 2013-10-19 22:59 - 00013824 ___SH C:\Users\marDin\Downloads\Thumbs.db
2013-10-19 19:54 - 2013-10-19 19:54 - 00000000 ____D C:\Users\marDin\AppData\Roaming\NVIDIA
2013-10-19 17:45 - 2013-10-19 17:45 - 00001367 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2013-10-19 17:44 - 2013-10-19 17:44 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-10-19 17:44 - 2013-10-17 16:50 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Microsoft Help
2013-10-19 17:44 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-19 17:44 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-19 17:44 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-10-19 17:44 - 2013-08-22 17:36 - 00000000 ____D C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-19 17:43 - 2013-10-23 08:55 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-19 17:43 - 2013-10-21 22:25 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-19 17:43 - 2013-10-16 02:48 - 00061216 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2013-10-19 17:43 - 2013-10-16 02:48 - 00053024 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2013-10-19 17:43 - 2013-10-15 23:47 - 06665504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2013-10-19 17:43 - 2013-10-15 23:47 - 03489568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2013-10-19 17:43 - 2013-10-15 23:47 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2013-10-19 17:43 - 2013-10-15 23:47 - 00922912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2013-10-19 17:43 - 2013-10-15 23:47 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2013-10-19 17:43 - 2013-10-15 23:47 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-10-19 17:43 - 2013-10-08 21:14 - 03398914 _____ C:\WINDOWS\system32\nvcoproc.bin
2013-10-19 17:42 - 2013-10-16 02:48 - 18290536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 15858664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 15244272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 03067560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 02694664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 01435504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2013-10-19 17:42 - 2013-10-16 02:48 - 00023287 _____ C:\WINDOWS\system32\nvinfo.pb
2013-10-19 17:42 - 2013-09-27 10:57 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433140.dll
2013-10-19 17:42 - 2013-09-27 10:57 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433140.dll
2013-10-19 17:42 - 2013-08-20 15:33 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2013-10-19 17:42 - 2013-08-20 15:32 - 00029984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2013-10-19 17:42 - 2013-08-20 15:32 - 00028448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2013-10-19 17:42 - 2013-06-16 14:38 - 00196384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2013-10-19 17:42 - 2013-06-16 14:38 - 00031520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2013-10-19 17:42 - 2013-01-29 10:35 - 01510176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2013-10-19 17:41 - 2013-10-19 17:41 - 252822144 _____ (NVIDIA Corporation) C:\Users\marDin\Desktop\331.40-desktop-win8-win7-winvista-64bit-international-beta.exe
2013-10-19 17:04 - 2013-10-19 17:04 - 00002774 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2013-10-19 17:04 - 2013-10-19 17:04 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-19 17:04 - 2013-10-19 17:04 - 00000000 ____D C:\Program Files\CCleaner
2013-10-18 14:15 - 2013-10-18 14:15 - 00001464 _____ C:\Users\marDin\AppData\Local\recently-used.xbel
2013-10-17 21:46 - 2013-10-22 19:18 - 00000000 ____D C:\Users\marDin\AppData\Local\PMB Files
2013-10-17 21:46 - 2013-10-22 13:04 - 00000000 ____D C:\ProgramData\PMB Files
2013-10-17 21:44 - 2013-10-21 22:28 - 34888568 _____ (Riot Games) C:\Users\marDin\Desktop\LeagueofLegends_EUW_Installer_06_12_13.exe
2013-10-17 21:18 - 2013-10-19 17:07 - 242200864 _____ (NVIDIA Corporation) C:\Users\marDin\Desktop\327.23-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-10-17 20:06 - 2013-10-21 22:28 - 00142848 ___SH C:\Users\marDin\Desktop\Thumbs.db
2013-10-17 17:45 - 2013-10-19 17:05 - 00000000 ___DC C:\WINDOWS\Panther
2013-10-17 17:45 - 2013-10-17 17:45 - 02144768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01537880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-10-17 17:45 - 2013-10-17 17:45 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00837120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-10-17 17:45 - 2013-10-17 17:45 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00000000 __SHD C:\Recovery
2013-10-17 17:44 - 2013-10-17 17:44 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files\MSBuild
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-10-17 17:43 - 2013-08-03 06:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2013-10-17 17:43 - 2013-08-03 06:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-17 17:43 - 2013-08-03 06:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2013-10-17 17:43 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2013-10-17 17:43 - 2013-08-03 06:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-17 17:43 - 2013-08-03 06:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2013-10-17 17:25 - 2013-10-17 17:25 - 00000000 ____D C:\Program Files (x86)\Corsair
2013-10-17 17:13 - 2013-10-17 17:13 - 00000000 ____D C:\Users\marDin\Desktop\Corsair-Vengeance-Headset-Dolby-Driver-2_0_7
2013-10-17 17:09 - 2013-10-17 17:09 - 07107748 _____ C:\Users\marDin\Desktop\Corsair-Vengeance-Headset-Dolby-Driver-2_0_7.zip
2013-10-17 16:57 - 2013-10-23 08:56 - 00000000 __RDO C:\Users\marDin\SkyDrive
2013-10-17 16:56 - 2013-10-17 16:56 - 00001454 _____ C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-17 16:56 - 2013-10-17 16:56 - 00000020 ___SH C:\Users\marDin\ntuser.ini
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-17 16:52 - 2013-10-17 16:52 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-10-17 16:51 - 2013-10-17 16:52 - 00000000 ____D C:\Users\Public\Documents\Baidu Security
2013-10-17 16:50 - 2013-10-17 16:50 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-10-17 16:50 - 2013-10-17 16:50 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-10-17 16:49 - 2013-10-17 16:49 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-10-17 16:48 - 2013-10-22 23:58 - 00000000 ____D C:\Users\marDin
2013-10-17 16:48 - 2013-10-17 17:21 - 00000000 ____D C:\Users\Administrator
2013-10-17 16:48 - 2013-10-17 16:52 - 00040008 _____ C:\WINDOWS\diagwrn.xml
2013-10-17 16:48 - 2013-10-17 16:52 - 00040008 _____ C:\WINDOWS\diagerr.xml
2013-10-17 16:48 - 2013-10-17 16:49 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Vorlagen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Startmenü
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Netzwerkumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Lokale Einstellungen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Eigene Dateien
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Druckumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Documents\Eigene Musik
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Documents\Eigene Bilder
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Local\Verlauf
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Local\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-17 16:48 - 2013-08-22 17:36 - 00000000 ____D C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-17 16:46 - 2013-10-23 10:10 - 01249904 _____ C:\WINDOWS\WindowsUpdate.log
2013-10-17 16:46 - 2013-10-22 19:55 - 00004913 _____ C:\WINDOWS\system32\lvcoinst.log
2013-10-17 16:46 - 2013-10-21 22:25 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-17 16:46 - 2013-10-19 17:44 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-17 16:46 - 2013-10-17 16:46 - 00000000 ____D C:\Program Files\Common Files\logishrd
2013-10-17 16:21 - 2013-10-17 16:21 - 00675988 _____ C:\Users\marDin\Desktop\Minecraft.exe
2013-10-16 17:42 - 2013-10-16 17:42 - 00000000 _____ C:\Users\marDin\Desktop\Neues Textdokument.txt
2013-10-15 16:54 - 2013-10-15 16:54 - 00589600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2013-10-14 18:49 - 2013-10-14 18:49 - 00000002 _____ C:\Users\marDin\Downloads\Highscore.hsc
2013-10-11 17:19 - 2013-10-11 17:19 - 00000000 ____D C:\Users\marDin\Documents\Dust
2013-10-11 17:09 - 2013-10-11 17:17 - 00000000 ____D C:\Users\marDin\AppData\Local\Ubisoft Game Launcher
2013-10-11 17:08 - 2013-10-11 17:08 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-10-10 19:15 - 2013-10-16 15:16 - 00000000 ____D C:\Users\marDin\AppData\Roaming\TEdit
2013-10-10 19:15 - 2013-10-10 19:15 - 00610304 _____ C:\Users\marDin\Desktop\TEdit3Installer_3.4.13282.msi
2013-10-10 19:15 - 2013-10-10 19:15 - 00000000 ____D C:\Users\marDin\AppData\Local\TEditXna
2013-10-10 19:15 - 2013-10-10 19:15 - 00000000 ____D C:\Program Files (x86)\TEdit
2013-10-10 19:11 - 2013-10-10 19:11 - 00876027 _____ C:\Users\marDin\Desktop\Terraria-Map-Editor-master.zip
2013-10-10 19:11 - 2013-10-10 19:11 - 00000000 ____D C:\Users\marDin\Desktop\Terraria-Map-Editor-master
2013-10-08 17:05 - 2013-10-17 16:51 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Terrafirma
2013-10-08 17:05 - 2013-10-08 17:05 - 00454656 _____ C:\Users\marDin\Desktop\terrafirma.msi
2013-10-08 17:05 - 2013-10-08 17:05 - 00000961 _____ C:\Users\marDin\Desktop\Terrafirma.lnk
2013-10-08 17:05 - 2013-10-08 17:05 - 00000000 ____D C:\Program Files (x86)\Terrafirma
2013-10-08 17:03 - 2013-10-08 17:05 - 00000000 ____D C:\Users\marDin\AppData\Roaming\MoreTerra
2013-10-08 17:02 - 2013-10-08 17:02 - 00127079 _____ C:\Users\marDin\Desktop\MoreTerra1.11.1.zip
2013-10-08 17:02 - 2013-10-08 17:02 - 00000000 ____D C:\Users\marDin\Desktop\MoreTerra1.11.1
2013-10-04 17:10 - 2013-10-04 17:10 - 00001845 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-10-04 17:10 - 2013-10-04 17:10 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-10-03 21:14 - 2013-10-03 21:27 - 00033792 _____ C:\Users\marDin\Desktop\FINANZEN.XLS
2013-10-03 00:09 - 2013-10-17 19:39 - 00000000 ____D C:\Users\marDin\Desktop\völker
2013-10-03 00:03 - 2013-10-03 00:03 - 00000158 _____ C:\WINDOWS\AlienNations_usa.ini
2013-10-01 14:54 - 2013-10-01 14:54 - 00000000 ____D C:\Users\marDin\Documents\Puddle
2013-09-30 06:17 - 2013-09-30 06:17 - 01641496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-09-30 06:17 - 2013-09-30 06:17 - 01506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-09-30 06:17 - 2013-09-30 06:17 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-09-30 06:17 - 2013-09-30 06:17 - 01344984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-09-30 06:16 - 2013-09-30 06:16 - 04079104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-09-30 06:16 - 2013-09-30 06:16 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-09-30 06:16 - 2013-09-30 06:16 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-09-30 06:14 - 2013-10-23 09:02 - 01780340 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-09-30 06:13 - 2013-09-30 06:13 - 23213568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 21195128 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 18640456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 18576896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 17143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 13172736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 12996096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 12028416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11670528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11366912 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 08875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 08712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 07544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 07401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 06639104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 06353952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04975104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 03524096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02763776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02616832 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02569728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02555224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02328328 