| |
| |||||||
Log-Analyse und Auswertung: Bublik A.30.132 TrojanerWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
03.12.2013, 12:44
| #1 |
 |  Bublik A.30.132 Trojaner Hallo, vor ein paar Tagen hatte ich den Kazy Trojaner, den konnte ich Erfolgreich mit dem Programm Malwarebytes Anti-Malware entfernen. Doch seit heute meldet mein Antivir das ich den Bublik Trojaner habe. Leider konnte ihn damit nicht entfernen. Ich bitte um Hilfe wie dieser zu entfernen ist. AVSCAN Code:
ATTFilter Avira Free Antivirus
Erstellungsdatum der Reportdatei: Dienstag, 3. Dezember 2013 13:33
Das Programm läuft als uneingeschränkte Vollversion.
Online-Dienste stehen zur Verfügung.
Lizenznehmer : Avira Free Antivirus
Seriennummer : 0000149996-ADJIE-0000001
Plattform : Windows 7 Home Premium
Windowsversion : (Service Pack 1) [6.1.7601]
Boot Modus : Normal gebootet
Benutzername : Waldi
Computername : WALDI-PC
Versionsinformationen:
BUILD.DAT : 14.0.1.749 55392 Bytes 22.11.2013 12:01:00
AVSCAN.EXE : 14.0.1.645 1030712 Bytes 31.10.2013 18:25:19
AVSCANRC.DLL : 14.0.1.641 62008 Bytes 31.10.2013 18:25:19
LUKE.DLL : 14.0.1.641 65080 Bytes 31.10.2013 18:25:40
AVSCPLR.DLL : 14.0.1.641 124472 Bytes 31.10.2013 18:25:19
AVREG.DLL : 14.0.1.641 250424 Bytes 31.10.2013 18:25:19
avlode.dll : 14.0.1.681 517176 Bytes 31.10.2013 18:25:19
avlode.rdf : 13.0.1.48 27867 Bytes 13.11.2013 18:02:18
VBASE000.VDF : 7.11.70.0 66736640 Bytes 04.04.2013 18:25:41
VBASE001.VDF : 7.11.74.226 2201600 Bytes 30.04.2013 18:25:41
VBASE002.VDF : 7.11.80.60 2751488 Bytes 28.05.2013 18:25:41
VBASE003.VDF : 7.11.85.214 2162688 Bytes 21.06.2013 18:25:41
VBASE004.VDF : 7.11.91.176 3903488 Bytes 23.07.2013 18:25:41
VBASE005.VDF : 7.11.98.186 6822912 Bytes 29.08.2013 18:25:41
VBASE006.VDF : 7.11.103.230 2293248 Bytes 24.09.2013 18:25:41
VBASE007.VDF : 7.11.116.38 5485568 Bytes 28.11.2013 04:42:31
VBASE008.VDF : 7.11.116.39 2048 Bytes 28.11.2013 04:42:32
VBASE009.VDF : 7.11.116.40 2048 Bytes 28.11.2013 04:42:33
VBASE010.VDF : 7.11.116.41 2048 Bytes 28.11.2013 04:42:34
VBASE011.VDF : 7.11.116.42 2048 Bytes 28.11.2013 04:42:35
VBASE012.VDF : 7.11.116.43 2048 Bytes 28.11.2013 04:42:36
VBASE013.VDF : 7.11.116.44 2048 Bytes 28.11.2013 04:42:36
VBASE014.VDF : 7.11.116.195 149504 Bytes 30.11.2013 11:17:50
VBASE015.VDF : 7.11.116.215 2048 Bytes 30.11.2013 11:18:00
VBASE016.VDF : 7.11.116.235 2048 Bytes 30.11.2013 11:18:03
VBASE017.VDF : 7.11.116.236 2048 Bytes 30.11.2013 11:18:05
VBASE018.VDF : 7.11.116.237 2048 Bytes 30.11.2013 11:18:06
VBASE019.VDF : 7.11.116.238 2048 Bytes 30.11.2013 11:18:08
VBASE020.VDF : 7.11.116.239 2048 Bytes 30.11.2013 11:18:12
VBASE021.VDF : 7.11.116.240 2048 Bytes 30.11.2013 11:18:14
VBASE022.VDF : 7.11.116.241 2048 Bytes 30.11.2013 11:18:16
VBASE023.VDF : 7.11.116.242 2048 Bytes 30.11.2013 11:18:17
VBASE024.VDF : 7.11.116.243 2048 Bytes 30.11.2013 11:18:19
VBASE025.VDF : 7.11.116.244 2048 Bytes 30.11.2013 11:18:21
VBASE026.VDF : 7.11.116.245 2048 Bytes 30.11.2013 11:18:22
VBASE027.VDF : 7.11.116.246 2048 Bytes 30.11.2013 11:18:24
VBASE028.VDF : 7.11.116.247 2048 Bytes 30.11.2013 11:18:26
VBASE029.VDF : 7.11.116.248 2048 Bytes 30.11.2013 11:18:27
VBASE030.VDF : 7.11.116.249 2048 Bytes 30.11.2013 11:18:28
VBASE031.VDF : 7.11.117.86 280576 Bytes 03.12.2013 03:48:54
Engineversion : 8.2.12.158
AEVDF.DLL : 8.1.3.4 102774 Bytes 31.10.2013 18:25:18
AESCRIPT.DLL : 8.1.4.172 520574 Bytes 03.12.2013 04:00:48
AESCN.DLL : 8.1.10.4 131446 Bytes 31.10.2013 18:25:18
AESBX.DLL : 8.2.16.26 1245560 Bytes 31.10.2013 18:25:18
AERDL.DLL : 8.2.0.138 704888 Bytes 03.12.2013 04:00:08
AEPACK.DLL : 8.3.3.6 762232 Bytes 03.12.2013 03:59:07
AEOFFICE.DLL : 8.1.2.76 205181 Bytes 31.10.2013 18:25:18
AEHEUR.DLL : 8.1.4.790 6328698 Bytes 03.12.2013 03:57:22
AEHELP.DLL : 8.1.27.10 266618 Bytes 23.11.2013 21:59:09
AEGEN.DLL : 8.1.7.20 446839 Bytes 13.11.2013 18:02:12
AEEXP.DLL : 8.4.1.114 381304 Bytes 23.11.2013 22:02:11
AEEMU.DLL : 8.1.3.2 393587 Bytes 31.10.2013 18:25:18
AECORE.DLL : 8.1.32.2 201081 Bytes 13.11.2013 18:02:12
AEBB.DLL : 8.1.1.4 53619 Bytes 31.10.2013 18:25:18
AVWINLL.DLL : 14.0.1.641 23608 Bytes 31.10.2013 18:25:19
AVPREF.DLL : 14.0.1.641 48696 Bytes 31.10.2013 18:25:19
AVREP.DLL : 14.0.1.641 175672 Bytes 31.10.2013 18:25:19
AVARKT.DLL : 14.0.1.641 257080 Bytes 31.10.2013 18:25:18
AVEVTLOG.DLL : 14.0.1.641 165944 Bytes 31.10.2013 18:25:18
SQLITE3.DLL : 3.7.0.1 394808 Bytes 31.10.2013 18:25:40
AVSMTP.DLL : 14.0.1.641 60472 Bytes 31.10.2013 18:25:19
NETNT.DLL : 14.0.1.641 13368 Bytes 31.10.2013 18:25:40
RCIMAGE.DLL : 14.0.1.641 4786744 Bytes 31.10.2013 18:25:40
RCTEXT.DLL : 14.0.1.641 67128 Bytes 31.10.2013 18:25:40
Konfiguration für den aktuellen Suchlauf:
Job Name..............................: Lokale Festplatten
Konfigurationsdatei...................: C:\Program Files (x86)\Avira\AntiVir Desktop\alldiscs.avp
Protokollierung.......................: standard
Primäre Aktion........................: Interaktiv
Sekundäre Aktion......................: Ignorieren
Durchsuche Masterbootsektoren.........: ein
Durchsuche Bootsektoren...............: ein
Bootsektoren..........................: C:, E:,
Durchsuche aktive Programme...........: ein
Durchsuche Registrierung..............: ein
Suche nach Rootkits...................: aus
Integritätsprüfung von Systemdateien..: aus
Prüfe alle Dateien....................: Intelligente Dateiauswahl
Durchsuche Archive....................: ein
Rekursionstiefe einschränken..........: 20
Archiv Smart Extensions...............: ein
Makrovirenheuristik...................: ein
Dateiheuristik........................: erweitert
Abweichende Gefahrenkategorien........: +APPL,+GAME,+JOKE,+PCK,+SPR,
Beginn des Suchlaufs: Dienstag, 3. Dezember 2013 13:33
Der Suchlauf über die Bootsektoren wird begonnen:
Bootsektor 'HDD0(C:)'
[INFO] Es wurde kein Virus gefunden!
Bootsektor 'HDD1(E:)'
[INFO] Es wurde kein Virus gefunden!
Der Registrierungseintrag <HKEY_USERS\S-1-5-21-2950695333-3433012553-3668464571-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\shell> konnte nicht entfernt werden.
Der Suchlauf über gestartete Prozesse wird begonnen:
Durchsuche Prozess 'svchost.exe' - '52' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'atiesrxx.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '73' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '100' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '62' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '156' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '67' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskeng.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'spoolsv.exe' - '80' Modul(e) wurden durchsucht
Durchsuche Prozess 'sched.exe' - '56' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '58' Modul(e) wurden durchsucht
Durchsuche Prozess 'atieclxx.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'armsvc.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'avguard.exe' - '104' Modul(e) wurden durchsucht
Durchsuche Prozess 'apnmcp.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'adminservice.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'RIconMan.exe' - '36' Modul(e) wurden durchsucht
Durchsuche Prozess 'HeciServer.exe' - '27' Modul(e) wurden durchsucht
Durchsuche Prozess 'mbamscheduler.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'mbamservice.exe' - '46' Modul(e) wurden durchsucht
Durchsuche Prozess 'PnkBstrA.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'PowerBiosServer.exe' - '55' Modul(e) wurden durchsucht
Durchsuche Prozess 'mbamgui.exe' - '47' Modul(e) wurden durchsucht
Durchsuche Prozess 'BFNService.exe' - '55' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'Ath_CoexAgent.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'taskhost.exe' - '57' Modul(e) wurden durchsucht
Durchsuche Prozess 'Dwm.exe' - '38' Modul(e) wurden durchsucht
Durchsuche Prozess 'viyoexh.exe' - '37' Modul(e) wurden durchsucht
Modul ist infiziert -> <C:\ProgramData\mdh\viyoexh.exe>
[FUND] Ist das Trojanische Pferd TR/Bublik.A.30.132
[HINWEIS] Prozess 'viyoexh.exe' wurde beendet
[HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '5cabceef.qua' verschoben!
[WARNUNG] Der Registrierungseintrag <HKEY_USERS\S-1-5-21-2950695333-3433012553-3668464571-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\shell> konnte nicht repariert werden.
[HINWEIS] Für die abschliessende Reparatur wird ein Neustart des Computers eingeleitet.
Durchsuche Prozess 'splwow64.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'BtvStack.exe' - '117' Modul(e) wurden durchsucht
Durchsuche Prozess 'igfxtray.exe' - '30' Modul(e) wurden durchsucht
Durchsuche Prozess 'hkcmd.exe' - '29' Modul(e) wurden durchsucht
Durchsuche Prozess 'igfxpers.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'igfxsrvc.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'avshadow.exe' - '20' Modul(e) wurden durchsucht
Durchsuche Prozess 'avwebg7.exe' - '74' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchIndexer.exe' - '48' Modul(e) wurden durchsucht
Durchsuche Prozess 'WUDFHost.exe' - '30' Modul(e) wurden durchsucht
Durchsuche Prozess 'TrustedInstaller.exe' - '49' Modul(e) wurden durchsucht
Durchsuche Prozess 'FspUip.exe' - '63' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'RAVCpl64.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'Explorer.EXE' - '178' Modul(e) wurden durchsucht
Durchsuche Prozess 'Hotkey.exe' - '91' Modul(e) wurden durchsucht
Durchsuche Prozess 'KillerNetManager.exe' - '74' Modul(e) wurden durchsucht
Durchsuche Prozess 'wmiprvse.exe' - '60' Modul(e) wurden durchsucht
Durchsuche Prozess 'wmiprvse.exe' - '40' Modul(e) wurden durchsucht
Durchsuche Prozess 'wmiprvse.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '50' Modul(e) wurden durchsucht
Durchsuche Prozess 'jhi_service.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'LMS.exe' - '63' Modul(e) wurden durchsucht
Durchsuche Prozess 'sppsvc.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '62' Modul(e) wurden durchsucht
Durchsuche Prozess 'wmpnetwk.exe' - '118' Modul(e) wurden durchsucht
Durchsuche Prozess 'avcenter.exe' - '129' Modul(e) wurden durchsucht
Durchsuche Prozess 'avscan.exe' - '109' Modul(e) wurden durchsucht
Durchsuche Prozess 'smss.exe' - '2' Modul(e) wurden durchsucht
Durchsuche Prozess 'csrss.exe' - '16' Modul(e) wurden durchsucht
Durchsuche Prozess 'wininit.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'csrss.exe' - '16' Modul(e) wurden durchsucht
Durchsuche Prozess 'services.exe' - '38' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsass.exe' - '61' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsm.exe' - '16' Modul(e) wurden durchsucht
Durchsuche Prozess 'winlogon.exe' - '30' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '34' Modul(e) wurden durchsucht
Der Registrierungseintrag <HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\tulnqd> konnte nicht entfernt werden.
Der Registrierungseintrag <HKEY_USERS\S-1-5-21-2950695333-3433012553-3668464571-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\tulnqd> wurde erfolgreich entfernt.
Der Suchlauf auf Verweise zu ausführbaren Dateien (Registry) wird begonnen:
C:\ProgramData\kjqvm\ppgodqt.exe
[FUND] Ist das Trojanische Pferd TR/Bublik.A.30.132
[HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '442ee087.qua' verschoben!
[WARNUNG] Der Registrierungseintrag <HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\tulnqd> konnte nicht repariert werden.
[HINWEIS] Für die abschliessende Reparatur wird ein Neustart des Computers eingeleitet.
[HINWEIS] Der Registrierungseintrag <HKEY_USERS\S-1-5-21-2950695333-3433012553-3668464571-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\tulnqd> wurde erfolgreich repariert.
C:\ProgramData\mdh\viyoexh.exe
[FUND] Ist das Trojanische Pferd TR/Bublik.A.30.132
[HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '1663ba68.qua' verschoben!
Der Suchlauf über die ausgewählten Dateien wird begonnen:
Beginne mit der Suche in 'C:\'
C:\$Recycle.Bin\S-1-5-21-2950695333-3433012553-3668464571-1000\$RLSU9HN.exe
[FUND] Ist das Trojanische Pferd TR/Bublik.A.30.132
C:\ProgramData\kjqvm\ppgodqt.exe
[FUND] Ist das Trojanische Pferd TR/Bublik.A.30.132
C:\ProgramData\mdh\viyoexh.exe
[FUND] Ist das Trojanische Pferd TR/Bublik.A.30.132
[0] Archivtyp: ZIP
--> BiometricDevice/usb_vid_147e&pid_1002/WinUsbCoinstaller2.dll
[1] Archivtyp: RSRC
--> C:\Users\Waldi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U3GWJYMN\Firefox_Setup_25.0[1].exe
[2] Archivtyp: Runtime Packed
--> Object
[WARNUNG] Die Datei konnte nicht gelesen werden!
C:\Users\Waldi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\U3GWJYMN\Firefox_Setup_25.0[1].exe
[WARNUNG] Die Datei konnte nicht gelesen werden!
Beginne mit der Suche in 'E:\' <Volume>
Beginne mit der Desinfektion:
C:\ProgramData\mdh\viyoexh.exe
[FUND] Ist das Trojanische Pferd TR/Bublik.A.30.132
[HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '7054ea2b.qua' verschoben!
C:\ProgramData\kjqvm\ppgodqt.exe
[FUND] Ist das Trojanische Pferd TR/Bublik.A.30.132
[HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '35c2c70c.qua' verschoben!
C:\$Recycle.Bin\S-1-5-21-2950695333-3433012553-3668464571-1000\$RLSU9HN.exe
[FUND] Ist das Trojanische Pferd TR/Bublik.A.30.132
[HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '4b34f54f.qua' verschoben!
|
|
03.12.2013, 13:06
| #2 |
| /// the machine /// TB-Ausbilder    | Bublik A.30.132 Trojaner Hi,
__________________Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
03.12.2013, 15:58
| #3 |
| | Bublik A.30.132 Trojaner Hallo, hat in die erste mail nicht reingepasst.
__________________FRST erster Teil Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-12-2013
Ran by Waldi (administrator) on WALDI-PC on 03-12-2013 18:32:45
Running from C:\Users\Waldi\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\ProgramData\mdh\viyoexh.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Sentelic Corporation) C:\Program Files\FSP\FspUip.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files (x86)\Hotkey\Hotkey.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ServiceLocator.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Toolbar.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [fspuip] - C:\Program Files\FSP\FspUip.exe [6263120 2013-04-02] (Sentelic Corporation)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13449288 2013-03-27] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [132736 2013-03-27] ( (Atheros Communications))
HKCU\...\RunOnce: [tulnqd] - C:\ProgramData\kjqvm\ppgodqt.exe [319488 2013-12-03] ()
HKCU\...\Winlogon: [Shell] C:\ProgramData\mdh\viyoexh.exe,explorer.exe <==== ATTENTION
MountPoints2: {da100796-4d9b-11e3-8928-3c77e69cf65e} - F:\HTC_Sync_Manager_PC.exe
MountPoints2: {ef4f3e06-4c96-11e3-a2ae-3c77e69cf65e} - G:\Autorun.exe
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-01] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1673680 2013-10-24] (APN)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.akersolutions.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3B4E570995E0CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)
DPF: HKLM-x32 {B479199A-1242-4E3C-AD81-7F0DF801B4AE} hxxp://download.microsoft.com/download/C/9/C/C9C3D86D-84AC-4AF0-8584-842756A66467/MicrosoftDownloadManager.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 16 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 16 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Tcpip\Parameters: [DhcpNameServer] 208.67.222.222 208.67.220.220
FireFox:
========
FF ProfilePath: C:\Users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default
FF user.js: detected! => C:\Users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default\user.js
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.1 - E:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/DownloadManager,version=1.1 - C:\Windows\ ()
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: toolbar_AVIRA-V7 - C:\Users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default\Extensions\toolbar_AVIRA-V7@apn.ask.com.xpi
FF Extension: Adblock Plus - C:\Users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1164360 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-24] (APN LLC.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227968 2013-03-27] (Qualcomm Atheros Commnucations)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-02-23] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-14] ()
R2 PowerBiosServer; C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [46592 2013-05-30] ()
R2 Qualcomm Atheros Killer Service; C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [503296 2013-04-30] ()
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-03-27] (Atheros)
==================== Drivers (Whitelisted) ====================
R3 Ak27x64; C:\Windows\System32\DRIVERS\Ak27x64.sys [3921104 2013-04-30] (Qualcomm Atheros, Inc.)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [37472 2013-02-14] (Advanced Micro Devices, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [107416 2013-12-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-11-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [83160 2013-11-01] (Avira Operations GmbH & Co. KG)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [66928 2013-04-30] (Qualcomm Atheros, Inc.)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [77464 2013-03-27] (Qualcomm Atheros)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-14] (Disc Soft Ltd)
R3 fspad_win764; C:\Windows\System32\DRIVERS\fspad_win764.sys [155472 2013-04-02] (Sentelic Corporation)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31136 2013-11-14] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
U5 MBAMSwissArmy; C:\Windows\System32\Drivers\MBAMSwissArmy.sys [116440 2013-12-03] (Malwarebytes Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-03 18:32 - 2013-12-03 18:33 - 00014516 _____ C:\Users\Waldi\Desktop\FRST.txt
2013-12-03 18:32 - 2013-12-03 18:32 - 00000000 ____D C:\FRST
2013-12-03 18:27 - 2013-12-03 18:28 - 01959434 _____ (Farbar) C:\Users\Waldi\Desktop\FRST64.exe
2013-12-03 18:25 - 2013-12-03 18:25 - 00000542 _____ C:\Users\Waldi\Desktop\defogger_disable.log
2013-12-03 18:25 - 2013-12-03 18:25 - 00000168 _____ C:\Users\Waldi\defogger_reenable
2013-12-03 18:24 - 2013-12-03 18:24 - 00050477 _____ C:\Users\Waldi\Desktop\Defogger.exe
2013-12-03 16:56 - 2013-12-03 16:59 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-12-03 16:56 - 2013-12-03 16:56 - 00116440 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2013-12-03 16:46 - 2013-12-03 16:59 - 00000000 ____D C:\Users\Waldi\Desktop\mbar
2013-12-03 16:46 - 2013-12-03 16:46 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-12-03 16:06 - 2013-12-03 16:14 - 12576792 _____ (Malwarebytes Corp.) C:\Users\Waldi\Downloads\mbar-1.07.0.1007.exe
2013-12-03 15:57 - 2013-12-03 17:41 - 62064667 _____ (Symantec Corporation) C:\Users\Waldi\Downloads\NIS_21.1.0.18_SYMTB_TMD_MRFTT_820_10131.exe
2013-12-03 15:20 - 2013-12-03 17:29 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 _____ C:\autoexec.bat
2013-12-03 14:17 - 2013-12-03 14:18 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Waldi\Downloads\SpyHunter-Installer.exe
2013-12-03 13:59 - 2013-12-03 13:59 - 00028916 _____ C:\Users\Waldi\Documents\AVSCAN-20131203-133348-272CD52E.LOG
2013-12-03 11:36 - 2013-12-03 12:30 - 00000000 ____D C:\ProgramData\mryu
2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tkipd
2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tbrjps
2013-12-01 20:04 - 2013-12-01 20:04 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\dvdcss
2013-12-01 12:05 - 2013-12-01 12:05 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Malwarebytes
2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-01 12:05 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-01 11:56 - 2013-12-01 12:04 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Waldi\Downloads\mbam-setup.exe
2013-12-01 10:54 - 2013-12-03 14:07 - 00000000 ____D C:\ProgramData\mdh
2013-12-01 10:37 - 2013-12-03 18:32 - 00000000 ____D C:\ProgramData\kjqvm
2013-12-01 10:37 - 2013-12-03 14:08 - 00000000 ____D C:\ProgramData\upcr
2013-12-01 10:37 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\fkmfb
2013-11-29 16:41 - 2013-11-29 16:41 - 00001406 _____ C:\Users\Waldi\Desktop\FalloutLauncher - Verknüpfung.lnk
2013-11-29 12:53 - 2013-12-01 12:16 - 00000000 ____D C:\ProgramData\tvidqe
2013-11-29 12:26 - 2013-12-01 12:16 - 00000000 ____D C:\ProgramData\udoec
2013-11-29 12:26 - 2013-12-01 11:24 - 00000000 ____D C:\ProgramData\rwxuvcn
2013-11-29 12:26 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\jsxck
2013-11-29 12:25 - 2013-11-29 12:26 - 00341411 _____ C:\Users\Waldi\Downloads\Stadt Heinsberg.jpeg
2013-11-28 19:47 - 2013-11-28 19:47 - 00000000 ____D C:\ProgramData\dcdpy
2013-11-27 10:42 - 2013-11-30 13:28 - 00000000 ____D C:\ProgramData\qswcb
2013-11-27 10:26 - 2013-11-27 10:26 - 00000660 _____ C:\Users\Waldi\Desktop\LingoDict.lnk
2013-11-27 10:26 - 2013-11-27 10:26 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Lingo4u
2013-11-27 10:05 - 2013-11-30 13:28 - 00000000 ____D C:\ProgramData\pgt
2013-11-27 10:05 - 2013-11-30 13:25 - 00000000 ____D C:\ProgramData\xcf
2013-11-27 10:05 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\gpe
2013-11-26 14:35 - 2013-11-30 13:50 - 00000000 ____D C:\Users\Waldi\AppData\Local\Deployment
2013-11-26 14:35 - 2013-11-26 14:35 - 00000000 ____D C:\Users\Waldi\AppData\Local\Apps\2.0
2013-11-26 14:22 - 2013-11-27 11:17 - 00000000 ____D C:\ProgramData\oimr
2013-11-26 13:05 - 2013-11-27 10:42 - 00000000 ____D C:\ProgramData\unmf
2013-11-26 13:05 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\wiltobo
2013-11-26 13:05 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\vlyvk
2013-11-25 10:46 - 2013-12-03 14:10 - 00000000 ____D C:\ProgramData\qmbhac
2013-11-25 10:46 - 2013-11-27 11:17 - 00000000 ____D C:\ProgramData\ifkeojg
2013-11-25 10:46 - 2013-11-27 11:17 - 00000000 ____D C:\ProgramData\fmqb
2013-11-25 10:46 - 2013-11-27 10:03 - 00000000 ____D C:\ProgramData\dkarde
2013-11-25 10:46 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\tyak
2013-11-25 10:40 - 2013-12-03 14:08 - 00000000 ____D C:\ProgramData\dcdp
2013-11-24 08:09 - 2013-11-24 08:38 - 00000000 ____D C:\Users\Waldi\Desktop\Tungsten aktuell
2013-11-22 15:01 - 2013-11-22 15:01 - 00001059 _____ C:\Users\Waldi\Desktop\Fallout 2.lnk
2013-11-22 13:45 - 2013-11-22 13:45 - 00000000 ____D C:\Users\Waldi\AppData\Local\AskPartnerNetwork
2013-11-20 20:01 - 2013-11-29 12:57 - 00000000 ____D C:\Users\Waldi\AppData\Local\Fallout3
2013-11-20 20:01 - 2013-11-20 20:01 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2013-11-20 20:01 - 2013-11-20 20:01 - 00000000 ____D C:\Users\Waldi\Documents\My Games
2013-11-20 19:07 - 2013-11-20 19:07 - 00003128 _____ C:\Windows\System32\Tasks\{7A853EE4-76B1-434D-8D1F-22367A683333}
2013-11-20 18:48 - 2013-11-20 18:48 - 00053248 _____ (Interplay Productions) C:\Windows\ipuninst.exe
2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Black Isle
2013-11-20 18:44 - 2013-11-20 18:44 - 00000000 ____D C:\Program Files\BlackIsle
2013-11-20 18:35 - 2013-11-20 18:35 - 00003012 _____ C:\Windows\System32\Tasks\{883B52E7-ED4A-487D-867F-AA9C677A1C63}
2013-11-20 18:31 - 2013-11-20 18:42 - 00000000 ____D C:\Users\Waldi\Documents\Command and Conquer Generals Data
2013-11-20 18:29 - 2013-11-20 18:29 - 00000620 _____ C:\Windows\eReg.dat
2013-11-20 18:13 - 2013-11-20 18:13 - 00000793 _____ C:\Users\Public\Desktop\Command & Conquer(TM) Generäle.lnk
2013-11-20 17:59 - 2013-11-20 17:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\Rockstar Games
2013-11-20 17:57 - 2013-11-20 17:57 - 00000000 __RHD C:\Users\Waldi\AppData\Roaming\SecuROM
2013-11-20 17:49 - 2013-11-20 17:49 - 00000000 __SHD C:\ProgramData\SecuROM
2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Program Files\WinRAR
2013-11-20 04:25 - 2013-11-28 12:39 - 00000000 ____D C:\Users\Waldi\AppData\Local\dxhr
2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\SKIDROW
2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\28050
2013-11-20 03:20 - 2013-11-20 03:20 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-11-20 01:53 - 2013-11-20 01:53 - 00212708 _____ C:\Users\Waldi\Downloads\Mappe2.xlsx
2013-11-20 01:48 - 2013-09-04 20:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-11-17 06:00 - 2013-12-02 21:47 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\vlc
2013-11-17 05:58 - 2013-11-17 05:58 - 00000749 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-17 05:50 - 2013-11-17 05:50 - 00000219 _____ C:\Users\Waldi\Desktop\Counter-Strike Global Offensive.url
2013-11-17 05:50 - 2013-11-17 05:50 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-11-17 05:45 - 2013-11-17 05:45 - 00000700 _____ C:\Users\Public\Desktop\Steam.lnk
2013-11-17 04:51 - 2013-11-17 04:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2013-11-17 04:51 - 2013-04-26 17:24 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll
2013-11-16 21:19 - 2013-11-20 18:51 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\WinRAR
2013-11-16 21:19 - 2013-11-16 21:19 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-16 21:19 - 2013-11-16 21:19 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-16 21:19 - 2013-11-16 21:19 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-16 21:19 - 2013-11-16 21:19 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-16 21:19 - 2013-11-16 21:19 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-16 21:19 - 2013-11-16 21:19 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-16 21:19 - 2013-11-16 21:19 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-16 21:19 - 2013-11-16 21:19 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-16 21:17 - 2013-11-16 21:21 - 00009353 _____ C:\Windows\IE10_main.log
2013-11-16 21:17 - 2013-04-17 15:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-11-16 21:17 - 2013-04-17 14:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-11-16 21:17 - 2012-07-07 04:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-11-16 21:17 - 2012-02-11 14:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-11-16 21:17 - 2012-02-11 14:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2013-11-16 21:17 - 2011-03-11 14:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2013-11-16 21:17 - 2011-03-11 14:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-11-16 21:17 - 2011-03-11 14:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2013-11-16 21:17 - 2011-03-11 13:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-11-16 21:17 - 2011-03-11 13:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2013-11-16 21:17 - 2011-03-11 12:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-11-16 21:17 - 2011-02-25 14:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-11-16 21:17 - 2011-02-25 13:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-11-16 21:00 - 2013-12-03 17:27 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-11-16 21:00 - 2013-11-26 14:35 - 00000000 ____D C:\Users\Waldi\AppData\Local\VisualBeeClient
2013-11-16 21:00 - 2013-11-16 21:00 - 00000000 ____D C:\Users\Waldi\AppData\Local\VisualBeeExe
2013-11-16 21:00 - 2013-11-16 21:00 - 00000000 ____D C:\ProgramData\VisualBee
2013-11-16 20:59 - 2013-11-16 20:59 - 00001244 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-11-16 20:59 - 2013-11-16 20:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\emaze
2013-11-16 02:11 - 2013-11-16 02:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-16 01:58 - 2011-04-28 11:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-11-15 09:56 - 2013-11-15 09:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-11-15 04:54 - 2013-10-02 10:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-11-15 04:54 - 2013-10-02 10:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-11-15 04:54 - 2013-10-02 10:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-11-15 04:54 - 2013-10-02 09:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-11-15 04:54 - 2013-10-02 09:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-11-15 04:54 - 2013-10-02 09:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-11-15 04:54 - 2013-10-02 09:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-11-15 04:54 - 2013-10-02 08:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2013-11-15 04:54 - 2013-10-02 08:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-11-15 04:54 - 2013-10-02 08:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-11-15 04:54 - 2013-10-02 08:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-11-15 04:54 - 2013-10-02 08:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-11-15 04:54 - 2013-10-02 07:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-11-15 04:54 - 2013-10-02 07:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-11-15 04:54 - 2013-10-02 07:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2013-11-15 04:54 - 2013-10-02 06:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-11-15 04:54 - 2013-10-02 04:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-11-15 04:54 - 2013-10-02 04:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-11-15 04:32 - 2012-08-23 22:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-11-15 04:32 - 2012-08-23 22:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-11-15 04:32 - 2012-08-23 22:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-11-15 04:32 - 2012-08-23 21:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-11-15 04:32 - 2012-08-23 19:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-11-15 04:32 - 2012-08-23 18:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-11-15 04:32 - 2012-08-23 17:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-11-15 04:21 - 2010-02-23 16:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-11-15 03:58 - 2013-11-15 04:19 - 00004824 _____ C:\Windows\IE9_main.log
2013-11-15 03:33 - 2012-07-26 11:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-11-15 03:33 - 2012-07-26 11:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-11-15 03:33 - 2012-07-26 11:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-11-15 03:33 - 2012-07-26 11:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-11-15 03:33 - 2012-07-26 11:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-11-15 03:33 - 2012-07-26 10:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-11-15 03:33 - 2012-07-26 10:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-11-15 03:33 - 2012-06-02 22:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-11-15 03:27 - 2013-11-15 03:27 - 00000000 ____D C:\Windows\system32\MRT
2013-11-15 03:27 - 2013-11-07 23:00 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-15 03:15 - 2013-01-14 05:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:22 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-11-15 03:15 - 2013-01-14 04:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-11-15 03:15 - 2013-01-14 04:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-11-15 03:15 - 2013-01-14 04:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-11-15 03:15 - 2013-01-14 03:59 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-11-15 03:15 - 2013-01-14 03:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-11-15 03:15 - 2013-01-14 03:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-11-15 03:15 - 2013-01-14 03:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-11-15 03:15 - 2013-01-14 03:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-11-15 03:15 - 2013-01-14 03:51 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-11-15 03:15 - 2013-01-14 03:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-11-15 03:15 - 2013-01-14 03:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-11-15 03:15 - 2013-01-14 03:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-11-15 03:15 - 2013-01-14 03:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-11-15 03:15 - 2013-01-14 03:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-11-15 03:15 - 2013-01-14 03:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-11-15 03:15 - 2013-01-14 03:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-11-15 03:15 - 2013-01-14 03:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-11-15 03:15 - 2013-01-14 03:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-11-15 03:15 - 2013-01-14 03:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-11-15 03:15 - 2013-01-14 03:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-11-15 03:15 - 2013-01-14 03:10 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-11-15 03:15 - 2013-01-14 03:02 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-11-15 03:15 - 2013-01-14 02:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-11-15 03:15 - 2013-01-14 02:32 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-11-15 03:15 - 2013-01-14 02:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-11-15 03:15 - 2013-01-14 01:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-11-15 03:15 - 2013-01-14 01:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-11-15 03:15 - 2013-01-04 14:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-11-15 03:15 - 2013-01-04 14:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-11-15 03:10 - 2012-03-01 14:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-11-15 03:10 - 2012-03-01 14:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-11-15 03:10 - 2012-03-01 14:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-11-15 03:10 - 2012-03-01 13:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-11-15 03:10 - 2012-03-01 13:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-11-15 00:38 - 2013-02-27 14:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-11-15 00:38 - 2013-02-27 13:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-11-15 00:32 - 2013-10-04 10:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-15 00:32 - 2013-10-04 10:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-15 00:32 - 2013-10-04 10:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-15 00:32 - 2013-10-04 09:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-15 00:32 - 2013-10-04 09:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-15 00:32 - 2013-10-04 09:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-15 00:31 - 2013-08-02 10:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-11-15 00:31 - 2013-08-02 10:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-11-15 00:31 - 2013-08-02 10:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-11-15 00:31 - 2013-08-02 09:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-11-15 00:31 - 2013-08-02 08:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-11-15 00:31 - 2013-08-02 08:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 08:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 08:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 08:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-11-15 00:31 - 2013-07-26 10:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-11-15 00:31 - 2013-07-26 10:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-11-15 00:31 - 2013-07-26 09:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-11-15 00:31 - 2013-07-26 09:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-11-15 00:30 - 2013-09-25 10:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2013-11-15 00:30 - 2013-09-25 09:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2013-11-15 00:30 - 2012-11-30 13:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-11-15 00:30 - 2012-11-30 13:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-11-15 00:30 - 2012-11-30 13:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-11-15 00:30 - 2012-11-30 07:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2013-11-15 00:30 - 2012-11-30 07:15 - 00420064 _____ C:\Windows\system32\locale.nls
2013-11-15 00:28 - 2012-10-10 02:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-11-15 00:28 - 2012-10-10 02:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-11-15 00:28 - 2012-10-10 01:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-11-15 00:28 - 2012-10-10 01:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-11-15 00:28 - 2012-10-04 01:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-11-15 00:28 - 2012-10-04 00:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-11-15 00:28 - 2012-10-04 00:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-11-15 00:28 - 2012-10-04 00:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-11-15 00:28 - 2012-10-04 00:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-11-15 00:28 - 2012-01-13 15:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-11-15 00:25 - 2013-08-29 10:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-11-15 00:25 - 2013-08-29 10:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-11-15 00:25 - 2013-08-29 10:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-11-15 00:25 - 2013-08-29 10:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-11-15 00:25 - 2013-08-29 10:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-11-15 00:25 - 2013-08-29 09:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-11-15 00:25 - 2013-08-29 09:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-11-15 00:25 - 2013-08-29 09:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-11-15 00:25 - 2013-08-29 09:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-11-15 00:25 - 2013-08-29 09:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-11-15 00:25 - 2013-08-29 09:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-11-15 00:25 - 2013-08-29 08:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-11-15 00:25 - 2013-08-29 08:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-11-15 00:25 - 2013-08-29 08:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-11-15 00:25 - 2013-08-29 08:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-11-15 00:25 - 2013-04-26 07:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-11-15 00:25 - 2013-04-01 06:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-11-15 00:25 - 2012-01-04 18:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2013-11-15 00:25 - 2012-01-04 16:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2013-11-15 00:23 - 2012-08-22 05:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-11-15 00:20 - 2013-07-09 13:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-11-15 00:20 - 2013-07-09 12:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-11-15 00:20 - 2013-05-13 13:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-11-15 00:20 - 2013-05-13 11:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-11-15 00:20 - 2013-05-13 11:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-11-15 00:20 - 2013-05-13 11:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-11-15 00:17 - 2013-01-03 14:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-11-15 00:17 - 2012-08-23 02:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-11-15 00:17 - 2012-07-05 06:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-11-15 00:17 - 2012-07-05 06:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-11-15 00:17 - 2012-07-05 06:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-11-15 00:17 - 2012-07-05 05:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-11-15 00:17 - 2012-07-05 05:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-11-15 00:16 - 2012-12-07 21:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2013-11-15 00:16 - 2012-12-07 21:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2013-11-15 00:16 - 2012-12-07 20:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2013-11-15 00:16 - 2012-12-07 20:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2013-11-15 00:16 - 2012-12-07 19:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2013-11-15 00:16 - 2012-11-01 13:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-11-15 00:16 - 2012-11-01 13:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-11-15 00:16 - 2012-11-01 12:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-11-15 00:16 - 2012-11-01 12:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-11-15 00:16 - 2010-06-26 11:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-11-15 00:16 - 2010-06-26 11:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-11-15 00:15 - 2012-08-23 02:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-11-15 00:15 - 2012-07-05 04:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-11-15 00:14 - 2013-09-08 10:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-11-15 00:14 - 2013-09-08 10:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-11-15 00:14 - 2013-09-08 10:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-11-15 00:13 - 2013-08-28 09:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-11-15 00:13 - 2013-06-26 06:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-11-15 00:13 - 2012-11-29 06:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-11-15 00:13 - 2012-11-29 06:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-11-15 00:13 - 2012-11-29 06:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-11-15 00:13 - 2011-04-29 11:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-11-15 00:13 - 2011-04-29 11:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-11-15 00:13 - 2011-04-29 11:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-11-15 00:12 - 2012-05-05 16:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-11-15 00:12 - 2012-05-05 15:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2013-11-15 00:12 - 2012-05-01 13:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-11-15 00:12 - 2012-04-07 20:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-11-15 00:12 - 2012-04-07 19:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2013-11-15 00:11 - 2012-11-22 13:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-11-15 00:11 - 2012-11-22 12:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2013-11-15 00:11 - 2012-04-26 13:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-11-15 00:11 - 2012-04-26 13:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-11-15 00:11 - 2012-04-26 13:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-11-15 00:11 - 2011-08-27 13:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-11-15 00:11 - 2011-08-27 13:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-11-15 00:11 - 2011-08-27 12:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-11-15 00:11 - 2011-08-27 12:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-11-15 00:11 - 2011-04-09 14:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-11-15 00:11 - 2011-04-09 13:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-11-15 00:10 - 2013-09-25 10:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-15 00:10 - 2013-09-25 10:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-15 00:10 - 2013-09-25 10:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-15 00:10 - 2013-09-25 10:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-15 00:10 - 2013-09-25 10:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-15 00:10 - 2013-09-25 10:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-15 00:10 - 2013-09-25 10:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-15 