Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Netstat zeigt sehr viele verbindungen an

Netstat zeigt sehr viele verbindungen an


Plagegeister aller Art und deren Bekämpfung: Netstat zeigt sehr viele verbindungen an

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 28.10.2013, 12:42   #1
Vox
 
Netstat zeigt sehr viele verbindungen an - Standard

Netstat zeigt sehr viele verbindungen an


Hallo,
ich hatte vor ca ner Woche eine meldung von Gdata bekommen das mein Chrome n verdächtiges verhalten aufweisen würde.
Empfehlung war Quarantäne was ich allerdings nicht tat da ich Chrome über Steam gestartet hatte und somit davon ausging/ausgehe das es ein Fehlalarm war.

Gestern hatte ich dann plötzlich probleme beim Downloaden. Lud nurnoch mit 900byte runter , egal welcher Server.
Netstat zeigte mir dann in etwa so was an:


Aktive Verbindungen
Proto Lokale Adresse Remoteadresse Status
TCP 127.0.0.1:49170 127.0.0.1:50443 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:50448 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:50451 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:50455 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:50458 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:50460 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:50494 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50497 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50501 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50504 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50507 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50510 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50514 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50516 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50519 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50522 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50526 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50529 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50533 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50536 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50538 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:50541 HERGESTELLT
TCP 127.0.0.1:49174 127.0.0.1:50468 HERGESTELLT
TCP 127.0.0.1:49174 127.0.0.1:50474 WARTEND
TCP 127.0.0.1:50414 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50437 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50438 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50439 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50440 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50441 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50477 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50478 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50479 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50480 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50481 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50482 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50483 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50484 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50485 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50486 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50487 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50488 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50489 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50491 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50492 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50493 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:50524 127.0.0.1:21322 WARTEND
TCP 192.168.2.104:49764 2.16.99.234:80 WARTEND
TCP 192.168.2.104:49768 2.16.99.234:80 WARTEND
TCP 192.168.2.104:49814 2.16.99.234:80 WARTEND
TCP 192.168.2.104:49816 2.16.99.234:80 WARTEND
TCP 192.168.2.104:49824 2.16.99.234:80 WARTEND
TCP 192.168.2.104:49828 2.16.99.234:80 WARTEND
TCP 192.168.2.104:50467 95.101.42.85:443 HERGESTELLT
TCP 192.168.2.104:50469 95.101.42.85:443 HERGESTELLT
TCP 192.168.2.104:50490 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50495 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50496 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50498 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50500 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50502 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50503 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50505 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50506 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50508 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50509 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50511 62.154.232.178:80 HERGESTELLT
TCP 192.168.2.104:50512 62.154.232.194:80 HERGESTELLT
TCP 192.168.2.104:50513 62.154.232.194:80 HERGESTELLT
TCP 192.168.2.104:50515 62.154.232.194:80 HERGESTELLT
TCP 192.168.2.104:50517 62.154.232.194:80 HERGESTELLT
TCP 192.168.2.104:50518 62.154.232.194:80 HERGESTELLT
TCP 192.168.2.104:50520 62.154.232.194:80 HERGESTELLT
TCP 192.168.2.104:50521 62.154.232.194:80 HERGESTELLT
TCP 192.168.2.104:50523 62.154.232.194:80 HERGESTELLT
TCP 192.168.2.104:50525 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50527 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50528 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50530 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50531 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50532 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50534 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50535 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50537 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50539 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50540 62.154.232.187:80 HERGESTELLT
TCP 192.168.2.104:50542 62.154.232.187:80 HERGESTELLT
TCP [::1]:49171 [::1]:50079 HERGESTELLT
TCP [::1]:49171 [::1]:50273 WARTEND
TCP [::1]:49171 [::1]:50403 HERGESTELLT
TCP [::1]:49171 [::1]:50416 WARTEND
TCP [::1]:49171 [::1]:50420 WARTEND
TCP [::1]:49171 [::1]:50424 WARTEND
TCP [::1]:49171 [::1]:50426 WARTEND
TCP [::1]:49171 [::1]:50429 WARTEND
TCP [::1]:49171 [::1]:50432 WARTEND
TCP [::1]:49175 [::1]:50408 HERGESTELLT
TCP [::1]:49175 [::1]:50465 HERGESTELLT
TCP [::1]:49175 [::1]:50471 WARTEND
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50078 [2a00:1450:4001:801::100
3]:80 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50080 [2a00:1450:4001:801::100
3]:80 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50401 [2a00:1450:4005:808::101
7]:80 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50402 [2a00:1450:4005:808::101
7]:80 WARTEND
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50404 [2a00:1450:4005:808::101
7]:80 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50406 [2a00:1450:4005:808::101
7]:80 WARTEND
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50407 [2a00:1450:4005:808::101
7]:443 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50409 [2a00:1450:4005:808::101
7]:443 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50411 [2a00:1450:4001:c02::5e]
:80 WARTEND
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50413 [2a00:1450:4001:c02::5e]
:80 WARTEND
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50464 [2a00:1450:4001:c02::88]
:443 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:50466 [2a00:1450:4001:c02::88]
:443 HERGESTELLT

Wobei ich erwähnen sollte, das dieser Auszug ca. 2 min nach Booten entstand. Hatte nur Iron(Chrome) auf und dort ncihtmals ne Seite besucht.




Momentan siehts gerade so aus:
(Iron und Steam laufen sowie Gdata und SnD)

Aktive Verbindungen
Proto Lokale Adresse Remoteadresse Status
TCP 127.0.0.1:49170 127.0.0.1:52266 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:52272 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:52275 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:52278 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:52281 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:52284 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:52287 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:52290 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:52293 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:52301 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:52304 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:52308 HERGESTELLT
TCP 127.0.0.1:49170 127.0.0.1:52318 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:52322 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:52328 WARTEND
TCP 127.0.0.1:49170 127.0.0.1:52332 WARTEND
TCP 127.0.0.1:52253 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52254 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52255 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52256 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52260 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52261 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52262 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52263 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52264 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52299 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52311 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52312 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52313 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52314 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52315 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52316 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52320 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52324 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52325 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52326 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52330 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52334 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52335 127.0.0.1:21322 WARTEND
TCP 127.0.0.1:52336 127.0.0.1:21322 WARTEND
TCP 192.168.2.104:52289 173.194.112.250:80 HERGESTELLT
TCP 192.168.2.104:52291 173.194.112.250:80 HERGESTELLT
TCP 192.168.2.104:52292 89.207.18.129:80 HERGESTELLT
TCP 192.168.2.104:52295 89.207.18.129:80 HERGESTELLT
TCP 192.168.2.104:52300 89.207.18.129:80 HERGESTELLT
TCP 192.168.2.104:52302 89.207.18.129:80 HERGESTELLT
TCP 192.168.2.104:52303 89.207.18.129:80 HERGESTELLT
TCP 192.168.2.104:52305 89.207.18.129:80 HERGESTELLT
TCP 192.168.2.104:52307 62.154.232.123:80 HERGESTELLT
TCP 192.168.2.104:52309 62.154.232.123:80 HERGESTELLT
TCP 192.168.2.104:52337 87.230.57.64:80 WARTEND
TCP [::1]:49171 [::1]:52258 HERGESTELLT
TCP [::1]:49171 [::1]:52269 HERGESTELLT
TCP [::1]:49171 [::1]:52296 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:52210 [2a00:1450:4001:c02::5b]
:443 WARTEND
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:52213 [2a00:1450:4001:808::100
9]:443 WARTEND
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:52257 [2a00:1450:4001:801::100
7]:80 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:52259 [2a00:1450:4001:801::100
7]:80 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:52268 [2a00:1450:4001:807::100
1]:80 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:52270 [2a00:1450:4001:807::100
1]:80 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:52294 [2a00:1450:4001:c02::9d]
:80 HERGESTELLT
TCP [2003:69:6f86:e332:95d0:4f1a:f134:1842]:52297 [2a00:1450:4001:c02::9d]
:80 HERGESTELLT

Gdata Scan findet nichts und auch Search n´Destroy fand nichts eigenartiges.
Sollte ich mir da gedanken machen, oder sind diese (mac?) Adressen relativ harmlos?
Und was hat es mit den Verbindungen auf sich:

TCP [::1]:49171 [::1]:50420 WARTEND
TCP 127.0.0.1:50438 127.0.0.1:21322 WARTEND

Alt 28.10.2013, 13:37   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Netstat zeigt sehr viele verbindungen an - Standard

Netstat zeigt sehr viele verbindungen an


hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________
Alt 28.10.2013, 17:21   #3
Vox
 
Netstat zeigt sehr viele verbindungen an - Standard

Netstat zeigt sehr viele verbindungen an


Gesagt getan.
Hab das ganze mal schnell überflogen und konnte mit hilfe meines Halbwissens nichts eigenartiges finden.
Habe die Benutzernamen geändert!