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02142424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02131120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02065960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01928656 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01741824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01720552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01662464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01581568 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01534504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01455616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01415168 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01370800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01302016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01225728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01150976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01119576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 01109936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01102336 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 01092896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00996320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00934856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00919552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00911872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00872328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 00813568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00796928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00783504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00707560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00648648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\riched20.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00579416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\recimg.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00552448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00534048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00528048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched20.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00482456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00467800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2013-09-30 06:13 - 2013-09-30 06:13 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2013-09-30 06:13 - 2013-09-30 06:13 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00427096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00407016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2013-09-30 06:13 - 2013-09-30 06:13 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00382224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00371032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00368736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00366688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\livessp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00358384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00312936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdprint.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdprint.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00236376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00205024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCoreConfProv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00180232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00153600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00151384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00123480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WorkFoldersRes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersRes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00098104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00066904 _____ (Microsoft Corporation) C:\WINDOWS\system32\PSHED.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2013-09-30 06:09 - 2013-08-22 07:17 - 02407936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2013-09-30 06:00 - 2013-08-22 08:51 - 00036235 _____ C:\WINDOWS\Professional.xml
2013-09-30 05:59 - 2013-10-17 16:51 - 00000000 ____D C:\WINDOWS\ShellNew
2013-09-30 05:59 - 2013-09-30 05:59 - 03396096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02176000 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsCpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02119680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsCpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSh.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01165824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDistSh.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00935424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCacheProvider.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00788480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mblctr.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmscan.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SnippingTool.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrptadm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AdmTmpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscobj.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SrpUxNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00291808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmstormod.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00267528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddputils.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SNTSearch.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppIdPolicyEngineApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddpchunk.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationSettings.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmstormod.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscobj.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrreg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmshell.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveprompt.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgmts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00147439 _____ C:\WINDOWS\SysWOW64\gpedit.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00147439 _____ C:\WINDOWS\system32\gpedit.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00146389 _____ C:\WINDOWS\system32\printmanagement.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddptrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\adrclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbusr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmshell.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00120458 _____ C:\WINDOWS\system32\secpol.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\baaupdate.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adrclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizardElev.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizard.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00096096 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedapplauncher.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\auditpolmsg.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolmsg.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090464 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeyboardFilterSvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmlib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmlib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmtrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DFDWiz.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintBrmUi.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmtrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsp.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpcivsp.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddp_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditPolicyGPInterop.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistHttpTrans.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\RotMgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfdts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00043566 _____ C:\WINDOWS\SysWOW64\rsop.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00043566 _____ C:\WINDOWS\system32\rsop.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrcomp.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistAD.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00040288 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeyboardFilterCore.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00039264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmbeddedAppLauncherConfig.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00037216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\terminpt.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00034144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KeyboardFilterCore.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwinsta.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00027488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorPerformanceEvents.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\qprocess.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jnwmon.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\quser.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tskill.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\qappsrv.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgport.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsdiscon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbldfltr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetppui.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\rwinsta.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoff.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgusr.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\chglogon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\reset.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\change.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\query.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspiper.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeSysprep.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 ____D C:\WINDOWS\SKB
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 ____D C:\Program Files\Windows Journal
2013-09-30 05:56 - 2013-10-23 09:02 - 00765378 _____ C:\WINDOWS\system32\perfh007.dat
2013-09-30 05:56 - 2013-10-23 09:02 - 00159696 _____ C:\WINDOWS\system32\perfc007.dat
2013-09-30 05:56 - 2013-10-17 16:50 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-09-30 05:56 - 2013-10-17 16:50 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-09-30 05:56 - 2013-10-17 16:50 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-09-30 05:56 - 2013-09-30 05:56 - 00305634 _____ C:\WINDOWS\system32\perfi007.dat
2013-09-30 05:56 - 2013-09-30 05:56 - 00040390 _____ C:\WINDOWS\system32\perfd007.dat
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\de
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\winrm
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\slmgr
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\de
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\0409
2013-09-26 23:15 - 2013-09-26 23:15 - 00000000 ____D C:\Users\marDin\Desktop\zbase-r250
2013-09-26 23:14 - 2013-09-26 23:15 - 286743478 _____ C:\Users\marDin\Desktop\zbase-r250.zip
2013-09-26 22:39 - 2013-09-26 22:39 - 00000000 ____D C:\Program Files (x86)\WinRAR
2013-09-25 17:26 - 2013-10-15 23:29 - 00000000 ____D C:\ProgramData\Tunngle
2013-09-25 17:25 - 2013-09-25 17:25 - 04068392 _____ (Tunngle.net GmbH                                            ) C:\Users\marDin\Desktop\Tunngle_Setup_v4.5.1.3.exe
2013-09-25 17:22 - 2013-09-29 23:58 - 00000000 ____D C:\Users\marDin\Documents\OpenTTD
2013-09-25 17:22 - 2013-09-26 23:17 - 00000000 ____D C:\Program Files\OpenTTD
2013-09-25 17:22 - 2013-09-25 17:22 - 00000796 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2013-09-25 17:21 - 2013-09-25 17:21 - 07492071 _____ (OpenTTD Developers) C:\Users\marDin\Desktop\openttd-1.3.2-windows-win64.exe