00:10 - 2013-09-25 10:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-15 00:10 - 2013-09-25 09:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-15 00:10 - 2013-09-25 09:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-15 00:10 - 2013-09-25 09:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-15 00:10 - 2013-09-25 09:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-15 00:10 - 2013-09-25 09:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-15 00:10 - 2013-07-04 20:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-15 00:10 - 2013-06-04 14:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-11-15 00:10 - 2013-06-04 12:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-11-15 00:10 - 2011-11-17 14:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-11-15 00:10 - 2011-11-17 13:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-11-15 00:10 - 2011-10-26 13:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-11-15 00:10 - 2011-10-26 12:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-11-15 00:10 - 2011-08-17 13:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-11-15 00:10 - 2011-08-17 13:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-11-15 00:10 - 2011-08-17 12:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-11-15 00:10 - 2011-08-17 12:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-11-15 00:10 - 2011-06-15 18:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-11-15 00:10 - 2011-06-15 18:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-11-15 00:10 - 2011-06-15 18:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-11-15 00:10 - 2011-06-15 18:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-11-15 00:09 - 2013-10-06 04:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-15 00:09 - 2013-10-06 03:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-15 00:09 - 2013-07-09 13:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-11-15 00:09 - 2013-07-09 13:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-11-15 00:09 - 2013-07-09 12:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-11-15 00:09 - 2013-07-09 12:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-11-15 00:09 - 2012-06-06 14:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-11-15 00:09 - 2012-06-06 13:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2013-11-15 00:09 - 2011-03-11 14:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-11-15 00:09 - 2011-03-11 14:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-11-15 00:09 - 2011-03-11 13:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-11-15 00:09 - 2011-03-11 13:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-11-15 00:08 - 2013-07-25 17:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-11-15 00:08 - 2013-07-25 16:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-11-15 00:08 - 2013-05-10 13:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-11-15 00:08 - 2013-05-10 11:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-11-15 00:08 - 2011-10-15 14:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-11-15 00:08 - 2011-10-15 13:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-11-15 00:08 - 2011-03-03 14:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-11-15 00:08 - 2011-03-03 14:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-11-15 00:08 - 2011-03-03 14:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-11-15 00:08 - 2011-03-03 13:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-11-15 00:08 - 2011-03-03 13:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-11-15 00:07 - 2013-10-12 10:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-15 00:07 - 2013-10-12 10:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-15 00:07 - 2013-10-12 10:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-15 00:07 - 2013-10-12 10:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-15 00:07 - 2013-10-12 10:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-15 00:07 - 2013-02-12 12:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-11-15 00:07 - 2012-03-17 15:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-11-15 00:06 - 2013-10-03 10:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-15 00:06 - 2013-10-03 10:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-15 00:06 - 2013-09-28 09:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-15 00:06 - 2013-07-19 09:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-11-15 00:06 - 2013-07-19 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-11-15 00:06 - 2012-11-02 13:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-11-15 00:06 - 2012-11-02 13:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-11-15 00:06 - 2012-05-14 13:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-11-15 00:06 - 2011-07-09 10:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-11-15 00:06 - 2011-05-24 19:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-11-15 00:06 - 2011-05-24 18:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-11-15 00:06 - 2011-05-24 18:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-11-15 00:06 - 2011-05-24 18:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-11-15 00:06 - 2011-05-24 18:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-11-15 00:06 - 2011-04-27 10:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-11-15 00:06 - 2011-04-27 10:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-11-15 00:05 - 2013-08-28 09:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-11-15 00:05 - 2013-06-06 13:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-11-15 00:05 - 2013-06-06 13:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-11-15 00:05 - 2013-06-06 13:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-11-15 00:05 - 2013-06-06 13:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-11-15 00:05 - 2013-06-06 12:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-11-15 00:05 - 2013-06-06 12:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-11-15 00:05 - 2013-06-06 12:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-11-15 00:05 - 2013-06-06 11:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-11-15 00:05 - 2013-06-06 11:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-11-15 00:05 - 2013-06-06 11:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-11-15 00:05 - 2011-11-19 22:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-11-15 00:05 - 2011-11-19 22:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-11-15 00:05 - 2011-05-03 13:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-11-15 00:05 - 2011-05-03 12:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-11-15 00:05 - 2011-02-12 19:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-11-15 00:04 - 2013-04-12 22:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-11-15 00:04 - 2012-08-11 08:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-11-15 00:04 - 2012-08-11 07:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-11-15 00:04 - 2011-05-04 13:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-11-15 00:04 - 2011-05-04 13:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-11-15 00:04 - 2011-05-04 13:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-11-15 00:04 - 2011-05-04 13:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-11-15 00:04 - 2011-05-04 12:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-11-15 00:04 - 2011-05-04 12:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-11-15 00:04 - 2011-05-04 12:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-11-15 00:04 - 2011-05-04 12:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-11-15 00:04 - 2011-02-06 01:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-11-15 00:04 - 2011-02-06 01:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-11-15 00:04 - 2011-02-06 01:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-11-15 00:04 - 2011-02-06 01:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-11-15 00:04 - 2011-02-06 01:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-11-15 00:04 - 2011-02-06 01:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-11-15 00:04 - 2011-02-06 01:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-11-15 00:03 - 2013-08-01 20:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-11-15 00:03 - 2013-07-09 13:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-11-15 00:03 - 2013-07-09 12:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-11-15 00:03 - 2013-04-10 14:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-11-15 00:03 - 2013-01-24 14:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-11-15 00:03 - 2012-11-23 11:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-11-15 00:03 - 2011-12-16 16:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-11-15 00:03 - 2011-12-16 15:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-11-15 00:03 - 2011-06-16 13:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-11-15 00:03 - 2011-06-16 12:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2013-11-15 00:03 - 2011-02-03 19:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-11-15 00:02 - 2013-07-12 18:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-11-15 00:02 - 2013-07-12 18:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-11-15 00:01 - 2013-08-05 10:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-11-15 00:01 - 2013-06-15 12:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-11-15 00:01 - 2012-09-26 06:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-11-15 00:01 - 2012-09-26 06:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-11-15 00:01 - 2011-04-23 06:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-11-15 00:01 - 2011-02-23 12:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-11-15 00:00 - 2013-07-20 18:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-11-15 00:00 - 2013-07-20 18:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-11-15 00:00 - 2013-07-04 20:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-11-15 00:00 - 2013-07-04 20:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-11-15 00:00 - 2013-07-04 19:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-11-15 00:00 - 2013-07-04 19:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-11-15 00:00 - 2013-07-04 18:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-11-15 00:00 - 2013-04-26 13:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-11-15 00:00 - 2013-04-26 12:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-11-15 00:00 - 2013-03-19 13:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-11-15 00:00 - 2013-03-19 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-11-15 00:00 - 2012-04-28 11:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-11-15 00:00 - 2010-12-23 18:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-11-15 00:00 - 2010-12-23 18:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-11-15 00:00 - 2010-12-23 18:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-11-15 00:00 - 2010-12-23 13:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-11-15 00:00 - 2010-12-23 13:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-11-15 00:00 - 2010-12-23 13:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-11-14 23:59 - 2013-07-04 20:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-11-14 23:59 - 2013-07-04 19:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-11-14 23:59 - 2013-07-03 12:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-11-14 23:59 - 2013-07-03 12:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-11-14 23:59 - 2013-07-03 12:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-11-14 23:59 - 2012-05-04 19:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-11-14 23:59 - 2012-05-04 17:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-11-14 23:59 - 2011-12-30 14:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-11-14 23:59 - 2011-12-30 13:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2013-11-14 23:59 - 2011-02-18 18:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2013-11-14 23:59 - 2011-02-18 13:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2013-11-14 19:59 - 2013-11-14 19:59 - 00000425 _____ C:\Windows\BRWMARK.INI
2013-11-14 19:59 - 2013-11-14 19:59 - 00000027 _____ C:\Windows\BRPP2KA.INI
2013-11-14 19:57 - 2013-11-14 19:57 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Media Player Classic
2013-11-14 19:52 - 2013-11-14 19:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-11-14 08:19 - 2013-11-14 08:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\PunkBuster
2013-11-14 08:11 - 2013-11-20 17:16 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Adobe
2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Macromedia
2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Local\Macromedia
2013-11-14 07:26 - 2013-12-03 17:56 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-14 07:26 - 2013-11-14 07:26 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-14 07:26 - 2013-11-14 07:26 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-14 07:26 - 2013-11-14 07:26 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\system32\Macromed
2013-11-14 06:16 - 2013-11-14 06:17 - 00000000 ____D C:\Users\Waldi\Documents\Battlefield 4
2013-11-14 06:12 - 2013-11-24 07:59 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\TS3Client
2013-11-14 06:12 - 2013-11-14 06:12 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2013-11-14 06:12 - 2013-11-14 06:12 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-11-14 05:49 - 2013-11-14 05:49 - 00000000 ____D C:\Users\Waldi\AppData\Local\ESN
2013-11-14 05:01 - 2013-11-15 10:15 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-14 05:01 - 2013-11-14 05:17 - 00001198 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
2013-11-14 05:01 - 2013-11-14 05:17 - 00001174 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2013-11-14 05:00 - 2013-11-19 02:23 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-14 05:00 - 2013-11-19 02:00 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-11-14 05:00 - 2013-11-14 05:00 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-14 05:00 - 2013-11-14 05:00 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-14 04:45 - 2013-11-20 17:16 - 00000000 ____D C:\ProgramData\Adobe
2013-11-14 04:45 - 2013-11-14 04:45 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-11-14 04:45 - 2013-11-14 04:45 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-14 04:43 - 2013-11-20 17:16 - 00000000 ____D C:\Users\Waldi\AppData\Local\Adobe
2013-11-14 04:40 - 2013-11-14 04:40 - 00001085 _____ C:\Users\Waldi\Desktop\MPC-HC.lnk
2013-11-14 04:40 - 2013-11-14 04:40 - 00000000 ____D C:\Program Files (x86)\MPC-HC
2013-11-14 04:37 - 2013-12-03 14:08 - 00000266 _____ C:\Windows\Tasks\AutoKMS.job
2013-11-14 04:37 - 2013-11-25 10:55 - 00000000 ____D C:\Windows\AutoKMS
2013-11-14 04:37 - 2013-11-25 07:14 - 00002896 _____ C:\Windows\System32\Tasks\AutoKMS
2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Windows\PCHEALTH
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2013-11-14 04:32 - 2013-11-14 04:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-14 04:32 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Office
2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 __RHD C:\MSOCache
2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Users\Waldi\AppData\Local\Microsoft Help
2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-11-14 04:25 - 2013-11-14 05:25 - 00000000 ____D C:\Users\Waldi\Downloads\IntelBurnTest
2013-11-14 04:25 - 2013-11-14 04:25 - 00031136 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS
2013-11-14 04:25 - 2013-11-14 04:25 - 00000000 ____D C:\Program Files\HWiNFO64
2013-11-14 04:24 - 2013-11-14 04:24 - 00000000 ____D C:\Program Files (x86)\Geeks3D
2013-11-14 04:17 - 2013-11-14 04:32 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\DAEMON Tools Lite
2013-11-14 04:17 - 2013-11-14 04:17 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-14 04:17 - 2013-11-14 04:17 - 00001954 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-14 04:17 - 2013-11-14 04:17 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-14 04:16 - 2013-11-14 04:32 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-11-14 03:42 - 2013-11-14 04:05 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-11-14 03:30 - 2013-11-14 06:16 - 00000000 ____D C:\Users\Waldi\AppData\Local\Origin
2013-11-14 03:30 - 2013-11-14 05:45 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Origin
2013-11-14 03:29 - 2013-12-02 22:30 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-14 03:29 - 2013-11-14 06:16 - 00000000 ____D C:\ProgramData\Origin
2013-11-14 03:29 - 2013-11-14 06:16 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-11-14 03:29 - 2013-11-14 03:29 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk
2013-11-14 03:02 - 2013-11-14 03:02 - 00003176 _____ C:\Windows\System32\Tasks\{C0F16D60-C776-4C21-A429-EB577937A1B9}
2013-11-14 02:56 - 2013-12-03 18:24 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Skype
2013-11-14 02:55 - 2013-11-27 13:28 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-14 02:55 - 2013-11-27 13:28 - 00000000 ____D C:\ProgramData\Skype
2013-11-14 02:55 - 2013-11-14 02:55 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2013-11-14 02:39 - 2013-11-14 02:39 - 00000000 ____D C:\Users\Waldi\AppData\Local\Innovative Solutions
2013-11-14 02:21 - 2012-12-28 08:01 - 00760032 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys
2013-11-14 02:14 - 2013-11-14 02:14 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Avira
2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\ProgramData\APN
2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-11-14 02:00 - 2013-12-03 17:41 - 00107416 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-11-14 02:00 - 2013-11-14 02:00 - 00002070 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\ProgramData\Avira
2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\Program Files (x86)\Avira
2013-11-14 02:00 - 2013-11-01 02:25 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-14 02:00 - 2013-11-01 02:25 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-11-14 02:00 - 2013-11-01 02:25 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-14 01:56 - 2013-11-16 20:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-14 01:56 - 2013-11-16 01:57 - 00000000 ____D C:\Users\Waldi\AppData\Local\Mozilla
2013-11-14 01:56 - 2013-11-14 01:56 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Mozilla
2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\ProgramData\Mozilla
2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\Documents\EA Games
2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\AppData\Local\EA Games
2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Program Files\Realtek
2013-11-14 01:41 - 2013-11-27 17:54 - 00000000 ____D C:\Users\Waldi\AppData\Local\CrashDumps
2013-11-14 01:41 - 2013-11-14 03:07 - 00000000 ____D C:\Program Files (x86)\Hotkey
2013-11-14 01:41 - 2013-03-27 11:54 - 03376200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2013-11-14 01:41 - 2013-03-27 10:34 - 00135240 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2013-11-14 01:41 - 2013-03-27 09:27 - 01102104 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2013-11-14 01:41 - 2013-03-27 09:27 - 00918296 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2013-11-14 01:41 - 2013-03-27 08:06 - 02797128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2013-11-14 01:41 - 2013-03-27 08:04 - 02734624 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2013-11-14 01:41 - 2013-03-27 07:05 - 00445929 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-14 01:41 - 2013-03-27 06:40 - 03693128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2013-11-14 01:41 - 2013-03-27 05:38 - 01659464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2013-11-14 01:41 - 2013-03-21 04:16 - 02102040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2013-11-14 01:41 - 2013-03-21 04:16 - 00910104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-11-14 01:41 - 2013-03-13 22:32 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2013-11-14 01:41 - 2013-03-01 04:10 - 02032408 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2013-11-14 01:41 - 2013-02-21 09:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2013-11-14 01:41 - 2013-02-20 09:52 - 00991816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2013-11-14 01:41 - 2013-01-17 07:02 - 02079816 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2013-11-14 01:41 - 2012-06-21 08:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-14 01:41 - 2012-06-09 07:23 - 00083072 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2013-11-14 01:41 - 2012-03-09 02:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2013-11-14 01:41 - 2011-12-21 06:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2013-11-14 01:41 - 2011-11-23 07:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2013-11-14 01:41 - 2010-11-04 09:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2013-11-14 01:41 - 2010-09-28 00:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2013-11-14 01:41 - 2009-11-18 22:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2013-11-14 01:36 - 2013-11-28 10:03 - 00081021 _____ C:\Windows\DirectX.log
2013-11-14 01:36 - 2013-11-14 01:36 - 00000000 ____D C:\Users\Waldi\AppData\Local\2K Games
|
|
03.12.2013, 16:01
| #4 |
| | Bublik A.30.132 Trojaner FRST zweiter Teil Code:
ATTFilter 2013-11-14 01:36 - 2010-06-02 11:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2013-11-14 01:36 - 2008-07-31 17:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2013-11-14 01:36 - 2008-07-31 17:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2013-11-14 01:36 - 2008-07-10 18:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2013-11-14 01:36 - 2008-05-30 21:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2013-11-14 01:36 - 2008-05-30 21:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2013-11-14 01:36 - 2008-05-30 21:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2013-11-14 01:36 - 2008-05-30 21:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2013-11-14 01:36 - 2008-05-30 21:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2013-11-14 01:36 - 2008-05-30 21:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2013-11-14 01:36 - 2008-05-30 21:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2013-11-14 01:36 - 2008-05-30 21:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2013-11-14 01:36 - 2008-03-05 23:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2013-11-14 01:36 - 2008-03-05 23:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2013-11-14 01:36 - 2008-03-05 23:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2013-11-14 01:36 - 2008-03-05 23:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2013-11-14 01:36 - 2008-03-05 23:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2013-11-14 01:36 - 2008-03-05 23:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2013-11-14 01:36 - 2008-02-06 06:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2013-11-14 01:36 - 2008-02-06 06:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2013-11-14 01:36 - 2007-10-22 10:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2013-11-14 01:36 - 2007-10-22 10:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2013-11-14 01:36 - 2007-10-22 10:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2013-11-14 01:36 - 2007-10-22 10:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2013-11-14 01:36 - 2007-10-02 16:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2013-11-14 01:36 - 2007-10-02 16:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2013-11-14 01:36 - 2007-07-20 07:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2013-11-14 01:36 - 2007-07-20 07:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2013-11-14 01:36 - 2007-06-21 03:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2013-11-14 01:36 - 2007-06-21 03:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2013-11-14 01:36 - 2007-04-05 01:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2013-11-14 01:36 - 2007-04-05 01:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2013-11-14 01:36 - 2007-04-05 01:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2013-11-14 01:36 - 2007-04-05 01:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2013-11-14 01:36 - 2007-03-15 23:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2013-11-14 01:36 - 2007-03-15 23:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2013-11-14 01:36 - 2007-03-05 19:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2013-11-14 01:36 - 2007-03-05 19:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2013-11-14 01:36 - 2007-01-24 22:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2013-11-14 01:36 - 2007-01-24 22:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2013-11-14 01:36 - 2006-12-08 19:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2013-11-14 01:36 - 2006-12-08 19:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2013-11-14 01:36 - 2006-09-28 23:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2013-11-14 01:36 - 2006-09-28 23:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2013-11-14 01:36 - 2006-09-28 23:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2013-11-14 01:36 - 2006-09-28 23:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2013-11-14 01:36 - 2006-07-28 16:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2013-11-14 01:36 - 2006-07-28 16:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2013-11-14 01:36 - 2006-07-28 16:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2013-11-14 01:36 - 2006-07-28 16:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2013-11-14 01:36 - 2006-05-31 14:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2013-11-14 01:36 - 2006-05-31 14:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2013-11-14 01:36 - 2006-03-31 19:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2013-11-14 01:36 - 2006-03-31 19:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2013-11-14 01:36 - 2006-03-31 19:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2013-11-14 01:36 - 2006-03-31 19:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2013-11-14 01:36 - 2006-03-31 19:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2013-11-14 01:36 - 2006-03-31 19:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2013-11-14 01:36 - 2006-02-03 15:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2013-11-14 01:36 - 2006-02-03 15:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2013-11-14 01:36 - 2006-02-03 15:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2013-11-14 01:36 - 2006-02-03 15:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2013-11-14 01:36 - 2006-02-03 15:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2013-11-14 01:36 - 2006-02-03 15:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2013-11-14 01:36 - 2005-12-06 01:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2013-11-14 01:36 - 2005-12-06 01:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2013-11-14 01:36 - 2005-07-23 02:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2013-11-14 01:36 - 2005-07-23 02:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2013-11-14 01:36 - 2005-05-26 22:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2013-11-14 01:36 - 2005-05-26 22:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2013-11-14 01:36 - 2005-03-19 00:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2013-11-14 01:36 - 2005-03-19 00:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2013-11-14 01:36 - 2005-02-06 02:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2013-11-14 01:36 - 2005-02-06 02:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2013-11-14 01:34 - 2013-11-14 01:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____D C:\Program Files\AuthenTec 2013-11-14 01:30 - 2013-11-20 18:54 - 00109672 _____ C:\Users\Waldi\AppData\Local\GDIPFONTCACHEV1.DAT 2013-11-14 01:29 - 2013-11-15 05:20 - 03310804 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Local\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\ProgramData\ATI 2013-11-14 01:26 - 2012-02-17 14:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll 2013-11-14 01:26 - 2012-02-17 13:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll 2013-11-14 01:26 - 2012-02-17 12:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys 2013-11-14 01:24 - 2013-11-14 01:24 - 00002525 _____ C:\Users\Public\Desktop\Microsoft Download Manager.lnk 2013-11-14 01:24 - 2013-11-14 01:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Download Manager 2013-11-14 01:22 - 2013-12-03 13:29 - 00000000 ____D C:\Users\Waldi\AppData\Local\FSP 2013-11-14 01:22 - 2013-11-14 02:43 - 00015882 _____ C:\Windows\DPINST.LOG 2013-11-14 01:22 - 2013-11-14 01:38 - 00002144 _____ C:\Windows\sentelic.log 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_fspad_win764_01009.Wdf 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____D C:\Program Files\FSP 2013-11-14 01:22 - 2013-04-02 11:34 - 02232144 _____ (Sentelic Corporation.) C:\Windows\system32\StlFspAPI64.dll 2013-11-14 01:22 - 2013-04-02 11:34 - 01636176 _____ (Sentelic Corporation.) C:\Windows\SysWOW64\StlFspAPI32.dll 2013-11-14 01:22 - 2013-04-02 11:34 - 00155472 _____ (Sentelic Corporation) C:\Windows\system32\Drivers\fspad_win764.sys 2013-11-14 01:22 - 2013-04-02 11:34 - 00081232 _____ (Sentelic Corporation) C:\Windows\system32\fspadco.dll 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Atheros 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\BMExplorer 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\ProgramData\Atheros 2013-11-14 01:18 - 2012-06-03 06:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2013-11-14 01:18 - 2012-06-03 06:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2013-11-14 01:18 - 2012-06-03 06:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2013-11-14 01:18 - 2012-06-03 06:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2013-11-14 01:18 - 2012-06-03 06:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2013-11-14 01:18 - 2012-06-03 06:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2013-11-14 01:18 - 2012-06-03 06:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2013-11-14 01:18 - 2012-06-02 22:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2013-11-14 01:18 - 2012-06-02 22:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2013-11-14 01:14 - 2013-11-14 01:14 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-11-14 01:13 - 2013-12-03 14:08 - 00000000 ____D C:\ProgramData\Bigfoot Networks 2013-11-14 01:13 - 2013-11-28 10:34 - 00000000 ____D C:\Users\Waldi\Documents\Bluetooth Folder 2013-11-14 01:13 - 2013-11-14 01:13 - 00002238 _____ C:\Users\Public\Desktop\Qualcomm Atheros Killer Network Manager.lnk 2013-11-14 01:13 - 2013-11-14 01:13 - 00000264 _____ C:\Users\Waldi\AppData\Local\killertool.log 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files\Qualcomm Atheros 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-11-14 01:13 - 2013-03-27 18:18 - 00584272 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00346192 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_a2dp.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00179432 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_hcrp.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00136784 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_rcp.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00115280 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_avdt.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00089168 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_flt.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00077464 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_lwflt.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00034384 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_bus.sys 2013-11-14 01:07 - 2013-11-14 01:07 - 00000000 ____D C:\Users\Waldi\AppData\Local\Intel_Corporation 2013-11-14 01:06 - 2013-11-20 19:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-11-14 01:06 - 2013-11-14 02:26 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-11-14 01:06 - 2013-11-14 01:38 - 00000000 ____D C:\Windows\SysWOW64\sda 2013-11-14 01:06 - 2012-12-26 14:29 - 09889504 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsBaStorIcon.dll 2013-11-14 01:06 - 2012-12-26 14:29 - 00308960 ____R (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsBaStor.sys 2013-11-14 01:05 - 2013-11-14 01:05 - 00000000 ____D C:\ProgramData\Intel 2013-11-14 01:05 - 2013-02-16 23:17 - 00016344 ____R (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll 2013-11-14 01:03 - 2013-11-14 01:03 - 00000000 _____ C:\Windows\ativpsrm.bin 2013-11-14 01:02 - 2013-11-14 01:05 - 00000000 ____D C:\Program Files\Intel 2013-11-14 01:02 - 2013-05-10 15:59 - 07569392 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00752624 _____ (Intel Corporation) C:\Windows\system32\GfxUIHotKeyMenu.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00534000 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00529904 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00444400 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00407536 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00397296 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00251888 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00165872 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00153072 _____ (Intel Corporation) C:\Windows\system32\difx64.exe 2013-11-14 01:02 - 2013-05-07 17:25 - 00442368 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2013-11-14 01:02 - 2013-05-07 17:25 - 00089600 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3165.dll 2013-11-14 01:02 - 2013-05-07 17:25 - 00015360 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll 2013-11-14 01:02 - 2013-05-07 17:23 - 00017610 _____ C:\Windows\system32\iglhxs64.vp 2013-11-14 01:02 - 2013-05-07 17:22 - 09967616 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 08632320 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 07077376 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 04431840 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys 2013-11-14 01:02 - 2013-05-07 17:22 - 01690112 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 00322560 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 00286720 _____ C:\Windows\system32\igdde64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 00117760 _____ C:\Windows\system32\igdail64.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 24283136 _____ C:\Windows\system32\igdfcl64.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 01564672 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 00279040 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 00258560 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 00203264 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 09517056 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 07836160 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 05515776 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 00240640 _____ C:\Windows\SysWOW64\igdde32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 00103936 _____ C:\Windows\SysWOW64\igdail32.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 08900096 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 04058624 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 02384896 _____ C:\Windows\system32\GfxRes.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00444416 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00444416 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441856 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00440832 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00440832 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00440320 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00434688 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00433152 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00431104 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00430592 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00357888 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00353792 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00345600 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00288768 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00257719 _____ C:\Windows\system32\Gfxres.th-TH.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00243838 _____ C:\Windows\system32\Gfxres.el-GR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00226564 _____ C:\Windows\system32\Gfxres.ru-RU.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00193244 _____ C:\Windows\system32\Gfxres.ar-SA.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00190976 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00190556 _____ C:\Windows\system32\Gfxres.ja-JP.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00185171 _____ C:\Windows\system32\Gfxres.he-IL.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00173987 _____ C:\Windows\system32\Gfxres.it-IT.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00173676 _____ C:\Windows\system32\Gfxres.ko-KR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00171646 _____ C:\Windows\system32\Gfxres.es-ES.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00171296 _____ C:\Windows\system32\Gfxres.fr-FR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00171245 _____ C:\Windows\system32\Gfxres.de-DE.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00169771 _____ C:\Windows\system32\Gfxres.ro-RO.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00169117 _____ C:\Windows\system32\Gfxres.tr-TR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00168931 _____ C:\Windows\system32\Gfxres.hu-HU.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00168556 _____ C:\Windows\system32\Gfxres.pl-PL.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00168182 _____ C:\Windows\system32\Gfxres.nl-NL.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00167577 _____ C:\Windows\system32\Gfxres.pt-BR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166682 _____ C:\Windows\system32\Gfxres.fi-FI.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166495 _____ C:\Windows\system32\Gfxres.sk-SK.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166200 _____ C:\Windows\system32\Gfxres.pt-PT.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166190 _____ C:\Windows\system32\Gfxres.sv-SE.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00165749 _____ C:\Windows\system32\Gfxres.cs-CZ.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00164782 _____ C:\Windows\system32\Gfxres.hr-HR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00161423 _____ C:\Windows\system32\Gfxres.sl-SI.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00160394 _____ C:\Windows\system32\Gfxres.nb-NO.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00159763 _____ C:\Windows\system32\Gfxres.da-DK.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00155178 _____ C:\Windows\system32\Gfxres.en-US.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00148451 _____ C:\Windows\system32\Gfxres.zh-TW.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00146731 _____ C:\Windows\system32\Gfxres.zh-CN.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00140288 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00124928 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl 2013-11-14 01:02 - 2013-05-07 17:17 - 00108032 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00066048 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00029184 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00025088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00012288 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll 2013-11-14 01:02 - 2013-05-07 17:16 - 19587072 _____ C:\Windows\SysWOW64\igdfcl32.dll 2013-11-14 01:02 - 2013-05-07 17:12 - 04369920 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll 2013-11-14 01:02 - 2013-05-07 17:12 - 03411456 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa 2013-11-14 01:02 - 2013-04-30 10:43 - 02064896 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 01814016 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00861184 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00856576 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00216064 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00180224 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00145920 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00138240 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00124416 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00118784 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00044025 _____ C:\Windows\system32\iglhxo64.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043494 _____ C:\Windows\system32\iglhxc64.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043256 _____ C:\Windows\system32\iglhxg64.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp 2013-11-14 01:00 - 2013-11-17 04:51 - 00000000 ____D C:\Program Files (x86)\Intel 2013-11-14 01:00 - 2013-02-28 22:37 - 00053248 ____R (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2013-11-14 00:58 - 2013-11-14 00:58 - 00135602 _____ C:\Windows\system32\log.xml 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\ProgramData\AMD 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files (x86)\AMD AVT 2013-11-14 00:55 - 2013-04-30 10:43 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2013-11-14 00:55 - 2013-04-30 10:43 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2013-11-14 00:55 - 2013-03-16 16:36 - 00222720 _____ C:\Windows\system32\clinfo.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 29150208 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 01187342 _____ C:\Windows\system32\amdocl_as64.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 01061902 _____ C:\Windows\system32\amdocl_ld64.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 00995342 _____ C:\Windows\SysWOW64\amdocl_as32.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 00798734 _____ C:\Windows\SysWOW64\amdocl_ld32.