Vlt noch hilfreich zu erwähnen:
Ich nutze Win7 64bit
Der oftmals gezeigte Error bei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" liegt ggf. an einem Betatreiber und einer ggf. nicht ganz sauberen deinstallation von alten Treibern.



FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-10-2013
Ran by XYZ (ATTENTION: The logged in user is not administrator) on ABC-PC on 28-10-2013 16:48:38
Running from C:\Users\XYZ\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G DATA\AVKProxy\GdBgInx64.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Valve Corporation) E:\Steam\Steam.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,c:\program files (x86)\g data\totalprotection\avkkid\avkcks.exe
MountPoints2: {5e020641-3563-11e3-bd24-806e6f6e6963} - F:\autorun.exe
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-09-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [G Data AntiVirus Tray] - C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe [1444304 2013-02-25] (G Data Software AG)
HKLM-x32\...\Run: [GDFirewallTray] - C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe [1854416 2013-02-25] (G Data Software AG)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-09-21] (Advanced Micro Devices, Inc.)
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [1956304 2013-03-04] (G Data Software AG)
R2 AVKService; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe [635344 2013-02-25] (G Data Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe [2249944 2013-02-25] (G Data Software AG)
R2 GDBackupSvc; C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe [1942480 2013-02-27] (G Data Software AG)
R3 GDFwSvc; C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe [2656800 2013-02-25] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [696808 2013-02-25] (G Data Software AG)
S3 GDTunerSvc; C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe [1711568 2013-02-25] (G Data Software AG)
R2 lmhosts; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
S3 TSNxGService; C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe [257512 2013-02-25] (G Data Software)