==================== One Month Modified Files and Folders =======

2013-10-23 11:11 - 2013-09-14 09:40 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-10-23 11:07 - 2013-10-23 11:07 - 00264616 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaws.exe
2013-10-23 11:07 - 2013-10-23 11:07 - 00175016 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\javaw.exe
2013-10-23 11:07 - 2013-10-23 11:07 - 00174504 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\java.exe
2013-10-23 11:07 - 2013-10-23 11:07 - 00096168 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2013-10-23 11:07 - 2013-10-23 11:07 - 00000000 ____D C:\ProgramData\Oracle
2013-10-23 11:06 - 2013-10-23 11:07 - 00312744 _____ (Oracle Corporation) C:\WINDOWS\system32\javaws.exe
2013-10-23 11:06 - 2013-10-23 11:07 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\javaw.exe
2013-10-23 11:06 - 2013-10-23 11:07 - 00189352 _____ (Oracle Corporation) C:\WINDOWS\system32\java.exe
2013-10-23 11:06 - 2013-10-23 11:07 - 00108968 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2013-10-23 11:06 - 2013-10-23 11:06 - 30694824 _____ (Oracle Corporation) C:\Users\marDin\Desktop\jre-7u45-windows-x64.exe
2013-10-23 11:06 - 2013-10-23 11:06 - 29040552 _____ (Oracle Corporation) C:\Users\marDin\Desktop\jre-7u45-windows-i586.exe
2013-10-23 11:06 - 2013-10-23 11:06 - 00000000 ____D C:\Program Files\Java
2013-10-23 11:05 - 2013-10-22 13:06 - 00003962 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{88A7A2FA-8BAA-47FD-B6D9-518A7822698F}
2013-10-23 11:03 - 2013-10-23 11:03 - 00891167 _____ C:\Users\marDin\Desktop\SecurityCheck.exe
2013-10-23 11:03 - 2013-09-10 13:00 - 00000000 ____D C:\Users\marDin\AppData\Local\Purplizer
2013-10-23 11:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2013-10-23 10:58 - 2013-03-03 08:30 - 00000000 ____D C:\Users\marDin\AppData\Roaming\TS3Client
2013-10-23 10:33 - 2013-03-03 04:43 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Dropbox
2013-10-23 10:23 - 2013-09-02 22:21 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-10-23 10:10 - 2013-10-17 16:46 - 01249904 _____ C:\WINDOWS\WindowsUpdate.log
2013-10-23 09:24 - 2013-03-03 06:36 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2736238369-3271077903-3660546878-1001
2013-10-23 09:20 - 2013-10-23 09:20 - 00000000 ____D C:\Program Files (x86)\ESET
2013-10-23 09:19 - 2013-10-23 09:19 - 02347384 _____ (ESET) C:\Users\marDin\Desktop\esetsmartinstaller_enu.exe
2013-10-23 09:08 - 2013-10-23 09:08 - 00001560 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-10-23 09:08 - 2013-10-23 09:08 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-10-23 09:08 - 2013-10-23 09:08 - 00000000 ____D C:\Program Files\iTunes
2013-10-23 09:08 - 2013-10-23 09:08 - 00000000 ____D C:\Program Files\iPod
2013-10-23 09:06 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2013-10-23 09:02 - 2013-09-30 06:14 - 01780340 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2013-10-23 09:02 - 2013-09-30 05:56 - 00765378 _____ C:\WINDOWS\system32\perfh007.dat
2013-10-23 09:02 - 2013-09-30 05:56 - 00159696 _____ C:\WINDOWS\system32\perfc007.dat
2013-10-23 08:56 - 2013-10-17 16:57 - 00000000 __RDO C:\Users\marDin\SkyDrive
2013-10-23 08:56 - 2013-09-10 08:28 - 00000000 ____D C:\Users\marDin\AppData\Local\Overwolf
2013-10-23 08:56 - 2013-03-04 16:24 - 00003154 _____ C:\WINDOWS\System32\Tasks\FRAPS
2013-10-23 08:56 - 2013-03-04 16:21 - 00000000 ____D C:\Fraps
2013-10-23 08:56 - 2013-03-03 06:31 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-23 08:56 - 2013-03-03 02:58 - 00000000 ____D C:\Program Files (x86)\Steam
2013-10-23 08:55 - 2013-10-19 17:43 - 00000000 ____D C:\ProgramData\NVIDIA
2013-10-23 08:55 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2013-10-22 23:58 - 2013-10-17 16:48 - 00000000 ____D C:\Users\marDin
2013-10-22 22:22 - 2013-03-14 23:47 - 00000000 ____D C:\Users\marDin\AppData\Roaming\.minecraft
2013-10-22 19:55 - 2013-10-17 16:46 - 00004913 _____ C:\WINDOWS\system32\lvcoinst.log
2013-10-22 19:18 - 2013-10-17 21:46 - 00000000 ____D C:\Users\marDin\AppData\Local\PMB Files
2013-10-22 15:44 - 2013-06-20 19:49 - 00000000 ____D C:\Users\marDin\AppData\Local\Pokki
2013-10-22 15:28 - 2013-10-22 15:28 - 00001229 _____ C:\Users\marDin\Desktop\JRT.txt
2013-10-22 15:25 - 2013-10-22 15:25 - 01033335 _____ (Thisisu) C:\Users\marDin\Desktop\JRT.exe
2013-10-22 15:25 - 2013-10-22 15:25 - 00000000 ____D C:\WINDOWS\ERUNT
2013-10-22 15:18 - 2013-10-22 15:14 - 00000000 ____D C:\AdwCleaner
2013-10-22 15:18 - 2013-08-22 15:25 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2013-10-22 15:15 - 2013-10-22 11:25 - 00007252 _____ C:\WINDOWS\PFRO.log
2013-10-22 15:14 - 2013-10-22 15:14 - 01060070 _____ C:\Users\marDin\Desktop\adwcleaner.exe
2013-10-22 14:54 - 2013-10-22 14:54 - 00001125 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-10-22 14:54 - 2013-10-22 14:54 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Malwarebytes
2013-10-22 14:54 - 2013-10-22 14:54 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-22 14:54 - 2013-10-22 14:54 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-22 14:53 - 2013-10-22 13:22 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\marDin\Desktop\mbam-setup-1.75.0.1300.exe
2013-10-22 14:05 - 2013-10-22 14:04 - 00017886 _____ C:\Users\marDin\Desktop\FRST.rar
2013-10-22 14:04 - 2013-10-22 13:47 - 00084658 _____ C:\Users\marDin\Desktop\FRST-2.txt
2013-10-22 13:47 - 2013-10-22 13:47 - 00005273 _____ C:\Users\marDin\Desktop\gmer.txt
2013-10-22 13:34 - 2013-10-22 13:34 - 00377856 _____ C:\Users\marDin\Desktop\gmer_2.1.19163.exe
2013-10-22 13:31 - 2013-10-22 13:31 - 00000000 ____D C:\FRST
2013-10-22 13:30 - 2013-10-22 13:30 - 01954682 _____ (Farbar) C:\Users\marDin\Desktop\FRST64.exe
2013-10-22 13:29 - 2013-10-22 13:29 - 00050477 _____ C:\Users\marDin\Desktop\Defogger.exe
2013-10-22 13:29 - 2013-10-22 13:29 - 00000474 _____ C:\Users\marDin\Desktop\defogger_disable.log