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 00076288 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 00065536 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 00064000 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 00056320 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll 2013-11-14 00:55 - 2013-03-16 16:33 - 23810560 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll 2013-11-14 00:55 - 2013-03-16 16:19 - 00076800 _____ (AMD) C:\Windows\system32\coinst_12.103.dll 2013-11-14 00:55 - 2013-03-16 16:18 - 00373680 _____ C:\Windows\SysWOW64\atiapfxx.blb 2013-11-14 00:55 - 2013-03-16 16:18 - 00373680 _____ C:\Windows\system32\atiapfxx.blb 2013-11-14 00:55 - 2013-03-16 15:56 - 00204952 _____ C:\Windows\SysWOW64\ativvsvl.dat 2013-11-14 00:55 - 2013-03-16 15:56 - 00204952 _____ C:\Windows\system32\ativvsvl.dat 2013-11-14 00:55 - 2013-03-16 15:56 - 00157144 _____ C:\Windows\SysWOW64\ativvsva.dat 2013-11-14 00:55 - 2013-03-16 15:56 - 00157144 _____ C:\Windows\system32\ativvsva.dat 2013-11-14 00:55 - 2013-03-16 15:54 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2013-11-14 00:55 - 2013-03-05 17:52 - 00230836 _____ C:\Windows\system32\ativvaxy_cik.dat 2013-11-14 00:55 - 2013-02-01 23:14 - 00075600 _____ C:\Windows\system32\ativce02.dat 2013-11-14 00:55 - 2012-11-23 14:14 - 00230064 _____ C:\Windows\system32\ativvaxy_cik_nd.dat 2013-11-14 00:55 - 2011-09-13 21:06 - 00003917 _____ C:\Windows\SysWOW64\atipblag.dat 2013-11-14 00:55 - 2011-09-13 21:06 - 00003917 _____ C:\Windows\system32\atipblag.dat 2013-11-14 00:55 - 2011-09-13 01:05 - 00003917 _____ C:\Windows\SysWOW64\atipblup.dat 2013-11-14 00:55 - 2011-09-13 01:05 - 00003917 _____ C:\Windows\system32\atipblup.dat 2013-11-14 00:54 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2013-11-14 00:54 - 2013-11-14 00:54 - 00000000 ____D C:\Program Files\ATI 2013-11-14 00:54 - 2013-03-08 22:16 - 00042583 _____ C:\Windows\atiogl.xml 2013-11-14 00:54 - 2013-02-14 23:33 - 00037472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys 2013-11-14 00:53 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files\ATI Technologies 2013-11-14 00:52 - 2013-11-14 01:01 - 00000000 ____D C:\Intel 2013-11-14 00:48 - 2013-12-03 18:25 - 00000000 ____D C:\Users\Waldi 2013-11-14 00:48 - 2013-12-03 17:14 - 01489179 _____ C:\Windows\WindowsUpdate.log 2013-11-14 00:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Local\VirtualStore 2013-11-14 00:48 - 2013-11-16 21:25 - 00001413 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-11-14 00:48 - 2013-11-15 05:44 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-11-14 00:48 - 2013-11-15 05:44 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-11-14 00:48 - 2013-11-14 00:48 - 00000020 ___SH C:\Users\Waldi\ntuser.ini 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 __SHD C:\Recovery 2013-11-14 00:48 - 2009-07-14 12:54 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-11-14 00:48 - 2009-07-14 12:49 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-11-14 00:46 - 2013-11-14 00:46 - 00001355 _____ C:\Windows\TSSysprep.log 2013-11-13 16:45 - 2013-11-14 00:48 - 00000000 ____D C:\Windows\Panther ==================== One Month Modified Files and Folders ======= 2013-12-03 18:33 - 2013-12-03 18:32 - 00014516 _____ C:\Users\Waldi\Desktop\FRST.txt 2013-12-03 18:32 - 2013-12-03 18:32 - 00000000 ____D C:\FRST 2013-12-03 18:32 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\kjqvm 2013-12-03 18:28 - 2013-12-03 18:27 - 01959434 _____ (Farbar) C:\Users\Waldi\Desktop\FRST64.exe 2013-12-03 18:25 - 2013-12-03 18:25 - 00000542 _____ C:\Users\Waldi\Desktop\defogger_disable.log 2013-12-03 18:25 - 2013-12-03 18:25 - 00000168 _____ C:\Users\Waldi\defogger_reenable 2013-12-03 18:25 - 2013-11-14 00:48 - 00000000 ____D C:\Users\Waldi 2013-12-03 18:24 - 2013-12-03 18:24 - 00050477 _____ C:\Users\Waldi\Desktop\Defogger.exe 2013-12-03 18:24 - 2013-11-14 02:56 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Skype 2013-12-03 17:56 - 2013-11-14 07:26 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-12-03 17:41 - 2013-12-03 15:57 - 62064667 _____ (Symantec Corporation) C:\Users\Waldi\Downloads\NIS_21.1.0.18_SYMTB_TMD_MRFTT_820_10131.exe 2013-12-03 17:41 - 2013-11-14 02:00 - 00107416 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2013-12-03 17:29 - 2013-12-03 15:20 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP 2013-12-03 17:27 - 2013-11-16 21:00 - 00000000 ____D C:\Program Files (x86)\JDownloader 2013-12-03 17:14 - 2013-11-14 00:48 - 01489179 _____ C:\Windows\WindowsUpdate.log 2013-12-03 16:59 - 2013-12-03 16:56 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-12-03 16:59 - 2013-12-03 16:46 - 00000000 ____D C:\Users\Waldi\Desktop\mbar 2013-12-03 16:56 - 2013-12-03 16:56 - 00116440 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2013-12-03 16:46 - 2013-12-03 16:46 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2013-12-03 16:14 - 2013-12-03 16:06 - 12576792 _____ (Malwarebytes Corp.) C:\Users\Waldi\Downloads\mbar-1.07.0.1007.exe 2013-12-03 16:11 - 2009-07-14 12:51 - 00046235 _____ C:\Windows\setupact.log 2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 ____D C:\Program Files\Enigma Software Group 2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 _____ C:\autoexec.bat 2013-12-03 14:18 - 2013-12-03 14:17 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Waldi\Downloads\SpyHunter-Installer.exe 2013-12-03 14:15 - 2009-07-14 12:45 - 00028704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-12-03 14:15 - 2009-07-14 12:45 - 00028704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-12-03 14:13 - 2011-03-20 17:08 - 00696870 _____ C:\Windows\system32\perfh007.dat 2013-12-03 14:13 - 2011-03-20 17:08 - 00148134 _____ C:\Windows\system32\perfc007.dat 2013-12-03 14:13 - 2009-07-14 13:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI 2013-12-03 14:10 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\qmbhac 2013-12-03 14:08 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\upcr 2013-12-03 14:08 - 2013-11-25 10:40 - 00000000 ____D C:\ProgramData\dcdp 2013-12-03 14:08 - 2013-11-14 04:37 - 00000266 _____ C:\Windows\Tasks\AutoKMS.job 2013-12-03 14:08 - 2013-11-14 01:13 - 00000000 ____D C:\ProgramData\Bigfoot Networks 2013-12-03 14:08 - 2009-07-14 13:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-12-03 14:07 - 2013-12-01 10:54 - 00000000 ____D C:\ProgramData\mdh 2013-12-03 13:59 - 2013-12-03 13:59 - 00028916 _____ C:\Users\Waldi\Documents\AVSCAN-20131203-133348-272CD52E.LOG 2013-12-03 13:29 - 2013-11-14 01:22 - 00000000 ____D C:\Users\Waldi\AppData\Local\FSP 2013-12-03 12:58 - 2010-11-21 11:47 - 00017862 _____ C:\Windows\PFRO.log 2013-12-03 12:30 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\mryu 2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tkipd 2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tbrjps 2013-12-02 22:30 - 2013-11-14 03:29 - 00000000 ____D C:\Program Files (x86)\Origin 2013-12-02 21:47 - 2013-11-17 06:00 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\vlc 2013-12-01 20:04 - 2013-12-01 20:04 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\dvdcss 2013-12-01 12:16 - 2013-11-29 12:53 - 00000000 ____D C:\ProgramData\tvidqe 2013-12-01 12:16 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\udoec 2013-12-01 12:05 - 2013-12-01 12:05 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Malwarebytes 2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-12-01 12:04 - 2013-12-01 11:56 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Waldi\Downloads\mbam-setup.exe 2013-12-01 11:24 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\rwxuvcn 2013-12-01 10:37 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\fkmfb 2013-11-30 13:50 - 2013-11-26 14:35 - 00000000 ____D C:\Users\Waldi\AppData\Local\Deployment 2013-11-30 13:28 - 2013-11-27 10:42 - 00000000 ____D C:\ProgramData\qswcb 2013-11-30 13:28 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\pgt 2013-11-30 13:25 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\xcf 2013-11-29 16:41 - 2013-11-29 16:41 - 00001406 _____ C:\Users\Waldi\Desktop\FalloutLauncher - Verknüpfung.lnk 2013-11-29 12:57 - 2013-11-20 20:01 - 00000000 ____D C:\Users\Waldi\AppData\Local\Fallout3 2013-11-29 12:26 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\jsxck 2013-11-29 12:26 - 2013-11-29 12:25 - 00341411 _____ C:\Users\Waldi\Downloads\Stadt Heinsberg.jpeg 2013-11-28 19:47 - 2013-11-28 19:47 - 00000000 ____D C:\ProgramData\dcdpy 2013-11-28 12:39 - 2013-11-20 04:25 - 00000000 ____D C:\Users\Waldi\AppData\Local\dxhr 2013-11-28 10:34 - 2013-11-14 01:13 - 00000000 ____D C:\Users\Waldi\Documents\Bluetooth Folder 2013-11-28 10:03 - 2013-11-14 01:36 - 00081021 _____ C:\Windows\DirectX.log 2013-11-27 17:54 - 2013-11-14 01:41 - 00000000 ____D C:\Users\Waldi\AppData\Local\CrashDumps 2013-11-27 13:28 - 2013-11-14 02:55 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-11-27 13:28 - 2013-11-14 02:55 - 00000000 ____D C:\ProgramData\Skype 2013-11-27 11:17 - 2013-11-26 14:22 - 00000000 ____D C:\ProgramData\oimr 2013-11-27 11:17 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\ifkeojg 2013-11-27 11:17 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\fmqb 2013-11-27 10:42 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\unmf 2013-11-27 10:26 - 2013-11-27 10:26 - 00000660 _____ C:\Users\Waldi\Desktop\LingoDict.lnk 2013-11-27 10:26 - 2013-11-27 10:26 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Lingo4u 2013-11-27 10:05 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\gpe 2013-11-27 10:05 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\wiltobo 2013-11-27 10:03 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\dkarde 2013-11-26 14:35 - 2013-11-26 14:35 - 00000000 ____D C:\Users\Waldi\AppData\Local\Apps\2.0 2013-11-26 14:35 - 2013-11-16 21:00 - 00000000 ____D C:\Users\Waldi\AppData\Local\VisualBeeClient 2013-11-26 13:05 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\vlyvk 2013-11-25 10:55 - 2013-11-14 04:37 - 00000000 ____D C:\Windows\AutoKMS 2013-11-25 10:46 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\tyak 2013-11-25 07:14 - 2013-11-14 04:37 - 00002896 _____ C:\Windows\System32\Tasks\AutoKMS 2013-11-24 21:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\NDF 2013-11-24 08:38 - 2013-11-24 08:09 - 00000000 ____D C:\Users\Waldi\Desktop\Tungsten aktuell 2013-11-24 07:59 - 2013-11-14 06:12 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\TS3Client 2013-11-24 06:56 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\rescache 2013-11-22 15:01 - 2013-11-22 15:01 - 00001059 _____ C:\Users\Waldi\Desktop\Fallout 2.lnk 2013-11-22 13:45 - 2013-11-22 13:45 - 00000000 ____D C:\Users\Waldi\AppData\Local\AskPartnerNetwork 2013-11-21 03:12 - 2009-07-14 12:45 - 00417024 _____ C:\Windows\system32\FNTCACHE.DAT 2013-11-20 20:01 - 2013-11-20 20:01 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll 2013-11-20 20:01 - 2013-11-20 20:01 - 00000000 ____D C:\Users\Waldi\Documents\My Games 2013-11-20 19:40 - 2013-11-14 01:06 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-11-20 19:07 - 2013-11-20 19:07 - 00003128 _____ C:\Windows\System32\Tasks\{7A853EE4-76B1-434D-8D1F-22367A683333} 2013-11-20 18:54 - 2013-11-14 01:30 - 00109672 _____ C:\Users\Waldi\AppData\Local\GDIPFONTCACHEV1.DAT 2013-11-20 18:51 - 2013-11-16 21:19 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\WinRAR 2013-11-20 18:48 - 2013-11-20 18:48 - 00053248 _____ (Interplay Productions) C:\Windows\ipuninst.exe 2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Black Isle 2013-11-20 18:48 - 2013-11-14 00:48 - 00000000 ____D C:\Users\Waldi\AppData\Local\VirtualStore 2013-11-20 18:44 - 2013-11-20 18:44 - 00000000 ____D C:\Program Files\BlackIsle 2013-11-20 18:42 - 2013-11-20 18:31 - 00000000 ____D C:\Users\Waldi\Documents\Command and Conquer Generals Data 2013-11-20 18:35 - 2013-11-20 18:35 - 00003012 _____ C:\Windows\System32\Tasks\{883B52E7-ED4A-487D-867F-AA9C677A1C63} 2013-11-20 18:29 - 2013-11-20 18:29 - 00000620 _____ C:\Windows\eReg.dat 2013-11-20 18:13 - 2013-11-20 18:13 - 00000793 _____ C:\Users\Public\Desktop\Command & Conquer(TM) Generäle.lnk 2013-11-20 17:59 - 2013-11-20 17:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\Rockstar Games 2013-11-20 17:57 - 2013-11-20 17:57 - 00000000 __RHD C:\Users\Waldi\AppData\Roaming\SecuROM 2013-11-20 17:49 - 2013-11-20 17:49 - 00000000 __SHD C:\ProgramData\SecuROM 2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Windows\SysWOW64\xlive 2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE 2013-11-20 17:16 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Adobe 2013-11-20 17:16 - 2013-11-14 04:45 - 00000000 ____D C:\ProgramData\Adobe 2013-11-20 17:16 - 2013-11-14 04:43 - 00000000 ____D C:\Users\Waldi\AppData\Local\Adobe 2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Program Files\WinRAR 2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\SKIDROW 2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\28050 2013-11-20 03:20 - 2013-11-20 03:20 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf 2013-11-20 01:53 - 2013-11-20 01:53 - 00212708 _____ C:\Users\Waldi\Downloads\Mappe2.xlsx 2013-11-19 03:33 - 2010-11-21 11:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2013-11-19 02:23 - 2013-11-14 05:00 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2013-11-19 02:00 - 2013-11-14 05:00 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2013-11-17 05:58 - 2013-11-17 05:58 - 00000749 _____ C:\Users\Public\Desktop\VLC media player.lnk 2013-11-17 05:50 - 2013-11-17 05:50 - 00000219 _____ C:\Users\Waldi\Desktop\Counter-Strike Global Offensive.url 2013-11-17 05:50 - 2013-11-17 05:50 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2013-11-17 05:45 - 2013-11-17 05:45 - 00000700 _____ C:\Users\Public\Desktop\Steam.lnk 2013-11-17 04:51 - 2013-11-17 04:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2013-11-17 04:51 - 2013-11-14 01:00 - 00000000 ____D C:\Program Files (x86)\Intel 2013-11-16 21:25 - 2013-11-14 00:48 - 00001413 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-11-16 21:23 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-11-16 21:21 - 2013-11-16 21:17 - 00009353 _____ C:\Windows\IE10_main.log 2013-11-16 21:19 - 2013-11-16 21:19 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-16 21:19 - 2013-11-16 21:19 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-16 21:19 - 2013-11-16 21:19 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-11-16 21:19 - 2013-11-16 21:19 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-11-16 21:19 - 2013-11-16 21:19 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-11-16 21:19 - 2013-11-16 21:19 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-11-16 21:19 - 2013-11-16 21:19 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-11-16 21:19 - 2013-11-16 21:19 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-11-16 21:00 - 2013-11-16 21:00 - 00000000 ____D C:\Users\Waldi\AppData\Local\VisualBeeExe 2013-11-16 21:00 - 2013-11-16 21:00 - 00000000 ____D C:\ProgramData\VisualBee 2013-11-16 20:59 - 2013-11-16 20:59 - 00001244 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk 2013-11-16 20:59 - 2013-11-16 20:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\emaze 2013-11-16 20:25 - 2013-11-14 01:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-11-16 02:11 - 2013-11-16 02:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-11-16 01:57 - 2013-11-14 01:56 - 00000000 ____D C:\Users\Waldi\AppData\Local\Mozilla 2013-11-15 10:15 - 2013-11-14 05:01 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins 2013-11-15 09:56 - 2013-11-15 09:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-11-15 05:44 - 2013-11-14 00:48 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-11-15 05:44 - 2013-11-14 00:48 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-11-15 05:42 - 2011-03-20 16:54 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2013-11-15 05:42 - 2010-11-21 15:17 - 00000000 ____D C:\Program Files\Windows Journal 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\winrm 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\WCN 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\sysprep 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\winrm 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\WCN 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\slmgr 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\Windows Sidebar 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\Windows Defender 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\DVD Maker 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\Setup 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\oobe 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\MUI 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\Dism 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\com 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\zh-HK 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\tr-TR 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\sysprep 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\Setup 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\oobe 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\MUI 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\migwiz 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\Dism 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\com 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\servicing 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Program Files\Common Files\System 2013-11-15 05:20 - 2013-11-14 01:29 - 03310804 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-11-15 04:19 - 2013-11-15 03:58 - 00004824 _____ C:\Windows\IE9_main.log 2013-11-15 03:27 - 2013-11-15 03:27 - 00000000 ____D C:\Windows\system32\MRT 2013-11-14 21:27 - 2009-07-14 13:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD 2013-11-14 19:59 - 2013-11-14 19:59 - 00000425 _____ C:\Windows\BRWMARK.INI 2013-11-14 19:59 - 2013-11-14 19:59 - 00000027 _____ C:\Windows\BRPP2KA.INI 2013-11-14 19:57 - 2013-11-14 19:57 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Media Player Classic 2013-11-14 19:52 - 2013-11-14 19:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-11-14 08:19 - 2013-11-14 08:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\PunkBuster 2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Macromedia 2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Local\Macromedia 2013-11-14 07:26 - 2013-11-14 07:26 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-11-14 07:26 - 2013-11-14 07:26 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-11-14 07:26 - 2013-11-14 07:26 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\system32\Macromed 2013-11-14 06:17 - 2013-11-14 06:16 - 00000000 ____D C:\Users\Waldi\Documents\Battlefield 4 2013-11-14 06:16 - 2013-11-14 03:30 - 00000000 ____D C:\Users\Waldi\AppData\Local\Origin 2013-11-14 06:16 - 2013-11-14 03:29 - 00000000 ____D C:\ProgramData\Origin 2013-11-14 06:16 - 2013-11-14 03:29 - 00000000 ____D C:\ProgramData\Electronic Arts 2013-11-14 06:12 - 2013-11-14 06:12 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2013-11-14 06:12 - 2013-11-14 06:12 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client 2013-11-14 05:49 - 2013-11-14 05:49 - 00000000 ____D C:\Users\Waldi\AppData\Local\ESN 2013-11-14 05:45 - 2013-11-14 03:30 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Origin 2013-11-14 05:25 - 2013-11-14 04:25 - 00000000 ____D C:\Users\Waldi\Downloads\IntelBurnTest 2013-11-14 05:17 - 2013-11-14 05:01 - 00001198 _____ C:\Users\Public\Desktop\Battlefield 4.lnk 2013-11-14 05:17 - 2013-11-14 05:01 - 00001174 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk 2013-11-14 05:00 - 2013-11-14 05:00 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe 2013-11-14 05:00 - 2013-11-14 05:00 - 00000000 ____D C:\ProgramData\Package Cache 2013-11-14 04:45 - 2013-11-14 04:45 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk 2013-11-14 04:45 - 2013-11-14 04:45 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-11-14 04:40 - 2013-11-14 04:40 - 00001085 _____ C:\Users\Waldi\Desktop\MPC-HC.lnk 2013-11-14 04:40 - 2013-11-14 04:40 - 00000000 ____D C:\Program Files (x86)\MPC-HC 2013-11-14 04:36 - 2013-11-14 04:32 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-11-14 04:36 - 2009-07-14 10:34 - 00000478 _____ C:\Windows\win.ini 2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2013-11-14 04:34 - 2010-11-21 15:16 - 00000000 ____D C:\Windows\ShellNew 2013-11-14 04:34 - 2009-07-14 11:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Windows\PCHEALTH 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Sync Framework 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2013-11-14 04:33 - 2013-11-14 04:32 - 00000000 ____D C:\Program Files\Microsoft Office 2013-11-14 04:33 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\MSBuild 2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 __RHD C:\MSOCache 2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Users\Waldi\AppData\Local\Microsoft Help 2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2013-11-14 04:32 - 2013-11-14 04:17 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\DAEMON Tools Lite 2013-11-14 04:32 - 2013-11-14 04:16 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2013-11-14 04:25 - 2013-11-14 04:25 - 00031136 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS 2013-11-14 04:25 - 2013-11-14 04:25 - 00000000 ____D C:\Program Files\HWiNFO64 2013-11-14 04:24 - 2013-11-14 04:24 - 00000000 ____D C:\Program Files (x86)\Geeks3D 2013-11-14 04:17 - 2013-11-14 04:17 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2013-11-14 04:17 - 2013-11-14 04:17 - 00001954 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2013-11-14 04:17 - 2013-11-14 04:17 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite 2013-11-14 04:05 - 2013-11-14 03:42 - 00000000 ____D C:\Program Files (x86)\Origin Games 2013-11-14 03:29 - 2013-11-14 03:29 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk 2013-11-14 03:07 - 2013-11-14 01:41 - 00000000 ____D C:\Program Files (x86)\Hotkey 2013-11-14 03:02 - 2013-11-14 03:02 - 00003176 _____ C:\Windows\System32\Tasks\{C0F16D60-C776-4C21-A429-EB577937A1B9} 2013-11-14 02:55 - 2013-11-14 02:55 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk 2013-11-14 02:43 - 2013-11-14 01:22 - 00015882 _____ C:\Windows\DPINST.LOG 2013-11-14 02:39 - 2013-11-14 02:39 - 00000000 ____D C:\Users\Waldi\AppData\Local\Innovative Solutions 2013-11-14 02:26 - 2013-11-14 01:06 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-11-14 02:14 - 2013-11-14 02:14 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Avira 2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\ProgramData\AskPartnerNetwork 2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\ProgramData\APN 2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork 2013-11-14 02:00 - 2013-11-14 02:00 - 00002070 _____ C:\Users\Public\Desktop\Avira Control Center.lnk 2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\ProgramData\Avira 2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\Program Files (x86)\Avira 2013-11-14 01:56 - 2013-11-14 01:56 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Mozilla 2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\ProgramData\Mozilla 2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\Documents\EA Games 2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\AppData\Local\EA Games 2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Program Files\Realtek 2013-11-14 01:38 - 2013-11-14 01:22 - 00002144 _____ C:\Windows\sentelic.log 2013-11-14 01:38 - 2013-11-14 01:06 - 00000000 ____D C:\Windows\SysWOW64\sda 2013-11-14 01:36 - 2013-11-14 01:36 - 00000000 ____D C:\Users\Waldi\AppData\Local\2K Games 2013-11-14 01:34 - 2013-11-14 01:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____D C:\Program Files\AuthenTec 2013-11-14 01:31 - 2009-07-14 13:32 - 00000000 ____D C:\Windows\system32\WinBioPlugIns 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Local\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\ProgramData\ATI 2013-11-14 01:24 - 2013-11-14 01:24 - 00002525 _____ C:\Users\Public\Desktop\Microsoft Download Manager.lnk 2013-11-14 01:24 - 2013-11-14 01:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Download Manager 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_fspad_win764_01009.Wdf 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____D C:\Program Files\FSP 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Atheros 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\BMExplorer 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\ProgramData\Atheros 2013-11-14 01:18 - 2009-07-14 11:20 - 00000000 __RHD C:\Users\Public\Libraries 2013-11-14 01:14 - 2013-11-14 01:14 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-11-14 01:13 - 2013-11-14 01:13 - 00002238 _____ C:\Users\Public\Desktop\Qualcomm Atheros Killer Network Manager.lnk 2013-11-14 01:13 - 2013-11-14 01:13 - 00000264 _____ C:\Users\Waldi\AppData\Local\killertool.log 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files\Qualcomm Atheros 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-11-14 01:07 - 2013-11-14 01:07 - 00000000 ____D C:\Users\Waldi\AppData\Local\Intel_Corporation 2013-11-14 01:06 - 2009-07-14 13:32 - 00000000 ____D C:\Windows\system32\restore 2013-11-14 01:05 - 2013-11-14 01:05 - 00000000 ____D C:\ProgramData\Intel 2013-11-14 01:05 - 2013-11-14 01:02 - 00000000 ____D C:\Program Files\Intel 2013-11-14 01:03 - 2013-11-14 01:03 - 00000000 _____ C:\Windows\ativpsrm.bin 2013-11-14 01:01 - 2013-11-14 00:52 - 00000000 ____D C:\Intel 2013-11-14 00:58 - 2013-11-14 00:58 - 00135602 _____ C:\Windows\system32\log.xml 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\ProgramData\AMD 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files (x86)\AMD AVT 2013-11-14 00:55 - 2013-11-14 00:54 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2013-11-14 00:55 - 2013-11-14 00:53 - 00000000 ____D C:\Program Files\ATI Technologies 2013-11-14 00:54 - 2013-11-14 00:54 - 00000000 ____D C:\Program Files\ATI 2013-11-14 00:48 - 2013-11-14 00:48 - 00000020 ___SH C:\Users\Waldi\ntuser.ini 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 __SHD C:\Recovery 2013-11-14 00:48 - 2013-11-13 16:45 - 00000000 ____D C:\Windows\Panther 2013-11-14 00:48 - 2009-07-14 11:20 - 00000000 __RHD C:\Users\Default 2013-11-14 00:48 - 2009-07-14 11:20 - 00000000 ____D C:\Program Files\Windows NT 2013-11-14 00:46 - 2013-11-14 00:46 - 00001355 _____ C:\Windows\TSSysprep.log 2013-11-14 00:46 - 2009-07-14 12:46 - 00002790 _____ C:\Windows\DtcInstall.log 2013-11-13 16:44 - 2009-07-14 13:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2013-11-13 16:44 - 2009-07-14 13:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2013-11-07 23:00 - 2013-11-15 03:27 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe Some content of TEMP: ==================== C:\Users\Waldi\AppData\Local\Temp\avgnt.exe C:\Users\Waldi\AppData\Local\Temp\drm_dialogs.dll C:\Users\Waldi\AppData\Local\Temp\drm_dyndata_7380006.dll C:\Users\Waldi\AppData\Local\Temp\drm_dyndata_7410004.dll C:\Users\Waldi\AppData\Local\Temp\fp_pl_pfs_installer-1.exe C:\Users\Waldi\AppData\Local\Temp\fp_pl_pfs_installer.exe C:\Users\Waldi\AppData\Local\Temp\gpushark.exe C:\Users\Waldi\AppData\Local\Temp\gpuz.exe C:\Users\Waldi\AppData\Local\Temp\i4jdel0.exe C:\Users\Waldi\AppData\Local\Temp\ose00000.exe C:\Users\Waldi\AppData\Local\Temp\SendMsg.dll C:\Users\Waldi\AppData\Local\Temp\SHSetup.exe C:\Users\Waldi\AppData\Local\Temp\sonarinst.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-11-30 14:24 ==================== End Of Log ============================ Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-12-2013
Ran by Waldi at 2013-12-03 18:33:10
Running from C:\Users\Waldi\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)
Airplane Mode Hid Installer (x32 Version: 2.0.0.5)
AMD Accelerated Video Transcoding (Version: 12.10.100.30315)
AMD Catalyst Install Manager (Version: 8.0.911.0)
Avira Free Antivirus (x32 Version: 14.0.1.759)
Avira SearchFree Toolbar (x32 Version: 12.6.0.1898)
Battlefield 4™ (x32 Version: 1.0.0.1)
Battlelog Web Plugins (x32 Version: 2.3.1)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2013.0315.1331.22405)
Catalyst Control Center InstallProxy (x32 Version: 2013.0315.1331.22405)
Catalyst Control Center Localization All (x32 Version: 2013.0315.1331.22405)
CCC Help Chinese Standard (x32 Version: 2013.0315.1330.22405)
CCC Help Chinese Traditional (x32 Version: 2013.0315.1330.22405)
CCC Help Czech (x32 Version: 2013.0315.1330.22405)
CCC Help Danish (x32 Version: 2013.0315.1330.22405)
CCC Help Dutch (x32 Version: 2013.0315.1330.22405)
CCC Help English (x32 Version: 2013.0315.1330.22405)
CCC Help Finnish (x32 Version: 2013.0315.1330.22405)
CCC Help French (x32 Version: 2013.0315.1330.22405)
CCC Help German (x32 Version: 2013.0315.1330.22405)
CCC Help Greek (x32 Version: 2013.0315.1330.22405)
CCC Help Hungarian (x32 Version: 2013.0315.1330.22405)
CCC Help Italian (x32 Version: 2013.0315.1330.22405)
CCC Help Japanese (x32 Version: 2013.0315.1330.22405)
CCC Help Korean (x32 Version: 2013.0315.1330.22405)
CCC Help Norwegian (x32 Version: 2013.0315.1330.22405)
CCC Help Polish (x32 Version: 2013.0315.1330.22405)
CCC Help Portuguese (x32 Version: 2013.0315.1330.22405)
CCC Help Russian (x32 Version: 2013.0315.1330.22405)
CCC Help Spanish (x32 Version: 2013.0315.1330.22405)
CCC Help Swedish (x32 Version: 2013.0315.1330.22405)
CCC Help Thai (x32 Version: 2013.0315.1330.22405)
CCC Help Turkish (x32 Version: 2013.0315.1330.22405)
ccc-utility64 (Version: 2013.0315.1331.22405)
Command & Conquer(TM) Generäle (x32 Version: 0.50.0000)
Counter-Strike: Global Offensive (x32)
DAEMON Tools Lite (x32 Version: 4.48.1.0347)
ESN Sonar (x32 Version: 0.70.4)
Fallout 2 (x32)
Fallout 3 (x32 Version: 1.00.0000)
Finger Sensing Pad Driver (Version: 9.4.3.7)
Geeks3D.com FurMark 1.9.2 (x32)
Grand Theft Auto: Episodes from Liberty City (x32 Version: 1.0.0002.135)
Grand Theft Auto: Episodes From Liberty City (x32 Version: 1.1.0.0)
Hotkey 7.0026 (x32 Version: 7.0026)
HWiNFO64 Version 4.26 (Version: 4.26)
Intel(R) Management Engine Components (x32 Version: 9.0.0.1310)
Intel(R) Processor Graphics (x32 Version: 9.18.10.3165)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 3.0.0.63463)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 2.5.0.19)
Intel® Trusted Connect Service Client (Version: 1.27.757.1)
LingoDict 2.0 (x32 Version: 2.0)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Download Manager (x32 Version: 1.2.1)
Microsoft Games for Windows - LIVE (x32 Version: 3.1.186.0)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.1.99.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Italian) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (German) 2010 (Version: 14.0.6029.1000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610)
Mozilla Firefox 25.0.1 (x86 de) (x32 Version: 25.0.1)
Mozilla Maintenance Service (x32 Version: 25.0.1)
MPC-HC 1.7.0 (x32 Version: 1.7.0.7858)
NVIDIA PhysX (x32 Version: 9.10.0512)
Origin (x32 Version: 9.3.10.4710)
PowerXpressHybrid (x32 Version: 1.00.0000)
PunkBuster Services (x32 Version: 0.993)
PX Profile Update (x32 Version: 1.00.1.)
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.224)
Qualcomm Atheros Killer Network Manager (Version: 6.1.0.582)
Qualcomm Atheros Killer Network Manager (x32 Version: 6.1.0.582)
Realtek Ethernet Controller Driver For Windows Vista and Later (x32 Version: 1.00.0011)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6870)
Realtek PCIE Card Reader (x32 Version: 6.2.9200.27036)
Skype™ 6.11 (x32 Version: 6.11.102)
Steam (x32)
TeamSpeak 3 Client (Version: 3.0.13)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
VisualBee for Microsoft PowerPoint (HKCU Version: V4.1)
VLC media player 2.1.1 (Version: 2.1.1)
WinRAR 5.00 (64-Bit) (Version: 5.00.0)
==================== Restore Points =========================
20-11-2013 11:39:58 DirectX wurde installiert
20-11-2013 11:40:12 Installiert Fallout 3
22-11-2013 05:43:32 Windows Update
28-11-2013 02:03:32 DirectX wurde installiert
30-11-2013 05:27:15 Avira Free Antivirus - 30.11.2013 13:27
01-12-2013 04:50:33 Windows Update
03-12-2013 07:20:21 Installed SpyHunter
03-12-2013 09:28:51 Removed SpyHunter
==================== Hosts content: ==========================
2009-07-14 10:34 - 2009-06-11 05:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {1111E31A-2FD2-4ECF-8AA0-D4CD9F38F748} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-14] (Adobe Systems Incorporated)
Task: {19B51EA0-D150-47D7-995E-9D7B4799477A} - System32\Tasks\{883B52E7-ED4A-487D-867F-AA9C677A1C63} => E:\Program Files (x86)\EA Games\Command and Conquer Generäle\generals.exe [2003-06-26] ()
Task: {2C35FC71-5992-443A-B6EE-8964F9A66CC6} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS\AutoKMS.exe
==================== Loaded Modules (whitelisted) =============
2011-03-17 07:07 - 2011-03-17 07:07 - 04297568 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2013-03-27 18:33 - 2013-03-27 18:33 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2011-05-10 03:46 - 2011-05-10 03:46 - 02760192 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtCore4.dll
2011-05-10 03:56 - 2011-05-10 03:56 - 09856000 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtGui4.dll
2011-05-10 03:48 - 2011-05-10 03:48 - 00990720 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtNetwork4.dll
2011-05-10 03:47 - 2011-05-10 03:47 - 00416256 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\QtXml4.dll
2013-04-30 21:43 - 2013-04-30 21:43 - 00217600 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFCommon.dll
2011-05-10 19:32 - 2011-05-10 19:32 - 00731648 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\qwt5.dll
2013-04-30 21:44 - 2013-04-30 21:44 - 00404992 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modApplications.dll
2013-04-30 21:44 - 2013-04-30 21:44 - 00036864 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modFeatures.dll
2013-04-30 21:44 - 2013-04-30 21:44 - 00025088 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modFraps.dll
2013-04-30 21:44 - 2013-04-30 21:44 - 00240128 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modGraph.dll
2013-04-30 21:44 - 2013-04-30 21:44 - 00062464 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modlcd.dll
2013-04-30 21:44 - 2013-04-30 21:44 - 00291328 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modNetwork.dll
2013-04-30 21:44 - 2013-04-30 21:44 - 00184832 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modNpu.dll
2013-04-30 21:44 - 2013-04-30 21:44 - 00211456 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modOptions.dll
2013-04-30 21:44 - 2013-04-30 21:44 - 00064000 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modOverview.dll
2013-04-30 21:44 - 2013-04-30 21:44 - 00317440 _____ () C:\Program Files\Qualcomm Atheros\Killer Network Manager\plugins\modSystemInfo.dll
2009-06-06 21:50 - 2009-06-06 21:50 - 00019968 _____ () C:\Program Files (x86)\Hotkey\Audiodll.dll
2013-11-14 01:05 - 2013-02-16 23:17 - 01199576 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-11-14 02:00 - 2013-11-01 02:25 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2011-03-17 07:11 - 2011-03-17 07:11 - 04297568 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: Realtek PCIe GBE Family Controller
Description: Realtek PCIe GBE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8168
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
==================== Event log errors: =========================
Application errors:
==================
Error: (12/03/2013 02:08:30 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 02:00:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 01:29:52 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 01:29:33 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Name des fehlerhaften Moduls: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000001290
ID des fehlerhaften Prozesses: 0xa38
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Error: (12/03/2013 01:02:15 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 00:58:45 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 00:32:51 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 00:30:42 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 11:33:21 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/02/2013 07:34:18 PM) (Source: Application Hang) (User: )
Description: Programm Fallout3.exe, Version 1.1.0.35 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: a64
Startzeit: 01ceef511ac16961
Endzeit: 140
Anwendungspfad: E:\Program Files (x86)\Bethesda Softworks\Fallout 3\Fallout3.exe
Berichts-ID:
System errors:
=============
Error: (12/03/2013 04:50:47 PM) (Source: mbamchameleon) (User: )
Description: \Device\HarddiskVolume2\PROGRAM FILES (X86)\AVIRA\ANTIVIR DESKTOP\AVWSC.EXE
Error: (12/03/2013 04:50:47 PM) (Source: mbamchameleon) (User: )
Description: \??\C:\Program Files (x86)\Avira\AntiVir Desktop\avwsc.exe
Error: (12/03/2013 04:09:19 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "PHILLEY-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{D55B372E-86F5-439C-AF3B-3FC5089CB6B3}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Error: (12/03/2013 01:28:49 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (12/03/2013 00:36:29 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Update BuzzSearch" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/03/2013 00:36:06 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Util BuzzSearch" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/03/2013 00:29:55 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (12/02/2013 10:58:37 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (12/01/2013 10:54:15 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (11/30/2013 09:32:00 PM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "MARKFERGUS0-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{D55B372E-86F5-439C-AF3B-3FC5089CB6B3}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.
Microsoft Office Sessions:
=========================
Error: (12/03/2013 02:08:30 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 02:00:05 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 01:29:52 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 01:29:33 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4Explorer.EXE6.1.7601.175674d672ee4c00000050000000000001290a3801ceefe89bfed801C:\Windows\Explorer.EXEC:\Windows\Explorer.EXEe38ffbb8-5bdb-11e3-ba85-3c77e69cf65d
Error: (12/03/2013 01:02:15 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 00:58:45 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 00:32:51 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 00:30:42 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/03/2013 11:33:21 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/02/2013 07:34:18 PM) (Source: Application Hang)(User: )
Description: Fallout3.exe1.1.0.35a6401ceef511ac16961140E:\Program Files (x86)\Bethesda Softworks\Fallout 3\Fallout3.exe
==================== Memory info ===========================
Percentage of memory in use: 17%
Total physical RAM: 16303.42 MB
Available physical RAM: 13416.13 MB
Total Pagefile: 32605.02 MB
Available Pagefile: 28967.28 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:119.14 GB) (Free:7.91 GB) NTFS
Drive e: (Volume) (Fixed) (Total:465.09 GB) (Free:358.29 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 119 GB) (Disk ID: 77781E28)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 466 GB) (Disk ID: 5878B578)
Partition: GPT Partition Type
==================== End Of Log ============================
Code:
ATTFilter GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-12-03 18:44:02
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 SAMSUNG_SSD_830_Series rev.CXM03B1Q 119,24GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\Waldi\AppData\Local\Temp\pgloqpob.sys
---- Kernel code sections - GMER 2.1 ----
INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 528 fffff800031ab000 45 bytes [00, 00, 00, 00, 00, 00, 00, ...]
INITKDBG C:\Windows\system32\ntoskrnl.exe!ExDeleteNPagedLookasideList + 575 fffff800031ab02f 16 bytes [00, C0, C1, BC, 0F, 80, FA, ...]
---- User code sections - GMER 2.1 ----
.text C:\Windows\Explorer.EXE[1920] C:\Windows\SYSTEM32\ntdll.dll!atan + 1 0000000076e385d5 45 bytes [89, E0, 48, 89, 58, 10, 48, ...]
.text C:\Windows\Explorer.EXE[1920] C:\Windows\SYSTEM32\ntdll.dll!atan + 47 0000000076e38603 24 bytes {LEA EAX, [RBX+0x54]; LEA ECX, [RDX+0x26]; MOV EDI, ECX; CALL QWORD [RBX+0x8]}
.text C:\Windows\SysWOW64\PnkBstrA.exe[2244] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322 0000000072101a22 2 bytes [10, 72]
.text C:\Windows\SysWOW64\PnkBstrA.exe[2244] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496 0000000072101ad0 2 bytes [10, 72]
.text C:\Windows\SysWOW64\PnkBstrA.exe[2244] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552 0000000072101b08 2 bytes [10, 72]
.text C:\Windows\SysWOW64\PnkBstrA.exe[2244] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730 0000000072101bba 2 bytes [10, 72]
.text C:\Windows\SysWOW64\PnkBstrA.exe[2244] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762 0000000072101bda 2 bytes [10, 72]
.text C:\Windows\SysWOW64\PnkBstrA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000074df1465 2 bytes [DF, 74]
.text C:\Windows\SysWOW64\PnkBstrA.exe[2244] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000074df14bb 2 bytes [DF, 74]
.text ... * 2
.text C:\Program Files (x86)\Hotkey\Hotkey.exe[5032] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 69 0000000074df1465 2 bytes [DF, 74]
.text C:\Program Files (x86)\Hotkey\Hotkey.exe[5032] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 155 0000000074df14bb 2 bytes [DF, 74]
.text ... * 2
.text C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4100] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000074df1465 2 bytes [DF, 74]
.text C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe[4100] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000074df14bb 2 bytes [DF, 74]
.text ... * 2
.text C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE[5892] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000074df1465 2 bytes [DF, 74]
.text C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE[5892] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000074df14bb 2 bytes [DF, 74]
.text ... * 2
.text C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Toolbar.exe[5776] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000074df1465 2 bytes [DF, 74]
.text C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Toolbar.exe[5776] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000074df14bb 2 bytes [DF, 74]
.text ... * 2
.text C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE[10236] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000074df1465 2 bytes [DF, 74]
.text C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE[10236] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 0000000074df14bb 2 bytes [DF, 74]
.text ... * 2
---- Registry - GMER 2.1 ----
Reg HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\3c77e69cf65e (not active ControlSet)
---- EOF - GMER 2.1 ----
Geändert von Waldi.S (03.12.2013 um 16:04 Uhr) Grund: gmer logfile hinzugefügt |
|
04.12.2013, 10:47
| #5 |
| /// the machine /// TB-Ausbilder | Bublik A.30.132 Trojaner hi, Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.12.2013, 11:18
| #6 |
| | Bublik A.30.132 Trojaner hallo, hier die logfile Code:
ATTFilter ComboFix 13-12-04.02 - Waldi 04.12.2013 18:05:38.1.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.49.1031.18.16303.14361 [GMT 8:00]
ausgeführt von:: c:\users\Waldi\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Waldi\AppData\Local\assembly\tmp
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-11-04 bis 2013-12-04 ))))))))))))))))))))))))))))))
.
.