==================== Drivers (Whitelisted) ====================

S2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [34816 2013-06-19] (Advanced Micro Devices)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [60248 2013-10-15] (G Data Software AG)
R3 gddcd; C:\Windows\system32\drivers\gddcd64.sys [77656 2013-10-15] (G Data Software AG)
R1 gddcv; C:\Windows\system32\drivers\gddcv64.sys [58712 2013-10-15] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [133976 2013-10-15] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [62808 2013-10-15] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [64856 2013-10-15] (G Data Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [107128 2013-10-15] (G Data Software)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [64856 2013-10-15] (G Data Software AG)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 TS4NT; C:\Windows\System32\Drivers\TS4nt.sys [98760 2013-10-15] (G Data Software)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-28 16:47 - 2013-10-28 16:47 - 01956538 _____ (Farbar) C:\Users\XYZ\Desktop\FRST64.exe
2013-10-28 16:47 - 2013-10-28 16:47 - 00000000 ____D C:\FRST
2013-10-28 11:38 - 2013-10-28 11:38 - 00006368 _____ C:\Users\XYZ\netstat.txt
2013-10-28 11:36 - 2013-10-28 11:43 - 00007844 _____ C:\Users\XYZ\Desktop\asd.txt
2013-10-28 00:42 - 2013-10-28 11:43 - 00000158 _____ C:\Users\XYZ\Desktop\Neues Textdokument.txt
2013-10-28 00:36 - 2013-10-28 01:07 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-28 00:36 - 2013-10-28 00:38 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-28 00:36 - 2013-10-28 00:36 - 00001383 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-28 00:36 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2013-10-28 00:33 - 2013-10-28 00:34 - 40658208 _____ (Safer-Networking Ltd.                                       ) C:\Users\XYZ\Desktop\spybot-2.2.25.exe
2013-10-27 18:57 - 2013-10-27 19:37 - 00000080 _____ C:\Users\XYZ\Desktop\vid.txt
2013-10-27 18:54 - 2013-10-27 19:00 - 48609470 _____ C:\Users\XYZ\Desktop\output2.mp4
2013-10-27 18:40 - 2013-10-27 18:41 - 11703710 _____ C:\Users\XYZ\Desktop\output.mp4
2013-10-27 18:39 - 2013-10-27 18:39 - 00000000 ____D C:\Users\XYZ\Desktop\Easy h264 v0.6r
2013-10-27 18:38 - 2013-10-27 18:39 - 07965948 _____ C:\Users\XYZ\Desktop\Easy h264 v0.6r.zip
2013-10-27 18:32 - 2013-10-27 18:32 - 00000000 ____D C:\Users\XYZ\AppData\Roaming\Media Player Classic
2013-10-27 18:25 - 2013-10-27 18:27 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2013-10-27 18:25 - 2013-08-02 18:29 - 00256088 _____ C:\Windows\system32\unrar64.dll
2013-10-27 18:25 - 2013-08-02 18:29 - 00217176 _____ C:\Windows\SysWOW64\unrar.dll
2013-10-26 16:23 - 2013-10-26 16:23 - 00000084 _____ C:\Users\XYZ\Desktop\Stream.txt
2013-10-25 21:15 - 2013-10-25 21:15 - 00000000 ____D C:\Users\XYZ\Documents\Diablo III
2013-10-25 21:15 - 2013-10-25 21:15 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2013-10-25 21:13 - 2013-10-25 21:14 - 00000000 ____D C:\ProgramData\Battle.net
2013-10-25 15:19 - 2013-10-25 15:19 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-10-23 23:19 - 2013-10-23 23:19 - 00001145 _____ C:\Users\XYZ\Desktop\Alive Video Converter 5.lnk
2013-10-23 23:19 - 2013-10-23 23:19 - 00000000 ____D C:\Program Files (x86)\AliveMedia
2013-10-23 23:12 - 2013-10-23 23:13 - 07176019 _____ (AliveMedia, Inc.                                            ) C:\Users\XYZ\Desktop\AliveVideoConverter.exe
2013-10-22 14:31 - 2013-10-22 14:31 - 00262144 _____ C:\Windows\SysWOW64\18
2013-10-19 10:25 - 2013-10-27 03:08 - 00000000 __SHD C:\#GDATA.Trash.Store#
2013-10-19 10:25 - 2013-10-19 10:25 - 00262144 _____ C:\Windows\SysWOW64\5-18
2013-10-17 17:17 - 2013-10-17 17:17 - 00000000 ____D C:\Users\XYZ\Documents\My Games
2013-10-17 14:20 - 2013-10-17 14:20 - 00000000 ____D C:\Users\XYZ\AppData\Local\Runic Games
2013-10-17 13:32 - 2013-10-17 13:32 - 00000000 ____D C:\Users\XYZ\AppData\Roaming\Macromedia
2013-10-17 13:31 - 2013-10-17 13:31 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-17 13:31 - 2013-10-17 13:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-17 13:31 - 2013-10-17 13:31 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-17 13:31 - 2013-10-17 13:31 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-17 09:16 - 2013-10-17 09:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-10-17 06:52 - 2013-10-17 06:52 - 00000000 ____D C:\Users\XYZ\AppData\Local\Chromium
2013-10-15 16:04 - 2013-10-27 00:28 - 00168766 _____ C:\Windows\DirectX.log
2013-10-15 16:04 - 2010-06-02 03:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2013-10-15 16:04 - 2010-06-02 03:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2013-10-15 16:04 - 2010-06-02 03:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2013-10-15 16:04 - 2010-06-02 03:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2013-10-15 16:04 - 2010-06-02 03:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2013-10-15 16:04 - 2010-06-02 03:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2013-10-15 16:04 - 2010-05-26 10:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2013-10-15 16:04 - 2010-05-26 10:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2013-10-15 16:04 - 2010-05-26 10:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2013-10-15 16:04 - 2010-05-26 10:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2013-10-15 16:04 - 2010-05-26 10:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2013-10-15 16:04 - 2010-05-26 10:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2013-10-15 16:04 - 2010-05-26 10:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2013-10-15 16:04 - 2010-05-26 10:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2013-10-15 16:04 - 2010-05-26 10:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2013-10-15 16:04 - 2010-05-26 10:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2013-10-15 16:04 - 2010-02-04 09:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2013-10-15 16:04 - 2010-02-04 09:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-10-15 16:04 - 2010-02-04 09:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-10-15 16:04 - 2010-02-04 09:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2013-10-15 16:04 - 2010-02-04 09:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2013-10-15 16:04 - 2010-02-04 09:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-10-15 16:04 - 2010-02-04 09:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2013-10-15 16:04 - 2010-02-04 09:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-10-15 16:04 - 2009-09-04 16:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2013-10-15 16:04 - 2009-09-04 16:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-10-15 16:04 - 2009-09-04 16:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-10-15 16:04 - 2009-09-04 16:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2013-10-15 16:04 - 2009-09-04 16:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2013-10-15 16:04 - 2009-09-04 16:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-10-15 16:04 - 2009-09-04 16:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2013-10-15 16:04 - 2009-09-04 16:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-10-15 16:04 - 2009-09-04 16:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2013-10-15 16:04 - 2009-09-04 16:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-10-15 16:04 - 2009-09-04 16:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2013-10-15 16:04 - 2009-09-04 16:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2013-10-15 16:04 - 2009-09-04 16:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2013-10-15 16:04 - 2009-09-04 16:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2013-10-15 16:04 - 2009-09-04 16:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2013-10-15 16:04 - 2009-09-04 16:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-10-15 16:04 - 2009-03-16 13:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2013-10-15 16:04 - 2009-03-16 13:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2013-10-15 16:04 - 2009-03-16 13:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2013-10-15 16:04 - 2009-03-16 13:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2013-10-15 16:04 - 2009-03-16 13:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2013-10-15 16:04 - 2009-03-16 13:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2013-10-15 16:04 - 2009-03-09 14:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2013-10-15 16:04 - 2009-03-09 14:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2013-10-15 16:04 - 2009-03-09 14:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2013-10-15 16:04 - 2009-03-09 14:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2013-10-15 16:04 - 2009-03-09 14:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2013-10-15 16:04 - 2009-03-09 14:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2013-10-15 16:04 - 2008-10-27 09:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2013-10-15 16:04 - 2008-10-27 09:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2013-10-15 16:04 - 2008-10-27 09:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2013-10-15 16:04 - 2008-10-27 09:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2013-10-15 16:04 - 2008-10-27 09:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2013-10-15 16:04 - 2008-10-27 09:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2013-10-15 16:04 - 2008-10-27 09:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2013-10-15 16:04 - 2008-10-27 09:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2013-10-15 16:04 - 2008-10-15 05:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2013-10-15 16:04 - 2008-10-15 05:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2013-10-15 16:04 - 2008-10-15 05:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2013-10-15 16:04 - 2008-10-15 05:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2013-10-15 16:04 - 2008-10-15 05:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-10-15 16:04 - 2008-10-15 05:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-10-15 16:04 - 2008-07-31 09:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-10-15 16:04 - 2008-07-31 09:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2013-10-15 16:04 - 2008-07-31 09:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2013-10-15 16:04 - 2008-07-31 09:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-10-15 16:04 - 2008-07-31 09:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2013-10-15 16:04 - 2008-07-31 09:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-10-15 16:04 - 2008-07-10 10:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2013-10-15 16:04 - 2008-07-10 10:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2013-10-15 16:04 - 2008-07-10 10:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2013-10-15 16:04 - 2008-07-10 10:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2013-10-15 16:04 - 2008-07-10 10:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2013-10-15 16:04 - 2008-07-10 10:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2013-10-15 16:04 - 2008-05-30 13:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2013-10-15 16:04 - 2008-05-30 13:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2013-10-15 16:04 - 2008-05-30 13:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2013-10-15 16:04 - 2008-05-30 13:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2013-10-15 16:04 - 2008-05-30 13:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2013-10-15 16:04 - 2008-05-30 13:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2013-10-15 16:04 - 2008-05-30 13:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2013-10-15 16:04 - 2008-05-30 13:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2013-10-15 16:04 - 2008-05-30 13:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2013-10-15 16:04 - 2008-05-30 13:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2013-10-15 16:04 - 2008-05-30 13:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2013-10-15 16:04 - 2008-05-30 13:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2013-10-15 16:04 - 2008-05-30 13:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2013-10-15 16:04 - 2008-05-30 13:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2013-10-15 16:04 - 2008-03-05 15:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2013-10-15 16:04 - 2008-03-05 15:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2013-10-15 16:04 - 2008-03-05 15:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2013-10-15 16:04 - 2008-03-05 15:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2013-10-15 16:04 - 2008-03-05 15:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2013-10-15 16:04 - 2008-03-05 15:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2013-10-15 16:04 - 2008-03-05 14:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2013-10-15 16:04 - 2008-03-05 14:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2013-10-15 16:04 - 2008-03-05 14:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2013-10-15 16:04 - 2008-03-05 14:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2013-10-15 16:04 - 2008-02-05 22:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2013-10-15 16:04 - 2008-02-05 22:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2013-10-15 16:04 - 2007-10-22 02:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2013-10-15 16:04 - 2007-10-22 02:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2013-10-15 16:04 - 2007-10-22 02:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2013-10-15 16:04 - 2007-10-22 02:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2013-10-15 16:04 - 2007-10-12 14:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2013-10-15 16:04 - 2007-10-12 14:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2013-10-15 16:04 - 2007-10-12 14:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2013-10-15 16:04 - 2007-10-12 14:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2013-10-15 16:04 - 2007-10-02 08:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2013-10-15 16:04 - 2007-10-02 08:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2013-10-15 16:04 - 2007-07-19 23:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2013-10-15 16:04 - 2007-07-19 23:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2013-10-15 16:04 - 2007-07-19 17:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2013-10-15 16:04 - 2007-07-19 17:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2013-10-15 