Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Log-Analyse und Auswertung: Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 06.02.2014, 23:24   #1
pytagoras
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Hallo liebes Tojaner-Board Team,

ich hatte vor einigen Monaten einen Virus auf meinem Laptop, welches das Betrienssystem Wondows 7 drauf hatte. Ich bin leider kein Genie was PCs angeht aber ich meine mich erinnern zu können, dass das einer mit HEUR.32 in der Warnmeldung von Kaspersky war. Ich hatte diesen dann gelöscht und Kaspersky fand den Virus nicht mehr. Da ich mir aber unsicher war, ob der Trojaner wirklich beseitigt ist habe ich mein Notebook mithilfe einer Recovery CD vor etwa 3 Wochen formatiert. Nun habe ich wieder Vista installiert (Hatte nur die Recovery CD wie es mitgeliefert wurde beim Kauf). Ich dachte eigentlich, dass mein Laptop bereinigt ist aber da passierte es, dass alle meine Hotmail-Kontakte eine Mail ohne Betreff und mit einem Link verschickt bekamen. Ich habe dieses nur deshalb bemerkt, weil etwa 40 Mails mit einer Fehlermeldung, dass sie nicht verschickt werden konnten, an mein Konto zurückkamen. Ich versuchte mich dann einzuloggen aber da kam die Fehlermeldung, dass mein Passwort falsch sei. Nun habe ich keinen Zugang mehr zu meinem Hotmail-Konto. Kann es sein, dass der Trojaner noch auf meinem PC ist und meine Daten übermittelt hat? Könnten evtl. auch andere Daten übermittelt worden sein?


P.S Ich habe gerade versucht die FRS und additional dateien anzuhängen aber ich weiß nicht genau wie das gehen soll. Wenn ich das hier reinsetze, dann steht dass die Maximum an Zeichen erreicht ist. Wie mache ich das am geschicktesten?

Ich bedanke mich für jede Art von Hilfe.

LG
pytagoras
Geändert von pytagoras (06.02.2014 um 23:32 Uhr)

Alt 07.02.2014, 07:07   #2
schrauber
/// the machine
/// TB-Ausbilder
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________
Alt 07.03.2014, 22:13   #3
pytagoras
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-03-2014 01
 07-03-2014 21:52:38

Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\STacSV.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(Hewlett-Packard Company) C:\Windows\system32\Hpservice.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Symantec Corporation) c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CyberLink Corp.) C:\Program Files\HP\QuickPlay\QPService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Symantec Corporation) c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehtray.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\aestsrv.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
() C:\Windows\SMINST\BLService.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Microsoft Corporation) C:\Windows\ehome\ehRecvr.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
(Symantec Corporation) c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
(Hewlett-Packard) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
() C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
() C:\Users\Selda\Downloads\Defogger.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2299176 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2007-12-24] (CyberLink Corp.)
HKLM\...\Run: [QPService] - C:\Program Files\HP\QuickPlay\QPService.exe [468264 2008-05-14] (CyberLink Corp.)
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [ccApp] - c:\Program Files\Common Files\Symantec Shared\ccApp.exe [51048 2008-02-07] (Symantec Corporation)
HKLM\...\Run: [QlbCtrl.exe] - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [202032 2008-03-14] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [OnScreenDisplay] - C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [554288 2007-11-01] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40048 2007-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [HP Health Check Scheduler] - c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [70912 2008-04-15] (Hewlett-Packard)
HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2006-12-10] (Hewlett-Packard Co.)
HKLM\...\Run: [hpWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2007-11-20] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [442467 2008-06-27] (IDT, Inc.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] - rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-3714923429-2905602066-2517820217-1000\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-02-26] (Hewlett-Packard Company)
HKU\S-1-5-21-3714923429-2905602066-2517820217-1000\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-02-18] (Google Inc.)
HKU\S-1-5-21-3714923429-2905602066-2517820217-1000\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [20728480 2014-01-14] (Skype Technologies S.A.)