2013-12-04 10:07 . 2013-12-04 10:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-12-04 01:08 . 2013-11-17 17:28 10285968 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{737FFFDE-B4BD-4448-86F2-7DCE377B9498}\mpengine.dll
2013-12-03 10:32 . 2013-12-03 10:32 -------- d-----w- C:\FRST
2013-12-03 08:56 . 2013-12-03 08:59 -------- d-----w- c:\programdata\Malwarebytes' Anti-Malware (portable)
2013-12-03 08:46 . 2013-12-03 08:46 91352 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2013-12-03 07:20 . 2013-12-03 07:20 -------- d-----w- c:\program files\Enigma Software Group
2013-12-03 07:20 . 2013-12-03 09:29 -------- d-----w- c:\windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-12-03 07:20 . 2013-12-03 07:20 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-12-03 03:36 . 2013-12-03 04:30 -------- d-----w- c:\programdata\mryu
2013-12-03 03:36 . 2013-12-03 03:36 -------- d-----w- c:\programdata\tkipd
2013-12-03 03:36 . 2013-12-03 03:36 -------- d-----w- c:\programdata\tbrjps
2013-12-01 04:05 . 2013-12-01 04:05 -------- d-----w- c:\programdata\Malwarebytes
2013-12-01 04:05 . 2013-12-01 04:05 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-12-01 04:05 . 2013-04-04 06:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-12-01 02:54 . 2013-12-04 00:11 -------- d-----w- c:\programdata\mdh
2013-12-01 02:37 . 2013-12-03 23:40 -------- d-----w- c:\programdata\kjqvm
2013-12-01 02:37 . 2013-12-03 23:04 -------- d-----w- c:\programdata\upcr
2013-12-01 02:37 . 2013-12-01 02:37 -------- d-----w- c:\programdata\fkmfb
2013-11-29 04:53 . 2013-12-01 04:16 -------- d-----w- c:\programdata\tvidqe
2013-11-29 04:26 . 2013-12-01 04:16 -------- d-----w- c:\programdata\udoec
2013-11-29 04:26 . 2013-12-01 03:24 -------- d-----w- c:\programdata\rwxuvcn
2013-11-29 04:26 . 2013-11-29 04:26 -------- d-----w- c:\programdata\jsxck
2013-11-27 02:42 . 2013-11-30 05:28 -------- d-----w- c:\programdata\qswcb
2013-11-27 02:05 . 2013-11-30 05:28 -------- d-----w- c:\programdata\pgt
2013-11-27 02:05 . 2013-11-30 05:25 -------- d-----w- c:\programdata\xcf
2013-11-27 02:05 . 2013-11-27 02:05 -------- d-----w- c:\programdata\gpe
2013-11-26 06:22 . 2013-11-27 03:17 -------- d-----w- c:\programdata\oimr
2013-11-26 05:05 . 2013-11-27 02:42 -------- d-----w- c:\programdata\unmf
2013-11-26 05:05 . 2013-11-27 02:05 -------- d-----w- c:\programdata\wiltobo
2013-11-26 05:05 . 2013-11-26 05:05 -------- d-----w- c:\programdata\vlyvk
2013-11-25 02:46 . 2013-12-03 22:56 -------- d-----w- c:\programdata\qmbhac
2013-11-25 02:46 . 2013-11-27 03:17 -------- d-----w- c:\programdata\ifkeojg
2013-11-25 02:46 . 2013-11-27 03:17 -------- d-----w- c:\programdata\fmqb
2013-11-25 02:46 . 2013-11-27 02:03 -------- d-----w- c:\programdata\dkarde
2013-11-25 02:46 . 2013-11-25 02:46 -------- d-----w- c:\programdata\tyak
2013-11-25 02:40 . 2013-12-03 23:04 -------- d-----w- c:\programdata\dcdp
2013-11-22 05:43 . 2013-11-22 05:43 -------- d-----w- c:\windows\SysWow64\Wat
2013-11-22 05:43 . 2013-11-22 05:43 -------- d-----w- c:\windows\system32\Wat
2013-11-20 12:01 . 2013-11-20 12:01 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2013-11-20 10:48 . 2013-11-20 10:48 53248 ----a-w- c:\windows\ipuninst.exe
2013-11-20 10:44 . 2013-11-20 10:44 -------- d-----w- c:\program files\BlackIsle
2013-11-20 09:49 . 2013-11-20 09:49 -------- d-sh--w- c:\programdata\SecuROM
2013-11-20 09:48 . 2013-11-20 09:48 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2013-11-20 09:48 . 2013-11-20 09:48 -------- d-----w- c:\windows\SysWow64\xlive
2013-11-19 20:35 . 2013-11-19 20:35 -------- d-----w- c:\program files\WinRAR
2013-11-19 17:48 . 2013-09-04 12:12 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2013-11-19 17:48 . 2013-09-04 12:11 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2013-11-19 17:48 . 2013-09-04 12:11 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2013-11-19 17:48 . 2013-09-04 12:11 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys
2013-11-19 17:48 . 2013-09-04 12:11 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2013-11-19 17:48 . 2013-09-04 12:11 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2013-11-19 17:48 . 2013-09-04 12:11 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2013-11-16 21:45 . 2013-11-28 01:36 -------- d-----w- c:\program files (x86)\Common Files\Steam
2013-11-16 20:51 . 2013-04-26 09:24 41984 ----a-w- c:\windows\system32\drivers\USB3Ver.dll
2013-11-16 13:17 . 2013-04-17 07:02 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-11-16 13:00 . 2013-12-03 09:27 -------- d-----w- c:\program files (x86)\JDownloader
2013-11-16 13:00 . 2013-11-16 13:00 -------- d-----w- c:\programdata\VisualBee
2013-11-15 17:58 . 2011-04-28 03:54 80384 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2013-11-14 21:42 . 2013-11-14 21:42 -------- d-----w- c:\windows\SysWow64\wbem\en-US
2013-11-14 21:42 . 2013-11-14 21:42 -------- d-----w- c:\windows\system32\wbem\en-US
2013-11-14 20:44 . 2012-07-26 07:46 2560 ----a-w- c:\windows\system32\drivers\de-DE\wdf01000.sys.mui
2013-11-14 20:32 . 2012-08-23 14:13 243200 ----a-w- c:\windows\system32\rdpudd.dll
2013-11-14 20:32 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2013-11-14 20:32 . 2012-08-23 14:08 30208 ----a-w- c:\windows\system32\drivers\TsUsbGD.sys
2013-11-14 20:32 . 2012-08-23 13:24 15360 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2013-11-14 20:32 . 2012-08-23 11:12 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2013-11-14 20:32 . 2012-08-23 10:51 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2013-11-14 20:32 . 2012-08-23 09:51 3174912 ----a-w- c:\windows\system32\rdpcorets.dll
2013-11-14 20:21 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2013-11-14 19:33 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2013-11-14 19:33 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2013-11-14 19:33 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2013-11-14 19:33 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2013-11-14 19:33 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2013-11-14 19:33 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2013-11-14 19:33 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2013-11-14 19:27 . 2013-11-14 19:27 -------- d-----w- c:\windows\system32\MRT
2013-11-14 19:10 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2013-11-14 19:10 . 2012-03-01 06:33 81408 ----a-w- c:\windows\system32\imagehlp.dll
2013-11-14 19:10 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2013-11-14 19:10 . 2012-03-01 05:33 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2013-11-14 19:10 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2013-11-14 16:38 . 2013-02-27 06:02 111448 ----a-w- c:\windows\system32\consent.exe
2013-11-14 16:38 . 2013-02-27 05:47 70144 ----a-w- c:\windows\system32\appinfo.dll
2013-11-14 16:32 . 2013-10-04 02:24 1930752 ----a-w- c:\windows\system32\authui.dll
2013-11-14 16:32 . 2013-10-04 02:28 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll
2013-11-14 16:32 . 2013-10-04 02:25 197120 ----a-w- c:\windows\system32\credui.dll
2013-11-14 16:32 . 2013-10-04 01:58 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll
2013-11-14 16:32 . 2013-10-04 01:56 168960 ----a-w- c:\windows\SysWow64\credui.dll
2013-11-14 16:32 . 2013-10-04 01:56 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2013-11-14 16:30 . 2013-09-25 02:23 1030144 ----a-w- c:\windows\system32\TSWorkspace.dll
2013-11-14 16:30 . 2013-09-25 01:57 792576 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2013-11-14 16:30 . 2012-11-30 05:45 362496 ----a-w- c:\windows\system32\wow64win.dll
2013-11-14 16:30 . 2012-11-30 05:45 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2013-11-14 16:30 . 2012-11-30 05:43 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2013-11-14 16:25 . 2013-04-25 23:30 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-11-14 16:23 . 2012-08-21 21:01 245760 ----a-w- c:\windows\system32\OxpsConverter.exe
2013-11-14 16:20 . 2013-05-13 03:43 1192448 ----a-w- c:\windows\system32\certutil.exe
2013-11-14 16:20 . 2013-05-13 05:50 52224 ----a-w- c:\windows\system32\certenc.dll
2013-11-14 16:20 . 2013-05-13 03:08 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2013-11-14 16:20 . 2013-05-13 03:08 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2013-11-14 16:20 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll
2013-11-14 16:20 . 2013-07-09 04:52 175104 ----a-w- c:\windows\SysWow64\wintrust.dll
2013-11-14 16:18 . 2013-04-10 05:48 1732608 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2013-11-14 16:18 . 2013-04-10 05:46 1402880 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2013-11-14 16:18 . 2013-04-10 05:46 1393152 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2013-11-14 16:18 . 2013-04-10 05:46 1367040 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2013-11-14 16:18 . 2013-04-10 05:03 936448 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2013-11-14 16:17 . 2012-07-04 22:16 73216 ----a-w- c:\windows\system32\netapi32.dll
2013-11-14 16:17 . 2012-07-04 22:13 59392 ----a-w- c:\windows\system32\browcli.dll
2013-11-14 16:17 . 2012-07-04 22:13 136704 ----a-w- c:\windows\system32\browser.dll
2013-11-14 16:17 . 2012-07-04 21:14 41984 ----a-w- c:\windows\SysWow64\browcli.dll
2013-11-14 16:17 . 2013-01-03 06:00 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-11-14 16:17 . 2012-08-22 18:12 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2013-11-14 16:15 . 2012-08-22 18:12 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2013-11-14 16:15 . 2012-07-04 20:26 41472 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2013-11-14 16:14 . 2013-09-08 02:30 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-11-14 16:14 . 2013-09-08 02:27 327168 ----a-w- c:\windows\system32\mswsock.dll
2013-11-14 16:14 . 2013-09-08 02:03 231424 ----a-w- c:\windows\SysWow64\mswsock.dll
2013-11-14 16:13 . 2013-08-28 01:12 461312 ----a-w- c:\windows\system32\scavengeui.dll
2013-11-14 16:13 . 2013-06-25 22:55 785624 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2013-11-14 16:13 . 2012-11-28 22:56 9728 ----a-w- c:\windows\system32\Wdfres.dll
2013-11-14 16:13 . 2012-11-28 22:56 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2013-11-14 16:13 . 2011-04-29 03:06 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2013-11-14 16:13 . 2011-04-29 03:05 410112 ----a-w- c:\windows\system32\drivers\srv2.sys
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-11-18 19:33 . 2010-11-21 03:27 267936 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7}]
2013-10-23 18:43 12240 ----a-w- c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{41564952-412D-5637-00A7-7A786E7484D7}"= "c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" [2013-10-23 12240]
.
[HKEY_CLASSES_ROOT\clsid\{41564952-412d-5637-00a7-7a786e7484d7}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-10-28 3675352]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-15 642656]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-10-31 683576]
"ApnTBMon"="c:\program files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [2013-10-23 1673680]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-09-05 958576]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2013-04-26 292848]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Hotkey.lnk - c:\program files (x86)\Hotkey\Hotkey.exe [2013-7-24 4985856]
Qualcomm Atheros Killer Network Manager.lnk - c:\program files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe -minimized [2013-4-30 553984]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 esgiguard;esgiguard;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys;c:\program files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Hostcontroller-Switchtreiber;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 BfLwf;Qualcomm Atheros Bandwidth Control;c:\windows\system32\DRIVERS\bflwfx64.sys;c:\windows\SYSNATIVE\DRIVERS\bflwfx64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO64A.SYS;c:\windows\SYSNATIVE\drivers\HWiNFO64A.SYS [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 AntiVirWebService;Avira Browser-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe [x]
S2 APNMCP;Ask Aktualisierungsdienst;c:\program files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe;c:\program files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys;c:\windows\SYSNATIVE\DRIVERS\avnetflt.sys [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 PowerBiosServer;PowerBiosServer;c:\program files (x86)\Hotkey\PowerBiosServer.exe;c:\program files (x86)\Hotkey\PowerBiosServer.exe [x]
S2 Qualcomm Atheros Killer Service;Qualcomm Atheros Killer Service;c:\program files\Qualcomm Atheros\Killer Network Manager\BFNService.exe;c:\program files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [x]
S2 ZAtheros Bt and Wlan Coex Agent;ZAtheros Bt and Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S3 Ak27x64;Killer Wireless-N 1102 device driver;c:\windows\system32\DRIVERS\Ak27x64.sys;c:\windows\SYSNATIVE\DRIVERS\Ak27x64.sys [x]
S3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 fspad_win764;Finger Sensing Pad Driver;c:\windows\system32\DRIVERS\fspad_win764.sys;c:\windows\SYSNATIVE\DRIVERS\fspad_win764.sys [x]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 iusb3hub;Intel(R) USB 3.0-Hubtreiber;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Intel(R) USB 3.0 eXtensible-Hostcontrollertreiber;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 RSBASTOR;Realtek PCIE CardReader Driver - BA;c:\windows\system32\DRIVERS\RtsBaStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsBaStor.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2013-12-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-13 23:26]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7}]
2013-10-23 18:43 13776 ----a-w- c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{41564952-412D-5637-00A7-7A786E7484D7}"= "c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll" [2013-10-23 13776]
.
[HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-05-10 165872]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-05-10 407536]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-05-10 444400]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1832760]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-03-26 13449288]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.akersolutions.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: An OneNote s&enden - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
LSP: %SYSTEMROOT%\system32\BfLLR.dll
TCP: DhcpNameServer = 208.67.222.222 208.67.220.220
FF - ProfilePath - c:\users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default\
FF - ExtSQL: 2013-10-24 02:44; toolbar_AVIRA-V7@apn.ask.com; c:\users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default\extensions\toolbar_AVIRA-V7@apn.ask.com.xpi
FF - ExtSQL: 2013-11-26 14:27; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-fspuip - c:\program files (x86)\FSP\fspuip.exe
AddRemove-Battlelog Web Plugins - c:\program files (x86)\Battlelog Web Plugins\uninstall.exe
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-2950695333-3433012553-3668464571-1000\Software\SecuROM\License information*]
"datasecu"=hex:de,10,07,18,bf,e2,19,59,2e,2c,9e,d9,47,a3,e4,3e,1e,7f,81,e9,48,
69,14,2e,33,d4,40,c5,82,45,fd,ef,d3,07,42,e7,db,db,02,1b,6d,43,d5,ba,d1,aa,\
"rkeysecu"=hex:cf,fd,36,ed,8f,83,8f,67,d5,d5,68,a4,04,da,e7,c7
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2013-12-04 18:08:45
ComboFix-quarantined-files.txt 2013-12-04 10:08
.
Vor Suchlauf: 8 Verzeichnis(se), 11.320.582.144 Bytes frei
Nach Suchlauf: 12 Verzeichnis(se), 12.563.337.216 Bytes frei
.
- - End Of File - - 6F75F24F1A015B8651A516A0DFAFB13D
A36C5E4F47E84449FF07ED3517B43A31
|
|
04.12.2013, 14:35
| #7 |
| /// the machine /// TB-Ausbilder | Bublik A.30.132 Trojaner Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.12.2013, 16:16
| #8 |
| | Bublik A.30.132 Trojaner Sooo, alles gemacht... Code:
ATTFilter Malwarebytes Anti-Malware (Test) 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.12.04.05 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16736 Waldi :: WALDI-PC [Administrator] Schutz: Aktiviert 04.12.2013 22:38:09 mbam-log-2013-12-04 (22-38-09).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 210601 Laufzeit: 1 Minute(n), 25 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) Code:
ATTFilter # AdwCleaner v3.014 - Bericht erstellt am 04/12/2013 um 22:50:10
# Updated 01/12/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Waldi - WALDI-PC
# Gestartet von : C:\Users\Waldi\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\VisualBee
Ordner Gelöscht : C:\Users\Waldi\AppData\Local\visualbeeexe
Datei Gelöscht : C:\Users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default\user.js
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ApnSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_furmark_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_furmark_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\visualbee
Schlüssel Gelöscht : HKLM\Software\visualbee
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.16736
-\\ Mozilla Firefox v25.0.1 (de)
[ Datei : C:\Users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default\prefs.js ]
*************************
AdwCleaner[R0].txt - [1764 octets] - [04/12/2013 22:48:39]
AdwCleaner[S0].txt - [1582 octets] - [04/12/2013 22:50:10]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1642 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Waldi on 04.12.2013 at 22:56:54,34
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\apn"
Successfully deleted: [Folder] "C:\Users\Waldi\appdata\local\visualbeeclient"
~~~ FireFox
Successfully deleted: [File] C:\Users\Waldi\AppData\Roaming\mozilla\firefox\profiles\mqcraxjw.default\extensions\toolbar_avira-v7@apn.ask.com.xpi
Emptied folder: C:\Users\Waldi\AppData\Roaming\mozilla\firefox\profiles\mqcraxjw.default\minidumps [6 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 04.12.2013 at 22:58:36,95
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-12-2013 02
Ran by Waldi (administrator) on WALDI-PC on 04-12-2013 23:06:43
Running from C:\Users\Waldi\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Sentelic Corporation) C:\Program Files\FSP\FspUip.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Hotkey\Hotkey.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [fspuip] - C:\Program Files\FSP\FspUip.exe [6263120 2013-04-02] (Sentelic Corporation)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13449288 2013-03-27] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-01] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.akersolutions.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3B4E570995E0CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKLM-x32 - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
DPF: HKLM-x32 {B479199A-1242-4E3C-AD81-7F0DF801B4AE} hxxp://download.microsoft.com/download/C/9/C/C9C3D86D-84AC-4AF0-8584-842756A66467/MicrosoftDownloadManager.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 16 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 16 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Tcpip\Parameters: [DhcpNameServer] 208.67.222.222 208.67.220.220
FireFox:
========
FF ProfilePath: C:\Users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.1 - E:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/DownloadManager,version=1.1 - C:\Windows\ ()
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1164360 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-24] (APN LLC.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227968 2013-03-27] (Qualcomm Atheros Commnucations)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-02-23] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-14] ()
R2 PowerBiosServer; C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [46592 2013-05-30] ()
R2 Qualcomm Atheros Killer Service; C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [503296 2013-04-30] ()
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-03-27] (Atheros)
==================== Drivers (Whitelisted) ====================
R3 Ak27x64; C:\Windows\System32\DRIVERS\Ak27x64.sys [3921104 2013-04-30] (Qualcomm Atheros, Inc.)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [37472 2013-02-14] (Advanced Micro Devices, Inc.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [107416 2013-12-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-11-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [83160 2013-11-01] (Avira Operations GmbH & Co. KG)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [66928 2013-04-30] (Qualcomm Atheros, Inc.)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [77464 2013-03-27] (Qualcomm Atheros)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-14] (Disc Soft Ltd)
R3 fspad_win764; C:\Windows\System32\DRIVERS\fspad_win764.sys [155472 2013-04-02] (Sentelic Corporation)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31136 2013-11-14] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-04 23:06 - 2013-12-04 23:06 - 00012808 _____ C:\Users\Waldi\Desktop\FRST.txt
2013-12-04 23:03 - 2013-12-04 23:05 - 01959614 _____ (Farbar) C:\Users\Waldi\Desktop\FRST64.exe
2013-12-04 22:58 - 2013-12-04 22:58 - 00001278 _____ C:\Users\Waldi\Desktop\JRT.txt
2013-12-04 22:54 - 2013-12-04 22:54 - 00000000 ____D C:\Windows\ERUNT
2013-12-04 22:52 - 2013-12-04 22:52 - 00001726 _____ C:\Users\Waldi\Desktop\AdwCleaner[S0].txt
2013-12-04 22:48 - 2013-12-04 22:50 - 00000000 ____D C:\AdwCleaner
2013-12-04 22:44 - 2013-12-04 22:45 - 01034531 _____ (Thisisu) C:\Users\Waldi\Desktop\JRT.exe
2013-12-04 22:35 - 2013-12-04 22:37 - 01110034 _____ C:\Users\Waldi\Desktop\adwcleaner.exe
2013-12-04 19:25 - 2013-12-04 22:02 - 45768394 _____ (AVAST Software) C:\Users\Waldi\Downloads\avast_free_antivirus_setup2008.exe.n58blbg.partial
2013-12-04 18:08 - 2013-12-04 18:08 - 00024031 _____ C:\ComboFix.txt
2013-12-04 18:05 - 2013-12-04 18:08 - 00000000 ____D C:\Windows\erdnt
2013-12-04 18:05 - 2013-12-04 18:08 - 00000000 ____D C:\Qoobox
2013-12-04 18:05 - 2011-06-26 14:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-04 18:05 - 2010-11-08 01:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-04 18:05 - 2009-04-20 12:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-04 18:05 - 2000-08-31 08:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-04 18:05 - 2000-08-31 08:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-04 18:05 - 2000-08-31 08:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-04 18:05 - 2000-08-31 08:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-04 18:05 - 2000-08-31 08:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-04 17:59 - 2013-12-04 18:02 - 05152198 ____R (Swearware) C:\Users\Waldi\Desktop\ComboFix.exe
2013-12-04 17:37 - 2013-12-04 17:46 - 00000000 ____D C:\Users\Waldi\AppData\Local\FalloutNV
2013-12-04 17:29 - 2013-12-04 17:29 - 00001117 _____ C:\Users\Public\Desktop\Fallout New Vegas.lnk
2013-12-03 19:37 - 2013-12-03 19:37 - 00029071 _____ C:\Users\Waldi\Desktop\Desktop.rar
2013-12-03 18:44 - 2013-12-03 18:44 - 00005455 _____ C:\Users\Waldi\Desktop\gmer.log
2013-12-03 18:34 - 2013-12-03 18:34 - 00377856 _____ C:\Users\Waldi\Desktop\gmer_2.1.19163.exe
2013-12-03 18:32 - 2013-12-03 18:32 - 00000000 ____D C:\FRST
2013-12-03 18:25 - 2013-12-03 18:25 - 00000542 _____ C:\Users\Waldi\Desktop\defogger_disable.log
2013-12-03 18:25 - 2013-12-03 18:25 - 00000168 _____ C:\Users\Waldi\defogger_reenable
2013-12-03 18:24 - 2013-12-03 18:24 - 00050477 _____ C:\Users\Waldi\Desktop\Defogger.exe
2013-12-03 16:56 - 2013-12-03 16:59 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-12-03 16:46 - 2013-12-03 16:59 - 00000000 ____D C:\Users\Waldi\Desktop\mbar
2013-12-03 16:46 - 2013-12-03 16:46 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-12-03 16:06 - 2013-12-03 16:14 - 12576792 _____ (Malwarebytes Corp.) C:\Users\Waldi\Downloads\mbar-1.07.0.1007.exe
2013-12-03 15:57 - 2013-12-03 17:41 - 62064667 _____ (Symantec Corporation) C:\Users\Waldi\Downloads\NIS_21.1.0.18_SYMTB_TMD_MRFTT_820_10131.exe
2013-12-03 15:20 - 2013-12-03 17:29 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 _____ C:\autoexec.bat
2013-12-03 14:17 - 2013-12-03 14:18 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Waldi\Downloads\SpyHunter-Installer.exe
2013-12-03 13:59 - 2013-12-03 13:59 - 00028916 _____ C:\Users\Waldi\Documents\AVSCAN-20131203-133348-272CD52E.LOG
2013-12-03 11:36 - 2013-12-03 12:30 - 00000000 ____D C:\ProgramData\mryu
2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tkipd
2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tbrjps
2013-12-01 20:04 - 2013-12-01 20:04 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\dvdcss
2013-12-01 12:05 - 2013-12-01 12:05 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Malwarebytes
2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-01 12:05 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-01 11:56 - 2013-12-01 12:04 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Waldi\Downloads\mbam-setup.exe
2013-12-01 10:54 - 2013-12-04 08:11 - 00000000 ____D C:\ProgramData\mdh
2013-12-01 10:37 - 2013-12-04 07:40 - 00000000 ____D C:\ProgramData\kjqvm
2013-12-01 10:37 - 2013-12-04 07:04 - 00000000 ____D C:\ProgramData\upcr
2013-12-01 10:37 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\fkmfb
2013-11-29 16:41 - 2013-11-29 16:41 - 00001406 _____ C:\Users\Waldi\Desktop\FalloutLauncher - Verknüpfung.lnk
2013-11-29 12:53 - 2013-12-01 12:16 - 00000000 ____D C:\ProgramData\tvidqe
2013-11-29 12:26 - 2013-12-01 12:16 - 00000000 ____D C:\ProgramData\udoec
2013-11-29 12:26 - 2013-12-01 11:24 - 00000000 ____D C:\ProgramData\rwxuvcn
2013-11-29 12:26 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\jsxck
2013-11-29 12:25 - 2013-11-29 12:26 - 00341411 _____ C:\Users\Waldi\Downloads\Stadt Heinsberg.jpeg
2013-11-28 19:47 - 2013-11-28 19:47 - 00000000 ____D C:\ProgramData\dcdpy
2013-11-27 10:42 - 2013-11-30 13:28 - 00000000 ____D C:\ProgramData\qswcb
2013-11-27 10:26 - 2013-11-27 10:26 - 00000660 _____ C:\Users\Waldi\Desktop\LingoDict.lnk
2013-11-27 10:26 - 2013-11-27 10:26 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Lingo4u
2013-11-27 10:05 - 2013-11-30 13:28 - 00000000 ____D C:\ProgramData\pgt
2013-11-27 10:05 - 2013-11-30 13:25 - 00000000 ____D C:\ProgramData\xcf
2013-11-27 10:05 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\gpe
2013-11-26 14:35 - 2013-11-30 13:50 - 00000000 ____D C:\Users\Waldi\AppData\Local\Deployment
2013-11-26 14:35 - 2013-11-26 14:35 - 00000000 ____D C:\Users\Waldi\AppData\Local\Apps\2.0
2013-11-26 14:22 - 2013-11-27 11:17 - 00000000 ____D C:\ProgramData\oimr
2013-11-26 13:05 - 2013-11-27 10:42 - 00000000 ____D C:\ProgramData\unmf
2013-11-26 13:05 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\wiltobo
2013-11-26 13:05 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\vlyvk
2013-11-25 10:46 - 2013-12-04 06:56 - 00000000 ____D C:\ProgramData\qmbhac
2013-11-25 10:46 - 2013-11-27 11:17 - 00000000 ____D C:\ProgramData\ifkeojg
2013-11-25 10:46 - 2013-11-27 11:17 - 00000000 ____D C:\ProgramData\fmqb
2013-11-25 10:46 - 2013-11-27 10:03 - 00000000 ____D C:\ProgramData\dkarde
2013-11-25 10:46 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\tyak
2013-11-25 10:40 - 2013-12-04 07:04 - 00000000 ____D C:\ProgramData\dcdp
2013-11-24 08:09 - 2013-12-04 08:25 - 00000000 ____D C:\Users\Waldi\Desktop\Tungsten aktuell
2013-11-22 15:01 - 2013-11-22 15:01 - 00001059 _____ C:\Users\Waldi\Desktop\Fallout 2.lnk
2013-11-22 13:45 - 2013-11-22 13:45 - 00000000 ____D C:\Users\Waldi\AppData\Local\AskPartnerNetwork
2013-11-20 20:01 - 2013-12-04 17:37 - 00000000 ____D C:\Users\Waldi\Documents\My Games
2013-11-20 20:01 - 2013-11-29 12:57 - 00000000 ____D C:\Users\Waldi\AppData\Local\Fallout3
2013-11-20 20:01 - 2013-11-20 20:01 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2013-11-20 19:07 - 2013-11-20 19:07 - 00003128 _____ C:\Windows\System32\Tasks\{7A853EE4-76B1-434D-8D1F-22367A683333}
2013-11-20 18:48 - 2013-11-20 18:48 - 00053248 _____ (Interplay Productions) C:\Windows\ipuninst.exe
2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Black Isle
2013-11-20 18:44 - 2013-11-20 18:44 - 00000000 ____D C:\Program Files\BlackIsle
2013-11-20 18:35 - 2013-11-20 18:35 - 00003012 _____ C:\Windows\System32\Tasks\{883B52E7-ED4A-487D-867F-AA9C677A1C63}
2013-11-20 18:31 - 2013-11-20 18:42 - 00000000 ____D C:\Users\Waldi\Documents\Command and Conquer Generals Data
2013-11-20 18:29 - 2013-11-20 18:29 - 00000620 _____ C:\Windows\eReg.dat
2013-11-20 18:13 - 2013-11-20 18:13 - 00000793 _____ C:\Users\Public\Desktop\Command & Conquer(TM) Generäle.lnk
2013-11-20 17:59 - 2013-11-20 17:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\Rockstar Games
2013-11-20 17:57 - 2013-11-20 17:57 - 00000000 __RHD C:\Users\Waldi\AppData\Roaming\SecuROM
2013-11-20 17:49 - 2013-11-20 17:49 - 00000000 __SHD C:\ProgramData\SecuROM
2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Program Files\WinRAR
2013-11-20 04:25 - 2013-11-28 12:39 - 00000000 ____D C:\Users\Waldi\AppData\Local\dxhr
2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\SKIDROW
2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\28050
2013-11-20 03:20 - 2013-11-20 03:20 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-11-20 01:53 - 2013-11-20 01:53 - 00212708 _____ C:\Users\Waldi\Downloads\Mappe2.xlsx
2013-11-20 01:48 - 2013-09-04 20:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-11-17 06:00 - 2013-12-03 22:10 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\vlc
2013-11-17 05:58 - 2013-11-17 05:58 - 00000749 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-17 05:50 - 2013-11-17 05:50 - 00000219 _____ C:\Users\Waldi\Desktop\Counter-Strike Global Offensive.url
2013-11-17 05:50 - 2013-11-17 05:50 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-11-17 05:45 - 2013-11-17 05:45 - 00000700 _____ C:\Users\Public\Desktop\Steam.lnk
2013-11-17 04:51 - 2013-11-17 04:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2013-11-17 04:51 - 2013-04-26 17:24 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll
2013-11-16 21:19 - 2013-11-20 18:51 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\WinRAR
2013-11-16 21:19 - 2013-11-16 21:19 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-16 21:19 - 2013-11-16 21:19 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-16 21:19 - 2013-11-16 21:19 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-16 21:19 - 2013-11-16 21:19 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-16 21:19 - 2013-11-16 21:19 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-16 21:19 - 2013-11-16 21:19 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-16 21:19 - 2013-11-16 21:19 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-16 21:19 - 2013-11-16 21:19 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-16 21:17 - 2013-11-16 21:21 - 00009353 _____ C:\Windows\IE10_main.log
2013-11-16 21:17 - 2013-04-17 15:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-11-16 21:17 - 2013-04-17 14:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-11-16 21:17 - 2012-07-07 04:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-11-16 21:17 - 2012-02-11 14:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-11-16 21:17 - 2012-02-11 14:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2013-11-16 21:17 - 2011-03-11 14:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2013-11-16 21:17 - 2011-03-11 14:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-11-16 21:17 - 2011-03-11 14:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2013-11-16 21:17 - 2011-03-11 13:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-11-16 21:17 - 2011-03-11 13:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2013-11-16 21:17 - 2011-03-11 12:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-11-16 21:17 - 2011-02-25 14:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-11-16 21:17 - 2011-02-25 13:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-11-16 21:00 - 2013-12-03 17:27 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-11-16 20:59 - 2013-11-16 20:59 - 00001244 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-11-16 20:59 - 2013-11-16 20:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\emaze
2013-11-16 02:11 - 2013-11-16 02:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-16 01:58 - 2011-04-28 11:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-11-15 09:56 - 2013-11-15 09:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-11-15 04:54 - 2013-10-02 10:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-11-15 04:54 - 2013-10-02 10:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-11-15 04:54 - 2013-10-02 10:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-11-15 04:54 - 2013-10-02 09:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-11-15 04:54 - 2013-10-02 09:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-11-15 04:54 - 2013-10-02 09:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-11-15 04:54 - 2013-10-02 09:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-11-15 04:54 - 2013-10-02 08:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2013-11-15 04:54 - 2013-10-02 08:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-11-15 04:54 - 2013-10-02 08:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-11-15 04:54 - 2013-10-02 08:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-11-15 04:54 - 2013-10-02 08:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-11-15 04:54 - 2013-10-02 07:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-11-15 04:54 - 2013-10-02 07:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-11-15 04:54 - 2013-10-02 07:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2013-11-15 04:54 - 2013-10-02 06:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-11-15 04:54 - 2013-10-02 04:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-11-15 04:54 - 2013-10-02 04:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-11-15 04:32 - 2012-08-23 22:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-11-15 04:32 - 2012-08-23 22:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-11-15 04:32 - 2012-08-23 22:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-11-15 04:32 - 2012-08-23 21:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-11-15 04:32 - 2012-08-23 19:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-11-15 04:32 - 2012-08-23 18:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-11-15 04:32 - 2012-08-23 17:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-11-15 04:21 - 2010-02-23 16:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-11-15 03:58 - 2013-11-15 04:19 - 00004824 _____ C:\Windows\IE9_main.log
2013-11-15 03:33 - 2012-07-26 11:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-11-15 03:33 - 2012-07-26 11:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-11-15 03:33 - 2012-07-26 11:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-11-15 03:33 - 2012-07-26 11:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-11-15 03:33 - 2012-07-26 11:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-11-15 03:33 - 2012-07-26 10:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-11-15 03:33 - 2012-07-26 10:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-11-15 03:33 - 2012-06-02 22:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-11-15 03:27 - 2013-11-15 03:27 - 00000000 ____D C:\Windows\system32\MRT
2013-11-15 03:27 - 2013-11-07 23:00 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-15 03:15 - 2013-01-14 05:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:22 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-11-15 03:15 - 2013-01-14 04:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-11-15 03:15 - 2013-01-14 04:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-11-15 03:15 - 2013-01-14 04:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-11-15 03:15 - 2013-01-14 03:59 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-11-15 03:15 - 2013-01-14 03:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-11-15 03:15 - 2013-01-14 03:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-11-15 03:15 - 2013-01-14 03:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-11-15 03:15 - 2013-01-14 03:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-11-15 03:15 - 2013-01-14 03:51 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-11-15 03:15 - 2013-01-14 03:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-11-15 03:15 - 2013-01-14 03:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-11-15 03:15 - 2013-01-14 03:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-11-15 03:15 - 2013-01-14 03:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-11-15 03:15 - 2013-01-14 03:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-11-15 03:15 - 2013-01-14 03:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-11-15 03:15 - 2013-01-14 03:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-11-15 03:15 - 2013-01-14 03:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-11-15 03:15 - 2013-01-14 03:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-11-15 03:15 - 2013-01-14 03:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-11-15 03:15 - 2013-01-14 03:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-11-15 03:15 - 2013-01-14 03:10 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-11-15 03:15 - 2013-01-14 03:02 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-11-15 03:15 - 2013-01-14 02:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-11-15 03:15 - 2013-01-14 02:32 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-11-15 03:15 - 2013-01-14 02:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-11-15 03:15 - 2013-01-14 01:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-11-15 03:15 - 2013-01-14 01:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-11-15 03:15 - 2013-01-04 14:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-11-15 03:15 - 2013-01-04 14:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-11-15 03:10 - 2012-03-01 14:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-11-15 03:10 - 2012-03-01 14:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-11-15 03:10 - 2012-03-01 14:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-11-15 03:10 - 2012-03-01 13:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-11-15 03:10 - 2012-03-01 13:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-11-15 00:38 - 2013-02-27 14:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-11-15 00:38 - 2013-02-27 13:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-11-15 00:32 - 2013-10-04 10:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-15 00:32 - 2013-10-04 10:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-15 00:32 - 2013-10-04 10:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-15 00:32 - 2013-10-04 09:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-15 00:32 - 2013-10-04 09:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-15 00:32 - 2013-10-04 09:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-15 00:31 - 2013-08-02 10:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-11-15 00:31 - 2013-08-02 10:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-11-15 00:31 - 2013-08-02 10:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-11-15 00:31 - 2013-08-02 09:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-11-15 00:31 - 2013-08-02 08:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-11-15 00:31 - 2013-08-02 08:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 08:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 08:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 08:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-11-15 00:31 - 2013-07-26 10:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-11-15 00:31 - 2013-07-26 10:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-11-15 00:31 - 2013-07-26 09:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-11-15 00:31 - 2013-07-26 09:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-11-15 00:30 - 2013-09-25 10:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2013-11-15 00:30 - 2013-09-25 09:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2013-11-15 00:30 - 2012-11-30 13:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-11-15 00:30 - 2012-11-30 13:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-11-15 00:30 - 2012-11-30 13:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-11-15 00:30 - 2012-11-30 07:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2013-11-15 00:30 - 2012-11-30 07:15 - 00420064 _____ C:\Windows\system32\locale.nls