16:04 - 2007-07-19 17:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2013-10-15 16:04 - 2007-07-19 17:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2013-10-15 16:04 - 2007-07-19 17:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2013-10-15 16:04 - 2007-07-19 17:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2013-10-15 16:04 - 2007-06-20 19:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2013-10-15 16:04 - 2007-06-20 19:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2013-10-15 16:04 - 2007-05-16 15:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2013-10-15 16:04 - 2007-05-16 15:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2013-10-15 16:04 - 2007-05-16 15:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2013-10-15 16:04 - 2007-05-16 15:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2013-10-15 16:04 - 2007-05-16 15:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2013-10-15 16:04 - 2007-05-16 15:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2013-10-15 16:04 - 2007-04-04 17:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2013-10-15 16:04 - 2007-04-04 17:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2013-10-15 16:04 - 2007-04-04 17:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2013-10-15 16:04 - 2007-04-04 17:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2013-10-15 16:04 - 2007-03-15 15:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2013-10-15 16:04 - 2007-03-15 15:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2013-10-15 16:04 - 2007-03-12 15:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2013-10-15 16:04 - 2007-03-12 15:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2013-10-15 16:04 - 2007-03-12 15:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2013-10-15 16:04 - 2007-03-12 15:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2013-10-15 16:04 - 2007-03-05 11:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2013-10-15 16:04 - 2007-03-05 11:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2013-10-15 16:04 - 2007-01-24 14:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2013-10-15 16:04 - 2007-01-24 14:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2013-10-15 16:04 - 2006-12-08 11:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2013-10-15 16:04 - 2006-12-08 11:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2013-10-15 16:04 - 2006-11-29 12:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2013-10-15 16:04 - 2006-11-29 12:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2013-10-15 16:04 - 2006-11-29 12:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2013-10-15 16:04 - 2006-11-29 12:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2013-10-15 16:04 - 2006-09-28 15:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2013-10-15 16:04 - 2006-09-28 15:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2013-10-15 16:04 - 2006-09-28 15:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2013-10-15 16:04 - 2006-09-28 15:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2013-10-15 16:04 - 2006-07-28 08:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2013-10-15 16:04 - 2006-07-28 08:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2013-10-15 16:04 - 2006-07-28 08:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2013-10-15 16:04 - 2006-07-28 08:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2013-10-15 16:04 - 2006-05-31 06:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2013-10-15 16:04 - 2006-05-31 06:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2013-10-15 16:04 - 2006-03-31 11:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2013-10-15 16:04 - 2006-03-31 11:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2013-10-15 16:04 - 2006-03-31 11:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2013-10-15 16:04 - 2006-03-31 11:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2013-10-15 16:04 - 2006-03-31 11:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2013-10-15 16:04 - 2006-03-31 11:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2013-10-15 16:04 - 2006-02-03 07:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2013-10-15 16:04 - 2006-02-03 07:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2013-10-15 16:04 - 2006-02-03 07:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2013-10-15 16:04 - 2006-02-03 07:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2013-10-15 16:04 - 2006-02-03 07:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2013-10-15 16:04 - 2006-02-03 07:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2013-10-15 16:04 - 2005-12-05 17:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2013-10-15 16:04 - 2005-12-05 17:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2013-10-15 16:04 - 2005-07-22 18:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2013-10-15 16:04 - 2005-07-22 18:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2013-10-15 16:04 - 2005-05-26 14:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2013-10-15 16:04 - 2005-05-26 14:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2013-10-15 16:04 - 2005-03-18 16:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2013-10-15 16:04 - 2005-03-18 16:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2013-10-15 16:04 - 2005-02-05 18:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2013-10-15 16:04 - 2005-02-05 18:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2013-10-15 15:58 - 2013-10-15 15:58 - 00000000 ____D C:\Users\XYZ\AppData\Roaming\Adobe
2013-10-15 11:26 - 2013-10-15 11:26 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-15 11:26 - 2013-10-15 11:26 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-15 11:26 - 2013-10-15 11:26 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-15 11:26 - 2013-10-15 11:26 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-15 11:26 - 2013-10-15 11:26 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-15 11:26 - 2013-10-15 11:26 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-15 11:26 - 2013-10-15 11:26 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-15 11:26 - 2013-10-15 11:26 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-15 11:26 - 2013-10-15 11:26 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-15 11:26 - 2013-10-15 11:26 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-15 11:26 - 2013-10-15 11:26 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-15 11:21 - 2013-10-15 11:21 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-15 11:20 - 2013-10-15 11:20 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-15 11:20 - 2013-10-15 11:20 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-15 11:19 - 2013-10-15 11:33 - 00014450 _____ C:\Windows\IE10_main.log
2013-10-15 11:14 - 2010-02-23 09:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-10-15 11:07 - 2013-10-15 11:11 - 00003987 _____ C:\Windows\IE9_main.log
2013-10-15 10:58 - 2013-10-15 10:58 - 00000000 ____D C:\Windows\system32\MRT
2013-10-15 10:58 - 2013-09-26 00:46 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-15 10:57 - 2012-03-01 07:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-10-15 10:57 - 2012-03-01 07:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-10-15 10:57 - 2012-03-01 07:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-10-15 10:57 - 2012-03-01 06:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-10-15 10:57 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-10-15 10:45 - 2012-03-17 08:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-10-15 10:44 - 2013-08-02 03:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-15 10:44 - 2013-08-02 03:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-15 10:44 - 2013-08-02 03:15 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-10-15 10:44 - 2013-08-02 03:15 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-15 10:44 - 2013-08-02 03:15 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-10-15 10:44 - 2013-08-02 03:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-15 10:44 - 2013-08-02 03:14 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-10-15 10:44 - 2013-08-02 03:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-15 10:44 - 2013-08-02 03:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-15 10:44 - 2013-08-02 02:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-15 10:44 - 2013-08-02 02:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-15 10:44 - 2013-08-02 02:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-10-15 10:44 - 2013-08-02 02:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-10-15 10:44 - 2013-08-02 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 02:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-10-15 10:44 - 2013-08-02 01:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-15 10:44 - 2013-08-02 01:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-15 10:44 - 2013-08-02 01:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-15 10:44 - 2013-08-02 01:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-15 10:44 - 2013-08-02 01:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-15 10:44 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-10-15 10:44 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-10-15 10:44 - 2013-07-25 10:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-15 10:44 - 2013-07-25 09:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-15 10:44 - 2013-07-09 06:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-10-15 10:44 - 2013-07-09 06:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-15 10:44 - 2013-07-09 06:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-15 10:44 - 2013-07-09 06:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-10-15 10:44 - 2013-07-09 05:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-10-15 10:44 - 2013-07-09 05:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-10-15 10:44 - 2013-07-09 05:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-10-15 10:44 - 2013-07-09 05:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-10-15 10:44 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-15 10:44 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-15 10:44 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-15 10:44 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-15 10:44 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-15 10:44 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-15 10:44 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-15 10:44 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-15 10:44 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-15 10:44 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-15 10:44 - 2013-04-12 15:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-10-15 10:44 - 2013-02-27 07:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-10-15 10:44 - 2013-02-27 06:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-10-15 10:44 - 2013-02-27 06:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-10-15 10:44 - 2013-02-27 05:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-10-15 10:44 - 2012-11-01 06:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-10-15 10:44 - 2012-11-01 06:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-10-15 10:44 - 2012-11-01 05:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-10-15 10:44 - 2012-11-01 05:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-10-15 10:44 - 2012-06-06 07:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-10-15 10:44 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2013-10-15 10:44 - 2011-11-17 07:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-10-15 10:44 - 2011-11-17 06:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-10-15 10:44 - 2011-10-26 06:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-10-15 10:44 - 2011-10-26 06:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-15 10:44 - 2011-10-26 05:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-10-15 10:44 - 2011-10-26 05:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-15 10:44 - 2011-07-09 03:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-10-15 10:44 - 2011-06-15 11:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-10-15 10:44 - 2011-06-15 11:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-10-15 10:44 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-10-15 10:44 - 2011-06-15 11:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-10-15 10:44 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-10-15 10:44 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-10-15 10:44 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-10-15 10:44 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-10-15 10:44 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-10-15 10:44 - 2011-04-27 03:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-10-15 10:44 - 2011-04-27 03:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-10-15 10:44 - 2011-04-09 07:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-10-15 10:44 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-10-15 10:44 - 2011-03-11 07:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-10-15 10:44 - 2011-03-11 07:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-10-15 10:44 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-10-15 10:44 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-10-15 10:44 - 2010-12-23 11:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-10-15 10:44 - 2010-12-23 11:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-10-15 10:44 - 2010-12-23 11:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-10-15 10:44 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-10-15 10:44 - 2010-12-23 06:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-10-15 10:44 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-10-15 10:44 - 2010-06-26 04:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-10-15 10:44 - 2010-06-26 04:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-10-15 10:43 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-15 10:43 - 2013-07-26 03:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-10-15 10:43 - 2013-07-26 03:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-10-15 10:43 - 2013-07-26 02:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-10-15 10:43 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-10-15 10:43 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-15 10:43 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-15 