2013-10-22 13:29 - 2013-10-22 13:29 - 00000000 _____ C:\Users\marDin\defogger_reenable
2013-10-22 13:11 - 2013-03-03 22:29 - 00000000 ____D C:\Users\marDin\Documents\My Games
2013-10-22 13:09 - 2013-08-22 16:44 - 00537408 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-10-22 13:05 - 2013-03-03 08:51 - 00000000 ____D C:\ProgramData\Adobe
2013-10-22 13:04 - 2013-10-17 21:46 - 00000000 ____D C:\ProgramData\PMB Files
2013-10-22 13:03 - 2013-10-22 13:03 - 00000000 ____D C:\Users\marDin\Desktop\lol
2013-10-22 00:12 - 2013-03-10 23:33 - 00000000 ____D C:\Users\marDin\AppData\Roaming\uTorrent
2013-10-21 23:27 - 2013-10-21 23:27 - 00000233 _____ C:\WINDOWS\Directx.log
2013-10-21 23:26 - 2013-10-21 23:26 - 07837320 _____ (Microsoft Corporation) C:\Users\marDin\Desktop\DX81NTger.exe
2013-10-21 23:01 - 2013-03-03 06:31 - 00000000 ____D C:\Users\marDin\AppData\Local\Packages
2013-10-21 22:30 - 2013-10-21 22:30 - 00001597 _____ C:\Users\Public\Desktop\Play League of Legends.lnk
2013-10-21 22:28 - 2013-10-17 21:44 - 34888568 _____ (Riot Games) C:\Users\marDin\Desktop\LeagueofLegends_EUW_Installer_06_12_13.exe
2013-10-21 22:28 - 2013-10-17 20:06 - 00142848 ___SH C:\Users\marDin\Desktop\Thumbs.db
2013-10-21 22:25 - 2013-10-21 22:25 - 00002153 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2013-10-21 22:25 - 2013-10-19 17:43 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-10-21 22:25 - 2013-10-17 16:46 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-10-21 22:24 - 2013-10-21 22:24 - 00000000 ____D C:\WINDOWS\LastGood
2013-10-21 12:31 - 2013-10-20 22:29 - 462767040 ____R C:\Users\marDin\Desktop\Die_Mondverschwoerung_12.09.23_21-45_3sat_85_TVOON_DE.mpg_ffmpeg-cutted.avi
2013-10-21 06:55 - 2013-06-22 11:49 - 00000022 _____ C:\WINDOWS\SysWOW64\.zip
2013-10-20 21:56 - 2013-10-20 21:18 - 00000000 ____D C:\Users\marDin\Desktop\The Legend of Zelda - Link's Awakening DX
2013-10-20 21:18 - 2013-10-20 21:18 - 00659797 _____ C:\Users\marDin\Desktop\VisualBoyAdvance-1.8.0-beta3.zip
2013-10-20 21:18 - 2013-10-20 21:18 - 00000000 ____D C:\Users\marDin\Desktop\VisualBoyAdvance-1.8.0-beta3
2013-10-20 21:17 - 2013-10-20 21:17 - 00501300 _____ C:\Users\marDin\Desktop\The Legend of Zelda - Link's Awakening DX.zip
2013-10-20 21:02 - 2013-10-20 21:02 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2013-10-20 16:48 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2013-10-20 16:43 - 2013-10-20 16:43 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-10-20 11:18 - 2013-10-20 11:18 - 00000000 ____D C:\Users\marDin\AppData\Roaming\ASUS
2013-10-20 11:18 - 2013-03-03 06:44 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-10-20 11:17 - 2013-10-20 11:17 - 00047616 _____ C:\WINDOWS\Cmicnfgp.ini.cfl
2013-10-20 11:17 - 2013-10-20 11:17 - 00001010 _____ C:\WINDOWS\Cmicnfgp.ini.imi
2013-10-20 11:17 - 2013-10-20 11:17 - 00000949 _____ C:\WINDOWS\system\Cmicnfgp.ini
2013-10-20 11:17 - 2013-10-20 11:17 - 00000000 ____D C:\Program Files\ASUS Xonar DGX Audio
2013-10-20 11:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\System
2013-10-20 11:17 - 2013-03-03 03:42 - 00000134 _____ C:\WINDOWS\system\Dlap.pfx
2013-10-20 11:15 - 2013-10-20 11:15 - 14574400 _____ C:\Users\marDin\Desktop\DGX_8_0_8_1821_Win8.rar
2013-10-20 11:15 - 2013-10-20 11:15 - 00000000 ____D C:\Users\marDin\Desktop\DGX_8_0_8_1821_Win8
2013-10-19 22:59 - 2013-10-19 22:59 - 00013824 ___SH C:\Users\marDin\Downloads\Thumbs.db
2013-10-19 22:59 - 2013-03-10 16:59 - 00000000 ___RD C:\Users\marDin\Downloads\Microsoft.SkypeApp_kzf8qxf38zg5c!App
2013-10-19 19:54 - 2013-10-19 19:54 - 00000000 ____D C:\Users\marDin\AppData\Roaming\NVIDIA
2013-10-19 19:04 - 2013-07-01 18:29 - 00000000 ____D C:\Users\marDin\AppData\Local\NVIDIA
2013-10-19 17:45 - 2013-10-19 17:45 - 00001367 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2013-10-19 17:44 - 2013-10-19 17:44 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Vorlagen
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Startmenü
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Netzwerkumgebung
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Lokale Einstellungen
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Eigene Dateien
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Druckumgebung
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Musik
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Eigene Bilder
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Verlauf
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2013-10-19 17:44 - 2013-10-19 17:44 - 00000000 _SHDL C:\Users\UpdatusUser\Anwendungsdaten
2013-10-19 17:44 - 2013-10-17 16:46 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-10-19 17:41 - 2013-10-19 17:41 - 252822144 _____ (NVIDIA Corporation) C:\Users\marDin\Desktop\331.40-desktop-win8-win7-winvista-64bit-international-beta.exe
2013-10-19 17:09 - 2013-04-08 00:40 - 00000000 ____D C:\Users\marDin\Desktop\YT
2013-10-19 17:07 - 2013-10-17 21:18 - 242200864 _____ (NVIDIA Corporation) C:\Users\marDin\Desktop\327.23-desktop-win8-win7-winvista-64bit-international-whql.exe
2013-10-19 17:05 - 2013-10-17 17:45 - 00000000 ___DC C:\WINDOWS\Panther
2013-10-19 17:04 - 2013-10-19 17:04 - 00002774 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2013-10-19 17:04 - 2013-10-19 17:04 - 00000834 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-19 17:04 - 2013-10-19 17:04 - 00000000 ____D C:\Program Files\CCleaner
2013-10-18 14:15 - 2013-10-18 14:15 - 00001464 _____ C:\Users\marDin\AppData\Local\recently-used.xbel
2013-10-18 14:11 - 2013-03-09 19:30 - 00000000 ____D C:\Users\marDin\.gimp-2.8
2013-10-18 01:48 - 2013-03-04 16:29 - 00000000 ____D C:\Program Files (x86)\OBS
2013-10-17 19:39 - 2013-10-03 00:09 - 00000000 ____D C:\Users\marDin\Desktop\völker
2013-10-17 17:45 - 2013-10-17 17:45 - 02144768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll

marDin · 23.10.2013, 10:16

FRST - Teil 2:

Code:

ATTFilter

2013-10-17 17:45 - 2013-10-17 17:45 - 01537880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-10-17 17:45 - 2013-10-17 17:45 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 01018960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00977408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00909312 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00837120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00698880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2013-10-17 17:45 - 2013-10-17 17:45 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-10-17 17:45 - 2013-10-17 17:45 - 00000000 __SHD C:\Recovery
2013-10-17 17:45 - 2013-08-22 17:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2013-10-17 17:45 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\WinStore
2013-10-17 17:45 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Camera
2013-10-17 17:44 - 2013-10-17 17:44 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files\Reference Assemblies
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files\MSBuild
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2013-10-17 17:43 - 2013-10-17 17:43 - 00000000 ____D C:\Program Files (x86)\MSBuild
2013-10-17 17:25 - 2013-10-17 17:25 - 00000000 ____D C:\Program Files (x86)\Corsair
2013-10-17 17:21 - 2013-10-17 16:48 - 00000000 ____D C:\Users\Administrator
2013-10-17 17:20 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\registration
2013-10-17 17:13 - 2013-10-17 17:13 - 00000000 ____D C:\Users\marDin\Desktop\Corsair-Vengeance-Headset-Dolby-Driver-2_0_7
2013-10-17 17:13 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\restore
2013-10-17 17:09 - 2013-10-17 17:09 - 07107748 _____ C:\Users\marDin\Desktop\Corsair-Vengeance-Headset-Dolby-Driver-2_0_7.zip
2013-10-17 16:56 - 2013-10-17 16:56 - 00001454 _____ C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-17 16:56 - 2013-10-17 16:56 - 00000020 ___SH C:\Users\marDin\ntuser.ini
2013-10-17 16:56 - 2013-09-14 09:41 - 00002350 _____ C:\Users\marDin\Desktop\Sicherer Zahlungsverkehr.lnk
2013-10-17 16:56 - 2013-03-03 06:31 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-17 16:53 - 2013-10-17 16:53 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-17 16:53 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows NT
2013-10-17 16:53 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default
2013-10-17 16:52 - 2013-10-17 16:52 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2013-10-17 16:52 - 2013-10-17 16:51 - 00000000 ____D C:\Users\Public\Documents\Baidu Security
2013-10-17 16:52 - 2013-10-17 16:48 - 00040008 _____ C:\WINDOWS\diagwrn.xml
2013-10-17 16:52 - 2013-10-17 16:48 - 00040008 _____ C:\WINDOWS\diagerr.xml
2013-10-17 16:52 - 2013-08-22 17:36 - 00000000 __RSD C:\WINDOWS\Media
2013-10-17 16:52 - 2013-08-22 17:36 - 00000000 __RHD C:\Users\Public\Libraries
2013-10-17 16:51 - 2013-10-08 17:05 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Terrafirma
2013-10-17 16:51 - 2013-09-30 05:59 - 00000000 ____D C:\WINDOWS\ShellNew
2013-10-17 16:51 - 2013-09-10 08:28 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Overwolf
2013-10-17 16:51 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2013-10-17 16:51 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2013-10-17 16:51 - 2013-07-02 19:26 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2013-10-17 16:51 - 2013-04-02 20:24 - 00000000 ____D C:\WINDOWS\de
2013-10-17 16:51 - 2013-03-21 10:53 - 00000000 ____D C:\WINDOWS\SysWOW64\MAGIX
2013-10-17 16:51 - 2013-03-04 16:29 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2013-10-17 16:51 - 2013-03-04 12:11 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-10-17 16:51 - 2013-03-03 04:44 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-10-17 16:50 - 2013-10-19 17:44 - 00000000 ____D C:\Users\UpdatusUser\AppData\Local\Microsoft Help
2013-10-17 16:50 - 2013-10-17 16:50 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2013-10-17 16:50 - 2013-10-17 16:50 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2013-10-17 16:50 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2013-10-17 16:50 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2013-10-17 16:50 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\WCN
2013-10-17 16:50 - 2013-08-22 17:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\spool
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\IME
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\IME
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help
2013-10-17 16:50 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-10-17 16:50 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2013-10-17 16:50 - 2013-03-25 23:39 - 00000000 ____D C:\WINDOWS\SysWOW64\xlive
2013-10-17 16:50 - 2013-03-03 06:31 - 00000000 ____D C:\ProgramData\PRICache
2013-10-17 16:50 - 2013-03-03 05:18 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2013-10-17 16:50 - 2012-07-26 07:37 - 00000000 ____D C:\Users\Default.migrated
2013-10-17 16:49 - 2013-10-17 16:49 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2013-10-17 16:49 - 2013-10-17 16:48 - 00000000 ___RD C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-17 16:49 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2013-10-17 16:49 - 2013-07-31 23:32 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2013-10-17 16:49 - 2013-07-01 22:29 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\THQ
2013-10-17 16:49 - 2013-04-07 23:47 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Apache Friends
2013-10-17 16:49 - 2012-07-26 10:12 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Vorlagen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Startmenü
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Netzwerkumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Lokale Einstellungen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Eigene Dateien
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Druckumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Documents\Eigene Musik
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Documents\Eigene Bilder
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Local\Verlauf
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\AppData\Local\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\marDin\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Vorlagen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Startmenü
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Netzwerkumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Lokale Einstellungen
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Eigene Dateien
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Druckumgebung
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Musik
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Documents\Eigene Bilder
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Verlauf
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\AppData\Local\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 _SHDL C:\Users\Administrator\Anwendungsdaten
2013-10-17 16:48 - 2013-10-17 16:48 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-10-17 16:48 - 2013-03-04 12:29 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-17 16:48 - 2013-03-04 12:29 - 00000000 ___RD C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-17 16:48 - 2013-03-04 12:29 - 00000000 ____D C:\Users\Administrator\AppData\Local\Packages
2013-10-17 16:47 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2013-10-17 16:46 - 2013-10-17 16:46 - 00000000 ____D C:\Program Files\Common Files\logishrd
2013-10-17 16:21 - 2013-10-17 16:21 - 00675988 _____ C:\Users\marDin\Desktop\Minecraft.exe
2013-10-17 16:15 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2013-10-16 17:42 - 2013-10-16 17:42 - 00000000 _____ C:\Users\marDin\Desktop\Neues Textdokument.txt
2013-10-16 15:16 - 2013-10-10 19:15 - 00000000 ____D C:\Users\marDin\AppData\Roaming\TEdit
2013-10-16 02:48 - 2013-10-21 22:23 - 30344992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 25256224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 22933280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 18243632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 17560352 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 12537632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2013-10-16 02:48 - 2013-10-21 22:23 - 11415232 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 11362672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 09516872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 09472600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 03131680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 03124512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 02946848 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 02747168 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvenc.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433158.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433158.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 01241376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00696096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00655136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00599840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00560416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00479520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00405280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00266984 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00168616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2013-10-16 02:48 - 2013-10-21 22:23 - 00141336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2013-10-16 02:48 - 2013-10-19 17:43 - 00061216 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2013-10-16 02:48 - 2013-10-19 17:43 - 00053024 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 18290536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 15858664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 15244272 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 03067560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 02694664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 01435504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2013-10-16 02:48 - 2013-10-19 17:42 - 00023287 _____ C:\WINDOWS\system32\nvinfo.pb
2013-10-15 23:47 - 2013-10-19 17:43 - 06665504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2013-10-15 23:47 - 2013-10-19 17:43 - 03489568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2013-10-15 23:47 - 2013-10-19 17:43 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2013-10-15 23:47 - 2013-10-19 17:43 - 00922912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2013-10-15 23:47 - 2013-10-19 17:43 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2013-10-15 23:47 - 2013-10-19 17:43 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2013-10-15 23:29 - 2013-09-25 17:26 - 00000000 ____D C:\ProgramData\Tunngle
2013-10-15 23:29 - 2013-04-27 22:31 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Tunngle
2013-10-15 16:54 - 2013-10-15 16:54 - 00589600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2013-10-14 18:49 - 2013-10-14 18:49 - 00000002 _____ C:\Users\marDin\Downloads\Highscore.hsc
2013-10-11 17:19 - 2013-10-11 17:19 - 00000000 ____D C:\Users\marDin\Documents\Dust
2013-10-11 17:17 - 2013-10-11 17:09 - 00000000 ____D C:\Users\marDin\AppData\Local\Ubisoft Game Launcher
2013-10-11 17:08 - 2013-10-11 17:08 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-10-10 19:15 - 2013-10-10 19:15 - 00610304 _____ C:\Users\marDin\Desktop\TEdit3Installer_3.4.13282.msi
2013-10-10 19:15 - 2013-10-10 19:15 - 00000000 ____D C:\Users\marDin\AppData\Local\TEditXna
2013-10-10 19:15 - 2013-10-10 19:15 - 00000000 ____D C:\Program Files (x86)\TEdit
2013-10-10 19:11 - 2013-10-10 19:11 - 00876027 _____ C:\Users\marDin\Desktop\Terraria-Map-Editor-master.zip
2013-10-10 19:11 - 2013-10-10 19:11 - 00000000 ____D C:\Users\marDin\Desktop\Terraria-Map-Editor-master
2013-10-09 20:23 - 2013-09-02 22:21 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-10-09 15:54 - 2013-08-18 10:08 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-10-09 15:54 - 2013-03-19 20:45 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-10-09 15:52 - 2013-03-03 03:12 - 80541720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-10-09 15:51 - 2013-03-12 20:37 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-10-09 15:51 - 2013-03-12 20:37 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-10-09 01:09 - 2013-03-09 09:32 - 00000000 ____D C:\Users\marDin\AppData\Local\Windows Live
2013-10-08 21:14 - 2013-10-19 17:43 - 03398914 _____ C:\WINDOWS\system32\nvcoproc.bin
2013-10-08 17:05 - 2013-10-08 17:05 - 00454656 _____ C:\Users\marDin\Desktop\terrafirma.msi
2013-10-08 17:05 - 2013-10-08 17:05 - 00000961 _____ C:\Users\marDin\Desktop\Terrafirma.lnk
2013-10-08 17:05 - 2013-10-08 17:05 - 00000000 ____D C:\Program Files (x86)\Terrafirma
2013-10-08 17:05 - 2013-10-08 17:03 - 00000000 ____D C:\Users\marDin\AppData\Roaming\MoreTerra
2013-10-08 17:02 - 2013-10-08 17:02 - 00127079 _____ C:\Users\marDin\Desktop\MoreTerra1.11.1.zip