2013-11-15 00:28 - 2012-10-10 02:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-11-15 00:28 - 2012-10-10 02:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-11-15 00:28 - 2012-10-10 01:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-11-15 00:28 - 2012-10-10 01:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-11-15 00:28 - 2012-10-04 01:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-11-15 00:28 - 2012-10-04 00:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-11-15 00:28 - 2012-10-04 00:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-11-15 00:28 - 2012-10-04 00:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-11-15 00:28 - 2012-10-04 00:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-11-15 00:28 - 2012-01-13 15:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-11-15 00:25 - 2013-08-29 10:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-11-15 00:25 - 2013-08-29 10:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-11-15 00:25 - 2013-08-29 10:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-11-15 00:25 - 2013-08-29 10:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-11-15 00:25 - 2013-08-29 10:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-11-15 00:25 - 2013-08-29 09:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-11-15 00:25 - 2013-08-29 09:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-11-15 00:25 - 2013-08-29 09:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-11-15 00:25 - 2013-08-29 09:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-11-15 00:25 - 2013-08-29 09:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-11-15 00:25 - 2013-08-29 09:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-11-15 00:25 - 2013-08-29 08:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-11-15 00:25 - 2013-08-29 08:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-11-15 00:25 - 2013-08-29 08:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-11-15 00:25 - 2013-08-29 08:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-11-15 00:25 - 2013-04-26 07:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-11-15 00:25 - 2013-04-01 06:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-11-15 00:25 - 2012-01-04 18:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2013-11-15 00:25 - 2012-01-04 16:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2013-11-15 00:23 - 2012-08-22 05:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-11-15 00:20 - 2013-07-09 13:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-11-15 00:20 - 2013-07-09 12:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-11-15 00:20 - 2013-05-13 13:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-11-15 00:20 - 2013-05-13 11:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-11-15 00:20 - 2013-05-13 11:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-11-15 00:20 - 2013-05-13 11:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-11-15 00:17 - 2013-01-03 14:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-11-15 00:17 - 2012-08-23 02:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-11-15 00:17 - 2012-07-05 06:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-11-15 00:17 - 2012-07-05 06:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-11-15 00:17 - 2012-07-05 06:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-11-15 00:17 - 2012-07-05 05:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-11-15 00:17 - 2012-07-05 05:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-11-15 00:16 - 2012-12-07 21:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2013-11-15 00:16 - 2012-12-07 21:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2013-11-15 00:16 - 2012-12-07 20:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2013-11-15 00:16 - 2012-12-07 20:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2013-11-15 00:16 - 2012-12-07 19:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2013-11-15 00:16 - 2012-11-01 13:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-11-15 00:16 - 2012-11-01 13:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-11-15 00:16 - 2012-11-01 12:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-11-15 00:16 - 2012-11-01 12:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-11-15 00:16 - 2010-06-26 11:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-11-15 00:16 - 2010-06-26 11:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-11-15 00:15 - 2012-08-23 02:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-11-15 00:15 - 2012-07-05 04:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-11-15 00:14 - 2013-09-08 10:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-11-15 00:14 - 2013-09-08 10:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-11-15 00:14 - 2013-09-08 10:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-11-15 00:13 - 2013-08-28 09:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-11-15 00:13 - 2013-06-26 06:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-11-15 00:13 - 2012-11-29 06:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-11-15 00:13 - 2012-11-29 06:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-11-15 00:13 - 2012-11-29 06:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-11-15 00:13 - 2011-04-29 11:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-11-15 00:13 - 2011-04-29 11:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-11-15 00:13 - 2011-04-29 11:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-11-15 00:12 - 2012-05-05 16:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-11-15 00:12 - 2012-05-05 15:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2013-11-15 00:12 - 2012-05-01 13:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-11-15 00:12 - 2012-04-07 20:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-11-15 00:12 - 2012-04-07 19:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2013-11-15 00:11 - 2012-11-22 13:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-11-15 00:11 - 2012-11-22 12:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2013-11-15 00:11 - 2012-04-26 13:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-11-15 00:11 - 2012-04-26 13:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-11-15 00:11 - 2012-04-26 13:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-11-15 00:11 - 2011-08-27 13:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-11-15 00:11 - 2011-08-27 13:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-11-15 00:11 - 2011-08-27 12:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-11-15 00:11 - 2011-08-27 12:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-11-15 00:11 - 2011-04-09 14:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-11-15 00:11 - 2011-04-09 13:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-11-15 00:10 - 2013-09-25 10:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-15 00:10 - 2013-09-25 10:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-15 00:10 - 2013-09-25 10:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-15 00:10 - 2013-09-25 10:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-15 00:10 - 2013-09-25 10:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-15 00:10 - 2013-09-25 10:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-15 00:10 - 2013-09-25 10:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-15 00:10 - 2013-09-25 10:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-15 00:10 - 2013-09-25 09:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-15 00:10 - 2013-09-25 09:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-15 00:10 - 2013-09-25 09:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-15 00:10 - 2013-09-25 09:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-15 00:10 - 2013-09-25 09:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-15 00:10 - 2013-07-04 20:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-15 00:10 - 2013-06-04 14:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-11-15 00:10 - 2013-06-04 12:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-11-15 00:10 - 2011-11-17 14:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-11-15 00:10 - 2011-11-17 13:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-11-15 00:10 - 2011-10-26 13:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-11-15 00:10 - 2011-10-26 12:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-11-15 00:10 - 2011-08-17 13:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-11-15 00:10 - 2011-08-17 13:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-11-15 00:10 - 2011-08-17 12:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-11-15 00:10 - 2011-08-17 12:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-11-15 00:10 - 2011-06-15 18:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-11-15 00:10 - 2011-06-15 18:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-11-15 00:10 - 2011-06-15 18:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-11-15 00:10 - 2011-06-15 18:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-11-15 00:09 - 2013-10-06 04:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-15 00:09 - 2013-10-06 03:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-15 00:09 - 2013-07-09 13:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-11-15 00:09 - 2013-07-09 13:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-11-15 00:09 - 2013-07-09 12:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-11-15 00:09 - 2013-07-09 12:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-11-15 00:09 - 2012-06-06 14:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-11-15 00:09 - 2012-06-06 13:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2013-11-15 00:09 - 2011-03-11 14:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-11-15 00:09 - 2011-03-11 14:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-11-15 00:09 - 2011-03-11 13:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-11-15 00:09 - 2011-03-11 13:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-11-15 00:08 - 2013-07-25 17:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-11-15 00:08 - 2013-07-25 16:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-11-15 00:08 - 2013-05-10 13:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-11-15 00:08 - 2013-05-10 11:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-11-15 00:08 - 2011-10-15 14:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-11-15 00:08 - 2011-10-15 13:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-11-15 00:08 - 2011-03-03 14:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-11-15 00:08 - 2011-03-03 14:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-11-15 00:08 - 2011-03-03 14:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-11-15 00:08 - 2011-03-03 13:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-11-15 00:08 - 2011-03-03 13:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-11-15 00:07 - 2013-10-12 10:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-15 00:07 - 2013-10-12 10:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-15 00:07 - 2013-10-12 10:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-15 00:07 - 2013-10-12 10:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-15 00:07 - 2013-10-12 10:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-15 00:07 - 2013-02-12 12:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-11-15 00:07 - 2012-03-17 15:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-11-15 00:06 - 2013-10-03 10:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-15 00:06 - 2013-10-03 10:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-15 00:06 - 2013-09-28 09:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-15 00:06 - 2013-07-19 09:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-11-15 00:06 - 2013-07-19 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-11-15 00:06 - 2012-11-02 13:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-11-15 00:06 - 2012-11-02 13:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-11-15 00:06 - 2012-05-14 13:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-11-15 00:06 - 2011-07-09 10:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-11-15 00:06 - 2011-05-24 19:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-11-15 00:06 - 2011-05-24 18:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-11-15 00:06 - 2011-05-24 18:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-11-15 00:06 - 2011-05-24 18:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-11-15 00:06 - 2011-05-24 18:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-11-15 00:06 - 2011-04-27 10:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-11-15 00:06 - 2011-04-27 10:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-11-15 00:05 - 2013-08-28 09:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-11-15 00:05 - 2013-06-06 13:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-11-15 00:05 - 2013-06-06 13:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-11-15 00:05 - 2013-06-06 13:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-11-15 00:05 - 2013-06-06 13:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-11-15 00:05 - 2013-06-06 12:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-11-15 00:05 - 2013-06-06 12:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-11-15 00:05 - 2013-06-06 12:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-11-15 00:05 - 2013-06-06 11:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-11-15 00:05 - 2013-06-06 11:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-11-15 00:05 - 2013-06-06 11:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-11-15 00:05 - 2011-11-19 22:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-11-15 00:05 - 2011-11-19 22:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-11-15 00:05 - 2011-05-03 13:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-11-15 00:05 - 2011-05-03 12:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-11-15 00:05 - 2011-02-12 19:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-11-15 00:04 - 2013-04-12 22:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-11-15 00:04 - 2012-08-11 08:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-11-15 00:04 - 2012-08-11 07:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-11-15 00:04 - 2011-05-04 13:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-11-15 00:04 - 2011-05-04 13:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-11-15 00:04 - 2011-05-04 13:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-11-15 00:04 - 2011-05-04 13:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-11-15 00:04 - 2011-05-04 12:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-11-15 00:04 - 2011-05-04 12:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-11-15 00:04 - 2011-05-04 12:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-11-15 00:04 - 2011-05-04 12:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-11-15 00:04 - 2011-02-06 01:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-11-15 00:04 - 2011-02-06 01:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-11-15 00:04 - 2011-02-06 01:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-11-15 00:04 - 2011-02-06 01:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-11-15 00:04 - 2011-02-06 01:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-11-15 00:04 - 2011-02-06 01:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-11-15 00:04 - 2011-02-06 01:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-11-15 00:03 - 2013-08-01 20:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-11-15 00:03 - 2013-07-09 13:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-11-15 00:03 - 2013-07-09 12:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-11-15 00:03 - 2013-04-10 14:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-11-15 00:03 - 2013-01-24 14:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-11-15 00:03 - 2012-11-23 11:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-11-15 00:03 - 2011-12-16 16:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-11-15 00:03 - 2011-12-16 15:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-11-15 00:03 - 2011-06-16 13:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-11-15 00:03 - 2011-06-16 12:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2013-11-15 00:03 - 2011-02-03 19:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-11-15 00:02 - 2013-07-12 18:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-11-15 00:02 - 2013-07-12 18:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-11-15 00:01 - 2013-08-05 10:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-11-15 00:01 - 2013-06-15 12:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-11-15 00:01 - 2012-09-26 06:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-11-15 00:01 - 2012-09-26 06:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-11-15 00:01 - 2011-04-23 06:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-11-15 00:01 - 2011-02-23 12:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-11-15 00:00 - 2013-07-20 18:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-11-15 00:00 - 2013-07-20 18:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-11-15 00:00 - 2013-07-04 20:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-11-15 00:00 - 2013-07-04 20:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-11-15 00:00 - 2013-07-04 19:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-11-15 00:00 - 2013-07-04 19:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-11-15 00:00 - 2013-07-04 18:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-11-15 00:00 - 2013-04-26 13:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-11-15 00:00 - 2013-04-26 12:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-11-15 00:00 - 2013-03-19 13:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-11-15 00:00 - 2013-03-19 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-11-15 00:00 - 2012-04-28 11:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-11-15 00:00 - 2010-12-23 18:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-11-15 00:00 - 2010-12-23 18:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-11-15 00:00 - 2010-12-23 18:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-11-15 00:00 - 2010-12-23 13:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-11-15 00:00 - 2010-12-23 13:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-11-15 00:00 - 2010-12-23 13:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-11-14 23:59 - 2013-07-04 20:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-11-14 23:59 - 2013-07-04 19:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-11-14 23:59 - 2013-07-03 12:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-11-14 23:59 - 2013-07-03 12:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-11-14 23:59 - 2013-07-03 12:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-11-14 23:59 - 2012-05-04 19:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-11-14 23:59 - 2012-05-04 17:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-11-14 23:59 - 2011-12-30 14:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-11-14 23:59 - 2011-12-30 13:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2013-11-14 23:59 - 2011-02-18 18:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2013-11-14 23:59 - 2011-02-18 13:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2013-11-14 19:59 - 2013-11-14 19:59 - 00000425 _____ C:\Windows\BRWMARK.INI
2013-11-14 19:59 - 2013-11-14 19:59 - 00000027 _____ C:\Windows\BRPP2KA.INI
2013-11-14 19:57 - 2013-11-14 19:57 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Media Player Classic
2013-11-14 19:52 - 2013-11-14 19:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-11-14 08:19 - 2013-11-14 08:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\PunkBuster
2013-11-14 08:11 - 2013-11-20 17:16 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Adobe
2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Macromedia
2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Local\Macromedia
2013-11-14 07:26 - 2013-12-04 22:56 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-14 07:26 - 2013-11-14 07:26 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-14 07:26 - 2013-11-14 07:26 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-14 07:26 - 2013-11-14 07:26 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\system32\Macromed
2013-11-14 06:16 - 2013-11-14 06:17 - 00000000 ____D C:\Users\Waldi\Documents\Battlefield 4
2013-11-14 06:12 - 2013-11-24 07:59 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\TS3Client
2013-11-14 06:12 - 2013-11-14 06:12 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2013-11-14 06:12 - 2013-11-14 06:12 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-11-14 05:49 - 2013-11-14 05:49 - 00000000 ____D C:\Users\Waldi\AppData\Local\ESN
2013-11-14 05:01 - 2013-11-15 10:15 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-14 05:01 - 2013-11-14 05:17 - 00001198 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
2013-11-14 05:01 - 2013-11-14 05:17 - 00001174 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2013-11-14 05:00 - 2013-11-19 02:23 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-14 05:00 - 2013-11-19 02:00 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-11-14 05:00 - 2013-11-14 05:00 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-14 05:00 - 2013-11-14 05:00 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-14 04:45 - 2013-11-20 17:16 - 00000000 ____D C:\ProgramData\Adobe
2013-11-14 04:45 - 2013-11-14 04:45 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-11-14 04:45 - 2013-11-14 04:45 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-14 04:43 - 2013-11-20 17:16 - 00000000 ____D C:\Users\Waldi\AppData\Local\Adobe
2013-11-14 04:40 - 2013-11-14 04:40 - 00001085 _____ C:\Users\Waldi\Desktop\MPC-HC.lnk
2013-11-14 04:40 - 2013-11-14 04:40 - 00000000 ____D C:\Program Files (x86)\MPC-HC
2013-11-14 04:37 - 2013-11-25 10:55 - 00000000 ____D C:\Windows\AutoKMS
2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Windows\PCHEALTH
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2013-11-14 04:32 - 2013-11-14 04:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-14 04:32 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Office
2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ___RD C:\MSOCache
2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Users\Waldi\AppData\Local\Microsoft Help
2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-11-14 04:25 - 2013-11-14 05:25 - 00000000 ____D C:\Users\Waldi\Downloads\IntelBurnTest
2013-11-14 04:25 - 2013-11-14 04:25 - 00031136 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS
2013-11-14 04:25 - 2013-11-14 04:25 - 00000000 ____D C:\Program Files\HWiNFO64
2013-11-14 04:24 - 2013-11-14 04:24 - 00000000 ____D C:\Program Files (x86)\Geeks3D
2013-11-14 04:17 - 2013-11-14 04:32 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\DAEMON Tools Lite
2013-11-14 04:17 - 2013-11-14 04:17 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-14 04:17 - 2013-11-14 04:17 - 00001954 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-14 04:17 - 2013-11-14 04:17 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-14 04:16 - 2013-11-14 04:32 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-11-14 03:42 - 2013-11-14 04:05 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-11-14 03:30 - 2013-11-14 06:16 - 00000000 ____D C:\Users\Waldi\AppData\Local\Origin
2013-11-14 03:30 - 2013-11-14 05:45 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Origin
2013-11-14 03:29 - 2013-12-02 22:30 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-14 03:29 - 2013-11-14 06:16 - 00000000 ____D C:\ProgramData\Origin
2013-11-14 03:29 - 2013-11-14 06:16 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-11-14 03:29 - 2013-11-14 03:29 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk
2013-11-14 03:02 - 2013-11-14 03:02 - 00003176 _____ C:\Windows\System32\Tasks\{C0F16D60-C776-4C21-A429-EB577937A1B9}
2013-11-14 02:56 - 2013-12-04 17:59 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Skype
2013-11-14 02:55 - 2013-11-27 13:28 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-14 02:55 - 2013-11-27 13:28 - 00000000 ____D C:\ProgramData\Skype
2013-11-14 02:55 - 2013-11-14 02:55 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2013-11-14 02:39 - 2013-11-14 02:39 - 00000000 ____D C:\Users\Waldi\AppData\Local\Innovative Solutions
2013-11-14 02:21 - 2012-12-28 08:01 - 00760032 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys
2013-11-14 02:14 - 2013-11-14 02:14 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Avira
2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-11-14 02:00 - 2013-12-03 17:41 - 00107416 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-11-14 02:00 - 2013-11-14 02:00 - 00002070 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\ProgramData\Avira
2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\Program Files (x86)\Avira
2013-11-14 02:00 - 2013-11-01 02:25 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-14 02:00 - 2013-11-01 02:25 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-11-14 02:00 - 2013-11-01 02:25 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-14 01:56 - 2013-11-16 20:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-14 01:56 - 2013-11-16 01:57 - 00000000 ____D C:\Users\Waldi\AppData\Local\Mozilla
2013-11-14 01:56 - 2013-11-14 01:56 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Mozilla
2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\ProgramData\Mozilla
2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\Documents\EA Games
2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\AppData\Local\EA Games
2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Program Files\Realtek
2013-11-14 01:41 - 2013-11-27 17:54 - 00000000 ____D C:\Users\Waldi\AppData\Local\CrashDumps
2013-11-14 01:41 - 2013-11-14 03:07 - 00000000 ____D C:\Program Files (x86)\Hotkey
2013-11-14 01:41 - 2013-03-27 11:54 - 03376200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2013-11-14 01:41 - 2013-03-27 10:34 - 00135240 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2013-11-14 01:41 - 2013-03-27 09:27 - 01102104 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2013-11-14 01:41 - 2013-03-27 09:27 - 00918296 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2013-11-14 01:41 - 2013-03-27 08:06 - 02797128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2013-11-14 01:41 - 2013-03-27 08:04 - 02734624 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2013-11-14 01:41 - 2013-03-27 07:05 - 00445929 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-14 01:41 - 2013-03-27 06:40 - 03693128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2013-11-14 01:41 - 2013-03-27 05:38 - 01659464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2013-11-14 01:41 - 2013-03-21 04:16 - 02102040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2013-11-14 01:41 - 2013-03-21 04:16 - 00910104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-11-14 01:41 - 2013-03-13 22:32 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2013-11-14 01:41 - 2013-03-01 04:10 - 02032408 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2013-11-14 01:41 - 2013-02-21 09:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2013-11-14 01:41 - 2013-02-20 09:52 - 00991816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2013-11-14 01:41 - 2013-01-17 07:02 - 02079816 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2013-11-14 01:41 - 2012-06-21 08:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-14 01:41 - 2012-06-09 07:23 - 00083072 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2013-11-14 01:41 - 2012-03-09 02:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2013-11-14 01:41 - 2011-12-21 06:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2013-11-14 01:41 - 2011-11-23 07:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2013-11-14 01:41 - 2010-11-04 09:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2013-11-14 01:41 - 2010-09-28 00:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2013-11-14 01:41 - 2009-11-18 22:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2013-11-14 01:36 - 2013-11-28 10:03 - 00081021 _____ C:\Windows\DirectX.log
2013-11-14 01:36 - 2013-11-14 01:36 - 00000000 ____D C:\Users\Waldi\AppData\Local\2K Games
|
|
04.12.2013, 16:19
| #9 |
| | Bublik A.30.132 Trojaner FRST zweiter Teil Code:
ATTFilter 2013-11-14 01:36 - 2010-06-02 11:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2013-11-14 01:36 - 2008-07-31 17:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2013-11-14 01:36 - 2008-07-31 17:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2013-11-14 01:36 - 2008-07-10 18:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2013-11-14 01:36 - 2008-05-30 21:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2013-11-14 01:36 - 2008-05-30 21:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2013-11-14 01:36 - 2008-05-30 21:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2013-11-14 01:36 - 2008-05-30 21:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2013-11-14 01:36 - 2008-05-30 21:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2013-11-14 01:36 - 2008-05-30 21:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2013-11-14 01:36 - 2008-05-30 21:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2013-11-14 01:36 - 2008-05-30 21:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2013-11-14 01:36 - 2008-03-05 23:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2013-11-14 01:36 - 2008-03-05 23:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2013-11-14 01:36 - 2008-03-05 23:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2013-11-14 01:36 - 2008-03-05 23:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2013-11-14 01:36 - 2008-03-05 23:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2013-11-14 01:36 - 2008-03-05 23:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2013-11-14 01:36 - 2008-02-06 06:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2013-11-14 01:36 - 2008-02-06 06:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2013-11-14 01:36 - 2007-10-22 10:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2013-11-14 01:36 - 2007-10-22 10:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2013-11-14 01:36 - 2007-10-22 10:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2013-11-14 01:36 - 2007-10-22 10:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2013-11-14 01:36 - 2007-10-02 16:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2013-11-14 01:36 - 2007-10-02 16:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2013-11-14 01:36 - 2007-07-20 07:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2013-11-14 01:36 - 2007-07-20 07:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2013-11-14 01:36 - 2007-06-21 03:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2013-11-14 01:36 - 2007-06-21 03:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2013-11-14 01:36 - 2007-04-05 01:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2013-11-14 01:36 - 2007-04-05 01:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2013-11-14 01:36 - 2007-04-05 01:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2013-11-14 01:36 - 2007-04-05 01:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2013-11-14 01:36 - 2007-03-15 23:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2013-11-14 01:36 - 2007-03-15 23:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2013-11-14 01:36 - 2007-03-05 19:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2013-11-14 01:36 - 2007-03-05 19:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2013-11-14 01:36 - 2007-01-24 22:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2013-11-14 01:36 - 2007-01-24 22:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2013-11-14 01:36 - 2006-12-08 19:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2013-11-14 01:36 - 2006-12-08 19:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2013-11-14 01:36 - 2006-09-28 23:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2013-11-14 01:36 - 2006-09-28 23:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2013-11-14 01:36 - 2006-09-28 23:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2013-11-14 01:36 - 2006-09-28 23:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2013-11-14 01:36 - 2006-07-28 16:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2013-11-14 01:36 - 2006-07-28 16:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2013-11-14 01:36 - 2006-07-28 16:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2013-11-14 01:36 - 2006-07-28 16:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2013-11-14 01:36 - 2006-05-31 14:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2013-11-14 01:36 - 2006-05-31 14:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2013-11-14 01:36 - 2006-03-31 19:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2013-11-14 01:36 - 2006-03-31 19:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2013-11-14 01:36 - 2006-03-31 19:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2013-11-14 01:36 - 2006-03-31 19:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2013-11-14 01:36 - 2006-03-31 19:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2013-11-14 01:36 - 2006-03-31 19:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2013-11-14 01:36 - 2006-02-03 15:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2013-11-14 01:36 - 2006-02-03 15:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2013-11-14 01:36 - 2006-02-03 15:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2013-11-14 01:36 - 2006-02-03 15:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2013-11-14 01:36 - 2006-02-03 15:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2013-11-14 01:36 - 2006-02-03 15:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2013-11-14 01:36 - 2005-12-06 01:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2013-11-14 01:36 - 2005-12-06 01:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2013-11-14 01:36 - 2005-07-23 02:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2013-11-14 01:36 - 2005-07-23 02:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2013-11-14 01:36 - 2005-05-26 22:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2013-11-14 01:36 - 2005-05-26 22:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2013-11-14 01:36 - 2005-03-19 00:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2013-11-14 01:36 - 2005-03-19 00:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2013-11-14 01:36 - 2005-02-06 02:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2013-11-14 01:36 - 2005-02-06 02:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2013-11-14 01:34 - 2013-11-14 01:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____D C:\Program Files\AuthenTec 2013-11-14 01:30 - 2013-11-20 18:54 - 00109672 _____ C:\Users\Waldi\AppData\Local\GDIPFONTCACHEV1.DAT 2013-11-14 01:29 - 2013-11-15 05:20 - 03310804 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Local\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\ProgramData\ATI 2013-11-14 01:26 - 2012-02-17 14:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll 2013-11-14 01:26 - 2012-02-17 13:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll 2013-11-14 01:26 - 2012-02-17 12:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys 2013-11-14 01:24 - 2013-11-14 01:24 - 00002525 _____ C:\Users\Public\Desktop\Microsoft Download Manager.lnk 2013-11-14 01:24 - 2013-11-14 01:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Download Manager 2013-11-14 01:22 - 2013-12-03 13:29 - 00000000 ____D C:\Users\Waldi\AppData\Local\FSP 2013-11-14 01:22 - 2013-11-14 02:43 - 00015882 _____ C:\Windows\DPINST.LOG 2013-11-14 01:22 - 2013-11-14 01:38 - 00002144 _____ C:\Windows\sentelic.log 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_fspad_win764_01009.Wdf 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____D C:\Program Files\FSP 2013-11-14 01:22 - 2013-04-02 11:34 - 02232144 _____ (Sentelic Corporation.) C:\Windows\system32\StlFspAPI64.dll 2013-11-14 01:22 - 2013-04-02 11:34 - 01636176 _____ (Sentelic Corporation.) C:\Windows\SysWOW64\StlFspAPI32.dll 2013-11-14 01:22 - 2013-04-02 11:34 - 00155472 _____ (Sentelic Corporation) C:\Windows\system32\Drivers\fspad_win764.sys 2013-11-14 01:22 - 2013-04-02 11:34 - 00081232 _____ (Sentelic Corporation) C:\Windows\system32\fspadco.dll 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Atheros 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\BMExplorer 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\ProgramData\Atheros 2013-11-14 01:18 - 2012-06-03 06:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2013-11-14 01:18 - 2012-06-03 06:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2013-11-14 01:18 - 2012-06-03 06:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2013-11-14 01:18 - 2012-06-03 06:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2013-11-14 01:18 - 2012-06-03 06:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2013-11-14 01:18 - 2012-06-03 06:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2013-11-14 01:18 - 2012-06-03 06:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2013-11-14 01:18 - 2012-06-02 22:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2013-11-14 01:18 - 2012-06-02 22:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2013-11-14 01:14 - 2013-11-14 01:14 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-11-14 01:13 - 2013-12-04 22:56 - 00000000 ____D C:\ProgramData\Bigfoot Networks 2013-11-14 01:13 - 2013-11-28 10:34 - 00000000 ____D C:\Users\Waldi\Documents\Bluetooth Folder 2013-11-14 01:13 - 2013-11-14 01:13 - 00002238 _____ C:\Users\Public\Desktop\Qualcomm Atheros Killer Network Manager.lnk 2013-11-14 01:13 - 2013-11-14 01:13 - 00000264 _____ C:\Users\Waldi\AppData\Local\killertool.log 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files\Qualcomm Atheros 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-11-14 01:13 - 2013-03-27 18:18 - 00584272 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00346192 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_a2dp.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00179432 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_hcrp.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00136784 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_rcp.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00115280 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_avdt.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00089168 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_flt.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00077464 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_lwflt.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00034384 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_bus.sys 2013-11-14 01:07 - 2013-11-14 01:07 - 00000000 ____D C:\Users\Waldi\AppData\Local\Intel_Corporation 2013-11-14 01:06 - 2013-11-20 19:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-11-14 01:06 - 2013-11-14 02:26 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-11-14 01:06 - 2013-11-14 01:38 - 00000000 ____D C:\Windows\SysWOW64\sda 2013-11-14 01:06 - 2012-12-26 14:29 - 09889504 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsBaStorIcon.dll 2013-11-14 01:06 - 2012-12-26 14:29 - 00308960 ____R (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsBaStor.sys 2013-11-14 01:05 - 2013-11-14 01:05 - 00000000 ____D C:\ProgramData\Intel 2013-11-14 01:05 - 2013-02-16 23:17 - 00016344 ____R (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll 2013-11-14 01:03 - 2013-11-14 01:03 - 00000000 _____ C:\Windows\ativpsrm.bin 2013-11-14 01:02 - 2013-11-14 01:05 - 00000000 ____D C:\Program Files\Intel 2013-11-14 01:02 - 2013-05-10 15:59 - 07569392 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00752624 _____ (Intel Corporation) C:\Windows\system32\GfxUIHotKeyMenu.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00534000 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00529904 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00444400 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00407536 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00397296 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00251888 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00165872 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00153072 _____ (Intel Corporation) C:\Windows\system32\difx64.exe 2013-11-14 01:02 - 2013-05-07 17:25 - 00442368 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2013-11-14 01:02 - 2013-05-07 17:25 - 00089600 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3165.dll 2013-11-14 01:02 - 2013-05-07 17:25 - 00015360 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll 2013-11-14 01:02 - 2013-05-07 17:23 - 00017610 _____ C:\Windows\system32\iglhxs64.vp 2013-11-14 01:02 - 2013-05-07 17:22 - 09967616 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 08632320 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 07077376 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 04431840 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys 2013-11-14 01:02 - 2013-05-07 17:22 - 01690112 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 00322560 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 00286720 _____ C:\Windows\system32\igdde64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 00117760 _____ C:\Windows\system32\igdail64.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 24283136 _____ C:\Windows\system32\igdfcl64.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 01564672 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 00279040 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 00258560 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 00203264 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 09517056 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 07836160 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 05515776 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 00240640 _____ C:\Windows\SysWOW64\igdde32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 00103936 _____ C:\Windows\SysWOW64\igdail32.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 08900096 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 04058624 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 02384896 _____ C:\Windows\system32\GfxRes.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00444416 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00444416 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441856 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00440832 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00440832 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00440320 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00434688 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00433152 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00431104 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00430592 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00357888 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00353792 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00345600 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00288768 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00257719 _____ C:\Windows\system32\Gfxres.th-TH.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00243838 _____ C:\Windows\system32\Gfxres.el-GR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00226564 _____ C:\Windows\system32\Gfxres.ru-RU.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00193244 _____ C:\Windows\system32\Gfxres.ar-SA.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00190976 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00190556 _____ C:\Windows\system32\Gfxres.ja-JP.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00185171 _____ C:\Windows\system32\Gfxres.he-IL.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00173987 _____ C:\Windows\system32\Gfxres.it-IT.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00173676 _____ C:\Windows\system32\Gfxres.ko-KR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00171646 _____ C:\Windows\system32\Gfxres.es-ES.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00171296 _____ C:\Windows\system32\Gfxres.fr-FR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00171245 _____ C:\Windows\system32\Gfxres.de-DE.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00169771 _____ C:\Windows\system32\Gfxres.ro-RO.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00169117 _____ C:\Windows\system32\Gfxres.tr-TR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00168931 _____ C:\Windows\system32\Gfxres.hu-HU.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00168556 _____ C:\Windows\system32\Gfxres.pl-PL.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00168182 _____ C:\Windows\system32\Gfxres.nl-NL.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00167577 _____ C:\Windows\system32\Gfxres.pt-BR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166682 _____ C:\Windows\system32\Gfxres.fi-FI.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166495 _____ C:\Windows\system32\Gfxres.sk-SK.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166200 _____ C:\Windows\system32\Gfxres.pt-PT.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166190 _____ C:\Windows\system32\Gfxres.sv-SE.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00165749 _____ C:\Windows\system32\Gfxres.cs-CZ.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00164782 _____ C:\Windows\system32\Gfxres.hr-HR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00161423 _____ C:\Windows\system32\Gfxres.sl-SI.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00160394 _____ C:\Windows\system32\Gfxres.nb-NO.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00159763 _____ C:\Windows\system32\Gfxres.da-DK.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00155178 _____ C:\Windows\system32\Gfxres.en-US.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00148451 _____ C:\Windows\system32\Gfxres.zh-TW.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00146731 _____ C:\Windows\system32\Gfxres.zh-CN.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00140288 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00124928 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl 2013-11-14 01:02 - 2013-05-07 17:17 - 00108032 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00066048 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00029184 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00025088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00012288 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll 2013-11-14 01:02 - 2013-05-07 17:16 - 19587072 _____ C:\Windows\SysWOW64\igdfcl32.dll 2013-11-14 01:02 - 2013-05-07 17:12 - 04369920 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll 2013-11-14 01:02 - 2013-05-07 17:12 - 03411456 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa 2013-11-14 01:02 - 2013-04-30 10:43 - 02064896 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 01814016 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00861184 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00856576 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00216064 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00180224 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00145920 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00138240 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00124416 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00118784 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00044025 _____ C:\Windows\system32\iglhxo64.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043494 _____ C:\Windows\system32\iglhxc64.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043256 _____ C:\Windows\system32\iglhxg64.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp 2013-11-14 01:00 - 2013-11-17 04:51 - 00000000 ____D C:\Program Files (x86)\Intel 2013-11-14 01:00 - 2013-02-28 22:37 - 00053248 ____R (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2013-11-14 00:58 - 2013-11-14 00:58 - 00135602 _____ C:\Windows\system32\log.xml 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\ProgramData\AMD 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files (x86)\AMD AVT 2013-11-14 00:55 - 2013-04-30 10:43 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2013-11-14 00:55 - 2013-04-30 10:43 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2013-11-14 00:55 - 2013-03-16 16:36 - 00222720 _____ C:\Windows\system32\clinfo.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 29150208 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 01187342 _____ C:\Windows\system32\amdocl_as64.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 01061902 _____ C:\Windows\system32\amdocl_ld64.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 00995342 _____ C:\Windows\SysWOW64\amdocl_as32.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 00798734 _____ C:\Windows\SysWOW64\amdocl_ld32.