10:43 - 2013-07-19 02:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-10-15 10:43 - 2013-07-19 02:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-10-15 10:43 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-15 10:43 - 2013-07-09 06:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-10-15 10:43 - 2013-07-09 05:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-10-15 10:43 - 2013-07-06 07:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-15 10:43 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-15 10:43 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-15 10:43 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-15 10:43 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-15 10:43 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-15 10:43 - 2013-06-15 05:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-10-15 10:43 - 2013-06-04 07:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-10-15 10:43 - 2013-06-04 05:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-10-15 10:43 - 2013-04-26 06:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-15 10:43 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-10-15 10:43 - 2013-02-15 07:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-15 10:43 - 2013-02-15 07:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-15 10:43 - 2013-02-15 07:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-15 10:43 - 2013-02-15 05:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-15 10:43 - 2013-02-15 05:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-15 10:43 - 2013-02-15 04:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-15 10:43 - 2013-02-12 05:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-10-15 10:43 - 2013-01-03 07:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-10-15 10:43 - 2012-11-28 23:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-10-15 10:43 - 2012-11-28 23:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-10-15 10:43 - 2012-11-28 23:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-10-15 10:43 - 2012-11-23 04:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-10-15 10:43 - 2012-11-20 06:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-10-15 10:43 - 2012-11-20 05:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-10-15 10:43 - 2012-11-02 06:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-10-15 10:43 - 2012-11-02 06:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-10-15 10:43 - 2012-09-25 23:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-10-15 10:43 - 2012-09-25 23:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-10-15 10:43 - 2012-08-22 19:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-10-15 10:43 - 2012-08-11 01:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-10-15 10:43 - 2012-08-11 00:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-10-15 10:43 - 2012-06-02 06:50 - 00458704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-15 10:43 - 2012-06-02 06:48 - 00151920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-15 10:43 - 2012-06-02 06:48 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-10-15 10:43 - 2012-06-02 06:45 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-15 10:43 - 2012-06-02 05:40 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-15 10:43 - 2012-06-02 05:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-15 10:43 - 2012-06-02 05:34 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-15 10:43 - 2012-04-28 04:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-10-15 10:43 - 2012-04-26 06:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-10-15 10:43 - 2012-04-26 06:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-10-15 10:43 - 2012-04-26 06:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-10-15 10:43 - 2012-02-17 07:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-10-15 10:43 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-10-15 10:43 - 2012-02-17 05:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2013-10-15 10:43 - 2011-12-28 04:59 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-15 10:43 - 2011-11-17 07:35 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-15 10:43 - 2011-11-17 07:35 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-10-15 10:43 - 2011-11-17 07:35 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-10-15 10:43 - 2011-11-17 07:35 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-10-15 10:43 - 2011-11-17 07:33 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-10-15 10:43 - 2011-08-17 06:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-10-15 10:43 - 2011-08-17 06:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-10-15 10:43 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-10-15 10:43 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-10-15 10:43 - 2011-05-24 12:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-10-15 10:43 - 2011-05-24 11:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-10-15 10:43 - 2011-05-24 11:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-10-15 10:43 - 2011-05-24 11:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-10-15 10:43 - 2011-05-24 11:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-10-15 10:43 - 2011-04-29 04:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-10-15 10:43 - 2011-04-29 04:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-10-15 10:43 - 2011-04-29 04:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-10-15 10:43 - 2011-03-03 07:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-10-15 10:43 - 2011-03-03 07:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-10-15 10:43 - 2011-03-03 07:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-10-15 10:43 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-10-15 10:43 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-10-15 10:43 - 2011-02-12 12:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-10-15 10:43 - 2011-02-05 18:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-10-15 10:43 - 2011-02-05 18:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-10-15 10:43 - 2011-02-05 18:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-10-15 10:43 - 2011-02-05 18:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-10-15 10:43 - 2011-02-05 18:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-10-15 10:43 - 2011-02-05 18:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-10-15 10:43 - 2011-02-05 18:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-10-15 10:40 - 2013-05-13 06:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-10-15 10:40 - 2013-05-13 04:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-10-15 10:40 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-10-15 10:40 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-10-15 10:40 - 2012-07-04 23:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-10-15 10:40 - 2012-07-04 23:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-10-15 10:40 - 2012-07-04 23:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-10-15 10:40 - 2012-07-04 22:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-10-15 10:40 - 2012-07-04 22:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-10-15 10:40 - 2011-08-27 06:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-10-15 10:40 - 2011-08-27 06:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-10-15 10:40 - 2011-08-27 05:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-10-15 10:40 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-10-15 10:40 - 2011-05-03 06:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-10-15 10:40 - 2011-05-03 05:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-10-15 10:38 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-15 10:38 - 2013-04-10 07:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-15 10:38 - 2012-05-14 06:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-10-15 10:38 - 2011-12-16 09:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-10-15 10:38 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-10-15 10:38 - 2011-10-15 07:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-10-15 10:38 - 2011-10-15 06:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-10-15 10:38 - 2011-02-23 05:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-10-15 10:38 - 2011-02-03 12:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-15 10:37 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-15 10:37 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-15 10:37 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-15 10:37 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-15 10:37 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-15 10:37 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-15 10:35 - 2011-11-19 15:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-10-15 10:35 - 2011-11-19 15:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-10-15 09:49 - 2013-10-15 09:49 - 00107128 _____ (G Data Software) C:\Windows\system32\Drivers\GRD.sys
2013-10-15 09:49 - 2013-10-15 09:49 - 00016944 _____ (G Data Software) C:\Windows\system32\Drivers\GdPhyMem.sys
2013-10-15 08:30 - 2013-10-15 07:37 - 00000000 ____D C:\Windows\Panther
2013-10-15 07:58 - 2012-06-02 23:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-10-15 07:58 - 2012-06-02 23:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-10-15 07:58 - 2012-06-02 23:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-10-15 07:58 - 2012-06-02 23:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-10-15 07:58 - 2012-06-02 23:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-10-15 07:58 - 2012-06-02 23:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-10-15 07:58 - 2012-06-02 23:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-10-15 07:58 - 2012-06-02 14:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-10-15 07:58 - 2012-06-02 14:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-10-15 07:54 - 2013-10-15 15:58 - 00001425 _____ C:\Users\XYZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-15 07:54 - 2013-10-15 07:54 - 00057560 _____ C:\Users\XYZ\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-15 07:54 - 2013-10-15 07:54 - 00000000 ____D C:\Users\XYZ\AppData\Roaming\ATI
2013-10-15 07:54 - 2013-10-15 07:54 - 00000000 ____D C:\Users\XYZ\AppData\Local\ATI
2013-10-15 07:54 - 2013-10-15 07:54 - 00000000 ____D C:\Users\XYZ\AppData\Local\AMD
2013-10-15 07:54 - 2013-10-15 07:54 - 00000000 ____D C:\ProgramData\ATI
2013-10-15 07:53 - 2013-10-28 11:38 - 00000000 ____D C:\Users\XYZ
2013-10-15 07:53 - 2013-10-15 15:58 - 00000000 ___RD C:\Users\XYZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-15 07:53 - 2013-10-15 15:58 - 00000000 ___RD C:\Users\XYZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-15 07:53 - 2013-10-15 07:56 - 00000000 ____D C:\Users\XYZ\AppData\Local\VirtualStore
2013-10-15 07:53 - 2013-10-15 07:53 - 00000020 ___SH C:\Users\XYZ\ntuser.ini
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Vorlagen
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Startmenü
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Netzwerkumgebung
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Lokale Einstellungen
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Eigene Dateien
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Druckumgebung
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Documents\Eigene Musik
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Documents\Eigene Bilder
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\AppData\Local\Verlauf
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\AppData\Local\Anwendungsdaten
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Anwendungsdaten
2013-10-15 07:53 - 2009-07-14 05:54 - 00000000 ___RD C:\Users\XYZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-15 07:53 - 2009-07-14 05:49 - 00000000 ___RD C:\Users\XYZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-15 07:52 - 2013-10-15 07:52 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-10-15 07:49 - 2013-10-15 07:49 - 00062808 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2013-10-15 07:48 - 2013-10-15 07:48 - 00098760 _____ (G Data Software) C:\Windows\system32\Drivers\TS4nt.sys
2013-10-15 07:48 - 2013-10-15 07:48 - 00077656 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcd64.sys
2013-10-15 07:48 - 2013-10-15 07:48 - 00058712 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcv64.sys
2013-10-15 07:48 - 2013-10-15 07:48 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_gddcd64_01007.Wdf
2013-10-15 07:47 - 2013-10-15 07:47 - 00133976 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2013-10-15 07:47 - 2013-10-15 07:47 - 00064856 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2013-10-15 07:47 - 2013-10-15 07:47 - 00064856 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys
2013-10-15 07:47 - 2013-10-15 07:47 - 00060248 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2013-10-15 07:46 - 2013-10-15 07:55 - 00000000 ____D C:\ProgramData\G Data
2013-10-15 07:46 - 2013-10-15 07:46 - 00000000 ____D C:\ProgramData\G DATA Software
2013-10-15 07:46 - 2013-10-15 07:46 - 00000000 ____D C:\Program Files (x86)\G Data
2013-10-15 07:45 - 2013-10-15 07:45 - 00066505 _____ C:\Windows\SysWOW64\CCCInstall_201310150845323047.log
2013-10-15 07:45 - 2013-10-15 07:45 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-10-15 07:44 - 2013-10-15 07:45 - 00000000 ____D C:\ProgramData\AMD
2013-10-15 07:43 - 2013-10-15 07:43 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-10-15 07:43 - 2013-10-15 07:43 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2013-10-15 07:42 - 2013-10-15 11:58 - 01591896 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-15 07:41 - 2013-10-27 23:27 - 00000000 ____D C:\Fraps
2013-10-15 07:40 - 2013-10-19 07:02 - 00000000 ____D C:\Program Files (x86)\SRWare Iron
2013-10-15 07:40 - 2013-10-15 07:43 - 00000000 ____D C:\ProgramData\Package Cache
2013-10-15 07:39 - 2013-10-15 07:45 - 00000000 ____D C:\Program Files\ATI Technologies
2013-10-15 07:39 - 2013-10-15 07:44 - 00000000 ____D C:\AMD
2013-10-15 07:39 - 2013-10-15 07:39 - 00000000 ____D C:\Program Files\ATI
2013-10-15 07:37 - 2013-10-17 09:17 - 00000000 ____D C:\Users\ABC
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Programme
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 __SHD C:\Recovery
2013-10-15 07:34 - 2013-10-15 07:34 - 00001355 _____ C:\Windows\TSSysprep.log
2013-10-15 07:33 - 2013-10-28 16:45 - 01720940 _____ C:\Windows\WindowsUpdate.log