2013-10-08 17:02 - 2013-10-08 17:02 - 00000000 ____D C:\Users\marDin\Desktop\MoreTerra1.11.1
2013-10-04 23:49 - 2013-09-20 16:33 - 00000000 ____D C:\Users\marDin\Desktop\SpeedAutoClicker
2013-10-04 18:20 - 2013-09-20 16:33 - 00094899 _____ C:\Users\marDin\Desktop\SpeedAutoClicker.zip
2013-10-04 17:10 - 2013-10-04 17:10 - 00001845 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-10-04 17:10 - 2013-10-04 17:10 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-10-03 21:27 - 2013-10-03 21:14 - 00033792 _____ C:\Users\marDin\Desktop\FINANZEN.XLS
2013-10-03 00:03 - 2013-10-03 00:03 - 00000158 _____ C:\WINDOWS\AlienNations_usa.ini
2013-10-03 00:02 - 2013-03-03 08:40 - 00000000 ____D C:\Spiele
2013-10-03 00:01 - 2013-09-14 09:40 - 00624224 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys
2013-10-03 00:01 - 2013-06-10 12:27 - 00030304 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klim6.sys
2013-10-03 00:01 - 2013-05-06 09:22 - 07717984 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kl1.sys
2013-10-03 00:01 - 2013-05-05 22:42 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klmouflt.sys
2013-10-03 00:01 - 2013-05-05 22:42 - 00029280 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klkbdflt.sys
2013-10-02 09:57 - 2013-03-03 08:30 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-10-02 03:04 - 2013-08-22 17:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-10-02 03:04 - 2013-08-22 17:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-01 14:54 - 2013-10-01 14:54 - 00000000 ____D C:\Users\marDin\Documents\Puddle
2013-09-30 06:17 - 2013-09-30 06:17 - 01641496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2013-09-30 06:17 - 2013-09-30 06:17 - 01506168 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2013-09-30 06:17 - 2013-09-30 06:17 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2013-09-30 06:17 - 2013-09-30 06:17 - 01344984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\FileManager
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2013-09-30 06:17 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-09-30 06:17 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2013-09-30 06:17 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2013-09-30 06:17 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Dism
2013-09-30 06:16 - 2013-09-30 06:16 - 04079104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmIndexer.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00669184 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2013-09-30 06:16 - 2013-09-30 06:16 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2013-09-30 06:16 - 2013-09-30 06:16 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmIndexer.dll
2013-09-30 06:16 - 2013-09-30 06:16 - 00476672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 23213568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 21195128 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 18640456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 18576896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 17143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 13172736 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 12996096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 12028416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11670528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11366912 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 08875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 08712704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\glcndFilter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 07544320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 07401304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 06639104 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 06353952 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 05769728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 05765120 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04975104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04240384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 03524096 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02800640 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02763776 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02616832 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02569728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02555224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 02332160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02328328 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02166272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02142424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02131120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 02065960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 02050560 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01928656 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01818112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01741824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01730560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01720552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01662464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01581568 _____ (Microsoft Corporation) C:\WINDOWS\system32\workfolderssvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01555456 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01534504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01472048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01455616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01415168 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01370800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01344000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dui70.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01302016 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01286552 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01231360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01225728 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01185280 _____ (Microsoft Corporation) C:\WINDOWS\system32\printui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01160704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01150976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01147904 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01143296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01119576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 01109936 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01102336 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 01092896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01057792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\printui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 01019392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00996320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00970752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00961024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00940544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00934856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00919552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00911872 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00872328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00828416 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 00813568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00803328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00802816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00796928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsrcsnk.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00787968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00783504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00762368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00761856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkfoldersControl.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctfuimanager.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00707560 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00700352 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10level9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00698232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00695808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctfuimanager.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00675328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00648648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfnetcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\riched20.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msra.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00579416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00578952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10level9.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\recimg.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00552448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00534048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppReadiness.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00528896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00528048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\riched20.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.ContentPrefetchTask.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCenter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\tpmvsc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00491520 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceCenter.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00482456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00467800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2013-09-30 06:13 - 2013-09-30 06:13 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00458616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2013-09-30 06:13 - 2013-09-30 06:13 - 00455168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00453632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00442368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00427096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00419160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00408480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00407016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2013-09-30 06:13 - 2013-09-30 06:13 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00382224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00371032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00369664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00368736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00366688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00363520 _____ (Microsoft Corporation) C:\WINDOWS\system32\livessp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmrdvcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00358384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDEServer.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SessEnv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00312936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanmsm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdprint.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00284160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SessEnv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\TetheringMgr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00258904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdyboost.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdprint.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpencom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00248320 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Vpn.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00236376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00233984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00233912 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\miutils.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpencom.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00207360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00205024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mftranscode.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\DscCoreConfProv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00194560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00180232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mftranscode.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\miutils.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00175960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\VerifierExt.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsClassExtension.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00153600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CryptoWinRT.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00151384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFolders.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00136536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00123480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WorkFoldersRes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersRes.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\thumbcache.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00101208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00098104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Utilman.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\BulkOperationHost.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Utilman.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00066904 _____ (Microsoft Corporation) C:\WINDOWS\system32\PSHED.DLL