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 00076288 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 00065536 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 00064000 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 00056320 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll 2013-11-14 00:55 - 2013-03-16 16:33 - 23810560 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll 2013-11-14 00:55 - 2013-03-16 16:19 - 00076800 _____ (AMD) C:\Windows\system32\coinst_12.103.dll 2013-11-14 00:55 - 2013-03-16 16:18 - 00373680 _____ C:\Windows\SysWOW64\atiapfxx.blb 2013-11-14 00:55 - 2013-03-16 16:18 - 00373680 _____ C:\Windows\system32\atiapfxx.blb 2013-11-14 00:55 - 2013-03-16 15:56 - 00204952 _____ C:\Windows\SysWOW64\ativvsvl.dat 2013-11-14 00:55 - 2013-03-16 15:56 - 00204952 _____ C:\Windows\system32\ativvsvl.dat 2013-11-14 00:55 - 2013-03-16 15:56 - 00157144 _____ C:\Windows\SysWOW64\ativvsva.dat 2013-11-14 00:55 - 2013-03-16 15:56 - 00157144 _____ C:\Windows\system32\ativvsva.dat 2013-11-14 00:55 - 2013-03-16 15:54 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2013-11-14 00:55 - 2013-03-05 17:52 - 00230836 _____ C:\Windows\system32\ativvaxy_cik.dat 2013-11-14 00:55 - 2013-02-01 23:14 - 00075600 _____ C:\Windows\system32\ativce02.dat 2013-11-14 00:55 - 2012-11-23 14:14 - 00230064 _____ C:\Windows\system32\ativvaxy_cik_nd.dat 2013-11-14 00:55 - 2011-09-13 21:06 - 00003917 _____ C:\Windows\SysWOW64\atipblag.dat 2013-11-14 00:55 - 2011-09-13 21:06 - 00003917 _____ C:\Windows\system32\atipblag.dat 2013-11-14 00:55 - 2011-09-13 01:05 - 00003917 _____ C:\Windows\SysWOW64\atipblup.dat 2013-11-14 00:55 - 2011-09-13 01:05 - 00003917 _____ C:\Windows\system32\atipblup.dat 2013-11-14 00:54 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2013-11-14 00:54 - 2013-11-14 00:54 - 00000000 ____D C:\Program Files\ATI 2013-11-14 00:54 - 2013-03-08 22:16 - 00042583 _____ C:\Windows\atiogl.xml 2013-11-14 00:54 - 2013-02-14 23:33 - 00037472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys 2013-11-14 00:53 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files\ATI Technologies 2013-11-14 00:52 - 2013-11-14 01:01 - 00000000 ____D C:\Intel 2013-11-14 00:48 - 2013-12-04 22:56 - 01939825 _____ C:\Windows\WindowsUpdate.log 2013-11-14 00:48 - 2013-12-03 18:25 - 00000000 ____D C:\Users\Waldi 2013-11-14 00:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Local\VirtualStore 2013-11-14 00:48 - 2013-11-16 21:25 - 00001413 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-11-14 00:48 - 2013-11-15 05:44 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-11-14 00:48 - 2013-11-15 05:44 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-11-14 00:48 - 2013-11-14 00:48 - 00000020 ___SH C:\Users\Waldi\ntuser.ini 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 ____D C:\Recovery 2013-11-14 00:48 - 2009-07-14 12:54 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-11-14 00:48 - 2009-07-14 12:49 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-11-14 00:46 - 2013-11-14 00:46 - 00001355 _____ C:\Windows\TSSysprep.log 2013-11-13 16:45 - 2013-11-14 00:48 - 00000000 ____D C:\Windows\Panther ==================== One Month Modified Files and Folders ======= 2013-12-04 23:06 - 2013-12-04 23:06 - 00012808 _____ C:\Users\Waldi\Desktop\FRST.txt 2013-12-04 23:05 - 2013-12-04 23:03 - 01959614 _____ (Farbar) C:\Users\Waldi\Desktop\FRST64.exe 2013-12-04 23:03 - 2009-07-14 12:45 - 00028704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-12-04 23:03 - 2009-07-14 12:45 - 00028704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-12-04 23:01 - 2011-03-20 17:08 - 00696870 _____ C:\Windows\system32\perfh007.dat 2013-12-04 23:01 - 2011-03-20 17:08 - 00148134 _____ C:\Windows\system32\perfc007.dat 2013-12-04 23:01 - 2009-07-14 13:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI 2013-12-04 22:59 - 2013-11-14 00:48 - 01939825 _____ C:\Windows\WindowsUpdate.log 2013-12-04 22:58 - 2013-12-04 22:58 - 00001278 _____ C:\Users\Waldi\Desktop\JRT.txt 2013-12-04 22:56 - 2013-11-14 07:26 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-12-04 22:56 - 2013-11-14 01:13 - 00000000 ____D C:\ProgramData\Bigfoot Networks 2013-12-04 22:56 - 2009-07-14 13:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-12-04 22:56 - 2009-07-14 12:51 - 00046851 _____ C:\Windows\setupact.log 2013-12-04 22:54 - 2013-12-04 22:54 - 00000000 ____D C:\Windows\ERUNT 2013-12-04 22:52 - 2013-12-04 22:52 - 00001726 _____ C:\Users\Waldi\Desktop\AdwCleaner[S0].txt 2013-12-04 22:50 - 2013-12-04 22:48 - 00000000 ____D C:\AdwCleaner 2013-12-04 22:45 - 2013-12-04 22:44 - 01034531 _____ (Thisisu) C:\Users\Waldi\Desktop\JRT.exe 2013-12-04 22:37 - 2013-12-04 22:35 - 01110034 _____ C:\Users\Waldi\Desktop\adwcleaner.exe 2013-12-04 22:02 - 2013-12-04 19:25 - 45768394 _____ (AVAST Software) C:\Users\Waldi\Downloads\avast_free_antivirus_setup2008.exe.n58blbg.partial 2013-12-04 18:13 - 2010-11-21 11:47 - 00018934 _____ C:\Windows\PFRO.log 2013-12-04 18:08 - 2013-12-04 18:08 - 00024031 _____ C:\ComboFix.txt 2013-12-04 18:08 - 2013-12-04 18:05 - 00000000 ____D C:\Windows\erdnt 2013-12-04 18:08 - 2013-12-04 18:05 - 00000000 ____D C:\Qoobox 2013-12-04 18:07 - 2009-07-14 10:34 - 00000215 _____ C:\Windows\system.ini 2013-12-04 18:02 - 2013-12-04 17:59 - 05152198 ____R (Swearware) C:\Users\Waldi\Desktop\ComboFix.exe 2013-12-04 17:59 - 2013-11-14 02:56 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Skype 2013-12-04 17:46 - 2013-12-04 17:37 - 00000000 ____D C:\Users\Waldi\AppData\Local\FalloutNV 2013-12-04 17:37 - 2013-11-20 20:01 - 00000000 ____D C:\Users\Waldi\Documents\My Games 2013-12-04 17:29 - 2013-12-04 17:29 - 00001117 _____ C:\Users\Public\Desktop\Fallout New Vegas.lnk 2013-12-04 08:25 - 2013-11-24 08:09 - 00000000 ____D C:\Users\Waldi\Desktop\Tungsten aktuell 2013-12-04 08:11 - 2013-12-01 10:54 - 00000000 ____D C:\ProgramData\mdh 2013-12-04 07:40 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\kjqvm 2013-12-04 07:04 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\upcr 2013-12-04 07:04 - 2013-11-25 10:40 - 00000000 ____D C:\ProgramData\dcdp 2013-12-04 06:56 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\qmbhac 2013-12-03 22:10 - 2013-11-17 06:00 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\vlc 2013-12-03 19:37 - 2013-12-03 19:37 - 00029071 _____ C:\Users\Waldi\Desktop\Desktop.rar 2013-12-03 18:44 - 2013-12-03 18:44 - 00005455 _____ C:\Users\Waldi\Desktop\gmer.log 2013-12-03 18:34 - 2013-12-03 18:34 - 00377856 _____ C:\Users\Waldi\Desktop\gmer_2.1.19163.exe 2013-12-03 18:32 - 2013-12-03 18:32 - 00000000 ____D C:\FRST 2013-12-03 18:25 - 2013-12-03 18:25 - 00000542 _____ C:\Users\Waldi\Desktop\defogger_disable.log 2013-12-03 18:25 - 2013-12-03 18:25 - 00000168 _____ C:\Users\Waldi\defogger_reenable 2013-12-03 18:25 - 2013-11-14 00:48 - 00000000 ____D C:\Users\Waldi 2013-12-03 18:24 - 2013-12-03 18:24 - 00050477 _____ C:\Users\Waldi\Desktop\Defogger.exe 2013-12-03 17:41 - 2013-12-03 15:57 - 62064667 _____ (Symantec Corporation) C:\Users\Waldi\Downloads\NIS_21.1.0.18_SYMTB_TMD_MRFTT_820_10131.exe 2013-12-03 17:41 - 2013-11-14 02:00 - 00107416 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2013-12-03 17:29 - 2013-12-03 15:20 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP 2013-12-03 17:27 - 2013-11-16 21:00 - 00000000 ____D C:\Program Files (x86)\JDownloader 2013-12-03 16:59 - 2013-12-03 16:56 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-12-03 16:59 - 2013-12-03 16:46 - 00000000 ____D C:\Users\Waldi\Desktop\mbar 2013-12-03 16:46 - 2013-12-03 16:46 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2013-12-03 16:14 - 2013-12-03 16:06 - 12576792 _____ (Malwarebytes Corp.) C:\Users\Waldi\Downloads\mbar-1.07.0.1007.exe 2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 ____D C:\Program Files\Enigma Software Group 2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 _____ C:\autoexec.bat 2013-12-03 14:18 - 2013-12-03 14:17 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Waldi\Downloads\SpyHunter-Installer.exe 2013-12-03 13:59 - 2013-12-03 13:59 - 00028916 _____ C:\Users\Waldi\Documents\AVSCAN-20131203-133348-272CD52E.LOG 2013-12-03 13:29 - 2013-11-14 01:22 - 00000000 ____D C:\Users\Waldi\AppData\Local\FSP 2013-12-03 12:30 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\mryu 2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tkipd 2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tbrjps 2013-12-02 22:30 - 2013-11-14 03:29 - 00000000 ____D C:\Program Files (x86)\Origin 2013-12-01 20:04 - 2013-12-01 20:04 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\dvdcss 2013-12-01 12:16 - 2013-11-29 12:53 - 00000000 ____D C:\ProgramData\tvidqe 2013-12-01 12:16 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\udoec 2013-12-01 12:05 - 2013-12-01 12:05 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Malwarebytes 2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-12-01 12:04 - 2013-12-01 11:56 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Waldi\Downloads\mbam-setup.exe 2013-12-01 11:24 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\rwxuvcn 2013-12-01 10:37 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\fkmfb 2013-11-30 13:50 - 2013-11-26 14:35 - 00000000 ____D C:\Users\Waldi\AppData\Local\Deployment 2013-11-30 13:28 - 2013-11-27 10:42 - 00000000 ____D C:\ProgramData\qswcb 2013-11-30 13:28 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\pgt 2013-11-30 13:25 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\xcf 2013-11-29 16:41 - 2013-11-29 16:41 - 00001406 _____ C:\Users\Waldi\Desktop\FalloutLauncher - Verknüpfung.lnk 2013-11-29 12:57 - 2013-11-20 20:01 - 00000000 ____D C:\Users\Waldi\AppData\Local\Fallout3 2013-11-29 12:26 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\jsxck 2013-11-29 12:26 - 2013-11-29 12:25 - 00341411 _____ C:\Users\Waldi\Downloads\Stadt Heinsberg.jpeg 2013-11-28 19:47 - 2013-11-28 19:47 - 00000000 ____D C:\ProgramData\dcdpy 2013-11-28 12:39 - 2013-11-20 04:25 - 00000000 ____D C:\Users\Waldi\AppData\Local\dxhr 2013-11-28 10:34 - 2013-11-14 01:13 - 00000000 ____D C:\Users\Waldi\Documents\Bluetooth Folder 2013-11-28 10:03 - 2013-11-14 01:36 - 00081021 _____ C:\Windows\DirectX.log 2013-11-27 17:54 - 2013-11-14 01:41 - 00000000 ____D C:\Users\Waldi\AppData\Local\CrashDumps 2013-11-27 13:28 - 2013-11-14 02:55 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-11-27 13:28 - 2013-11-14 02:55 - 00000000 ____D C:\ProgramData\Skype 2013-11-27 11:17 - 2013-11-26 14:22 - 00000000 ____D C:\ProgramData\oimr 2013-11-27 11:17 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\ifkeojg 2013-11-27 11:17 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\fmqb 2013-11-27 10:42 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\unmf 2013-11-27 10:26 - 2013-11-27 10:26 - 00000660 _____ C:\Users\Waldi\Desktop\LingoDict.lnk 2013-11-27 10:26 - 2013-11-27 10:26 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Lingo4u 2013-11-27 10:05 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\gpe 2013-11-27 10:05 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\wiltobo 2013-11-27 10:03 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\dkarde 2013-11-26 14:35 - 2013-11-26 14:35 - 00000000 ____D C:\Users\Waldi\AppData\Local\Apps\2.0 2013-11-26 13:05 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\vlyvk 2013-11-25 10:55 - 2013-11-14 04:37 - 00000000 ____D C:\Windows\AutoKMS 2013-11-25 10:46 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\tyak 2013-11-24 21:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\NDF 2013-11-24 07:59 - 2013-11-14 06:12 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\TS3Client 2013-11-24 06:56 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\rescache 2013-11-22 15:01 - 2013-11-22 15:01 - 00001059 _____ C:\Users\Waldi\Desktop\Fallout 2.lnk 2013-11-22 13:45 - 2013-11-22 13:45 - 00000000 ____D C:\Users\Waldi\AppData\Local\AskPartnerNetwork 2013-11-21 03:12 - 2009-07-14 12:45 - 00417024 _____ C:\Windows\system32\FNTCACHE.DAT 2013-11-20 20:01 - 2013-11-20 20:01 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll 2013-11-20 19:40 - 2013-11-14 01:06 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-11-20 19:07 - 2013-11-20 19:07 - 00003128 _____ C:\Windows\System32\Tasks\{7A853EE4-76B1-434D-8D1F-22367A683333} 2013-11-20 18:54 - 2013-11-14 01:30 - 00109672 _____ C:\Users\Waldi\AppData\Local\GDIPFONTCACHEV1.DAT 2013-11-20 18:51 - 2013-11-16 21:19 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\WinRAR 2013-11-20 18:48 - 2013-11-20 18:48 - 00053248 _____ (Interplay Productions) C:\Windows\ipuninst.exe 2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Black Isle 2013-11-20 18:48 - 2013-11-14 00:48 - 00000000 ____D C:\Users\Waldi\AppData\Local\VirtualStore 2013-11-20 18:44 - 2013-11-20 18:44 - 00000000 ____D C:\Program Files\BlackIsle 2013-11-20 18:42 - 2013-11-20 18:31 - 00000000 ____D C:\Users\Waldi\Documents\Command and Conquer Generals Data 2013-11-20 18:35 - 2013-11-20 18:35 - 00003012 _____ C:\Windows\System32\Tasks\{883B52E7-ED4A-487D-867F-AA9C677A1C63} 2013-11-20 18:29 - 2013-11-20 18:29 - 00000620 _____ C:\Windows\eReg.dat 2013-11-20 18:13 - 2013-11-20 18:13 - 00000793 _____ C:\Users\Public\Desktop\Command & Conquer(TM) Generäle.lnk 2013-11-20 17:59 - 2013-11-20 17:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\Rockstar Games 2013-11-20 17:57 - 2013-11-20 17:57 - 00000000 __RHD C:\Users\Waldi\AppData\Roaming\SecuROM 2013-11-20 17:49 - 2013-11-20 17:49 - 00000000 __SHD C:\ProgramData\SecuROM 2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Windows\SysWOW64\xlive 2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE 2013-11-20 17:16 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Adobe 2013-11-20 17:16 - 2013-11-14 04:45 - 00000000 ____D C:\ProgramData\Adobe 2013-11-20 17:16 - 2013-11-14 04:43 - 00000000 ____D C:\Users\Waldi\AppData\Local\Adobe 2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Program Files\WinRAR 2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\SKIDROW 2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\28050 2013-11-20 03:20 - 2013-11-20 03:20 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf 2013-11-20 01:53 - 2013-11-20 01:53 - 00212708 _____ C:\Users\Waldi\Downloads\Mappe2.xlsx 2013-11-19 03:33 - 2010-11-21 11:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2013-11-19 02:23 - 2013-11-14 05:00 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2013-11-19 02:00 - 2013-11-14 05:00 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2013-11-17 05:58 - 2013-11-17 05:58 - 00000749 _____ C:\Users\Public\Desktop\VLC media player.lnk 2013-11-17 05:50 - 2013-11-17 05:50 - 00000219 _____ C:\Users\Waldi\Desktop\Counter-Strike Global Offensive.url 2013-11-17 05:50 - 2013-11-17 05:50 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2013-11-17 05:45 - 2013-11-17 05:45 - 00000700 _____ C:\Users\Public\Desktop\Steam.lnk 2013-11-17 04:51 - 2013-11-17 04:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2013-11-17 04:51 - 2013-11-14 01:00 - 00000000 ____D C:\Program Files (x86)\Intel 2013-11-16 21:25 - 2013-11-14 00:48 - 00001413 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-11-16 21:23 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-11-16 21:21 - 2013-11-16 21:17 - 00009353 _____ C:\Windows\IE10_main.log 2013-11-16 21:19 - 2013-11-16 21:19 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-16 21:19 - 2013-11-16 21:19 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-16 21:19 - 2013-11-16 21:19 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-11-16 21:19 - 2013-11-16 21:19 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-11-16 21:19 - 2013-11-16 21:19 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-11-16 21:19 - 2013-11-16 21:19 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-11-16 21:19 - 2013-11-16 21:19 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-11-16 21:19 - 2013-11-16 21:19 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-11-16 20:59 - 2013-11-16 20:59 - 00001244 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk 2013-11-16 20:59 - 2013-11-16 20:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\emaze 2013-11-16 20:25 - 2013-11-14 01:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-11-16 02:11 - 2013-11-16 02:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-11-16 01:57 - 2013-11-14 01:56 - 00000000 ____D C:\Users\Waldi\AppData\Local\Mozilla 2013-11-15 10:15 - 2013-11-14 05:01 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins 2013-11-15 09:56 - 2013-11-15 09:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-11-15 05:44 - 2013-11-14 00:48 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-11-15 05:44 - 2013-11-14 00:48 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-11-15 05:42 - 2011-03-20 16:54 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2013-11-15 05:42 - 2010-11-21 15:17 - 00000000 ____D C:\Program Files\Windows Journal 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\winrm 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\WCN 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\sysprep 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\winrm 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\WCN 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\slmgr 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\Windows Sidebar 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\Windows Defender 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\DVD Maker 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\Setup 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\oobe 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\MUI 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\Dism 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\com 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\zh-HK 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\tr-TR 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\sysprep 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\Setup 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\oobe 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\MUI 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\migwiz 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\Dism 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\com 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\servicing 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Program Files\Common Files\System 2013-11-15 05:20 - 2013-11-14 01:29 - 03310804 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-11-15 04:19 - 2013-11-15 03:58 - 00004824 _____ C:\Windows\IE9_main.log 2013-11-15 03:27 - 2013-11-15 03:27 - 00000000 ____D C:\Windows\system32\MRT 2013-11-14 21:27 - 2009-07-14 13:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD 2013-11-14 19:59 - 2013-11-14 19:59 - 00000425 _____ C:\Windows\BRWMARK.INI 2013-11-14 19:59 - 2013-11-14 19:59 - 00000027 _____ C:\Windows\BRPP2KA.INI 2013-11-14 19:57 - 2013-11-14 19:57 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Media Player Classic 2013-11-14 19:52 - 2013-11-14 19:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-11-14 08:19 - 2013-11-14 08:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\PunkBuster 2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Macromedia 2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Local\Macromedia 2013-11-14 07:26 - 2013-11-14 07:26 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-11-14 07:26 - 2013-11-14 07:26 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-11-14 07:26 - 2013-11-14 07:26 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\system32\Macromed 2013-11-14 06:17 - 2013-11-14 06:16 - 00000000 ____D C:\Users\Waldi\Documents\Battlefield 4 2013-11-14 06:16 - 2013-11-14 03:30 - 00000000 ____D C:\Users\Waldi\AppData\Local\Origin 2013-11-14 06:16 - 2013-11-14 03:29 - 00000000 ____D C:\ProgramData\Origin 2013-11-14 06:16 - 2013-11-14 03:29 - 00000000 ____D C:\ProgramData\Electronic Arts 2013-11-14 06:12 - 2013-11-14 06:12 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2013-11-14 06:12 - 2013-11-14 06:12 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client 2013-11-14 05:49 - 2013-11-14 05:49 - 00000000 ____D C:\Users\Waldi\AppData\Local\ESN 2013-11-14 05:45 - 2013-11-14 03:30 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Origin 2013-11-14 05:25 - 2013-11-14 04:25 - 00000000 ____D C:\Users\Waldi\Downloads\IntelBurnTest 2013-11-14 05:17 - 2013-11-14 05:01 - 00001198 _____ C:\Users\Public\Desktop\Battlefield 4.lnk 2013-11-14 05:17 - 2013-11-14 05:01 - 00001174 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk 2013-11-14 05:00 - 2013-11-14 05:00 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe 2013-11-14 05:00 - 2013-11-14 05:00 - 00000000 ____D C:\ProgramData\Package Cache 2013-11-14 04:45 - 2013-11-14 04:45 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk 2013-11-14 04:45 - 2013-11-14 04:45 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-11-14 04:40 - 2013-11-14 04:40 - 00001085 _____ C:\Users\Waldi\Desktop\MPC-HC.lnk 2013-11-14 04:40 - 2013-11-14 04:40 - 00000000 ____D C:\Program Files (x86)\MPC-HC 2013-11-14 04:36 - 2013-11-14 04:32 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-11-14 04:36 - 2009-07-14 10:34 - 00000478 _____ C:\Windows\win.ini 2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2013-11-14 04:34 - 2010-11-21 15:16 - 00000000 ____D C:\Windows\ShellNew 2013-11-14 04:34 - 2009-07-14 11:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Windows\PCHEALTH 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Sync Framework 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2013-11-14 04:33 - 2013-11-14 04:32 - 00000000 ____D C:\Program Files\Microsoft Office 2013-11-14 04:33 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\MSBuild 2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ___RD C:\MSOCache 2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Users\Waldi\AppData\Local\Microsoft Help 2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2013-11-14 04:32 - 2013-11-14 04:17 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\DAEMON Tools Lite 2013-11-14 04:32 - 2013-11-14 04:16 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2013-11-14 04:25 - 2013-11-14 04:25 - 00031136 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS 2013-11-14 04:25 - 2013-11-14 04:25 - 00000000 ____D C:\Program Files\HWiNFO64 2013-11-14 04:24 - 2013-11-14 04:24 - 00000000 ____D C:\Program Files (x86)\Geeks3D 2013-11-14 04:17 - 2013-11-14 04:17 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2013-11-14 04:17 - 2013-11-14 04:17 - 00001954 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2013-11-14 04:17 - 2013-11-14 04:17 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite 2013-11-14 04:05 - 2013-11-14 03:42 - 00000000 ____D C:\Program Files (x86)\Origin Games 2013-11-14 03:29 - 2013-11-14 03:29 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk 2013-11-14 03:07 - 2013-11-14 01:41 - 00000000 ____D C:\Program Files (x86)\Hotkey 2013-11-14 03:02 - 2013-11-14 03:02 - 00003176 _____ C:\Windows\System32\Tasks\{C0F16D60-C776-4C21-A429-EB577937A1B9} 2013-11-14 02:55 - 2013-11-14 02:55 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk 2013-11-14 02:43 - 2013-11-14 01:22 - 00015882 _____ C:\Windows\DPINST.LOG 2013-11-14 02:39 - 2013-11-14 02:39 - 00000000 ____D C:\Users\Waldi\AppData\Local\Innovative Solutions 2013-11-14 02:26 - 2013-11-14 01:06 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-11-14 02:14 - 2013-11-14 02:14 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Avira 2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\ProgramData\AskPartnerNetwork 2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork 2013-11-14 02:00 - 2013-11-14 02:00 - 00002070 _____ C:\Users\Public\Desktop\Avira Control Center.lnk 2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\ProgramData\Avira 2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\Program Files (x86)\Avira 2013-11-14 01:56 - 2013-11-14 01:56 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Mozilla 2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\ProgramData\Mozilla 2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\Documents\EA Games 2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\AppData\Local\EA Games 2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Program Files\Realtek 2013-11-14 01:38 - 2013-11-14 01:22 - 00002144 _____ C:\Windows\sentelic.log 2013-11-14 01:38 - 2013-11-14 01:06 - 00000000 ____D C:\Windows\SysWOW64\sda 2013-11-14 01:36 - 2013-11-14 01:36 - 00000000 ____D C:\Users\Waldi\AppData\Local\2K Games 2013-11-14 01:34 - 2013-11-14 01:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____D C:\Program Files\AuthenTec 2013-11-14 01:31 - 2009-07-14 13:32 - 00000000 ____D C:\Windows\system32\WinBioPlugIns 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Local\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\ProgramData\ATI 2013-11-14 01:24 - 2013-11-14 01:24 - 00002525 _____ C:\Users\Public\Desktop\Microsoft Download Manager.lnk 2013-11-14 01:24 - 2013-11-14 01:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Download Manager 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_fspad_win764_01009.Wdf 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____D C:\Program Files\FSP 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Atheros 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\BMExplorer 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\ProgramData\Atheros 2013-11-14 01:18 - 2009-07-14 11:20 - 00000000 __RHD C:\Users\Public\Libraries 2013-11-14 01:14 - 2013-11-14 01:14 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-11-14 01:13 - 2013-11-14 01:13 - 00002238 _____ C:\Users\Public\Desktop\Qualcomm Atheros Killer Network Manager.lnk 2013-11-14 01:13 - 2013-11-14 01:13 - 00000264 _____ C:\Users\Waldi\AppData\Local\killertool.log 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files\Qualcomm Atheros 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-11-14 01:07 - 2013-11-14 01:07 - 00000000 ____D C:\Users\Waldi\AppData\Local\Intel_Corporation 2013-11-14 01:06 - 2009-07-14 13:32 - 00000000 ____D C:\Windows\system32\restore 2013-11-14 01:05 - 2013-11-14 01:05 - 00000000 ____D C:\ProgramData\Intel 2013-11-14 01:05 - 2013-11-14 01:02 - 00000000 ____D C:\Program Files\Intel 2013-11-14 01:03 - 2013-11-14 01:03 - 00000000 _____ C:\Windows\ativpsrm.bin 2013-11-14 01:01 - 2013-11-14 00:52 - 00000000 ____D C:\Intel 2013-11-14 00:58 - 2013-11-14 00:58 - 00135602 _____ C:\Windows\system32\log.xml 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\ProgramData\AMD 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files (x86)\AMD AVT 2013-11-14 00:55 - 2013-11-14 00:54 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2013-11-14 00:55 - 2013-11-14 00:53 - 00000000 ____D C:\Program Files\ATI Technologies 2013-11-14 00:54 - 2013-11-14 00:54 - 00000000 ____D C:\Program Files\ATI 2013-11-14 00:48 - 2013-11-14 00:48 - 00000020 ___SH C:\Users\Waldi\ntuser.ini 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 ____D C:\Recovery 2013-11-14 00:48 - 2013-11-13 16:45 - 00000000 ____D C:\Windows\Panther 2013-11-14 00:48 - 2009-07-14 11:20 - 00000000 __RHD C:\Users\Default 2013-11-14 00:48 - 2009-07-14 11:20 - 00000000 ____D C:\Program Files\Windows NT 2013-11-14 00:46 - 2013-11-14 00:46 - 00001355 _____ C:\Windows\TSSysprep.log 2013-11-14 00:46 - 2009-07-14 12:46 - 00002790 _____ C:\Windows\DtcInstall.log 2013-11-13 16:44 - 2009-07-14 13:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2013-11-13 16:44 - 2009-07-14 13:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2013-11-07 23:00 - 2013-11-15 03:27 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe Some content of TEMP: ==================== C:\Users\Waldi\AppData\Local\Temp\avgnt.exe C:\Users\Waldi\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-11-30 14:24 ==================== End Of Log ============================ |
|
05.12.2013, 11:43
| #10 |
| /// the machine /// TB-Ausbilder | Bublik A.30.132 TrojanerESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
06.12.2013, 01:11
| #11 |
| | Bublik A.30.132 Trojaner Hallo, der ESET Online scanner hat den Fehler "Unexpected error 2002" Kann aber auch natürlich an meiner Internetverbindung liegen. Ich muss dazu sagen das ich Moment an auf einem Bohrschiff in Brunei bin. Das Internet hier ist nicht das beste... Bin aber in ein paar Wochen wieder in der Heimat, falls es an der Verbindung liegt. Eset log: Code:
ATTFilter ESETSmartInstaller@High as downloader log:
Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.Can not read file from internet.ESETSmartInstaller@High as downloader log:
Can not read file from internet.
Code:
ATTFilter Results of screen317's Security Check version 0.99.76 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` avast! Antivirus Avira Desktop Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 Adobe Flash Player 11.9.900.152 Adobe Reader XI Mozilla Firefox (25.0.1) ````````Process Check: objlist.exe by Laurent```````` Avira Antivir avgnt.exe Avira Antivir avguard.exe ESET ESET Online Scanner OnlineScannerApp.exe ESET ESET Online Scanner OnlineCmdLineScanner.exe AVAST Software Avast AvastSvc.exe AVAST Software Avast avastUi.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-12-2013
Ran by Waldi (administrator) on WALDI-PC on 06-12-2013 07:55:41
Running from C:\Users\Waldi\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
(Sentelic Corporation) C:\Program Files\FSP\FspUip.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Hotkey\Hotkey.exe
() C:\Program Files\Qualcomm Atheros\Killer Network Manager\KillerNetManager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(ESET) C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe
() C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [fspuip] - C:\Program Files\FSP\FspUip.exe [6263120 2013-04-02] (Sentelic Corporation)
HKLM\...\Run: [Logitech Download Assistant] - C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13449288 2013-03-27] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [DAEMON Tools Lite] - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-15] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-01] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3568312 2013-12-05] (AVAST Software)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.akersolutions.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x3B4E570995E0CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
Toolbar: HKLM-x32 - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} - No File
DPF: HKLM-x32 {B479199A-1242-4E3C-AD81-7F0DF801B4AE} hxxp://download.microsoft.com/download/C/9/C/C9C3D86D-84AC-4AF0-8584-842756A66467/MicrosoftDownloadManager.cab
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 02 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 03 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 04 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9 16 C:\Windows\SysWOW64\BfLLR.dll [196096] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 01 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 02 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 03 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 04 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Winsock: Catalog9-x64 16 %SYSTEMROOT%\system32\BfLLR.dll [216064] (Bigfoot Networks, Inc.)
Tcpip\Parameters: [DhcpNameServer] 208.67.222.222 208.67.220.220
FireFox:
========
FF ProfilePath: C:\Users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.1 - E:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.1 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.1\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/DownloadManager,version=1.1 - C:\Windows\ ()
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Waldi\AppData\Roaming\Mozilla\Firefox\Profiles\mqcraxjw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1164360 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-24] (APN LLC.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227968 2013-03-27] (Qualcomm Atheros Commnucations)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2013-12-05] (AVAST Software)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [803872 2012-12-10] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [167736 2013-02-23] (Intel Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-14] ()
R2 PowerBiosServer; C:\Program Files (x86)\Hotkey\PowerBiosServer.exe [46592 2013-05-30] ()
R2 Qualcomm Atheros Killer Service; C:\Program Files\Qualcomm Atheros\Killer Network Manager\BFNService.exe [503296 2013-04-30] ()
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-03-27] (Atheros)
==================== Drivers (Whitelisted) ====================
R3 Ak27x64; C:\Windows\System32\DRIVERS\Ak27x64.sys [3921104 2013-04-30] (Qualcomm Atheros, Inc.)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [37472 2013-02-14] (Advanced Micro Devices, Inc.)
R2 aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [38984 2013-12-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [84328 2013-12-05] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-12-05] (AVAST Software)
S0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-12-05] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1032416 2013-12-05] (AVAST Software)
S1 aswSP; C:\Windows\system32\drivers\aswSP.sys [409832 2013-12-05] (AVAST Software)
R1 aswTdi; C:\Windows\system32\drivers\aswTdi.sys [65264 2013-12-05] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [205320 2013-12-05] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [107416 2013-12-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-11-01] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-01] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [83160 2013-11-01] (Avira Operations GmbH & Co. KG)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [66928 2013-04-30] (Qualcomm Atheros, Inc.)
R3 BTATH_LWFLT; C:\Windows\System32\DRIVERS\btath_lwflt.sys [77464 2013-03-27] (Qualcomm Atheros)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-14] (Disc Soft Ltd)
R3 fspad_win764; C:\Windows\System32\DRIVERS\fspad_win764.sys [155472 2013-04-02] (Sentelic Corporation)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [31136 2013-11-14] (REALiX(tm))
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-06 07:46 - 2013-12-06 07:54 - 01925140 _____ (Farbar) C:\Users\Waldi\Desktop\FRST64.exe
2013-12-05 19:42 - 2013-12-05 19:42 - 00000000 ____D C:\Program Files (x86)\ESET
2013-12-05 19:17 - 2013-12-05 19:21 - 00891184 _____ C:\Users\Waldi\Desktop\SecurityCheck.exe
2013-12-05 19:14 - 2013-12-05 19:28 - 02347384 _____ (ESET) C:\Users\Waldi\Desktop\esetsmartinstaller_enu.exe
2013-12-05 15:35 - 2013-12-05 15:35 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2013-12-05 15:35 - 2013-12-05 15:35 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2013-12-05 15:35 - 2013-12-05 15:35 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\AVAST Software
2013-12-05 15:34 - 2013-12-05 15:34 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2013-12-05 15:34 - 2013-12-05 15:34 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2013-12-05 15:34 - 2013-12-05 15:34 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2013-12-05 15:34 - 2013-12-05 15:34 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys
2013-12-05 15:34 - 2013-12-05 15:34 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2013-12-05 15:34 - 2013-12-05 15:34 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2013-12-05 15:34 - 2013-12-05 15:34 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2013-12-05 15:34 - 2013-12-05 15:34 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys
2013-12-05 15:34 - 2013-12-05 15:34 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2013-12-05 15:34 - 2013-12-05 15:34 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys
2013-12-05 15:34 - 2013-12-05 15:34 - 00000000 ____D C:\Program Files\AVAST Software
2013-12-05 15:32 - 2013-12-05 15:32 - 00000000 ____D C:\ProgramData\AVAST Software
2013-12-05 13:22 - 2013-12-05 15:32 - 87529432 _____ (AVAST Software) C:\Users\Waldi\Downloads\avast_free_antivirus_setup2008.exe
2013-12-04 23:06 - 2013-12-06 07:55 - 00014602 _____ C:\Users\Waldi\Desktop\FRST.txt
2013-12-04 22:58 - 2013-12-04 22:58 - 00001278 _____ C:\Users\Waldi\Desktop\JRT.txt
2013-12-04 22:54 - 2013-12-04 22:54 - 00000000 ____D C:\Windows\ERUNT
2013-12-04 22:52 - 2013-12-04 22:52 - 00001726 _____ C:\Users\Waldi\Desktop\AdwCleaner[S0].txt
2013-12-04 22:48 - 2013-12-04 22:50 - 00000000 ____D C:\AdwCleaner
2013-12-04 22:44 - 2013-12-04 22:45 - 01034531 _____ (Thisisu) C:\Users\Waldi\Desktop\JRT.exe
2013-12-04 22:35 - 2013-12-04 22:37 - 01110034 _____ C:\Users\Waldi\Desktop\adwcleaner.exe
2013-12-04 19:25 - 2013-12-04 22:02 - 45768394 _____ (AVAST Software) C:\Users\Waldi\Downloads\avast_free_antivirus_setup2008.exe.n58blbg.partial
2013-12-04 18:08 - 2013-12-04 18:08 - 00024031 _____ C:\ComboFix.txt
2013-12-04 18:05 - 2013-12-04 18:08 - 00000000 ____D C:\Windows\erdnt
2013-12-04 18:05 - 2013-12-04 18:08 - 00000000 ____D C:\Qoobox
2013-12-04 18:05 - 2011-06-26 14:45 - 00256000 _____ C:\Windows\PEV.exe
2013-12-04 18:05 - 2010-11-08 01:20 - 00208896 _____ C:\Windows\MBR.exe
2013-12-04 18:05 - 2009-04-20 12:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-12-04 18:05 - 2000-08-31 08:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-12-04 18:05 - 2000-08-31 08:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-12-04 18:05 - 2000-08-31 08:00 - 00098816 _____ C:\Windows\sed.exe
2013-12-04 18:05 - 2000-08-31 08:00 - 00080412 _____ C:\Windows\grep.exe
2013-12-04 18:05 - 2000-08-31 08:00 - 00068096 _____ C:\Windows\zip.exe
2013-12-04 17:59 - 2013-12-04 18:02 - 05152198 ____R (Swearware) C:\Users\Waldi\Desktop\ComboFix.exe
2013-12-04 17:37 - 2013-12-04 17:46 - 00000000 ____D C:\Users\Waldi\AppData\Local\FalloutNV
2013-12-04 17:29 - 2013-12-04 17:29 - 00001117 _____ C:\Users\Public\Desktop\Fallout New Vegas.lnk
2013-12-03 19:37 - 2013-12-03 19:37 - 00029071 _____ C:\Users\Waldi\Desktop\Desktop.rar
2013-12-03 18:44 - 2013-12-03 18:44 - 00005455 _____ C:\Users\Waldi\Desktop\gmer.log
2013-12-03 18:34 - 2013-12-03 18:34 - 00377856 _____ C:\Users\Waldi\Desktop\gmer_2.1.19163.exe
2013-12-03 18:32 - 2013-12-03 18:32 - 00000000 ____D C:\FRST
2013-12-03 18:25 - 2013-12-03 18:25 - 00000542 _____ C:\Users\Waldi\Desktop\defogger_disable.log
2013-12-03 18:25 - 2013-12-03 18:25 - 00000168 _____ C:\Users\Waldi\defogger_reenable
2013-12-03 18:24 - 2013-12-03 18:24 - 00050477 _____ C:\Users\Waldi\Desktop\Defogger.exe
2013-12-03 16:56 - 2013-12-03 16:59 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-12-03 16:46 - 2013-12-03 16:59 - 00000000 ____D C:\Users\Waldi\Desktop\mbar
2013-12-03 16:46 - 2013-12-03 16:46 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2013-12-03 16:06 - 2013-12-03 16:14 - 12576792 _____ (Malwarebytes Corp.) C:\Users\Waldi\Downloads\mbar-1.07.0.1007.exe
2013-12-03 15:57 - 2013-12-03 17:41 - 62064667 _____ (Symantec Corporation) C:\Users\Waldi\Downloads\NIS_21.1.0.18_SYMTB_TMD_MRFTT_820_10131.exe
2013-12-03 15:20 - 2013-12-03 17:29 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP
2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 ____D C:\Program Files\Enigma Software Group
2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 _____ C:\autoexec.bat
2013-12-03 14:17 - 2013-12-03 14:18 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Waldi\Downloads\SpyHunter-Installer.exe
2013-12-03 13:59 - 2013-12-03 13:59 - 00028916 _____ C:\Users\Waldi\Documents\AVSCAN-20131203-133348-272CD52E.LOG
2013-12-03 11:36 - 2013-12-03 12:30 - 00000000 ____D C:\ProgramData\mryu
2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tkipd
2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tbrjps
2013-12-01 20:04 - 2013-12-01 20:04 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\dvdcss
2013-12-01 12:05 - 2013-12-01 12:05 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Malwarebytes
2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-01 12:05 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-01 11:56 - 2013-12-01 12:04 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Waldi\Downloads\mbam-setup.exe
2013-12-01 10:54 - 2013-12-04 08:11 - 00000000 ____D C:\ProgramData\mdh
2013-12-01 10:37 - 2013-12-04 07:40 - 00000000 ____D C:\ProgramData\kjqvm
2013-12-01 10:37 - 2013-12-04 07:04 - 00000000 ____D C:\ProgramData\upcr
2013-12-01 10:37 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\fkmfb
2013-11-29 16:41 - 2013-11-29 16:41 - 00001406 _____ C:\Users\Waldi\Desktop\FalloutLauncher - Verknüpfung.lnk
2013-11-29 12:53 - 2013-12-01 12:16 - 00000000 ____D C:\ProgramData\tvidqe
2013-11-29 12:26 - 2013-12-01 12:16 - 00000000 ____D C:\ProgramData\udoec
2013-11-29 12:26 - 2013-12-01 11:24 - 00000000 ____D C:\ProgramData\rwxuvcn
2013-11-29 12:26 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\jsxck
2013-11-29 12:25 - 2013-11-29 12:26 - 00341411 _____ C:\Users\Waldi\Downloads\Stadt Heinsberg.jpeg
2013-11-28 19:47 - 2013-11-28 19:47 - 00000000 ____D C:\ProgramData\dcdpy
2013-11-27 10:42 - 2013-11-30 13:28 - 00000000 ____D C:\ProgramData\qswcb
2013-11-27 10:26 - 2013-11-27 10:26 - 00000660 _____ C:\Users\Waldi\Desktop\LingoDict.lnk
2013-11-27 10:26 - 2013-11-27 10:26 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Lingo4u
2013-11-27 10:05 - 2013-11-30 13:28 - 00000000 ____D C:\ProgramData\pgt
2013-11-27 10:05 - 2013-11-30 13:25 - 00000000 ____D C:\ProgramData\xcf
2013-11-27 10:05 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\gpe
2013-11-26 14:35 - 2013-11-30 13:50 - 00000000 ____D C:\Users\Waldi\AppData\Local\Deployment
2013-11-26 14:35 - 2013-11-26 14:35 - 00000000 ____D C:\Users\Waldi\AppData\Local\Apps\2.0
2013-11-26 14:22 - 2013-11-27 11:17 - 00000000 ____D C:\ProgramData\oimr
2013-11-26 13:05 - 2013-11-27 10:42 - 00000000 ____D C:\ProgramData\unmf
2013-11-26 13:05 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\wiltobo
2013-11-26 13:05 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\vlyvk
2013-11-25 10:46 - 2013-12-04 06:56 - 00000000 ____D C:\ProgramData\qmbhac
2013-11-25 10:46 - 2013-11-27 11:17 - 00000000 ____D C:\ProgramData\ifkeojg
2013-11-25 10:46 - 2013-11-27 11:17 - 00000000 ____D C:\ProgramData\fmqb
2013-11-25 10:46 - 2013-11-27 10:03 - 00000000 ____D C:\ProgramData\dkarde
2013-11-25 10:46 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\tyak
2013-11-25 10:40 - 2013-12-04 07:04 - 00000000 ____D C:\ProgramData\dcdp
2013-11-24 08:09 - 2013-12-04 08:25 - 00000000 ____D C:\Users\Waldi\Desktop\Tungsten aktuell
2013-11-22 15:01 - 2013-11-22 15:01 - 00001059 _____ C:\Users\Waldi\Desktop\Fallout 2.lnk
2013-11-22 13:45 - 2013-11-22 13:45 - 00000000 ____D C:\Users\Waldi\AppData\Local\AskPartnerNetwork
2013-11-20 20:01 - 2013-12-04 17:37 - 00000000 ____D C:\Users\Waldi\Documents\My Games
2013-11-20 20:01 - 2013-11-29 12:57 - 00000000 ____D C:\Users\Waldi\AppData\Local\Fallout3
2013-11-20 20:01 - 2013-11-20 20:01 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2013-11-20 19:07 - 2013-11-20 19:07 - 00003128 _____ C:\Windows\System32\Tasks\{7A853EE4-76B1-434D-8D1F-22367A683333}
2013-11-20 18:48 - 2013-11-20 18:48 - 00053248 _____ (Interplay Productions) C:\Windows\ipuninst.exe
2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Black Isle
2013-11-20 18:44 - 2013-11-20 18:44 - 00000000 ____D C:\Program Files\BlackIsle
2013-11-20 18:35 - 2013-11-20 18:35 - 00003012 _____ C:\Windows\System32\Tasks\{883B52E7-ED4A-487D-867F-AA9C677A1C63}
2013-11-20 18:31 - 2013-11-20 18:42 - 00000000 ____D C:\Users\Waldi\Documents\Command and Conquer Generals Data
2013-11-20 18:29 - 2013-11-20 18:29 - 00000620 _____ C:\Windows\eReg.dat
2013-11-20 18:13 - 2013-11-20 18:13 - 00000793 _____ C:\Users\Public\Desktop\Command & Conquer(TM) Generäle.lnk
2013-11-20 17:59 - 2013-11-20 17:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\Rockstar Games
2013-11-20 17:57 - 2013-11-20 17:57 - 00000000 __RHD C:\Users\Waldi\AppData\Roaming\SecuROM
2013-11-20 17:49 - 2013-11-20 17:49 - 00000000 __SHD C:\ProgramData\SecuROM
2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Program Files\WinRAR
2013-11-20 04:25 - 2013-11-28 12:39 - 00000000 ____D C:\Users\Waldi\AppData\Local\dxhr
2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\SKIDROW
2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\28050
2013-11-20 03:20 - 2013-11-20 03:20 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-11-20 01:53 - 2013-11-20 01:53 - 00212708 _____ C:\Users\Waldi\Downloads\Mappe2.xlsx
2013-11-20 01:48 - 2013-09-04 20:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-11-20 01:48 - 2013-09-04 20:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-11-17 06:00 - 2013-12-05 17:34 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\vlc
2013-11-17 05:58 - 2013-11-17 05:58 - 00000749 _____ C:\Users\Public\Desktop\VLC media player.lnk
2013-11-17 05:50 - 2013-11-17 05:50 - 00000219 _____ C:\Users\Waldi\Desktop\Counter-Strike Global Offensive.url
2013-11-17 05:50 - 2013-11-17 05:50 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-11-17 05:45 - 2013-11-17 05:45 - 00000700 _____ C:\Users\Public\Desktop\Steam.lnk
2013-11-17 04:51 - 2013-11-17 04:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2013-11-17 04:51 - 2013-04-26 17:24 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll
2013-11-16 21:19 - 2013-11-20 18:51 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\WinRAR
2013-11-16 21:19 - 2013-11-16 21:19 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-16 21:19 - 2013-11-16 21:19 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-16 21:19 - 2013-11-16 21:19 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-16 21:19 - 2013-11-16 21:19 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-16 21:19 - 2013-11-16 21:19 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-16 21:19 - 2013-11-16 21:19 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-16 21:19 - 2013-11-16 21:19 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-16 21:19 - 2013-11-16 21:19 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-16 21:19 - 2013-11-16 21:19 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-16 21:19 - 2013-11-16 21:19 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-16 21:17 - 2013-11-16 21:21 - 00009353 _____ C:\Windows\IE10_main.log
2013-11-16 21:17 - 2013-04-17 15:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-11-16 21:17 - 2013-04-17 14:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-11-16 21:17 - 2012-07-07 04:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-11-16 21:17 - 2012-02-11 14:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-11-16 21:17 - 2012-02-11 14:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2013-11-16 21:17 - 2011-03-11 14:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2013-11-16 21:17 - 2011-03-11 14:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2013-11-16 21:17 - 2011-03-11 14:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-11-16 21:17 - 2011-03-11 14:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2013-11-16 21:17 - 2011-03-11 13:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-11-16 21:17 - 2011-03-11 13:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2013-11-16 21:17 - 2011-03-11 12:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-11-16 21:17 - 2011-02-25 14:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-11-16 21:17 - 2011-02-25 13:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-11-16 21:00 - 2013-12-03 17:27 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-11-16 20:59 - 2013-11-16 20:59 - 00001244 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-11-16 20:59 - 2013-11-16 20:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\emaze
2013-11-16 02:11 - 2013-11-16 02:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-16 01:58 - 2011-04-28 11:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-11-15 09:56 - 2013-11-15 09:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-11-15 04:54 - 2013-10-02 10:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-11-15 04:54 - 2013-10-02 10:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-11-15 04:54 - 2013-10-02 10:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-11-15 04:54 - 2013-10-02 09:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-11-15 04:54 - 2013-10-02 09:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-11-15 04:54 - 2013-10-02 09:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-11-15 04:54 - 2013-10-02 09:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-11-15 04:54 - 2013-10-02 08:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2013-11-15 04:54 - 2013-10-02 08:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-11-15 04:54 - 2013-10-02 08:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-11-15 04:54 - 2013-10-02 08:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-11-15 04:54 - 2013-10-02 08:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-11-15 04:54 - 2013-10-02 07:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-11-15 04:54 - 2013-10-02 07:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-11-15 04:54 - 2013-10-02 07:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2013-11-15 04:54 - 2013-10-02 06:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-11-15 04:54 - 2013-10-02 04:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-11-15 04:54 - 2013-10-02 04:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-11-15 04:32 - 2012-08-23 22:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2013-11-15 04:32 - 2012-08-23 22:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2013-11-15 04:32 - 2012-08-23 22:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2013-11-15 04:32 - 2012-08-23 21:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2013-11-15 04:32 - 2012-08-23 19:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2013-11-15 04:32 - 2012-08-23 18:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2013-11-15 04:32 - 2012-08-23 17:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2013-11-15 04:21 - 2010-02-23 16:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-11-15 03:58 - 2013-11-15 04:19 - 00004824 _____ C:\Windows\IE9_main.log
2013-11-15 03:33 - 2012-07-26 11:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-11-15 03:33 - 2012-07-26 11:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-11-15 03:33 - 2012-07-26 11:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-11-15 03:33 - 2012-07-26 11:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-11-15 03:33 - 2012-07-26 11:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-11-15 03:33 - 2012-07-26 10:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-11-15 03:33 - 2012-07-26 10:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-11-15 03:33 - 2012-06-02 22:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-11-15 03:27 - 2013-11-15 03:27 - 00000000 ____D C:\Windows\system32\MRT