==================== One Month Modified Files and Folders =======

2013-10-28 16:47 - 2013-10-28 16:47 - 01956538 _____ (Farbar) C:\Users\XYZ\Desktop\FRST64.exe
2013-10-28 16:47 - 2013-10-28 16:47 - 00000000 ____D C:\FRST
2013-10-28 16:45 - 2013-10-15 07:33 - 01720940 _____ C:\Windows\WindowsUpdate.log
2013-10-28 15:47 - 2009-07-14 05:45 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-28 15:47 - 2009-07-14 05:45 - 00021664 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-28 15:44 - 2011-04-12 08:43 - 00698688 _____ C:\Windows\system32\perfh007.dat
2013-10-28 15:44 - 2011-04-12 08:43 - 00148828 _____ C:\Windows\system32\perfc007.dat
2013-10-28 15:44 - 2009-07-14 06:13 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-28 15:39 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-28 15:39 - 2009-07-14 05:51 - 00027523 _____ C:\Windows\setupact.log
2013-10-28 11:43 - 2013-10-28 11:36 - 00007844 _____ C:\Users\XYZ\Desktop\asd.txt
2013-10-28 11:43 - 2013-10-28 00:42 - 00000158 _____ C:\Users\XYZ\Desktop\Neues Textdokument.txt
2013-10-28 11:38 - 2013-10-28 11:38 - 00006368 _____ C:\Users\XYZ\netstat.txt
2013-10-28 11:38 - 2013-10-15 07:53 - 00000000 ____D C:\Users\XYZ
2013-10-28 01:07 - 2013-10-28 00:36 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2013-10-28 00:38 - 2013-10-28 00:36 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2013-10-28 00:36 - 2013-10-28 00:36 - 00001383 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2013-10-28 00:34 - 2013-10-28 00:33 - 40658208 _____ (Safer-Networking Ltd.                                       ) C:\Users\XYZ\Desktop\spybot-2.2.25.exe
2013-10-27 23:27 - 2013-10-15 07:41 - 00000000 ____D C:\Fraps
2013-10-27 19:37 - 2013-10-27 18:57 - 00000080 _____ C:\Users\XYZ\Desktop\vid.txt
2013-10-27 19:00 - 2013-10-27 18:54 - 48609470 _____ C:\Users\XYZ\Desktop\output2.mp4
2013-10-27 18:41 - 2013-10-27 18:40 - 11703710 _____ C:\Users\XYZ\Desktop\output.mp4
2013-10-27 18:39 - 2013-10-27 18:39 - 00000000 ____D C:\Users\XYZ\Desktop\Easy h264 v0.6r
2013-10-27 18:39 - 2013-10-27 18:38 - 07965948 _____ C:\Users\XYZ\Desktop\Easy h264 v0.6r.zip
2013-10-27 18:32 - 2013-10-27 18:32 - 00000000 ____D C:\Users\XYZ\AppData\Roaming\Media Player Classic
2013-10-27 18:27 - 2013-10-27 18:25 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2013-10-27 03:08 - 2013-10-19 10:25 - 00000000 __SHD C:\#GDATA.Trash.Store#
2013-10-27 00:28 - 2013-10-15 16:04 - 00168766 _____ C:\Windows\DirectX.log
2013-10-26 16:23 - 2013-10-26 16:23 - 00000084 _____ C:\Users\XYZ\Desktop\Stream.txt
2013-10-25 21:15 - 2013-10-25 21:15 - 00000000 ____D C:\Users\XYZ\Documents\Diablo III
2013-10-25 21:15 - 2013-10-25 21:15 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2013-10-25 21:14 - 2013-10-25 21:13 - 00000000 ____D C:\ProgramData\Battle.net
2013-10-25 15:19 - 2013-10-25 15:19 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-10-23 23:19 - 2013-10-23 23:19 - 00001145 _____ C:\Users\XYZ\Desktop\Alive Video Converter 5.lnk
2013-10-23 23:19 - 2013-10-23 23:19 - 00000000 ____D C:\Program Files (x86)\AliveMedia
2013-10-23 23:13 - 2013-10-23 23:12 - 07176019 _____ (AliveMedia, Inc.                                            ) C:\Users\XYZ\Desktop\AliveVideoConverter.exe
2013-10-22 14:31 - 2013-10-22 14:31 - 00262144 _____ C:\Windows\SysWOW64\18
2013-10-19 10:25 - 2013-10-19 10:25 - 00262144 _____ C:\Windows\SysWOW64\5-18
2013-10-19 07:02 - 2013-10-15 07:40 - 00000000 ____D C:\Program Files (x86)\SRWare Iron
2013-10-17 17:17 - 2013-10-17 17:17 - 00000000 ____D C:\Users\XYZ\Documents\My Games
2013-10-17 14:20 - 2013-10-17 14:20 - 00000000 ____D C:\Users\XYZ\AppData\Local\Runic Games
2013-10-17 13:32 - 2013-10-17 13:32 - 00000000 ____D C:\Users\XYZ\AppData\Roaming\Macromedia
2013-10-17 13:31 - 2013-10-17 13:31 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-10-17 13:31 - 2013-10-17 13:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-10-17 13:31 - 2013-10-17 13:31 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-10-17 13:31 - 2013-10-17 13:31 - 00000000 ____D C:\Windows\system32\Macromed
2013-10-17 09:17 - 2013-10-15 07:37 - 00000000 ____D C:\Users\ABC
2013-10-17 09:16 - 2013-10-17 09:16 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-10-17 06:52 - 2013-10-17 06:52 - 00000000 ____D C:\Users\XYZ\AppData\Local\Chromium
2013-10-15 15:58 - 2013-10-15 15:58 - 00000000 ____D C:\Users\XYZ\AppData\Roaming\Adobe
2013-10-15 15:58 - 2013-10-15 07:54 - 00001425 _____ C:\Users\XYZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-15 15:58 - 2013-10-15 07:53 - 00000000 ___RD C:\Users\XYZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-15 15:58 - 2013-10-15 07:53 - 00000000 ___RD C:\Users\XYZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-15 12:41 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-10-15 12:05 - 2009-07-14 05:45 - 00274464 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-15 12:02 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-15 12:02 - 2009-07-14 06:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-15 12:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-10-15 12:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-10-15 12:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-10-15 12:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-10-15 12:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-15 12:02 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-15 12:01 - 2011-04-12 08:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-15 11:58 - 2013-10-15 07:42 - 01591896 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-15 11:33 - 2013-10-15 11:19 - 00014450 _____ C:\Windows\IE10_main.log
2013-10-15 11:26 - 2013-10-15 11:26 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-15 11:26 - 2013-10-15 11:26 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-15 11:26 - 2013-10-15 11:26 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-15 11:26 - 2013-10-15 11:26 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-15 11:26 - 2013-10-15 11:26 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-15 11:26 - 2013-10-15 11:26 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-15 11:26 - 2013-10-15 11:26 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-15 11:26 - 2013-10-15 11:26 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-15 11:26 - 2013-10-15 11:26 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-15 11:26 - 2013-10-15 11:26 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-15 11:26 - 2013-10-15 11:26 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-15 11:26 - 2013-10-15 11:26 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-15 11:26 - 2013-10-15 11:26 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-15 11:21 - 2013-10-15 11:21 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-15 11:21 - 2013-10-15 11:21 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-15 11:20 - 2013-10-15 11:20 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-15 11:20 - 2013-10-15 11:20 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-15 11:11 - 2013-10-15 11:07 - 00003987 _____ C:\Windows\IE9_main.log
2013-10-15 10:58 - 2013-10-15 10:58 - 00000000 ____D C:\Windows\system32\MRT
2013-10-15 09:49 - 2013-10-15 09:49 - 00107128 _____ (G Data Software) C:\Windows\system32\Drivers\GRD.sys
2013-10-15 09:49 - 2013-10-15 09:49 - 00016944 _____ (G Data Software) C:\Windows\system32\Drivers\GdPhyMem.sys
2013-10-15 07:56 - 2013-10-15 07:53 - 00000000 ____D C:\Users\XYZ\AppData\Local\VirtualStore
2013-10-15 07:55 - 2013-10-15 07:46 - 00000000 ____D C:\ProgramData\G Data
2013-10-15 07:54 - 2013-10-15 07:54 - 00057560 _____ C:\Users\XYZ\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-15 07:54 - 2013-10-15 07:54 - 00000000 ____D C:\Users\XYZ\AppData\Roaming\ATI
2013-10-15 07:54 - 2013-10-15 07:54 - 00000000 ____D C:\Users\XYZ\AppData\Local\ATI
2013-10-15 07:54 - 2013-10-15 07:54 - 00000000 ____D C:\Users\XYZ\AppData\Local\AMD
2013-10-15 07:54 - 2013-10-15 07:54 - 00000000 ____D C:\ProgramData\ATI
2013-10-15 07:53 - 2013-10-15 07:53 - 00000020 ___SH C:\Users\XYZ\ntuser.ini
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Vorlagen
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Startmenü
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Netzwerkumgebung
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Lokale Einstellungen
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Eigene Dateien
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Druckumgebung
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Documents\Eigene Musik
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Documents\Eigene Bilder
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\AppData\Local\Verlauf
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\AppData\Local\Anwendungsdaten
2013-10-15 07:53 - 2013-10-15 07:53 - 00000000 _SHDL C:\Users\XYZ\Anwendungsdaten
2013-10-15 07:52 - 2013-10-15 07:52 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-10-15 07:49 - 2013-10-15 07:49 - 00062808 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2013-10-15 07:48 - 2013-10-15 07:48 - 00098760 _____ (G Data Software) C:\Windows\system32\Drivers\TS4nt.sys
2013-10-15 07:48 - 2013-10-15 07:48 - 00077656 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcd64.sys
2013-10-15 07:48 - 2013-10-15 07:48 - 00058712 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcv64.sys
2013-10-15 07:48 - 2013-10-15 07:48 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_gddcd64_01007.Wdf
2013-10-15 07:47 - 2013-10-15 07:47 - 00133976 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2013-10-15 07:47 - 2013-10-15 07:47 - 00064856 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2013-10-15 07:47 - 2013-10-15 07:47 - 00064856 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys
2013-10-15 07:47 - 2013-10-15 07:47 - 00060248 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2013-10-15 07:46 - 2013-10-15 07:46 - 00000000 ____D C:\ProgramData\G DATA Software
2013-10-15 07:46 - 2013-10-15 07:46 - 00000000 ____D C:\Program Files (x86)\G Data
2013-10-15 07:45 - 2013-10-15 07:45 - 00066505 _____ C:\Windows\SysWOW64\CCCInstall_201310150845323047.log
2013-10-15 07:45 - 2013-10-15 07:45 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-10-15 07:45 - 2013-10-15 07:44 - 00000000 ____D C:\ProgramData\AMD
2013-10-15 07:45 - 2013-10-15 07:39 - 00000000 ____D C:\Program Files\ATI Technologies
2013-10-15 07:44 - 2013-10-15 07:39 - 00000000 ____D C:\AMD
2013-10-15 07:43 - 2013-10-15 07:43 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-10-15 07:43 - 2013-10-15 07:43 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2013-10-15 07:43 - 2013-10-15 07:40 - 00000000 ____D C:\ProgramData\Package Cache
2013-10-15 07:43 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-10-15 07:40 - 2009-07-14 06:32 - 00000000 ____D C:\Windows\system32\restore
2013-10-15 07:39 - 2013-10-15 07:39 - 00000000 ____D C:\Program Files\ATI
2013-10-15 07:37 - 2013-10-15 08:30 - 00000000 ____D C:\Windows\Panther
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Programme
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-10-15 07:37 - 2013-10-15 07:37 - 00000000 __SHD C:\Recovery
2013-10-15 07:37 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-10-15 07:37 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Windows NT
2013-10-15 07:34 - 2013-10-15 07:34 - 00001355 _____ C:\Windows\TSSysprep.log
2013-10-15 07:34 - 2009-07-14 05:46 - 00002790 _____ C:\Windows\DtcInstall.log
2013-10-15 07:34 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\sysprep