2013-09-30 06:13 - 2013-09-30 06:13 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\WorkFoldersGPExt.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00054784 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00054776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-09-30 06:13 - 2013-09-30 06:13 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsdwmdr.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2013-09-30 06:13 - 2013-09-30 06:13 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2013-09-30 06:13 - 2013-09-30 06:13 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 03396096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02176000 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsCpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 02119680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsCpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01319424 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01230848 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistSh.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 01165824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDistSh.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00935424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCacheProvider.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00788480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mblctr.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00785408 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmcsnap.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscsvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00666112 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscui.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00649728 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msTextPrediction.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\AdmTmpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00547840 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrptadm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmscan.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00468480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SnippingTool.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrptadm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00457728 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AdmTmpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistCleaner.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00350720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdechangepin.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00338944 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscobj.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00311808 _____ (Microsoft Corporation) C:\WINDOWS\system32\SrpUxNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SrpUxNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00297472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppIdPolicyEngineApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00291808 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpendp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\umrdp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmstormod.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00267528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpendp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddputils.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00251392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ppcsnap.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\SNTSearch.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppIdPolicyEngineApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\sensrsvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditNativeSnapIn.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddpchunk.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationSettings.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDist.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmstormod.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscobj.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsApi.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrreg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgmts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistWSDDiscoProv.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmshell.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00163328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PeerDist.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveprompt.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpinput.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appmgmts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00147439 _____ C:\WINDOWS\SysWOW64\gpedit.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00147439 _____ C:\WINDOWS\system32\gpedit.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00146389 _____ C:\WINDOWS\system32\printmanagement.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddptrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\adrclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbusr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmshell.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00120458 _____ C:\WINDOWS\system32\secpol.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\baaupdate.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adrclient.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizardElev.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00101888 _____ (Microsoft Corporation) C:\WINDOWS\system32\BitLockerWizard.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00096096 _____ (Microsoft Corporation) C:\WINDOWS\system32\embeddedapplauncher.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\auditpolmsg.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\auditpolmsg.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090464 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeyboardFilterSvc.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmlib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmlib.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmtrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vmbkmclr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DFDWiz.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuditPolicyGPInterop.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintBrmUi.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srmtrace.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storvsp.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vpcivsp.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddp_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AuditPolicyGPInterop.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistHttpTrans.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\RotMgr.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dfdts.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00043566 _____ C:\WINDOWS\SysWOW64\rsop.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00043566 _____ C:\WINDOWS\system32\rsop.msc
2013-09-30 05:59 - 2013-09-30 05:59 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\hwrcomp.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeerDistAD.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00040288 _____ (Microsoft Corporation) C:\WINDOWS\system32\KeyboardFilterCore.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00039264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmbeddedAppLauncherConfig.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00037216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\terminpt.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vid.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpscript.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00034144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KeyboardFilterCore.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpscript.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwinsta.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00027488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorPerformanceEvents.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\qprocess.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\jnwmon.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\quser.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tskill.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\qappsrv.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgport.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsdiscon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00022272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbldfltr.sys
2013-09-30 05:59 - 2013-09-30 05:59 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetppui.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\rwinsta.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoff.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\chgusr.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\chglogon.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnpinst.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srm_ps.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\reset.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\change.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\query.exe
2013-09-30 05:59 - 2013-09-30 05:59 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspiper.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeSysprep.dll
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 __SHD C:\WINDOWS\BitLockerDiscoveryVolumeContents
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 ____D C:\WINDOWS\SKB
2013-09-30 05:59 - 2013-09-30 05:59 - 00000000 ____D C:\Program Files\Windows Journal
2013-09-30 05:59 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\security
2013-09-30 05:59 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-09-30 05:56 - 2013-09-30 05:56 - 00305634 _____ C:\WINDOWS\system32\perfi007.dat
2013-09-30 05:56 - 2013-09-30 05:56 - 00040390 _____ C:\WINDOWS\system32\perfd007.dat
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\de
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\SysWOW64\0409
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\winrm
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\slmgr
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\de
2013-09-30 05:56 - 2013-09-30 05:56 - 00000000 ____D C:\WINDOWS\system32\0409
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ___SD C:\WINDOWS\system32\dsc
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\migwiz
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Com
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2013-09-30 05:56 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2013-09-30 05:56 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2013-09-30 05:56 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\servicing
2013-09-29 23:58 - 2013-09-25 17:22 - 00000000 ____D C:\Users\marDin\Documents\OpenTTD
2013-09-27 10:57 - 2013-10-19 17:42 - 01884448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6433140.dll
2013-09-27 10:57 - 2013-10-19 17:42 - 01511712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6433140.dll
2013-09-26 23:17 - 2013-09-25 17:22 - 00000000 ____D C:\Program Files\OpenTTD
2013-09-26 23:15 - 2013-09-26 23:15 - 00000000 ____D C:\Users\marDin\Desktop\zbase-r250
2013-09-26 23:15 - 2013-09-26 23:14 - 286743478 _____ C:\Users\marDin\Desktop\zbase-r250.zip
2013-09-26 22:48 - 2013-03-14 00:19 - 00000000 ____D C:\Users\marDin\AppData\Roaming\DVDVideoSoft
2013-09-26 22:47 - 2013-03-14 00:19 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-09-26 22:39 - 2013-09-26 22:39 - 00000000 ____D C:\Program Files (x86)\WinRAR
2013-09-25 17:26 - 2013-04-27 22:31 - 00000000 ____D C:\Program Files (x86)\Tunngle
2013-09-25 17:25 - 2013-09-25 17:25 - 04068392 _____ (Tunngle.net GmbH                                            ) C:\Users\marDin\Desktop\Tunngle_Setup_v4.5.1.3.exe
2013-09-25 17:22 - 2013-09-25 17:22 - 00000796 _____ C:\Users\Public\Desktop\OpenTTD.lnk
2013-09-25 17:21 - 2013-09-25 17:21 - 07492071 _____ (OpenTTD Developers) C:\Users\marDin\Desktop\openttd-1.3.2-windows-win64.exe
2013-09-24 20:08 - 2013-03-03 04:33 - 00000000 ____D C:\Users\marDin\AppData\Local\Apple
2013-09-24 20:07 - 2013-03-03 04:33 - 00000000 ____D C:\Users\marDin\AppData\Roaming\Apple Computer