HKU\S-1-5-21-3714923429-2905602066-2517820217-1000\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=de_de&c=83&bd=Pavilion&pf=cnnb
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=de_de&c=83&bd=Pavilion&pf=cnnb
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=de_de&c=83&bd=Pavilion&pf=cnnb
SearchScopes: HKLM - {32E69FD7-A893-44A3-9124-1A8723526FCD} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKLM - {B172245C-EEC5-4805-9477-49F2999D1362} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKCU - {32E69FD7-A893-44A3-9124-1A8723526FCD} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKCU - {B172245C-EEC5-4805-9477-49F2999D1362} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: No Name - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\coIEPlg.dll (Symantec Corporation)
BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: AOL Toolbar BHO - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
BHO: No Name - {7E853D72-626A-48EC-A868-BA8D5E23E045} -  No File
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\33.0.1750.146\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.510.13) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U51) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (MetaStream 3 Plugin) - C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-18]
CHR Extension: (Google Drive) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-18]
CHR Extension: (YouTube) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-18]
CHR Extension: (Google-Suche) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-18]
CHR Extension: (Google Wallet) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-18]
CHR Extension: (Google Mail) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-18]

========================== Services (Whitelisted) =================

R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\aestsrv.exe [73728 2008-02-12] (Andrea Electronics Corporation)
R2 Automatic LiveUpdate Scheduler; c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe [238968 2008-02-09] (Symantec Corporation)
R2 ccEvtMgr; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149864 2008-02-07] (Symantec Corporation)
R2 ccSetMgr; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149864 2008-02-07] (Symantec Corporation)
R2 CLTNetCnService; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149864 2008-02-07] (Symantec Corporation)
S3 comHost; c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe [55640 2007-08-22] (Symantec Corporation)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-04-15] (Hewlett-Packard)
S3 LiveUpdate; c:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE [3220856 2008-09-05] (Symantec Corporation)
R2 LiveUpdate Notice; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149864 2008-02-07] (Symantec Corporation)
R2 Recovery Service for Windows; C:\Windows\SMINST\BLService.exe [341328 2008-03-26] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-01-09] ()
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\STacSV.exe [221273 2008-06-27] (IDT, Inc.)
R3 Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [1245064 2008-05-25] ()
S3 usnjsvc; C:\Program Files\MSN Messenger\usnsvc.exe [97136 2007-01-19] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R0 ahcix86s; C:\Windows\System32\DRIVERS\ahcix86s.sys [170000 2008-04-14] (AMD Technologies Inc.)
R0 Amddfltr; C:\Windows\System32\DRIVERS\Amddfltr.sys [15416 2008-01-07] (Advanced Micro Devices)
S3 COH_Mon; C:\Windows\system32\Drivers\COH_Mon.sys [23888 2008-07-30] (Symantec Corporation)
R2 CO_Mon; C:\Windows\system32\drivers\CO_Mon.sys [36056 2007-08-09] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [376920 2014-01-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [108120 2014-01-22] (Symantec Corporation)
S3 HpqRemHid; C:\Windows\System32\DRIVERS\HpqRemHid.sys [7168 2007-07-11] (Hewlett-Packard Development Company, L.P.)
R1 IDSvix86; C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20140304.001\IDSvix86.sys [286328 2014-01-29] (Symantec Corporation)
R3 NAVENG; C:\ProgramData\Symantec\Definitions\VirusDefs\20140307.003\NAVENG.SYS [93272 2014-02-17] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Symantec\Definitions\VirusDefs\20140307.003\NAVEX15.SYS [1612376 2014-02-17] (Symantec Corporation)
R1 SPBBCDrv; C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [447024 2009-03-17] (Symantec Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [279088 2008-02-01] (Symantec Corporation)
S3 SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [317616 2008-02-01] (Symantec Corporation)
R1 SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [43696 2008-02-01] (Symantec Corporation)
R3 SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [13616 2009-02-19] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [124464 2014-02-17] (Symantec Corporation)
R3 SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [96560 2009-02-19] (Symantec Corporation)
R1 SymIM; C:\Windows\System32\DRIVERS\SymIMv.sys [24112 2009-02-19] (Symantec Corporation)
R3 SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [41008 2009-02-19] (Symantec Corporation)
R3 SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [22320 2009-02-19] (Symantec Corporation)
R1 SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [184496 2009-02-19] (Symantec Corporation)
U1 eabfiltr; 