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== End Of Log ============================
--- --- ---
__________________
Alt 28.10.2013, 17:22   #4
Vox
 
Netstat zeigt sehr viele verbindungen an - Standard

Netstat zeigt sehr viele verbindungen an


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-10-2013
Ran by XYZ at 2013-10-28 16:49:15
Running from C:\Users\XYZ\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: G Data TotalProtection 2014 (Enabled - Out of date) {39B780B4-63C2-05B0-3B40-8F7A21E4F496}
AS: G Data TotalProtection 2014 (Enabled - Out of date) {82D66150-45F8-0A3E-01F0-B4085A63BE2B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: G Data Personal Firewall (Enabled) {018C0191-29AD-04E8-101F-264FDF37B3ED}

==================== Installed Programs ======================

Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Alive Video Converter (version 5.2.0.2) (x32)
AMD Accelerated Video Transcoding (Version: 13.20.100.30921)
AMD Catalyst Control Center (x32 Version: 2013.0921.356.5161)
AMD Catalyst Install Manager (Version: 8.0.915.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Fuel (Version: 2013.0921.356.5161)
AMD Media Foundation Decoders (Version: 1.0.80921.0505)
AMD Wireless Display v3.0 (Version: 1.0.0.14)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0921.356.5161)
Catalyst Control Center InstallProxy (x32 Version: 2013.0921.356.5161)
Catalyst Control Center Localization All (x32 Version: 2013.0921.356.5161)
CCC Help Chinese Standard (x32 Version: 2013.0921.0355.5161)
CCC Help Chinese Traditional (x32 Version: 2013.0921.0355.5161)
CCC Help Czech (x32 Version: 2013.0921.0355.5161)
CCC Help Danish (x32 Version: 2013.0921.0355.5161)
CCC Help Dutch (x32 Version: 2013.0921.0355.5161)
CCC Help English (x32 Version: 2013.0921.0355.5161)
CCC Help Finnish (x32 Version: 2013.0921.0355.5161)
CCC Help French (x32 Version: 2013.0921.0355.5161)
CCC Help German (x32 Version: 2013.0921.0355.5161)
CCC Help Greek (x32 Version: 2013.0921.0355.5161)
CCC Help Hungarian (x32 Version: 2013.0921.0355.5161)
CCC Help Italian (x32 Version: 2013.0921.0355.5161)
CCC Help Japanese (x32 Version: 2013.0921.0355.5161)
CCC Help Korean (x32 Version: 2013.0921.0355.5161)
CCC Help Norwegian (x32 Version: 2013.0921.0355.5161)
CCC Help Polish (x32 Version: 2013.0921.0355.5161)
CCC Help Portuguese (x32 Version: 2013.0921.0355.5161)
CCC Help Russian (x32 Version: 2013.0921.0355.5161)
CCC Help Spanish (x32 Version: 2013.0921.0355.5161)
CCC Help Swedish (x32 Version: 2013.0921.0355.5161)
CCC Help Thai (x32 Version: 2013.0921.0355.5161)
CCC Help Turkish (x32 Version: 2013.0921.0355.5161)
ccc-utility64 (Version: 2013.0921.356.5161)
Counter-Strike: Global Offensive - SDK (x32)
Fraps (remove only) (x32)
G Data TotalProtection 2014 (x32 Version: 24.0.1.5)
K-Lite Codec Pack 10.0.0 Standard (x32 Version: 10.0.0)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (x32 Version: 11.0.50727.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (x32 Version: 11.0.50727.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727)
Spybot - Search & Destroy (x32 Version: 2.2.25)
SRWare Iron Version SRWare Iron 28.0.1550.0 (x32 Version: SRWare Iron 28.0.1550.0)
Torchlight II (x32)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)

==================== Restore Points  =========================

Could not list Restore Points. Check WMI.


==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============


==================== Loaded Modules (whitelisted) =============

2013-09-21 02:58 - 2013-09-21 02:58 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData:gs5sys
AlternateDataStreams: C:\Users\All Users:gs5sys
AlternateDataStreams: C:\Users\XYZ:gs5sys
AlternateDataStreams: C:\ProgramData\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\ProgramData\Application Data:gs5sys
AlternateDataStreams: C:\Users\XYZ\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\XYZ\Cookies:gs5sys
AlternateDataStreams: C:\Users\XYZ\Lokale Einstellungen:gs5sys
AlternateDataStreams: C:\Users\XYZ\Vorlagen:gs5sys
AlternateDataStreams: C:\Users\XYZ\Desktop\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\XYZ\AppData\Local:gs5sys
AlternateDataStreams: C:\Users\XYZ\AppData\Roaming:gs5sys
AlternateDataStreams: C:\Users\XYZ\AppData\Local\Anwendungsdaten:gs5sys
AlternateDataStreams: C:\Users\XYZ\AppData\Local\Verlauf:gs5sys
AlternateDataStreams: C:\Users\XYZ\Documents\desktop.ini:gs5sys
AlternateDataStreams: C:\Users\Public\Documents\desktop.ini:gs5sys

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/28/2013 03:40:25 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 11:21:04 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 00:31:15 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/27/2013 06:15:27 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/27/2013 06:15:23 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/27/2013 01:13:27 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: GameOverlayUI.exe, Version: 1.32.20.50, Zeitstempel: 0x4f46a9bf
Name des fehlerhaften Moduls: gameoverlayui.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5254ab5e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x63806f40
ID des fehlerhaften Prozesses: 0xeb0
Startzeit der fehlerhaften Anwendung: 0xGameOverlayUI.exe0
Pfad der fehlerhaften Anwendung: GameOverlayUI.exe1
Pfad des fehlerhaften Moduls: GameOverlayUI.exe2
Berichtskennung: GameOverlayUI.exe3

Error: (10/27/2013 01:07:52 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/27/2013 01:45:37 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/27/2013 00:29:01 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: GameOverlayUI.exe, Version: 1.32.20.50, Zeitstempel: 0x4f46a9bf
Name des fehlerhaften Moduls: gameoverlayui.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5254ab5e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x62336f40
ID des fehlerhaften Prozesses: 0xa30
Startzeit der fehlerhaften Anwendung: 0xGameOverlayUI.exe0
Pfad der fehlerhaften Anwendung: GameOverlayUI.exe1
Pfad des fehlerhaften Moduls: GameOverlayUI.exe2
Berichtskennung: GameOverlayUI.exe3

Error: (10/26/2013 09:49:01 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (10/28/2013 03:40:13 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2.0" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (10/28/2013 03:40:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2.0" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (10/28/2013 03:39:46 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎28.‎10.‎2013 um 13:10:43 unerwartet heruntergefahren.