2013-11-15 03:27 - 2013-11-07 23:00 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-15 03:15 - 2013-01-14 05:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 05:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-11-15 03:15 - 2013-01-14 04:22 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-11-15 03:15 - 2013-01-14 04:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-11-15 03:15 - 2013-01-14 04:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-11-15 03:15 - 2013-01-14 04:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-11-15 03:15 - 2013-01-14 03:59 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-11-15 03:15 - 2013-01-14 03:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-11-15 03:15 - 2013-01-14 03:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-11-15 03:15 - 2013-01-14 03:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-11-15 03:15 - 2013-01-14 03:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-11-15 03:15 - 2013-01-14 03:51 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-11-15 03:15 - 2013-01-14 03:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-11-15 03:15 - 2013-01-14 03:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-11-15 03:15 - 2013-01-14 03:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-11-15 03:15 - 2013-01-14 03:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-11-15 03:15 - 2013-01-14 03:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-11-15 03:15 - 2013-01-14 03:37 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-11-15 03:15 - 2013-01-14 03:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-11-15 03:15 - 2013-01-14 03:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-11-15 03:15 - 2013-01-14 03:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-11-15 03:15 - 2013-01-14 03:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-11-15 03:15 - 2013-01-14 03:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-11-15 03:15 - 2013-01-14 03:10 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-11-15 03:15 - 2013-01-14 03:02 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-11-15 03:15 - 2013-01-14 02:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-11-15 03:15 - 2013-01-14 02:32 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-11-15 03:15 - 2013-01-14 02:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-11-15 03:15 - 2013-01-14 01:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-11-15 03:15 - 2013-01-14 01:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-11-15 03:15 - 2013-01-04 14:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-11-15 03:15 - 2013-01-04 14:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-11-15 03:10 - 2012-03-01 14:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-11-15 03:10 - 2012-03-01 14:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-11-15 03:10 - 2012-03-01 14:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-11-15 03:10 - 2012-03-01 13:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-11-15 03:10 - 2012-03-01 13:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-11-15 00:38 - 2013-02-27 14:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-11-15 00:38 - 2013-02-27 13:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-11-15 00:32 - 2013-10-04 10:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-15 00:32 - 2013-10-04 10:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-15 00:32 - 2013-10-04 10:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-15 00:32 - 2013-10-04 09:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-15 00:32 - 2013-10-04 09:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-15 00:32 - 2013-10-04 09:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-15 00:31 - 2013-08-02 10:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-11-15 00:31 - 2013-08-02 10:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-11-15 00:31 - 2013-08-02 10:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 10:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-11-15 00:31 - 2013-08-02 09:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 09:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-11-15 00:31 - 2013-08-02 08:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-11-15 00:31 - 2013-08-02 08:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 08:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 08:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-11-15 00:31 - 2013-08-02 08:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-11-15 00:31 - 2013-07-26 10:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-11-15 00:31 - 2013-07-26 10:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-11-15 00:31 - 2013-07-26 09:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-11-15 00:31 - 2013-07-26 09:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-11-15 00:30 - 2013-09-25 10:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2013-11-15 00:30 - 2013-09-25 09:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2013-11-15 00:30 - 2012-11-30 13:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-11-15 00:30 - 2012-11-30 13:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-11-15 00:30 - 2012-11-30 13:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-11-15 00:30 - 2012-11-30 07:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2013-11-15 00:30 - 2012-11-30 07:15 - 00420064 _____ C:\Windows\system32\locale.nls
2013-11-15 00:28 - 2012-10-10 02:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-11-15 00:28 - 2012-10-10 02:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-11-15 00:28 - 2012-10-10 01:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-11-15 00:28 - 2012-10-10 01:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-11-15 00:28 - 2012-10-04 01:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-11-15 00:28 - 2012-10-04 01:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-11-15 00:28 - 2012-10-04 00:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-11-15 00:28 - 2012-10-04 00:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-11-15 00:28 - 2012-10-04 00:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-11-15 00:28 - 2012-10-04 00:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-11-15 00:28 - 2012-01-13 15:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-11-15 00:25 - 2013-08-29 10:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-11-15 00:25 - 2013-08-29 10:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-11-15 00:25 - 2013-08-29 10:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-11-15 00:25 - 2013-08-29 10:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-11-15 00:25 - 2013-08-29 10:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-11-15 00:25 - 2013-08-29 09:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-11-15 00:25 - 2013-08-29 09:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-11-15 00:25 - 2013-08-29 09:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-11-15 00:25 - 2013-08-29 09:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-11-15 00:25 - 2013-08-29 09:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-11-15 00:25 - 2013-08-29 09:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-11-15 00:25 - 2013-08-29 08:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-11-15 00:25 - 2013-08-29 08:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-11-15 00:25 - 2013-08-29 08:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-11-15 00:25 - 2013-08-29 08:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-11-15 00:25 - 2013-04-26 07:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-11-15 00:25 - 2013-04-01 06:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-11-15 00:25 - 2012-01-04 18:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2013-11-15 00:25 - 2012-01-04 16:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2013-11-15 00:23 - 2012-08-22 05:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-11-15 00:20 - 2013-07-09 13:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-11-15 00:20 - 2013-07-09 12:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-11-15 00:20 - 2013-05-13 13:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-11-15 00:20 - 2013-05-13 11:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-11-15 00:20 - 2013-05-13 11:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-11-15 00:20 - 2013-05-13 11:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-11-15 00:17 - 2013-01-03 14:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-11-15 00:17 - 2012-08-23 02:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-11-15 00:17 - 2012-07-05 06:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-11-15 00:17 - 2012-07-05 06:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-11-15 00:17 - 2012-07-05 06:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-11-15 00:17 - 2012-07-05 05:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-11-15 00:17 - 2012-07-05 05:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-11-15 00:16 - 2012-12-07 21:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2013-11-15 00:16 - 2012-12-07 21:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2013-11-15 00:16 - 2012-12-07 20:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2013-11-15 00:16 - 2012-12-07 20:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2013-11-15 00:16 - 2012-12-07 19:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2013-11-15 00:16 - 2012-12-07 19:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2013-11-15 00:16 - 2012-12-07 19:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2013-11-15 00:16 - 2012-12-07 18:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2013-11-15 00:16 - 2012-11-01 13:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-11-15 00:16 - 2012-11-01 13:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-11-15 00:16 - 2012-11-01 12:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-11-15 00:16 - 2012-11-01 12:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-11-15 00:16 - 2010-06-26 11:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-11-15 00:16 - 2010-06-26 11:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-11-15 00:15 - 2012-08-23 02:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-11-15 00:15 - 2012-07-05 04:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-11-15 00:14 - 2013-09-08 10:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-11-15 00:14 - 2013-09-08 10:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-11-15 00:14 - 2013-09-08 10:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-11-15 00:13 - 2013-08-28 09:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-11-15 00:13 - 2013-06-26 06:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-11-15 00:13 - 2012-11-29 06:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-11-15 00:13 - 2012-11-29 06:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-11-15 00:13 - 2012-11-29 06:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-11-15 00:13 - 2011-04-29 11:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-11-15 00:13 - 2011-04-29 11:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-11-15 00:13 - 2011-04-29 11:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-11-15 00:12 - 2012-05-05 16:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-11-15 00:12 - 2012-05-05 15:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2013-11-15 00:12 - 2012-05-01 13:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-11-15 00:12 - 2012-04-07 20:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-11-15 00:12 - 2012-04-07 19:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2013-11-15 00:11 - 2012-11-22 13:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-11-15 00:11 - 2012-11-22 12:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2013-11-15 00:11 - 2012-04-26 13:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-11-15 00:11 - 2012-04-26 13:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-11-15 00:11 - 2012-04-26 13:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-11-15 00:11 - 2011-08-27 13:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-11-15 00:11 - 2011-08-27 13:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-11-15 00:11 - 2011-08-27 12:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-11-15 00:11 - 2011-08-27 12:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-11-15 00:11 - 2011-04-09 14:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-11-15 00:11 - 2011-04-09 13:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-11-15 00:10 - 2013-09-25 10:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-15 00:10 - 2013-09-25 10:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-15 00:10 - 2013-09-25 10:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-15 00:10 - 2013-09-25 10:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-15 00:10 - 2013-09-25 10:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-15 00:10 - 2013-09-25 10:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-15 00:10 - 2013-09-25 10:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-15 00:10 - 2013-09-25 10:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-15 00:10 - 2013-09-25 09:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-15 00:10 - 2013-09-25 09:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-15 00:10 - 2013-09-25 09:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-15 00:10 - 2013-09-25 09:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-15 00:10 - 2013-09-25 09:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-15 00:10 - 2013-07-04 20:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-15 00:10 - 2013-06-04 14:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-11-15 00:10 - 2013-06-04 12:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-11-15 00:10 - 2011-11-17 14:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-11-15 00:10 - 2011-11-17 13:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-11-15 00:10 - 2011-10-26 13:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-11-15 00:10 - 2011-10-26 12:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-11-15 00:10 - 2011-08-17 13:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-11-15 00:10 - 2011-08-17 13:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-11-15 00:10 - 2011-08-17 12:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-11-15 00:10 - 2011-08-17 12:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-11-15 00:10 - 2011-06-15 18:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-11-15 00:10 - 2011-06-15 18:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-11-15 00:10 - 2011-06-15 18:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-11-15 00:10 - 2011-06-15 18:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-11-15 00:10 - 2011-06-15 16:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-11-15 00:09 - 2013-10-06 04:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-15 00:09 - 2013-10-06 03:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-15 00:09 - 2013-07-09 13:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-11-15 00:09 - 2013-07-09 13:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-11-15 00:09 - 2013-07-09 12:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-11-15 00:09 - 2013-07-09 12:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-11-15 00:09 - 2012-06-06 14:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-11-15 00:09 - 2012-06-06 13:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2013-11-15 00:09 - 2011-03-11 14:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-11-15 00:09 - 2011-03-11 14:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-11-15 00:09 - 2011-03-11 13:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-11-15 00:09 - 2011-03-11 13:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-11-15 00:08 - 2013-07-25 17:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-11-15 00:08 - 2013-07-25 16:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-11-15 00:08 - 2013-05-10 13:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-11-15 00:08 - 2013-05-10 11:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-11-15 00:08 - 2011-10-15 14:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-11-15 00:08 - 2011-10-15 13:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-11-15 00:08 - 2011-03-03 14:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-11-15 00:08 - 2011-03-03 14:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-11-15 00:08 - 2011-03-03 14:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-11-15 00:08 - 2011-03-03 13:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-11-15 00:08 - 2011-03-03 13:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-11-15 00:07 - 2013-10-12 10:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-15 00:07 - 2013-10-12 10:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-15 00:07 - 2013-10-12 10:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-15 00:07 - 2013-10-12 10:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-15 00:07 - 2013-10-12 10:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-15 00:07 - 2013-02-12 12:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-11-15 00:07 - 2012-03-17 15:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-11-15 00:06 - 2013-10-03 10:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-15 00:06 - 2013-10-03 10:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-15 00:06 - 2013-09-28 09:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-15 00:06 - 2013-07-19 09:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-11-15 00:06 - 2013-07-19 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-11-15 00:06 - 2012-11-02 13:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-11-15 00:06 - 2012-11-02 13:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-11-15 00:06 - 2012-05-14 13:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-11-15 00:06 - 2011-07-09 10:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-11-15 00:06 - 2011-05-24 19:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-11-15 00:06 - 2011-05-24 18:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-11-15 00:06 - 2011-05-24 18:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-11-15 00:06 - 2011-05-24 18:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-11-15 00:06 - 2011-05-24 18:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-11-15 00:06 - 2011-04-27 10:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-11-15 00:06 - 2011-04-27 10:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-11-15 00:05 - 2013-08-28 09:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-11-15 00:05 - 2013-06-06 13:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-11-15 00:05 - 2013-06-06 13:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-11-15 00:05 - 2013-06-06 13:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-11-15 00:05 - 2013-06-06 13:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-11-15 00:05 - 2013-06-06 12:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-11-15 00:05 - 2013-06-06 12:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-11-15 00:05 - 2013-06-06 12:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-11-15 00:05 - 2013-06-06 11:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-11-15 00:05 - 2013-06-06 11:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-11-15 00:05 - 2013-06-06 11:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-11-15 00:05 - 2011-11-19 22:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-11-15 00:05 - 2011-11-19 22:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-11-15 00:05 - 2011-05-03 13:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-11-15 00:05 - 2011-05-03 12:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-11-15 00:05 - 2011-02-12 19:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-11-15 00:04 - 2013-04-12 22:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-11-15 00:04 - 2012-08-11 08:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-11-15 00:04 - 2012-08-11 07:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-11-15 00:04 - 2011-05-04 13:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-11-15 00:04 - 2011-05-04 13:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-11-15 00:04 - 2011-05-04 13:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-11-15 00:04 - 2011-05-04 13:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-11-15 00:04 - 2011-05-04 13:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-11-15 00:04 - 2011-05-04 12:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-11-15 00:04 - 2011-05-04 12:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-11-15 00:04 - 2011-05-04 12:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-11-15 00:04 - 2011-05-04 12:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-11-15 00:04 - 2011-05-04 12:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-11-15 00:04 - 2011-02-06 01:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-11-15 00:04 - 2011-02-06 01:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-11-15 00:04 - 2011-02-06 01:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-11-15 00:04 - 2011-02-06 01:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-11-15 00:04 - 2011-02-06 01:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-11-15 00:04 - 2011-02-06 01:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-11-15 00:04 - 2011-02-06 01:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-11-15 00:03 - 2013-08-01 20:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-11-15 00:03 - 2013-07-09 13:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-11-15 00:03 - 2013-07-09 12:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-11-15 00:03 - 2013-04-10 14:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-11-15 00:03 - 2013-01-24 14:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-11-15 00:03 - 2012-11-23 11:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-11-15 00:03 - 2011-12-16 16:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-11-15 00:03 - 2011-12-16 15:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-11-15 00:03 - 2011-06-16 13:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-11-15 00:03 - 2011-06-16 12:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2013-11-15 00:03 - 2011-02-03 19:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-11-15 00:02 - 2013-07-12 18:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2013-11-15 00:02 - 2013-07-12 18:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-11-15 00:01 - 2013-08-05 10:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-11-15 00:01 - 2013-06-15 12:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-11-15 00:01 - 2012-09-26 06:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-11-15 00:01 - 2012-09-26 06:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-11-15 00:01 - 2011-04-23 06:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-11-15 00:01 - 2011-02-23 12:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-11-15 00:00 - 2013-07-20 18:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-11-15 00:00 - 2013-07-20 18:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-11-15 00:00 - 2013-07-04 20:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-11-15 00:00 - 2013-07-04 20:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-11-15 00:00 - 2013-07-04 19:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-11-15 00:00 - 2013-07-04 19:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-11-15 00:00 - 2013-07-04 18:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-11-15 00:00 - 2013-04-26 13:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-11-15 00:00 - 2013-04-26 12:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-11-15 00:00 - 2013-03-19 13:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-11-15 00:00 - 2013-03-19 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-11-15 00:00 - 2012-04-28 11:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-11-15 00:00 - 2010-12-23 18:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-11-15 00:00 - 2010-12-23 18:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-11-15 00:00 - 2010-12-23 18:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-11-15 00:00 - 2010-12-23 13:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-11-15 00:00 - 2010-12-23 13:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-11-15 00:00 - 2010-12-23 13:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-11-14 23:59 - 2013-07-04 20:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-11-14 23:59 - 2013-07-04 19:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-11-14 23:59 - 2013-07-03 12:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2013-11-14 23:59 - 2013-07-03 12:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-11-14 23:59 - 2013-07-03 12:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-11-14 23:59 - 2012-05-04 19:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-11-14 23:59 - 2012-05-04 17:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-11-14 23:59 - 2011-12-30 14:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-11-14 23:59 - 2011-12-30 13:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2013-11-14 23:59 - 2011-02-18 18:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2013-11-14 23:59 - 2011-02-18 13:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2013-11-14 19:59 - 2013-11-14 19:59 - 00000425 _____ C:\Windows\BRWMARK.INI
2013-11-14 19:59 - 2013-11-14 19:59 - 00000027 _____ C:\Windows\BRPP2KA.INI
2013-11-14 19:57 - 2013-11-14 19:57 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Media Player Classic
2013-11-14 19:52 - 2013-11-14 19:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2013-11-14 08:19 - 2013-11-14 08:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\PunkBuster
2013-11-14 08:11 - 2013-11-20 17:16 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Adobe
2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Macromedia
2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Local\Macromedia
2013-11-14 07:26 - 2013-12-06 07:56 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-14 07:26 - 2013-11-14 07:26 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-14 07:26 - 2013-11-14 07:26 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-14 07:26 - 2013-11-14 07:26 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\system32\Macromed
2013-11-14 06:16 - 2013-11-14 06:17 - 00000000 ____D C:\Users\Waldi\Documents\Battlefield 4
2013-11-14 06:12 - 2013-11-24 07:59 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\TS3Client
2013-11-14 06:12 - 2013-11-14 06:12 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2013-11-14 06:12 - 2013-11-14 06:12 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2013-11-14 05:49 - 2013-11-14 05:49 - 00000000 ____D C:\Users\Waldi\AppData\Local\ESN
2013-11-14 05:01 - 2013-11-15 10:15 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-14 05:01 - 2013-11-14 05:17 - 00001198 _____ C:\Users\Public\Desktop\Battlefield 4.lnk
2013-11-14 05:01 - 2013-11-14 05:17 - 00001174 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk
2013-11-14 05:00 - 2013-11-19 02:23 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-14 05:00 - 2013-11-19 02:00 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-11-14 05:00 - 2013-11-14 05:00 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-14 05:00 - 2013-11-14 05:00 - 00000000 ____D C:\ProgramData\Package Cache
2013-11-14 04:45 - 2013-11-20 17:16 - 00000000 ____D C:\ProgramData\Adobe
2013-11-14 04:45 - 2013-11-14 04:45 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-11-14 04:45 - 2013-11-14 04:45 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-14 04:43 - 2013-11-20 17:16 - 00000000 ____D C:\Users\Waldi\AppData\Local\Adobe
2013-11-14 04:40 - 2013-11-14 04:40 - 00001085 _____ C:\Users\Waldi\Desktop\MPC-HC.lnk
2013-11-14 04:40 - 2013-11-14 04:40 - 00000000 ____D C:\Program Files (x86)\MPC-HC
2013-11-14 04:37 - 2013-11-25 10:55 - 00000000 ____D C:\Windows\AutoKMS
2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Windows\PCHEALTH
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8
2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2013-11-14 04:32 - 2013-11-14 04:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-14 04:32 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Office
2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ___RD C:\MSOCache
2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Users\Waldi\AppData\Local\Microsoft Help
2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-11-14 04:25 - 2013-11-14 05:25 - 00000000 ____D C:\Users\Waldi\Downloads\IntelBurnTest
2013-11-14 04:25 - 2013-11-14 04:25 - 00031136 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS
2013-11-14 04:25 - 2013-11-14 04:25 - 00000000 ____D C:\Program Files\HWiNFO64
2013-11-14 04:24 - 2013-11-14 04:24 - 00000000 ____D C:\Program Files (x86)\Geeks3D
2013-11-14 04:17 - 2013-11-14 04:32 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\DAEMON Tools Lite
2013-11-14 04:17 - 2013-11-14 04:17 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-14 04:17 - 2013-11-14 04:17 - 00001954 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-14 04:17 - 2013-11-14 04:17 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-14 04:16 - 2013-11-14 04:32 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-11-14 03:42 - 2013-11-14 04:05 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-11-14 03:30 - 2013-11-14 06:16 - 00000000 ____D C:\Users\Waldi\AppData\Local\Origin
2013-11-14 03:30 - 2013-11-14 05:45 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Origin
2013-11-14 03:29 - 2013-12-02 22:30 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-14 03:29 - 2013-11-14 06:16 - 00000000 ____D C:\ProgramData\Origin
2013-11-14 03:29 - 2013-11-14 06:16 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-11-14 03:29 - 2013-11-14 03:29 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk
2013-11-14 03:02 - 2013-11-14 03:02 - 00003176 _____ C:\Windows\System32\Tasks\{C0F16D60-C776-4C21-A429-EB577937A1B9}
2013-11-14 02:56 - 2013-12-05 14:38 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Skype
2013-11-14 02:55 - 2013-11-27 13:28 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-14 02:55 - 2013-11-27 13:28 - 00000000 ____D C:\ProgramData\Skype
2013-11-14 02:55 - 2013-11-14 02:55 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2013-11-14 02:39 - 2013-11-14 02:39 - 00000000 ____D C:\Users\Waldi\AppData\Local\Innovative Solutions
2013-11-14 02:21 - 2012-12-28 08:01 - 00760032 _____ (Realtek ) C:\Windows\system32\Drivers\Rt630x64.sys
2013-11-14 02:14 - 2013-11-14 02:14 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Avira
2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-11-14 02:00 - 2013-12-03 17:41 - 00107416 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-11-14 02:00 - 2013-11-14 02:00 - 00002070 _____ C:\Users\Public\Desktop\Avira Control Center.lnk
2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\ProgramData\Avira
2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\Program Files (x86)\Avira
2013-11-14 02:00 - 2013-11-01 02:25 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-11-14 02:00 - 2013-11-01 02:25 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-11-14 02:00 - 2013-11-01 02:25 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-11-14 01:56 - 2013-11-16 20:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-14 01:56 - 2013-11-16 01:57 - 00000000 ____D C:\Users\Waldi\AppData\Local\Mozilla
2013-11-14 01:56 - 2013-11-14 01:56 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Mozilla
2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\ProgramData\Mozilla
2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\Documents\EA Games
2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\AppData\Local\EA Games
2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Program Files\Realtek
2013-11-14 01:41 - 2013-11-27 17:54 - 00000000 ____D C:\Users\Waldi\AppData\Local\CrashDumps
2013-11-14 01:41 - 2013-11-14 03:07 - 00000000 ____D C:\Program Files (x86)\Hotkey
2013-11-14 01:41 - 2013-03-27 11:54 - 03376200 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2013-11-14 01:41 - 2013-03-27 10:34 - 00135240 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2013-11-14 01:41 - 2013-03-27 09:27 - 01102104 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2013-11-14 01:41 - 2013-03-27 09:27 - 00918296 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2013-11-14 01:41 - 2013-03-27 08:06 - 02797128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2013-11-14 01:41 - 2013-03-27 08:04 - 02734624 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2013-11-14 01:41 - 2013-03-27 07:05 - 00445929 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2013-11-14 01:41 - 2013-03-27 06:40 - 03693128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2013-11-14 01:41 - 2013-03-27 05:38 - 01659464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2013-11-14 01:41 - 2013-03-21 04:16 - 02102040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2013-11-14 01:41 - 2013-03-21 04:16 - 00910104 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2013-11-14 01:41 - 2013-03-13 22:32 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2013-11-14 01:41 - 2013-03-01 04:10 - 02032408 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2013-11-14 01:41 - 2013-02-21 09:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2013-11-14 01:41 - 2013-02-20 09:52 - 00991816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2013-11-14 01:41 - 2013-01-17 07:02 - 02079816 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2013-11-14 01:41 - 2012-06-21 08:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2013-11-14 01:41 - 2012-06-09 07:23 - 00083072 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2013-11-14 01:41 - 2012-03-09 02:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2013-11-14 01:41 - 2011-12-21 06:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2013-11-14 01:41 - 2011-11-23 07:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2013-11-14 01:41 - 2010-11-08 22:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2013-11-14 01:41 - 2010-11-04 09:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2013-11-14 01:41 - 2010-09-28 00:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2013-11-14 01:41 - 2009-11-25 00:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2013-11-14 01:41 - 2009-11-18 22:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2013-11-14 01:36 - 2013-11-28 10:03 - 00081021 _____ C:\Windows\DirectX.log
2013-11-14 01:36 - 2013-11-14 01:36 - 00000000 ____D C:\Users\Waldi\AppData\Local\2K Games
|
|
06.12.2013, 01:14
| #12 |
| | Bublik A.30.132 Trojaner FRST (2): Code:
ATTFilter 2013-11-14 01:36 - 2010-06-02 11:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2013-11-14 01:36 - 2010-06-02 11:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2013-11-14 01:36 - 2010-05-26 18:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2013-11-14 01:36 - 2010-02-04 17:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2013-11-14 01:36 - 2009-09-05 00:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2013-11-14 01:36 - 2009-09-05 00:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2013-11-14 01:36 - 2009-03-16 21:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2013-11-14 01:36 - 2009-03-09 22:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2013-11-14 01:36 - 2008-10-27 17:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2013-11-14 01:36 - 2008-10-15 13:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2013-11-14 01:36 - 2008-07-31 17:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2013-11-14 01:36 - 2008-07-31 17:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2013-11-14 01:36 - 2008-07-31 17:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2013-11-14 01:36 - 2008-07-10 18:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2013-11-14 01:36 - 2008-07-10 18:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2013-11-14 01:36 - 2008-05-30 21:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2013-11-14 01:36 - 2008-05-30 21:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2013-11-14 01:36 - 2008-05-30 21:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2013-11-14 01:36 - 2008-05-30 21:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2013-11-14 01:36 - 2008-05-30 21:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2013-11-14 01:36 - 2008-05-30 21:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2013-11-14 01:36 - 2008-05-30 21:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2013-11-14 01:36 - 2008-05-30 21:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2013-11-14 01:36 - 2008-05-30 21:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2013-11-14 01:36 - 2008-03-05 23:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2013-11-14 01:36 - 2008-03-05 23:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2013-11-14 01:36 - 2008-03-05 23:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2013-11-14 01:36 - 2008-03-05 23:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2013-11-14 01:36 - 2008-03-05 23:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2013-11-14 01:36 - 2008-03-05 23:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2013-11-14 01:36 - 2008-03-05 22:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2013-11-14 01:36 - 2008-02-06 06:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2013-11-14 01:36 - 2008-02-06 06:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2013-11-14 01:36 - 2007-10-22 10:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2013-11-14 01:36 - 2007-10-22 10:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2013-11-14 01:36 - 2007-10-22 10:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2013-11-14 01:36 - 2007-10-22 10:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2013-11-14 01:36 - 2007-10-12 22:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2013-11-14 01:36 - 2007-10-02 16:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2013-11-14 01:36 - 2007-10-02 16:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2013-11-14 01:36 - 2007-07-20 07:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2013-11-14 01:36 - 2007-07-20 07:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2013-11-14 01:36 - 2007-07-20 01:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2013-11-14 01:36 - 2007-06-21 03:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2013-11-14 01:36 - 2007-06-21 03:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2013-11-14 01:36 - 2007-05-16 23:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2013-11-14 01:36 - 2007-04-05 01:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2013-11-14 01:36 - 2007-04-05 01:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2013-11-14 01:36 - 2007-04-05 01:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2013-11-14 01:36 - 2007-04-05 01:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2013-11-14 01:36 - 2007-03-15 23:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2013-11-14 01:36 - 2007-03-15 23:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2013-11-14 01:36 - 2007-03-12 23:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2013-11-14 01:36 - 2007-03-05 19:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2013-11-14 01:36 - 2007-03-05 19:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2013-11-14 01:36 - 2007-01-24 22:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2013-11-14 01:36 - 2007-01-24 22:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2013-11-14 01:36 - 2006-12-08 19:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2013-11-14 01:36 - 2006-12-08 19:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2013-11-14 01:36 - 2006-11-29 20:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2013-11-14 01:36 - 2006-09-28 23:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2013-11-14 01:36 - 2006-09-28 23:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2013-11-14 01:36 - 2006-09-28 23:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2013-11-14 01:36 - 2006-09-28 23:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2013-11-14 01:36 - 2006-07-28 16:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2013-11-14 01:36 - 2006-07-28 16:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2013-11-14 01:36 - 2006-07-28 16:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2013-11-14 01:36 - 2006-07-28 16:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2013-11-14 01:36 - 2006-05-31 14:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2013-11-14 01:36 - 2006-05-31 14:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2013-11-14 01:36 - 2006-03-31 19:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2013-11-14 01:36 - 2006-03-31 19:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2013-11-14 01:36 - 2006-03-31 19:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2013-11-14 01:36 - 2006-03-31 19:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2013-11-14 01:36 - 2006-03-31 19:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2013-11-14 01:36 - 2006-03-31 19:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2013-11-14 01:36 - 2006-02-03 15:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2013-11-14 01:36 - 2006-02-03 15:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2013-11-14 01:36 - 2006-02-03 15:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2013-11-14 01:36 - 2006-02-03 15:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2013-11-14 01:36 - 2006-02-03 15:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2013-11-14 01:36 - 2006-02-03 15:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2013-11-14 01:36 - 2005-12-06 01:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2013-11-14 01:36 - 2005-12-06 01:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2013-11-14 01:36 - 2005-07-23 02:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2013-11-14 01:36 - 2005-07-23 02:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2013-11-14 01:36 - 2005-05-26 22:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2013-11-14 01:36 - 2005-05-26 22:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2013-11-14 01:36 - 2005-03-19 00:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2013-11-14 01:36 - 2005-03-19 00:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2013-11-14 01:36 - 2005-02-06 02:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2013-11-14 01:36 - 2005-02-06 02:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2013-11-14 01:34 - 2013-11-14 01:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____D C:\Program Files\AuthenTec 2013-11-14 01:30 - 2013-11-20 18:54 - 00109672 _____ C:\Users\Waldi\AppData\Local\GDIPFONTCACHEV1.DAT 2013-11-14 01:29 - 2013-11-15 05:20 - 03310804 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Local\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\ProgramData\ATI 2013-11-14 01:26 - 2012-02-17 14:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll 2013-11-14 01:26 - 2012-02-17 13:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll 2013-11-14 01:26 - 2012-02-17 12:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys 2013-11-14 01:24 - 2013-11-14 01:24 - 00002525 _____ C:\Users\Public\Desktop\Microsoft Download Manager.lnk 2013-11-14 01:24 - 2013-11-14 01:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Download Manager 2013-11-14 01:22 - 2013-12-03 13:29 - 00000000 ____D C:\Users\Waldi\AppData\Local\FSP 2013-11-14 01:22 - 2013-11-14 02:43 - 00015882 _____ C:\Windows\DPINST.LOG 2013-11-14 01:22 - 2013-11-14 01:38 - 00002144 _____ C:\Windows\sentelic.log 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_fspad_win764_01009.Wdf 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____D C:\Program Files\FSP 2013-11-14 01:22 - 2013-04-02 11:34 - 02232144 _____ (Sentelic Corporation.) C:\Windows\system32\StlFspAPI64.dll 2013-11-14 01:22 - 2013-04-02 11:34 - 01636176 _____ (Sentelic Corporation.) C:\Windows\SysWOW64\StlFspAPI32.dll 2013-11-14 01:22 - 2013-04-02 11:34 - 00155472 _____ (Sentelic Corporation) C:\Windows\system32\Drivers\fspad_win764.sys 2013-11-14 01:22 - 2013-04-02 11:34 - 00081232 _____ (Sentelic Corporation) C:\Windows\system32\fspadco.dll 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Atheros 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\BMExplorer 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\ProgramData\Atheros 2013-11-14 01:18 - 2012-06-03 06:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2013-11-14 01:18 - 2012-06-03 06:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2013-11-14 01:18 - 2012-06-03 06:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2013-11-14 01:18 - 2012-06-03 06:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2013-11-14 01:18 - 2012-06-03 06:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2013-11-14 01:18 - 2012-06-03 06:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2013-11-14 01:18 - 2012-06-03 06:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2013-11-14 01:18 - 2012-06-02 22:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2013-11-14 01:18 - 2012-06-02 22:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2013-11-14 01:14 - 2013-11-14 01:14 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-11-14 01:13 - 2013-12-05 13:14 - 00000000 ____D C:\ProgramData\Bigfoot Networks 2013-11-14 01:13 - 2013-11-28 10:34 - 00000000 ____D C:\Users\Waldi\Documents\Bluetooth Folder 2013-11-14 01:13 - 2013-11-14 01:13 - 00002238 _____ C:\Users\Public\Desktop\Qualcomm Atheros Killer Network Manager.lnk 2013-11-14 01:13 - 2013-11-14 01:13 - 00000264 _____ C:\Users\Waldi\AppData\Local\killertool.log 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files\Qualcomm Atheros 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-11-14 01:13 - 2013-03-27 18:18 - 00584272 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00346192 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_a2dp.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00179432 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_hcrp.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00136784 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_rcp.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00115280 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_avdt.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00089168 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_flt.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00077464 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_lwflt.sys 2013-11-14 01:13 - 2013-03-27 18:18 - 00034384 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_bus.sys 2013-11-14 01:07 - 2013-11-14 01:07 - 00000000 ____D C:\Users\Waldi\AppData\Local\Intel_Corporation 2013-11-14 01:06 - 2013-11-20 19:40 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-11-14 01:06 - 2013-11-14 02:26 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-11-14 01:06 - 2013-11-14 01:38 - 00000000 ____D C:\Windows\SysWOW64\sda 2013-11-14 01:06 - 2012-12-26 14:29 - 09889504 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsBaStorIcon.dll 2013-11-14 01:06 - 2012-12-26 14:29 - 00308960 ____R (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsBaStor.sys 2013-11-14 01:05 - 2013-11-14 01:05 - 00000000 ____D C:\ProgramData\Intel 2013-11-14 01:05 - 2013-02-16 23:17 - 00016344 ____R (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll 2013-11-14 01:03 - 2013-11-14 01:03 - 00000000 _____ C:\Windows\ativpsrm.bin 2013-11-14 01:02 - 2013-11-14 01:05 - 00000000 ____D C:\Program Files\Intel 2013-11-14 01:02 - 2013-05-10 15:59 - 07569392 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00752624 _____ (Intel Corporation) C:\Windows\system32\GfxUIHotKeyMenu.