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-07 21:52 - 2014-03-07 21:52 - 00018233 _____ () C:\Users\Selda\Downloads\FRST.txt
2014-03-07 21:52 - 2014-03-07 21:52 - 00000000 ____D () C:\FRST
2014-03-07 21:51 - 2014-03-07 21:51 - 01145344 _____ (Farbar) C:\Users\Selda\Downloads\FRST.exe
2014-03-07 21:50 - 2014-03-07 21:50 - 00000472 _____ () C:\Users\Selda\Downloads\defogger_disable.log
2014-03-07 21:50 - 2014-03-07 21:50 - 00000000 _____ () C:\Users\Selda\defogger_reenable
2014-03-07 21:49 - 2014-03-07 21:49 - 00050477 _____ () C:\Users\Selda\Downloads\Defogger.exe
2014-03-07 21:31 - 2014-03-07 21:31 - 00000974 _____ () C:\Users\Selda\Desktop\test.txt
2014-03-06 21:02 - 2014-03-06 21:02 - 00004608 _____ () C:\Users\Selda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-06 19:25 - 2014-03-06 19:25 - 00000000 ____D () C:\Users\Selda\AppData\Local\Apple Computer
2014-03-06 19:24 - 2014-03-06 20:25 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Apple Computer
2014-03-06 19:21 - 2014-03-06 19:22 - 00000000 ____D () C:\Program Files\QuickTime
2014-03-06 19:21 - 2014-03-06 19:21 - 00001726 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-03-06 19:21 - 2014-03-06 19:21 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-03-06 19:19 - 2014-03-06 19:19 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\Users\Selda\AppData\Local\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\ProgramData\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-03-06 19:15 - 2014-03-06 19:17 - 41945432 _____ (Apple Inc.) C:\Users\Selda\Downloads\QuickTimeInstaller.exe
2014-03-06 19:08 - 2014-03-06 19:08 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\at.helbling.eversion.pamina
2014-03-06 19:07 - 2014-03-06 19:07 - 00000941 _____ () C:\Users\Public\Desktop\PaMina e-version.lnk
2014-03-06 19:07 - 2014-03-06 19:07 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-06 19:07 - 2014-03-06 19:07 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-06 19:06 - 2014-03-06 19:07 - 00000000 ____D () C:\Program Files\Helbling
2014-03-06 19:06 - 2014-03-06 19:06 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-03-04 23:54 - 2014-03-06 23:00 - 00000000 ____D () C:\Users\Selda\Desktop\Hits aktuell
2014-03-04 00:18 - 2014-03-04 00:18 - 00000000 ____D () C:\ProgramData\HP Product Assistant
2014-03-02 16:16 - 2014-03-02 16:16 - 00010484 _____ () C:\Users\Selda\Downloads\Einfuehrungsstunde Tanzen.zip
2014-03-02 16:09 - 2014-03-02 16:09 - 00023552 _____ () C:\Users\Selda\Downloads\Freies Tanzen.xls
2014-02-25 23:04 - 2014-02-25 23:04 - 00000000 ____D () C:\Users\Selda\Desktop\bewegungslieder
2014-02-25 00:52 - 2014-02-25 00:52 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-02-25 00:19 - 2014-02-25 00:19 - 00000056 ____H () C:\Windows\system32\ezsidmv.dat
2014-02-23 22:54 - 2014-02-23 22:54 - 00000000 ____D () C:\ProgramData\WEBREG
2014-02-23 22:29 - 2014-02-23 22:54 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\HP
2014-02-23 22:28 - 2014-02-23 22:31 - 00000680 _____ () C:\Users\Selda\AppData\Local\d3d9caps.dat
2014-02-23 22:19 - 2014-02-23 22:19 - 00001870 _____ () C:\Users\Public\Desktop\Shop für HP Zubehör.lnk
2014-02-23 22:19 - 2014-02-23 22:19 - 00000000 ____D () C:\ProgramData\HPSSUPPLY
2014-02-23 22:18 - 2014-02-23 22:18 - 00002029 _____ () C:\Users\Public\Desktop\HP Photosmart Essential.lnk
2014-02-23 22:14 - 2014-02-23 22:14 - 00001204 _____ () C:\Users\Public\Desktop\HP Solution Center.lnk
2014-02-23 22:11 - 2014-02-23 22:11 - 00000000 ____D () C:\Program Files\Common Files\Hewlett-Packard
2014-02-23 22:10 - 2014-02-23 22:18 - 00000000 ____D () C:\Program Files\Common Files\HP
2014-02-23 22:01 - 2007-02-02 11:27 - 00117760 _____ (Hewlett-Packard Company) C:\Windows\system32\hpz3l4v2.dll
2014-02-23 22:01 - 2006-11-02 19:32 - 00018747 _____ () C:\Windows\system32\HPCEAC06.HPI
2014-02-23 22:01 - 2006-06-06 14:20 - 00241721 _____ (Hewlett-Packard) C:\Windows\system32\HPBMINI.DLL
2014-02-23 22:01 - 2005-06-20 14:33 - 00163840 _____ (Hewlett-Packard) C:\Windows\system32\HPJCMN2U.DLL
2014-02-23 22:01 - 2005-06-20 14:33 - 00094208 _____ (Hewlett-Packard) C:\Windows\system32\HPJIPX1U.DLL
2014-02-23 22:01 - 2005-06-20 14:33 - 00049152 _____ (Hewlett-Packard) C:\Windows\system32\HPBNRAC2.DLL
2014-02-23 21:59 - 2014-02-27 15:00 - 00000000 ____D () C:\ProgramData\HP
2014-02-23 21:59 - 2014-02-27 14:27 - 00146162 _____ () C:\Windows\hpoins18.dat
2014-02-23 21:59 - 2014-02-27 14:27 - 00001313 _____ () C:\ProgramData\hpzinstall.log
2014-02-23 21:58 - 2007-03-01 01:05 - 00006600 _____ () C:\Windows\hpomdl18.dat
2014-02-23 21:58 - 2007-02-01 09:24 - 00258048 _____ (Hewlett-Packard) C:\Windows\system32\hpzids01.dll
2014-02-23 21:53 - 2014-02-23 21:57 - 167339144 _____ () C:\Users\Selda\Downloads\AIO_CDA_Full_Network_deu_NB.exe
2014-02-23 21:18 - 2014-02-23 21:18 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2014-02-23 19:42 - 2014-02-23 19:42 - 00387584 _____ () C:\Users\Selda\Downloads\KL_bodyparts_guessing.ppt
2014-02-23 19:42 - 2014-02-23 19:42 - 00387584 _____ () C:\Users\Selda\Downloads\KL_bodyparts_guessing (1).ppt
2014-02-23 19:42 - 2014-02-23 19:42 - 00214528 _____ () C:\Users\Selda\Downloads\KL_mybody.ppt