Error: (10/28/2013 11:23:51 AM) (Source: DCOM) (User: )
Description: {7D1933CB-86F6-4A98-8628-01BE94C9A575}

Error: (10/28/2013 11:21:03 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2.0" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (10/28/2013 11:20:55 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2.0" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (10/28/2013 00:29:49 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2.0" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (10/28/2013 00:29:46 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "AODDriver4.2.0" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%577

Error: (10/28/2013 00:29:32 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎28.‎10.‎2013 um 00:10:44 unerwartet heruntergefahren.

Error: (10/27/2013 08:09:10 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "DEF",  ( ! <Anderer PC im Heimnetz> !)
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{FE182F2B-F11E-4854-9DFB-9072B13E7905}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.


Microsoft Office Sessions:
=========================
Error: (10/28/2013 03:40:25 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 11:21:04 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/28/2013 00:31:15 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/27/2013 06:15:27 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\XYZ\Desktop\SoftonicDownloader_fuer_k-lite-codec-pack.exe

Error: (10/27/2013 06:15:23 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\XYZ\Desktop\SoftonicDownloader_fuer_k-lite-codec-pack.exe

Error: (10/27/2013 01:13:27 PM) (Source: Application Error)(User: )
Description: GameOverlayUI.exe1.32.20.504f46a9bfgameoverlayui.dll_unloaded0.0.0.05254ab5ec000000563806f40eb001ced30deb904599E:\Steam\GameOverlayUI.exegameoverlayui.dll2eeea18a-3f01-11e3-ae54-0025228dbe2a

Error: (10/27/2013 01:07:52 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/27/2013 01:45:37 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/27/2013 00:29:01 AM) (Source: Application Error)(User: )
Description: GameOverlayUI.exe1.32.20.504f46a9bfgameoverlayui.dll_unloaded0.0.0.05254ab5ec000000562336f40a3001ced2a321c66119E:\Steam\GameOverlayUI.exegameoverlayui.dll6458695d-3e96-11e3-ba60-0025228dbe2a

Error: (10/26/2013 09:49:01 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
  Date: 2013-10-28 15:40:13.837
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-28 15:40:13.805
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-28 15:40:00.956
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-28 15:40:00.925
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-28 11:21:03.629
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-28 11:21:03.597
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-28 11:20:55.938
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-28 11:20:55.907
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-28 00:29:49.781
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2013-10-28 00:29:49.749
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume4\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 22%
Total physical RAM: 6143.24 MB
Available physical RAM: 4765.68 MB
Total Pagefile: 12284.67 MB
Available Pagefile: 10102.22 MB
Total Virtual: 8192 MB
Available Virtual: 8191.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:97.66 GB) (Free:59.06 GB) NTFS
Drive d: (D) (Fixed) (Total:97.66 GB) (Free:91.35 GB) NTFS
Drive e: (E) (Fixed) (Total:270.35 GB) (Free:189.26 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================

Alt 29.10.2013, 09:36   #5
schrauber
/// the machine
/// TB-Ausbilder
 
Netstat zeigt sehr viele verbindungen an - Standard

Netstat zeigt sehr viele verbindungen an


Jup alles sauber.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 29.10.2013, 17:38   #6
Vox
 
Netstat zeigt sehr viele verbindungen an - Standard

Netstat zeigt sehr viele verbindungen an


Ok danke sehr.
Aber was hat es mit den ganzen mac adressen auf sich die vorher nicht da waren?

ps.: wäre dir dankbar wenn du die beiden logs wieder rausnehmen würdest (kanns nichtmehr editieren) da ich kb hab das leute sehen was ich alles aufm pc hab.

Alt 30.10.2013, 12:09   #7
schrauber
/// the machine
/// TB-Ausbilder
 
Netstat zeigt sehr viele verbindungen an - Standard

Netstat zeigt sehr viele verbindungen an


Das müsstest Du dir vorher überlegen, da Du ja die Forenregeln gelesen und bestätigt hast. ich kann keine Logs löschen.

Ausserdem steht da nix wichtiges oder privates drin

Mit den MAC Adressen bin ich leider überfragt.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Netstat zeigt sehr viele verbindungen an
127.0.0.1, adresse, aktive, bot, fehlalarm, gdata, gen, lokale, meldung, min, netstat, netstat zeigt sehr viele verbindungen, nichts, plötzlich, probleme, quarantäne, relativ, runter, scan, search, seite, steam, tcp, verbindungen, verhalten, woche


« immer wieder pop-up erst von longfintuna und jetzt von salesresourcepartners | Online Banking; sms-TAN »


Ähnliche Themen: Netstat zeigt sehr viele verbindungen an


  1. netstat - a zeigt viele Verbindungen
    Log-Analyse und Auswertung - 29.06.2014 (7)
  2. Internet langsam, netstat zeigt hunderte Verbindungen
    Plagegeister aller Art und deren Bekämpfung - 28.02.2014 (3)
  3. netstat aktive verbindungen zu youporn.c**
    Log-Analyse und Auswertung - 05.10.2012 (3)
  4. service.exe stellt ständig sehr viele Verbindungen mit dem Internet her
    Plagegeister aller Art und deren Bekämpfung - 04.09.2012 (1)
  5. Netstat = 40 verbindungen... avg sagt alles ok...
    Überwachung, Datenschutz und Spam - 18.08.2012 (1)
  6. Netstat zeit enorme anzahl an Verbindungen
    Plagegeister aller Art und deren Bekämpfung - 28.02.2012 (1)
  7. Ungewöhnlich viele Nat verbindungen
    Plagegeister aller Art und deren Bekämpfung - 24.01.2012 (5)
  8. mein Netstat zeigt komische Verbindungen ! Kann mir bitte jemand helfen ?
    Log-Analyse und Auswertung - 29.04.2011 (2)
  9. 1000er DSL und bemerkbare "Internetabzüge" - Netstat zeigt merkwürdige Verbindungen an usw.!
    Log-Analyse und Auswertung - 03.08.2010 (5)
  10. Gdata zeigt sehr viele zugriff verweigert dateien an...
    Antiviren-, Firewall- und andere Schutzprogramme - 02.03.2010 (5)
  11. Zig Verbindungen bei netstat, alle :smtp
    Log-Analyse und Auswertung - 12.01.2010 (8)
  12. Komische Verbindungen im Netstat und Probleme mit Nod32
    Plagegeister aller Art und deren Bekämpfung - 03.06.2009 (1)
  13. eigenartige verbindungen via netstat-a!
    Log-Analyse und Auswertung - 08.10.2008 (11)
  14. Eigenartige Verbindungen bei Netstat
    Plagegeister aller Art und deren Bekämpfung - 28.01.2008 (0)
  15. e-scan zeigt sehr viele Probleme an...
    Log-Analyse und Auswertung - 17.01.2006 (1)
  16. Netstat zeigt Verbindungen zu 0190-dialer.com an
    Plagegeister aller Art und deren Bekämpfung - 20.08.2005 (7)
  17. netstat Verbindungen
    Plagegeister aller Art und deren Bekämpfung - 03.11.2003 (4)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Netstat zeigt sehr viele verbindungen an - Hallo, ich hatte vor ca ner Woche eine meldung von Gdata bekommen das mein Chrome n verdächtiges verhalten aufweisen würde. Empfehlung war Quarantäne was ich allerdings nicht tat da ich - Netstat zeigt sehr viele verbindungen an...
Archiv
Du betrachtest: Netstat zeigt sehr viele verbindungen an auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55