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00534000 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00529904 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00444400 _____ (Intel Corporation) C:\Windows\system32\igfxpers.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00407536 _____ (Intel Corporation) C:\Windows\system32\hkcmd.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00397296 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00279024 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00251888 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00165872 _____ (Intel Corporation) C:\Windows\system32\igfxtray.exe 2013-11-14 01:02 - 2013-05-10 15:59 - 00153072 _____ (Intel Corporation) C:\Windows\system32\difx64.exe 2013-11-14 01:02 - 2013-05-07 17:25 - 00442368 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys 2013-11-14 01:02 - 2013-05-07 17:25 - 00089600 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3165.dll 2013-11-14 01:02 - 2013-05-07 17:25 - 00015360 _____ (Intel(R) Corporation) C:\Windows\system32\IntcDAuC.dll 2013-11-14 01:02 - 2013-05-07 17:23 - 00017610 _____ C:\Windows\system32\iglhxs64.vp 2013-11-14 01:02 - 2013-05-07 17:22 - 09967616 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 08632320 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 07077376 _____ (Intel Corporation) C:\Windows\system32\ig75icd64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 04431840 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys 2013-11-14 01:02 - 2013-05-07 17:22 - 01690112 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 00322560 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 00286720 _____ C:\Windows\system32\igdde64.dll 2013-11-14 01:02 - 2013-05-07 17:22 - 00117760 _____ C:\Windows\system32\igdail64.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 24283136 _____ C:\Windows\system32\igdfcl64.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 01564672 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 00279040 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 00258560 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll 2013-11-14 01:02 - 2013-05-07 17:21 - 00203264 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 09517056 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 07836160 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 05515776 _____ (Intel Corporation) C:\Windows\SysWOW64\ig75icd32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 00240640 _____ C:\Windows\SysWOW64\igdde32.dll 2013-11-14 01:02 - 2013-05-07 17:20 - 00103936 _____ C:\Windows\SysWOW64\igdail32.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 08900096 _____ (Intel Corporation) C:\Windows\system32\igfxress.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 04058624 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 02384896 _____ C:\Windows\system32\GfxRes.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00444416 _____ (Intel Corporation) C:\Windows\system32\igfxresn.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00444416 _____ (Intel Corporation) C:\Windows\system32\igfxrell.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrrus.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrplk.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443904 _____ (Intel Corporation) C:\Windows\system32\igfxrfra.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrnld.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrita.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00443392 _____ (Intel Corporation) C:\Windows\system32\igfxrdeu.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrsky.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrrom.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrhun.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrhrv.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442880 _____ (Intel Corporation) C:\Windows\system32\igfxrcsy.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrsve.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrslv.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00442368 _____ (Intel Corporation) C:\Windows\system32\igfxrptg.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441856 _____ (Intel Corporation) C:\Windows\system32\igfxrfin.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrtrk.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrptb.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00441344 _____ (Intel Corporation) C:\Windows\system32\igfxrnor.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00440832 _____ (Intel Corporation) C:\Windows\system32\igfxrtha.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00440832 _____ (Intel Corporation) C:\Windows\system32\igfxrdan.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00440320 _____ (Intel Corporation) C:\Windows\system32\igfxdev.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00439296 _____ (Intel Corporation) C:\Windows\system32\igfxrheb.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00438784 _____ (Intel Corporation) C:\Windows\system32\igfxrara.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00434688 _____ (Intel Corporation) C:\Windows\system32\igfxrjpn.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00433152 _____ (Intel Corporation) C:\Windows\system32\igfxrkor.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00431104 _____ (Intel Corporation) C:\Windows\system32\igfxrcht.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00430592 _____ (Intel Corporation) C:\Windows\system32\igfxrchs.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00357888 _____ (Intel Corporation) C:\Windows\system32\igfxpph.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00353792 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxdv32.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00345600 _____ (Intel Corporation) C:\Windows\system32\igfxTMM.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00288768 _____ (Intel Corporation) C:\Windows\system32\igfxrenu.lrc 2013-11-14 01:02 - 2013-05-07 17:17 - 00257719 _____ C:\Windows\system32\Gfxres.th-TH.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00243838 _____ C:\Windows\system32\Gfxres.el-GR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00226564 _____ C:\Windows\system32\Gfxres.ru-RU.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00193244 _____ C:\Windows\system32\Gfxres.ar-SA.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00190976 _____ (Intel Corporation) C:\Windows\system32\gfxSrvc.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00190556 _____ C:\Windows\system32\Gfxres.ja-JP.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00185171 _____ C:\Windows\system32\Gfxres.he-IL.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00173987 _____ C:\Windows\system32\Gfxres.it-IT.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00173676 _____ C:\Windows\system32\Gfxres.ko-KR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00171646 _____ C:\Windows\system32\Gfxres.es-ES.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00171296 _____ C:\Windows\system32\Gfxres.fr-FR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00171245 _____ C:\Windows\system32\Gfxres.de-DE.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00169771 _____ C:\Windows\system32\Gfxres.ro-RO.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00169117 _____ C:\Windows\system32\Gfxres.tr-TR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00168931 _____ C:\Windows\system32\Gfxres.hu-HU.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00168556 _____ C:\Windows\system32\Gfxres.pl-PL.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00168182 _____ C:\Windows\system32\Gfxres.nl-NL.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00167577 _____ C:\Windows\system32\Gfxres.pt-BR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166682 _____ C:\Windows\system32\Gfxres.fi-FI.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166495 _____ C:\Windows\system32\Gfxres.sk-SK.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166200 _____ C:\Windows\system32\Gfxres.pt-PT.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00166190 _____ C:\Windows\system32\Gfxres.sv-SE.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00165749 _____ C:\Windows\system32\Gfxres.cs-CZ.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00164782 _____ C:\Windows\system32\Gfxres.hr-HR.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00161423 _____ C:\Windows\system32\Gfxres.sl-SI.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00160394 _____ C:\Windows\system32\Gfxres.nb-NO.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00159763 _____ C:\Windows\system32\Gfxres.da-DK.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00155178 _____ C:\Windows\system32\Gfxres.en-US.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00148451 _____ C:\Windows\system32\Gfxres.zh-TW.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00146731 _____ C:\Windows\system32\Gfxres.zh-CN.resources 2013-11-14 01:02 - 2013-05-07 17:17 - 00140288 _____ (Intel Corporation) C:\Windows\system32\igfxdo.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00124928 _____ (Intel Corporation) C:\Windows\system32\igfxcpl.cpl 2013-11-14 01:02 - 2013-05-07 17:17 - 00108032 _____ (Intel Corporation) C:\Windows\system32\hccutils.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00066048 _____ (Intel Corporation) C:\Windows\system32\igfxsrvc.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00029184 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00025088 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll 2013-11-14 01:02 - 2013-05-07 17:17 - 00012288 _____ ( ) C:\Windows\system32\IGFXDEVLib.dll 2013-11-14 01:02 - 2013-05-07 17:16 - 19587072 _____ C:\Windows\SysWOW64\igdfcl32.dll 2013-11-14 01:02 - 2013-05-07 17:12 - 04369920 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll 2013-11-14 01:02 - 2013-05-07 17:12 - 03411456 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 02813952 _____ C:\Windows\system32\iglhxa64.cpa 2013-11-14 01:02 - 2013-04-30 10:43 - 02064896 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 01814016 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00861184 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00856576 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00216064 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00180224 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00145920 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00138240 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00124416 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00118784 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll 2013-11-14 01:02 - 2013-04-30 10:43 - 00044025 _____ C:\Windows\system32\iglhxo64.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043816 _____ C:\Windows\system32\iglhxc64_dev.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043494 _____ C:\Windows\system32\iglhxc64.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043298 _____ C:\Windows\system32\iglhxg64_dev.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00043256 _____ C:\Windows\system32\iglhxg64.vp 2013-11-14 01:02 - 2013-04-30 10:43 - 00042079 _____ C:\Windows\system32\iglhxo64_dev.vp 2013-11-14 01:00 - 2013-11-17 04:51 - 00000000 ____D C:\Program Files (x86)\Intel 2013-11-14 01:00 - 2013-02-28 22:37 - 00053248 ____R (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll 2013-11-14 00:58 - 2013-11-14 00:58 - 00135602 _____ C:\Windows\system32\log.xml 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\ProgramData\AMD 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files (x86)\AMD AVT 2013-11-14 00:55 - 2013-04-30 10:43 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2013-11-14 00:55 - 2013-04-30 10:43 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2013-11-14 00:55 - 2013-03-16 16:36 - 00222720 _____ C:\Windows\system32\clinfo.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 29150208 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 01187342 _____ C:\Windows\system32\amdocl_as64.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 01061902 _____ C:\Windows\system32\amdocl_ld64.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 00995342 _____ C:\Windows\SysWOW64\amdocl_as32.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 00798734 _____ C:\Windows\SysWOW64\amdocl_ld32.exe 2013-11-14 00:55 - 2013-03-16 16:35 - 00076288 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 00065536 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 00064000 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll 2013-11-14 00:55 - 2013-03-16 16:35 - 00056320 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll 2013-11-14 00:55 - 2013-03-16 16:33 - 23810560 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll 2013-11-14 00:55 - 2013-03-16 16:19 - 00076800 _____ (AMD) C:\Windows\system32\coinst_12.103.dll 2013-11-14 00:55 - 2013-03-16 16:18 - 00373680 _____ C:\Windows\SysWOW64\atiapfxx.blb 2013-11-14 00:55 - 2013-03-16 16:18 - 00373680 _____ C:\Windows\system32\atiapfxx.blb 2013-11-14 00:55 - 2013-03-16 15:56 - 00204952 _____ C:\Windows\SysWOW64\ativvsvl.dat 2013-11-14 00:55 - 2013-03-16 15:56 - 00204952 _____ C:\Windows\system32\ativvsvl.dat 2013-11-14 00:55 - 2013-03-16 15:56 - 00157144 _____ C:\Windows\SysWOW64\ativvsva.dat 2013-11-14 00:55 - 2013-03-16 15:56 - 00157144 _____ C:\Windows\system32\ativvsva.dat 2013-11-14 00:55 - 2013-03-16 15:54 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll 2013-11-14 00:55 - 2013-03-05 17:52 - 00230836 _____ C:\Windows\system32\ativvaxy_cik.dat 2013-11-14 00:55 - 2013-02-01 23:14 - 00075600 _____ C:\Windows\system32\ativce02.dat 2013-11-14 00:55 - 2012-11-23 14:14 - 00230064 _____ C:\Windows\system32\ativvaxy_cik_nd.dat 2013-11-14 00:55 - 2011-09-13 21:06 - 00003917 _____ C:\Windows\SysWOW64\atipblag.dat 2013-11-14 00:55 - 2011-09-13 21:06 - 00003917 _____ C:\Windows\system32\atipblag.dat 2013-11-14 00:55 - 2011-09-13 01:05 - 00003917 _____ C:\Windows\SysWOW64\atipblup.dat 2013-11-14 00:55 - 2011-09-13 01:05 - 00003917 _____ C:\Windows\system32\atipblup.dat 2013-11-14 00:54 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2013-11-14 00:54 - 2013-11-14 00:54 - 00000000 ____D C:\Program Files\ATI 2013-11-14 00:54 - 2013-03-08 22:16 - 00042583 _____ C:\Windows\atiogl.xml 2013-11-14 00:54 - 2013-02-14 23:33 - 00037472 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\amdkmpfd.sys 2013-11-14 00:53 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files\ATI Technologies 2013-11-14 00:52 - 2013-11-14 01:01 - 00000000 ____D C:\Intel 2013-11-14 00:48 - 2013-12-06 06:31 - 01133286 _____ C:\Windows\WindowsUpdate.log 2013-11-14 00:48 - 2013-12-03 18:25 - 00000000 ____D C:\Users\Waldi 2013-11-14 00:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Local\VirtualStore 2013-11-14 00:48 - 2013-11-16 21:25 - 00001413 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-11-14 00:48 - 2013-11-15 05:44 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-11-14 00:48 - 2013-11-15 05:44 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-11-14 00:48 - 2013-11-14 00:48 - 00000020 ___SH C:\Users\Waldi\ntuser.ini 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 ____D C:\Recovery 2013-11-14 00:48 - 2009-07-14 12:54 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2013-11-14 00:48 - 2009-07-14 12:49 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2013-11-14 00:46 - 2013-11-14 00:46 - 00001355 _____ C:\Windows\TSSysprep.log 2013-11-13 16:45 - 2013-11-14 00:48 - 00000000 ____D C:\Windows\Panther ==================== One Month Modified Files and Folders ======= 2013-12-06 07:56 - 2013-11-14 07:26 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-12-06 07:55 - 2013-12-04 23:06 - 00014602 _____ C:\Users\Waldi\Desktop\FRST.txt 2013-12-06 07:54 - 2013-12-06 07:46 - 01925140 _____ (Farbar) C:\Users\Waldi\Desktop\FRST64.exe 2013-12-06 06:31 - 2013-11-14 00:48 - 01133286 _____ C:\Windows\WindowsUpdate.log 2013-12-05 19:42 - 2013-12-05 19:42 - 00000000 ____D C:\Program Files (x86)\ESET 2013-12-05 19:38 - 2011-03-20 17:08 - 00696870 _____ C:\Windows\system32\perfh007.dat 2013-12-05 19:38 - 2011-03-20 17:08 - 00148134 _____ C:\Windows\system32\perfc007.dat 2013-12-05 19:38 - 2009-07-14 13:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI 2013-12-05 19:28 - 2013-12-05 19:14 - 02347384 _____ (ESET) C:\Users\Waldi\Desktop\esetsmartinstaller_enu.exe 2013-12-05 19:21 - 2013-12-05 19:17 - 00891184 _____ C:\Users\Waldi\Desktop\SecurityCheck.exe 2013-12-05 17:34 - 2013-11-17 06:00 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\vlc 2013-12-05 16:05 - 2009-07-14 12:51 - 00046963 _____ C:\Windows\setupact.log 2013-12-05 15:35 - 2013-12-05 15:35 - 00003924 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2013-12-05 15:35 - 2013-12-05 15:35 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk 2013-12-05 15:35 - 2013-12-05 15:35 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\AVAST Software 2013-12-05 15:34 - 2013-12-05 15:34 - 01032416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys 2013-12-05 15:34 - 2013-12-05 15:34 - 00409832 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys 2013-12-05 15:34 - 2013-12-05 15:34 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe 2013-12-05 15:34 - 2013-12-05 15:34 - 00205320 _____ C:\Windows\system32\Drivers\aswVmm.sys 2013-12-05 15:34 - 2013-12-05 15:34 - 00092544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys 2013-12-05 15:34 - 2013-12-05 15:34 - 00084328 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys 2013-12-05 15:34 - 2013-12-05 15:34 - 00065776 _____ C:\Windows\system32\Drivers\aswRvrt.sys 2013-12-05 15:34 - 2013-12-05 15:34 - 00065264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswTdi.sys 2013-12-05 15:34 - 2013-12-05 15:34 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr 2013-12-05 15:34 - 2013-12-05 15:34 - 00038984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswFsBlk.sys 2013-12-05 15:34 - 2013-12-05 15:34 - 00000000 ____D C:\Program Files\AVAST Software 2013-12-05 15:32 - 2013-12-05 15:32 - 00000000 ____D C:\ProgramData\AVAST Software 2013-12-05 15:32 - 2013-12-05 13:22 - 87529432 _____ (AVAST Software) C:\Users\Waldi\Downloads\avast_free_antivirus_setup2008.exe 2013-12-05 14:38 - 2013-11-14 02:56 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Skype 2013-12-05 13:21 - 2009-07-14 12:45 - 00028704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-12-05 13:21 - 2009-07-14 12:45 - 00028704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-12-05 13:14 - 2013-11-14 01:13 - 00000000 ____D C:\ProgramData\Bigfoot Networks 2013-12-05 13:14 - 2009-07-14 13:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-12-04 22:58 - 2013-12-04 22:58 - 00001278 _____ C:\Users\Waldi\Desktop\JRT.txt 2013-12-04 22:54 - 2013-12-04 22:54 - 00000000 ____D C:\Windows\ERUNT 2013-12-04 22:52 - 2013-12-04 22:52 - 00001726 _____ C:\Users\Waldi\Desktop\AdwCleaner[S0].txt 2013-12-04 22:50 - 2013-12-04 22:48 - 00000000 ____D C:\AdwCleaner 2013-12-04 22:45 - 2013-12-04 22:44 - 01034531 _____ (Thisisu) C:\Users\Waldi\Desktop\JRT.exe 2013-12-04 22:37 - 2013-12-04 22:35 - 01110034 _____ C:\Users\Waldi\Desktop\adwcleaner.exe 2013-12-04 22:02 - 2013-12-04 19:25 - 45768394 _____ (AVAST Software) C:\Users\Waldi\Downloads\avast_free_antivirus_setup2008.exe.n58blbg.partial 2013-12-04 18:13 - 2010-11-21 11:47 - 00018934 _____ C:\Windows\PFRO.log 2013-12-04 18:08 - 2013-12-04 18:08 - 00024031 _____ C:\ComboFix.txt 2013-12-04 18:08 - 2013-12-04 18:05 - 00000000 ____D C:\Windows\erdnt 2013-12-04 18:08 - 2013-12-04 18:05 - 00000000 ____D C:\Qoobox 2013-12-04 18:07 - 2009-07-14 10:34 - 00000215 _____ C:\Windows\system.ini 2013-12-04 18:02 - 2013-12-04 17:59 - 05152198 ____R (Swearware) C:\Users\Waldi\Desktop\ComboFix.exe 2013-12-04 17:46 - 2013-12-04 17:37 - 00000000 ____D C:\Users\Waldi\AppData\Local\FalloutNV 2013-12-04 17:37 - 2013-11-20 20:01 - 00000000 ____D C:\Users\Waldi\Documents\My Games 2013-12-04 17:29 - 2013-12-04 17:29 - 00001117 _____ C:\Users\Public\Desktop\Fallout New Vegas.lnk 2013-12-04 08:25 - 2013-11-24 08:09 - 00000000 ____D C:\Users\Waldi\Desktop\Tungsten aktuell 2013-12-04 08:11 - 2013-12-01 10:54 - 00000000 ____D C:\ProgramData\mdh 2013-12-04 07:40 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\kjqvm 2013-12-04 07:04 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\upcr 2013-12-04 07:04 - 2013-11-25 10:40 - 00000000 ____D C:\ProgramData\dcdp 2013-12-04 06:56 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\qmbhac 2013-12-03 19:37 - 2013-12-03 19:37 - 00029071 _____ C:\Users\Waldi\Desktop\Desktop.rar 2013-12-03 18:44 - 2013-12-03 18:44 - 00005455 _____ C:\Users\Waldi\Desktop\gmer.log 2013-12-03 18:34 - 2013-12-03 18:34 - 00377856 _____ C:\Users\Waldi\Desktop\gmer_2.1.19163.exe 2013-12-03 18:32 - 2013-12-03 18:32 - 00000000 ____D C:\FRST 2013-12-03 18:25 - 2013-12-03 18:25 - 00000542 _____ C:\Users\Waldi\Desktop\defogger_disable.log 2013-12-03 18:25 - 2013-12-03 18:25 - 00000168 _____ C:\Users\Waldi\defogger_reenable 2013-12-03 18:25 - 2013-11-14 00:48 - 00000000 ____D C:\Users\Waldi 2013-12-03 18:24 - 2013-12-03 18:24 - 00050477 _____ C:\Users\Waldi\Desktop\Defogger.exe 2013-12-03 17:41 - 2013-12-03 15:57 - 62064667 _____ (Symantec Corporation) C:\Users\Waldi\Downloads\NIS_21.1.0.18_SYMTB_TMD_MRFTT_820_10131.exe 2013-12-03 17:41 - 2013-11-14 02:00 - 00107416 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys 2013-12-03 17:29 - 2013-12-03 15:20 - 00000000 ____D C:\Windows\72AAF4551E54475BB0AB5413C78D0E63.TMP 2013-12-03 17:27 - 2013-11-16 21:00 - 00000000 ____D C:\Program Files (x86)\JDownloader 2013-12-03 16:59 - 2013-12-03 16:56 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2013-12-03 16:59 - 2013-12-03 16:46 - 00000000 ____D C:\Users\Waldi\Desktop\mbar 2013-12-03 16:46 - 2013-12-03 16:46 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2013-12-03 16:14 - 2013-12-03 16:06 - 12576792 _____ (Malwarebytes Corp.) C:\Users\Waldi\Downloads\mbar-1.07.0.1007.exe 2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 ____D C:\Program Files\Enigma Software Group 2013-12-03 15:20 - 2013-12-03 15:20 - 00000000 _____ C:\autoexec.bat 2013-12-03 14:18 - 2013-12-03 14:17 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Waldi\Downloads\SpyHunter-Installer.exe 2013-12-03 13:59 - 2013-12-03 13:59 - 00028916 _____ C:\Users\Waldi\Documents\AVSCAN-20131203-133348-272CD52E.LOG 2013-12-03 13:29 - 2013-11-14 01:22 - 00000000 ____D C:\Users\Waldi\AppData\Local\FSP 2013-12-03 12:30 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\mryu 2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tkipd 2013-12-03 11:36 - 2013-12-03 11:36 - 00000000 ____D C:\ProgramData\tbrjps 2013-12-02 22:30 - 2013-11-14 03:29 - 00000000 ____D C:\Program Files (x86)\Origin 2013-12-01 20:04 - 2013-12-01 20:04 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\dvdcss 2013-12-01 12:16 - 2013-11-29 12:53 - 00000000 ____D C:\ProgramData\tvidqe 2013-12-01 12:16 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\udoec 2013-12-01 12:05 - 2013-12-01 12:05 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Malwarebytes 2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\ProgramData\Malwarebytes 2013-12-01 12:05 - 2013-12-01 12:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-12-01 12:04 - 2013-12-01 11:56 - 10284816 _____ (Malwarebytes Corporation ) C:\Users\Waldi\Downloads\mbam-setup.exe 2013-12-01 11:24 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\rwxuvcn 2013-12-01 10:37 - 2013-12-01 10:37 - 00000000 ____D C:\ProgramData\fkmfb 2013-11-30 13:50 - 2013-11-26 14:35 - 00000000 ____D C:\Users\Waldi\AppData\Local\Deployment 2013-11-30 13:28 - 2013-11-27 10:42 - 00000000 ____D C:\ProgramData\qswcb 2013-11-30 13:28 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\pgt 2013-11-30 13:25 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\xcf 2013-11-29 16:41 - 2013-11-29 16:41 - 00001406 _____ C:\Users\Waldi\Desktop\FalloutLauncher - Verknüpfung.lnk 2013-11-29 12:57 - 2013-11-20 20:01 - 00000000 ____D C:\Users\Waldi\AppData\Local\Fallout3 2013-11-29 12:26 - 2013-11-29 12:26 - 00000000 ____D C:\ProgramData\jsxck 2013-11-29 12:26 - 2013-11-29 12:25 - 00341411 _____ C:\Users\Waldi\Downloads\Stadt Heinsberg.jpeg 2013-11-28 19:47 - 2013-11-28 19:47 - 00000000 ____D C:\ProgramData\dcdpy 2013-11-28 12:39 - 2013-11-20 04:25 - 00000000 ____D C:\Users\Waldi\AppData\Local\dxhr 2013-11-28 10:34 - 2013-11-14 01:13 - 00000000 ____D C:\Users\Waldi\Documents\Bluetooth Folder 2013-11-28 10:03 - 2013-11-14 01:36 - 00081021 _____ C:\Windows\DirectX.log 2013-11-27 17:54 - 2013-11-14 01:41 - 00000000 ____D C:\Users\Waldi\AppData\Local\CrashDumps 2013-11-27 13:28 - 2013-11-14 02:55 - 00000000 ___RD C:\Program Files (x86)\Skype 2013-11-27 13:28 - 2013-11-14 02:55 - 00000000 ____D C:\ProgramData\Skype 2013-11-27 11:17 - 2013-11-26 14:22 - 00000000 ____D C:\ProgramData\oimr 2013-11-27 11:17 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\ifkeojg 2013-11-27 11:17 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\fmqb 2013-11-27 10:42 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\unmf 2013-11-27 10:26 - 2013-11-27 10:26 - 00000660 _____ C:\Users\Waldi\Desktop\LingoDict.lnk 2013-11-27 10:26 - 2013-11-27 10:26 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Lingo4u 2013-11-27 10:05 - 2013-11-27 10:05 - 00000000 ____D C:\ProgramData\gpe 2013-11-27 10:05 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\wiltobo 2013-11-27 10:03 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\dkarde 2013-11-26 14:35 - 2013-11-26 14:35 - 00000000 ____D C:\Users\Waldi\AppData\Local\Apps\2.0 2013-11-26 13:05 - 2013-11-26 13:05 - 00000000 ____D C:\ProgramData\vlyvk 2013-11-25 10:55 - 2013-11-14 04:37 - 00000000 ____D C:\Windows\AutoKMS 2013-11-25 10:46 - 2013-11-25 10:46 - 00000000 ____D C:\ProgramData\tyak 2013-11-24 21:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\NDF 2013-11-24 07:59 - 2013-11-14 06:12 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\TS3Client 2013-11-24 06:56 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\rescache 2013-11-22 15:01 - 2013-11-22 15:01 - 00001059 _____ C:\Users\Waldi\Desktop\Fallout 2.lnk 2013-11-22 13:45 - 2013-11-22 13:45 - 00000000 ____D C:\Users\Waldi\AppData\Local\AskPartnerNetwork 2013-11-21 03:12 - 2009-07-14 12:45 - 00417024 _____ C:\Windows\system32\FNTCACHE.DAT 2013-11-20 20:01 - 2013-11-20 20:01 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll 2013-11-20 19:40 - 2013-11-14 01:06 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2013-11-20 19:07 - 2013-11-20 19:07 - 00003128 _____ C:\Windows\System32\Tasks\{7A853EE4-76B1-434D-8D1F-22367A683333} 2013-11-20 18:54 - 2013-11-14 01:30 - 00109672 _____ C:\Users\Waldi\AppData\Local\GDIPFONTCACHEV1.DAT 2013-11-20 18:51 - 2013-11-16 21:19 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\WinRAR 2013-11-20 18:48 - 2013-11-20 18:48 - 00053248 _____ (Interplay Productions) C:\Windows\ipuninst.exe 2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games 2013-11-20 18:48 - 2013-11-20 18:48 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Black Isle 2013-11-20 18:48 - 2013-11-14 00:48 - 00000000 ____D C:\Users\Waldi\AppData\Local\VirtualStore 2013-11-20 18:44 - 2013-11-20 18:44 - 00000000 ____D C:\Program Files\BlackIsle 2013-11-20 18:42 - 2013-11-20 18:31 - 00000000 ____D C:\Users\Waldi\Documents\Command and Conquer Generals Data 2013-11-20 18:35 - 2013-11-20 18:35 - 00003012 _____ C:\Windows\System32\Tasks\{883B52E7-ED4A-487D-867F-AA9C677A1C63} 2013-11-20 18:29 - 2013-11-20 18:29 - 00000620 _____ C:\Windows\eReg.dat 2013-11-20 18:13 - 2013-11-20 18:13 - 00000793 _____ C:\Users\Public\Desktop\Command & Conquer(TM) Generäle.lnk 2013-11-20 17:59 - 2013-11-20 17:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\Rockstar Games 2013-11-20 17:57 - 2013-11-20 17:57 - 00000000 __RHD C:\Users\Waldi\AppData\Roaming\SecuROM 2013-11-20 17:49 - 2013-11-20 17:49 - 00000000 __SHD C:\ProgramData\SecuROM 2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Windows\SysWOW64\xlive 2013-11-20 17:48 - 2013-11-20 17:48 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE 2013-11-20 17:16 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Adobe 2013-11-20 17:16 - 2013-11-14 04:45 - 00000000 ____D C:\ProgramData\Adobe 2013-11-20 17:16 - 2013-11-14 04:43 - 00000000 ____D C:\Users\Waldi\AppData\Local\Adobe 2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2013-11-20 04:35 - 2013-11-20 04:35 - 00000000 ____D C:\Program Files\WinRAR 2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\SKIDROW 2013-11-20 04:23 - 2013-11-20 04:23 - 00000000 ____D C:\Users\Waldi\AppData\Local\28050 2013-11-20 03:20 - 2013-11-20 03:20 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf 2013-11-20 01:53 - 2013-11-20 01:53 - 00212708 _____ C:\Users\Waldi\Downloads\Mappe2.xlsx 2013-11-19 03:33 - 2010-11-21 11:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2013-11-19 02:23 - 2013-11-14 05:00 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2013-11-19 02:00 - 2013-11-14 05:00 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2013-11-17 05:58 - 2013-11-17 05:58 - 00000749 _____ C:\Users\Public\Desktop\VLC media player.lnk 2013-11-17 05:50 - 2013-11-17 05:50 - 00000219 _____ C:\Users\Waldi\Desktop\Counter-Strike Global Offensive.url 2013-11-17 05:50 - 2013-11-17 05:50 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2013-11-17 05:45 - 2013-11-17 05:45 - 00000700 _____ C:\Users\Public\Desktop\Steam.lnk 2013-11-17 04:51 - 2013-11-17 04:51 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2013-11-17 04:51 - 2013-11-14 01:00 - 00000000 ____D C:\Program Files (x86)\Intel 2013-11-16 21:25 - 2013-11-14 00:48 - 00001413 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2013-11-16 21:23 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\PolicyDefinitions 2013-11-16 21:21 - 2013-11-16 21:17 - 00009353 _____ C:\Windows\IE10_main.log 2013-11-16 21:19 - 2013-11-16 21:19 - 19269632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 14355968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2013-11-16 21:19 - 2013-11-16 21:19 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-16 21:19 - 2013-11-16 21:19 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 02049024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-16 21:19 - 2013-11-16 21:19 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2013-11-16 21:19 - 2013-11-16 21:19 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2013-11-16 21:19 - 2013-11-16 21:19 - 01364992 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01138176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2013-11-16 21:19 - 2013-11-16 21:19 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2013-11-16 21:19 - 2013-11-16 21:19 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2013-11-16 21:19 - 2013-11-16 21:19 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2013-11-16 21:19 - 2013-11-16 21:19 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2013-11-16 21:19 - 2013-11-16 21:19 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2013-11-16 21:19 - 2013-11-16 21:19 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2013-11-16 20:59 - 2013-11-16 20:59 - 00001244 _____ C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk 2013-11-16 20:59 - 2013-11-16 20:59 - 00000000 ____D C:\Users\Waldi\AppData\Local\emaze 2013-11-16 20:25 - 2013-11-14 01:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2013-11-16 02:11 - 2013-11-16 02:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2013-11-16 01:57 - 2013-11-14 01:56 - 00000000 ____D C:\Users\Waldi\AppData\Local\Mozilla 2013-11-15 10:15 - 2013-11-14 05:01 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins 2013-11-15 09:56 - 2013-11-15 09:56 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf 2013-11-15 05:44 - 2013-11-14 00:48 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup 2013-11-15 05:44 - 2013-11-14 00:48 - 00000000 ___RD C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools 2013-11-15 05:42 - 2011-03-20 16:54 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2013-11-15 05:42 - 2010-11-21 15:17 - 00000000 ____D C:\Program Files\Windows Journal 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\winrm 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\WCN 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\sysprep 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\winrm 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\WCN 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\slmgr 2013-11-15 05:42 - 2010-11-21 15:06 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\Windows Sidebar 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\Windows Defender 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files\DVD Maker 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\Windows Sidebar 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2013-11-15 05:42 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\Setup 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\oobe 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\MUI 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\migwiz 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\Dism 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\com 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\zh-HK 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\tr-TR 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\sysprep 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\Setup 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\oobe 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\MUI 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\migwiz 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\Dism 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\com 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\servicing 2013-11-15 05:42 - 2009-07-14 11:20 - 00000000 ____D C:\Program Files\Common Files\System 2013-11-15 05:20 - 2013-11-14 01:29 - 03310804 _____ C:\Windows\SysWOW64\PerfStringBackup.INI 2013-11-15 04:19 - 2013-11-15 03:58 - 00004824 _____ C:\Windows\IE9_main.log 2013-11-15 03:27 - 2013-11-15 03:27 - 00000000 ____D C:\Windows\system32\MRT 2013-11-14 21:27 - 2009-07-14 13:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD 2013-11-14 19:59 - 2013-11-14 19:59 - 00000425 _____ C:\Windows\BRWMARK.INI 2013-11-14 19:59 - 2013-11-14 19:59 - 00000027 _____ C:\Windows\BRPP2KA.INI 2013-11-14 19:57 - 2013-11-14 19:57 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Media Player Classic 2013-11-14 19:52 - 2013-11-14 19:52 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf 2013-11-14 08:19 - 2013-11-14 08:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\PunkBuster 2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Macromedia 2013-11-14 08:11 - 2013-11-14 08:11 - 00000000 ____D C:\Users\Waldi\AppData\Local\Macromedia 2013-11-14 07:26 - 2013-11-14 07:26 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2013-11-14 07:26 - 2013-11-14 07:26 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2013-11-14 07:26 - 2013-11-14 07:26 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2013-11-14 07:26 - 2013-11-14 07:26 - 00000000 ____D C:\Windows\system32\Macromed 2013-11-14 06:17 - 2013-11-14 06:16 - 00000000 ____D C:\Users\Waldi\Documents\Battlefield 4 2013-11-14 06:16 - 2013-11-14 03:30 - 00000000 ____D C:\Users\Waldi\AppData\Local\Origin 2013-11-14 06:16 - 2013-11-14 03:29 - 00000000 ____D C:\ProgramData\Origin 2013-11-14 06:16 - 2013-11-14 03:29 - 00000000 ____D C:\ProgramData\Electronic Arts 2013-11-14 06:12 - 2013-11-14 06:12 - 00000967 _____ C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk 2013-11-14 06:12 - 2013-11-14 06:12 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client 2013-11-14 05:49 - 2013-11-14 05:49 - 00000000 ____D C:\Users\Waldi\AppData\Local\ESN 2013-11-14 05:45 - 2013-11-14 03:30 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Origin 2013-11-14 05:25 - 2013-11-14 04:25 - 00000000 ____D C:\Users\Waldi\Downloads\IntelBurnTest 2013-11-14 05:17 - 2013-11-14 05:01 - 00001198 _____ C:\Users\Public\Desktop\Battlefield 4.lnk 2013-11-14 05:17 - 2013-11-14 05:01 - 00001174 _____ C:\Users\Public\Desktop\Battlefield 4(64 bit).lnk 2013-11-14 05:00 - 2013-11-14 05:00 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe 2013-11-14 05:00 - 2013-11-14 05:00 - 00000000 ____D C:\ProgramData\Package Cache 2013-11-14 04:45 - 2013-11-14 04:45 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk 2013-11-14 04:45 - 2013-11-14 04:45 - 00000000 ____D C:\Program Files (x86)\Adobe 2013-11-14 04:40 - 2013-11-14 04:40 - 00001085 _____ C:\Users\Waldi\Desktop\MPC-HC.lnk 2013-11-14 04:40 - 2013-11-14 04:40 - 00000000 ____D C:\Program Files (x86)\MPC-HC 2013-11-14 04:36 - 2013-11-14 04:32 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-11-14 04:36 - 2009-07-14 10:34 - 00000478 _____ C:\Windows\win.ini 2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform 2013-11-14 04:34 - 2013-11-14 04:34 - 00000000 ____D C:\Program Files\Common Files\DESIGNER 2013-11-14 04:34 - 2010-11-21 15:16 - 00000000 ____D C:\Windows\ShellNew 2013-11-14 04:34 - 2009-07-14 11:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Windows\PCHEALTH 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Synchronization Services 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Sync Framework 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft SQL Server Compact Edition 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files\Microsoft Analysis Services 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 8 2013-11-14 04:33 - 2013-11-14 04:33 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services 2013-11-14 04:33 - 2013-11-14 04:32 - 00000000 ____D C:\Program Files\Microsoft Office 2013-11-14 04:33 - 2009-07-14 13:32 - 00000000 ____D C:\Program Files (x86)\MSBuild 2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ___RD C:\MSOCache 2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Users\Waldi\AppData\Local\Microsoft Help 2013-11-14 04:32 - 2013-11-14 04:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Office 2013-11-14 04:32 - 2013-11-14 04:17 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\DAEMON Tools Lite 2013-11-14 04:32 - 2013-11-14 04:16 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2013-11-14 04:25 - 2013-11-14 04:25 - 00031136 _____ (REALiX(tm)) C:\Windows\system32\Drivers\HWiNFO64A.SYS 2013-11-14 04:25 - 2013-11-14 04:25 - 00000000 ____D C:\Program Files\HWiNFO64 2013-11-14 04:24 - 2013-11-14 04:24 - 00000000 ____D C:\Program Files (x86)\Geeks3D 2013-11-14 04:17 - 2013-11-14 04:17 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2013-11-14 04:17 - 2013-11-14 04:17 - 00001954 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2013-11-14 04:17 - 2013-11-14 04:17 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite 2013-11-14 04:05 - 2013-11-14 03:42 - 00000000 ____D C:\Program Files (x86)\Origin Games 2013-11-14 03:29 - 2013-11-14 03:29 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk 2013-11-14 03:07 - 2013-11-14 01:41 - 00000000 ____D C:\Program Files (x86)\Hotkey 2013-11-14 03:02 - 2013-11-14 03:02 - 00003176 _____ C:\Windows\System32\Tasks\{C0F16D60-C776-4C21-A429-EB577937A1B9} 2013-11-14 02:55 - 2013-11-14 02:55 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk 2013-11-14 02:43 - 2013-11-14 01:22 - 00015882 _____ C:\Windows\DPINST.LOG 2013-11-14 02:39 - 2013-11-14 02:39 - 00000000 ____D C:\Users\Waldi\AppData\Local\Innovative Solutions 2013-11-14 02:26 - 2013-11-14 01:06 - 00000000 ____D C:\Program Files (x86)\Realtek 2013-11-14 02:14 - 2013-11-14 02:14 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Avira 2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\ProgramData\AskPartnerNetwork 2013-11-14 02:01 - 2013-11-14 02:01 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork 2013-11-14 02:00 - 2013-11-14 02:00 - 00002070 _____ C:\Users\Public\Desktop\Avira Control Center.lnk 2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\ProgramData\Avira 2013-11-14 02:00 - 2013-11-14 02:00 - 00000000 ____D C:\Program Files (x86)\Avira 2013-11-14 01:56 - 2013-11-14 01:56 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk 2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Mozilla 2013-11-14 01:56 - 2013-11-14 01:56 - 00000000 ____D C:\ProgramData\Mozilla 2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\Documents\EA Games 2013-11-14 01:44 - 2013-11-14 01:44 - 00000000 ____D C:\Users\Waldi\AppData\Local\EA Games 2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Windows\SysWOW64\RTCOM 2013-11-14 01:42 - 2013-11-14 01:42 - 00000000 ____D C:\Program Files\Realtek 2013-11-14 01:38 - 2013-11-14 01:22 - 00002144 _____ C:\Windows\sentelic.log 2013-11-14 01:38 - 2013-11-14 01:06 - 00000000 ____D C:\Windows\SysWOW64\sda 2013-11-14 01:36 - 2013-11-14 01:36 - 00000000 ____D C:\Users\Waldi\AppData\Local\2K Games 2013-11-14 01:34 - 2013-11-14 01:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf 2013-11-14 01:31 - 2013-11-14 01:31 - 00000000 ____D C:\Program Files\AuthenTec 2013-11-14 01:31 - 2009-07-14 13:32 - 00000000 ____D C:\Windows\system32\WinBioPlugIns 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\Users\Waldi\AppData\Local\ATI 2013-11-14 01:29 - 2013-11-14 01:29 - 00000000 ____D C:\ProgramData\ATI 2013-11-14 01:24 - 2013-11-14 01:24 - 00002525 _____ C:\Users\Public\Desktop\Microsoft Download Manager.lnk 2013-11-14 01:24 - 2013-11-14 01:24 - 00000000 ____D C:\Program Files (x86)\Microsoft Download Manager 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_fspad_win764_01009.Wdf 2013-11-14 01:22 - 2013-11-14 01:22 - 00000000 ____D C:\Program Files\FSP 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Roaming\Atheros 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\Users\Waldi\AppData\Local\BMExplorer 2013-11-14 01:19 - 2013-11-14 01:19 - 00000000 ____D C:\ProgramData\Atheros 2013-11-14 01:18 - 2009-07-14 11:20 - 00000000 __RHD C:\Users\Public\Libraries 2013-11-14 01:14 - 2013-11-14 01:14 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf 2013-11-14 01:13 - 2013-11-14 01:13 - 00002238 _____ C:\Users\Public\Desktop\Qualcomm Atheros Killer Network Manager.lnk 2013-11-14 01:13 - 2013-11-14 01:13 - 00000264 _____ C:\Users\Waldi\AppData\Local\killertool.log 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files\Qualcomm Atheros 2013-11-14 01:13 - 2013-11-14 01:13 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite 2013-11-14 01:07 - 2013-11-14 01:07 - 00000000 ____D C:\Users\Waldi\AppData\Local\Intel_Corporation 2013-11-14 01:06 - 2009-07-14 13:32 - 00000000 ____D C:\Windows\system32\restore 2013-11-14 01:05 - 2013-11-14 01:05 - 00000000 ____D C:\ProgramData\Intel 2013-11-14 01:05 - 2013-11-14 01:02 - 00000000 ____D C:\Program Files\Intel 2013-11-14 01:03 - 2013-11-14 01:03 - 00000000 _____ C:\Windows\ativpsrm.bin 2013-11-14 01:01 - 2013-11-14 00:52 - 00000000 ____D C:\Intel 2013-11-14 00:58 - 2013-11-14 00:58 - 00135602 _____ C:\Windows\system32\log.xml 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\ProgramData\AMD 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies 2013-11-14 00:55 - 2013-11-14 00:55 - 00000000 ____D C:\Program Files (x86)\AMD AVT 2013-11-14 00:55 - 2013-11-14 00:54 - 00000000 ____D C:\Program Files (x86)\ATI Technologies 2013-11-14 00:55 - 2013-11-14 00:53 - 00000000 ____D C:\Program Files\ATI Technologies 2013-11-14 00:54 - 2013-11-14 00:54 - 00000000 ____D C:\Program Files\ATI 2013-11-14 00:48 - 2013-11-14 00:48 - 00000020 ___SH C:\Users\Waldi\ntuser.ini 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Waldi\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Programme 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Vorlagen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Startmenü 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Favoriten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Dokumente 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 _SHDL C:\Dokumente und Einstellungen 2013-11-14 00:48 - 2013-11-14 00:48 - 00000000 ____D C:\Recovery 2013-11-14 00:48 - 2013-11-13 16:45 - 00000000 ____D C:\Windows\Panther 2013-11-14 00:48 - 2009-07-14 11:20 - 00000000 __RHD C:\Users\Default 2013-11-14 00:48 - 2009-07-14 11:20 - 00000000 ____D C:\Program Files\Windows NT 2013-11-14 00:46 - 2013-11-14 00:46 - 00001355 _____ C:\Windows\TSSysprep.log 2013-11-14 00:46 - 2009-07-14 12:46 - 00002790 _____ C:\Windows\DtcInstall.log 2013-11-13 16:44 - 2009-07-14 13:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG 2013-11-13 16:44 - 2009-07-14 13:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template 2013-11-07 23:00 - 2013-11-15 03:27 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe Some content of TEMP: ==================== C:\Users\Waldi\AppData\Local\Temp\avgnt.exe C:\Users\Waldi\AppData\Local\Temp\Quarantine.exe ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\SysWOW64\wininit.exe => MD5 is legit C:\Windows\explorer.exe => MD5 is legit C:\Windows\SysWOW64\explorer.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\SysWOW64\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\SysWOW64\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\SysWOW64\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-11-30 14:24 ==================== End Of Log ============================ |
|
06.12.2013, 12:49
| #13 |
| /// the machine /// TB-Ausbilder | Bublik A.30.132 Trojaner Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
C:\Program Files\Enigma Software Group
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Fertig Die Reihenfolge ist hier entscheidend.
Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
07.12.2013, 02:24
| #14 |
| | Bublik A.30.132 Trojaner Hi. Hab alles so ausgeführt wie du wolltest. Hab mich jetzt für Avast entschieden. Vielen Dank. Wenn ich nochmal irgendwelche probleme haben sollte, ist das die Internetseite!!! Ihr macht einen tollen Job! Hut ab! Hier die Log: Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-12-2013
Ran by Waldi at 2013-12-07 09:17:41 Run:1
Running from C:\Users\Waldi\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
C:\Program Files\Enigma Software Group
*****************
esgiguard => Service deleted successfully.
C:\Program Files\Enigma Software Group => Moved successfully.
==== End of Fixlog ====
|
|
07.12.2013, 12:38
| #15 |
| /// the machine /// TB-Ausbilder | Bublik A.30.132 Trojaner Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Bublik A.30.132 Trojaner |
| antivir, desktop, festplatte, hdd0(c:, hdd0(c:), home, infiziert, lsass.exe, malwarebytes, microsoft, modul, namen, programm, prozesse, services.exe, software, svchost.exe, taskhost.exe, tr/bublik.a.30.132, trojaner, warnung, winlogon, winlogon.exe |
Linear-Darstellung