2014-02-23 11:46 - 2014-02-23 11:46 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-02-23 02:00 - 2009-09-10 03:01 - 03023360 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2014-02-23 02:00 - 2009-09-10 03:00 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2014-02-23 02:00 - 2009-09-10 03:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-02-23 01:59 - 2009-10-01 02:02 - 02537472 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2014-02-23 01:59 - 2009-10-01 02:02 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2014-02-23 01:59 - 2009-10-01 02:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2014-02-23 01:59 - 2009-10-01 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
2014-02-23 01:59 - 2009-10-01 02:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2014-02-23 01:59 - 2009-10-01 02:01 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2014-02-23 01:14 - 2012-07-26 04:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-02-23 01:14 - 2012-07-26 04:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-02-23 01:14 - 2012-07-26 04:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-02-23 01:14 - 2012-07-26 04:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-02-23 01:14 - 2012-07-26 04:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-02-23 01:14 - 2012-07-26 04:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-02-23 01:14 - 2012-07-26 03:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-02-23 01:14 - 2012-07-26 03:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-02-23 01:14 - 2012-07-26 03:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-02-23 01:14 - 2012-06-02 15:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-02-23 01:14 - 2009-07-14 13:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2014-02-23 00:49 - 2014-02-23 00:49 - 03063561 _____ (Macromedia, Inc.) C:\Users\Public\Documents\MobileTV.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02989660 _____ (Macromedia, Inc.) C:\Users\Public\Documents\DVD.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02864396 _____ (Macromedia, Inc.) C:\Users\Public\Documents\MPV.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02331174 _____ (Macromedia, Inc.) C:\Users\Public\Documents\Karaoke.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02231606 _____ (Macromedia, Inc.) C:\Users\Public\Documents\Games.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 00000021 _____ () C:\Users\Public\Documents\hpqp.txt
2014-02-23 00:49 - 2014-02-23 00:49 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\CyberLink
2014-02-23 00:49 - 2014-02-23 00:49 - 00000000 ____D () C:\Users\Public\Documents\DEU
2014-02-22 16:57 - 2013-10-30 01:35 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-02-22 16:57 - 2013-08-27 03:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-02-22 16:57 - 2013-08-27 03:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-02-22 16:57 - 2013-08-27 03:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-02-22 16:57 - 2013-08-27 03:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-02-22 16:57 - 2013-08-27 02:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-22 16:57 - 2013-08-27 02:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-02-22 16:57 - 2013-08-27 02:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-22 16:57 - 2013-08-27 02:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-02-22 16:57 - 2013-08-27 02:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-02-22 16:57 - 2013-08-01 04:16 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-22 16:57 - 2013-08-01 03:49 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-02-22 16:57 - 2013-07-20 11:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-02-22 16:57 - 2013-06-15 14:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2014-02-22 16:57 - 2013-06-15 12:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-02-22 16:57 - 2012-05-11 16:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-02-22 16:57 - 2011-10-14 17:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-02-22 16:57 - 2011-10-14 17:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2014-02-22 16:57 - 2011-07-29 17:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-02-22 16:57 - 2011-07-29 17:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-02-22 16:57 - 2011-07-29 17:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2014-02-22 16:57 - 2011-07-29 17:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2014-02-22 16:57 - 2011-04-21 14:55 - 00508416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-02-22 16:57 - 2009-06-17 14:23 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2014-02-22 16:56 - 2013-12-05 03:12 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-22 16:56 - 2013-10-30 03:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2014-02-22 16:56 - 2013-10-30 02:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-02-22 16:56 - 2013-10-30 01:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-02-22 16:56 - 2013-07-17 20:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-02-22 16:56 - 2013-07-10 10:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-02-22 16:56 - 2013-07-05 05:53 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-02-22 16:56 - 2012-11-02 11:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-02-22 16:56 - 2012-11-02 09:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2014-02-22 16:56 - 2012-09-25 17:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-02-22 16:56 - 2012-08-21 12:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-02-22 16:56 - 2012-06-29 17:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-02-22 16:56 - 2012-06-08 18:47 - 11586048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-02-22 16:56 - 2012-03-21 00:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-02-22 16:56 - 2011-10-14 17:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-02-22 16:55 - 2011-11-18 18:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-02-22 16:55 - 2011-02-22 15:13 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-02-22 16:54 - 2013-06-29 03:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-02-22 16:54 - 2013-06-29 03:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-02-22 16:54 - 2013-06-29 03:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-02-22 16:54 - 2013-06-29 03:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-02-22 16:54 - 2013-03-03 20:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-02-22 16:54 - 2012-11-20 05:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-02-22 16:54 - 2012-09-28 17:11 - 00892928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-02-22 16:54 - 2011-12-14 17:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-02-22 16:54 - 2011-05-05 14:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-02-22 16:54 - 2011-05-05 14:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-02-22 16:54 - 2011-03-12 22:55 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-02-22 16:53 - 2013-10-11 03:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-02-22 16:53 - 2013-10-11 03:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-02-22 16:53 - 2013-10-11 03:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2014-02-22 16:53 - 2013-10-11 01:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-02-22 16:53 - 2013-10-11 01:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-02-22 16:53 - 2013-10-03 13:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-02-22 16:53 - 2013-10-03 13:45 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-02-22 16:53 - 2013-08-02 05:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-02-22 16:53 - 2013-07-12 10:04 - 00134272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-02-22 16:53 - 2013-05-02 05:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-02-22 16:53 - 2013-05-02 05:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
2014-02-22 16:53 - 2013-04-24 05:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-02-22 16:53 - 2013-04-24 02:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-02-22 16:53 - 2012-11-22 04:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2014-02-22 16:53 - 2012-11-08 04:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-02-22 16:53 - 2012-11-02 11:19 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-02-22 16:52 - 2013-10-22 08:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-02-22 16:52 - 2013-10-11 03:08 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-02-22 16:52 - 2013-10-11 03:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-02-22 16:52 - 2013-10-11 01:39 - 00218228 _____ () C:\Windows\system32\WFP.TMF
2014-02-22 16:52 - 2013-07-16 05:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-02-22 16:52 - 2013-07-09 13:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-02-22 16:52 - 2013-07-08 05:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-02-22 16:52 - 2013-07-08 05:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-02-22 16:52 - 2013-06-27 00:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-02-22 16:52 - 2013-06-04 05:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-02-22 16:52 - 2013-06-04 02:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-02-22 16:52 - 2013-06-01 05:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-02-22 16:52 - 2013-03-09 04:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-02-22 16:52 - 2013-03-09 02:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-02-22 16:52 - 2012-02-29 16:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-02-22 16:52 - 2012-02-29 14:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-02-22 16:52 - 2011-11-16 17:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2014-02-22 16:52 - 2011-10-25 16:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-02-22 16:52 - 2011-08-25 17:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-02-22 16:52 - 2011-08-25 17:14 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-02-22 16:52 - 2011-08-25 17:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-02-22 16:52 - 2011-08-25 14:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