Some content of TEMP:
====================
C:\Users\marDin\AppData\Local\Temp\nv3DVStreaming.dll
C:\Users\marDin\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\marDin\AppData\Local\Temp\nvStereoApiI.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe
[2013-08-22 11:55] - [2013-08-22 11:55] - 0564736 ____A (Microsoft Corporation) 7C94FDA3809015B8F2208D2E1C221F17

C:\Windows\System32\wininit.exe
[2013-08-22 11:58] - [2013-08-22 11:58] - 0144384 ____A (Microsoft Corporation) 48CFA7BE561A7BE144C29BB912055016

C:\Windows\explorer.exe
[2013-09-30 06:13] - [2013-09-30 06:13] - 2328328 ____A (Microsoft Corporation) C1400519D76A364E974E47BBA62B95B0

C:\Windows\SysWOW64\explorer.exe
[2013-09-30 06:13] - [2013-09-30 06:13] - 2065960 ____A (Microsoft Corporation) 712B0D2ADE5297563168C997DDC2DD13

C:\Windows\System32\svchost.exe
[2013-08-22 11:54] - [2013-08-22 14:45] - 0037768 ____A (Microsoft Corporation) E4CA434F251681590D0538BC21C32D2F

C:\Windows\SysWOW64\svchost.exe
[2013-08-22 04:48] - [2013-08-22 07:30] - 0031552 ____A (Microsoft Corporation) 425E22D9F5C01616AFC92987791B19E9

C:\Windows\System32\services.exe
[2013-08-22 15:25] - [2013-08-22 15:25] - 0405488 ____A (Microsoft Corporation) B4B610BBCB002EC478C6FD80CF915697

C:\Windows\System32\User32.dll
[2013-08-22 11:56] - [2013-08-22 14:39] - 1517984 ____A (Microsoft Corporation) 1A811BAFA2114C2FC878507F9F86566C

C:\Windows\SysWOW64\User32.dll
[2013-08-22 04:51] - [2013-08-22 04:51] - 1363456 ____A (Microsoft Corporation) 170A3370144196F72A04038B652732EF

C:\Windows\System32\userinit.exe
[2013-08-22 12:03] - [2013-08-22 12:03] - 0025088 ____A (Microsoft Corporation) 08C191B2917862BE90C33E31CB6B6D79

C:\Windows\SysWOW64\userinit.exe
[2013-08-22 04:54] - [2013-08-22 04:54] - 0021504 ____A (Microsoft Corporation) 41636F77AD6D9A396EA34E4786B96F2B

C:\Windows\System32\Drivers\volsnap.sys
[2013-08-22 13:40] - [2013-08-22 14:39] - 0312160 ____A (Microsoft Corporation) 9F9CE33B50611A1C61A46B8911E0B30B



LastRegBack: 2013-10-17 16:45

==================== End Of Log ============================

schrauber · 23.10.2013, 15:02

Fertig

Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software

Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.

Zusätzlicher Schutz

MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
WinPatrol
Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.

Sicheres Browsen

SpywareBlaster
Eine kurze Einführung findest du Hier
MVPs hosts file
Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
WOT (Web of trust)
Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

Opera
Mozilla Firefox.
- Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
- NoScript
  Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
- AdblockPlus
  Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
  Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )

Don'ts

Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

marDin · 23.10.2013, 15:40

Sollte soweit alles passen. In der Programmübersicht scheint yontoo auch nicht mehr auf.

Dankeschön (:

schrauber · 24.10.2013, 08:29

Gern Geschehen

24.10.2013, 08:29	#10
schrauber /// the machine /// TB-Ausbilder	Win 8.1 x64: Yontoo 2.052 kann nicht deinstalliert werden Gern Geschehen __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Win 8.1 x64: Yontoo 2.052 kann nicht deinstalliert werden

Plagegeister aller Art und deren Bekämpfung: Win 8.1 x64: Yontoo 2.052 kann nicht deinstalliert werden