2014-02-22 16:51 - 2013-07-04 05:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-02-22 16:51 - 2013-07-03 03:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2014-02-22 16:51 - 2013-07-03 03:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-02-22 16:51 - 2013-04-17 13:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-02-22 16:51 - 2013-03-08 04:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-02-22 16:51 - 2013-03-08 04:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-22 16:51 - 2012-05-01 15:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-02-22 16:51 - 2011-06-15 17:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-02-22 16:50 - 2012-06-04 16:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-02-22 16:50 - 2012-06-02 01:04 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-02-22 16:50 - 2011-11-16 17:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-02-22 16:50 - 2011-11-16 17:21 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-02-22 16:50 - 2011-11-16 15:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-02-22 16:49 - 2013-02-12 02:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-02-22 16:49 - 2010-05-04 20:13 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2014-02-22 16:27 - 2013-07-08 05:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-02-22 16:27 - 2013-07-08 05:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-02-22 16:27 - 2013-07-08 05:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-02-22 16:20 - 2012-01-09 16:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-02-22 16:05 - 2012-06-02 23:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-02-22 16:05 - 2012-06-02 23:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-02-22 16:05 - 2012-06-02 23:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-02-22 16:05 - 2012-06-02 23:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-02-22 16:05 - 2012-06-02 23:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-02-22 16:05 - 2012-06-02 23:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-02-22 16:05 - 2012-06-02 23:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-02-22 16:04 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-02-22 16:04 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 12345344 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-21 22:05 - 2014-02-21 22:05 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-21 22:05 - 2014-02-21 22:05 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-21 22:05 - 2014-02-21 22:05 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-21 22:05 - 2014-02-21 22:05 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-21 22:05 - 2014-02-21 22:05 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-21 22:03 - 2014-02-21 22:03 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2014-02-21 22:02 - 2014-02-21 22:02 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-02-21 22:02 - 2014-02-21 22:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2014-02-21 21:58 - 2014-02-21 21:58 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\vi-VN
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\eu-ES
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\ca-ES
2014-02-21 21:05 - 2014-02-21 21:05 - 00000000 ____D () C:\Windows\system32\SPReview
2014-02-21 20:37 - 2009-04-10 23:28 - 00928768 _____ (Microsoft Corporation) C:\Windows\system32\scavenge.dll
2014-02-21 20:36 - 2009-04-10 23:27 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\compcln.exe
2014-02-21 20:33 - 2009-04-10 23:28 - 00550400 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00441344 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-02-21 20:33 - 2009-04-10 23:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-02-21 20:33 - 2009-04-10 23:28 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\SCardSvr.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-02-21 20:33 - 2009-04-10 23:28 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\rtffilt.dll
2014-02-21 20:33 - 2009-04-10 23:27 - 00241128 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2014-02-21 20:33 - 2009-04-10 21:46 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-02-21 20:33 - 2009-04-10 21:45 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2014-02-21 20:32 - 2009-04-10 23:32 - 00149480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2014-02-21 20:32 - 2009-04-10 23:32 - 00050664 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2014-02-21 20:32 - 2009-04-10 23:32 - 00043496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys
2014-02-21 20:32 - 2009-04-10 23:32 - 00014312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys
2014-02-21 20:32 - 2009-04-10 23:28 - 02153472 _____ (Microsoft Corporation) C:\Windows\system32\oobefldr.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 01823744 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 01541120 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 01107968 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00869888 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00551936 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\pnpui.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00464384 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rasplap.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\RelMon.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2014-02-21 20:32 - 2009-04-10 23:28 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\offfilt.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\pnpsetup.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\rasmontr.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\nlhtml.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\ntmarta.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\regsvc.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\powrprof.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\propdefs.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\PNPXAssoc.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2014-02-21 20:32 - 2009-04-10 23:27 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2014-02-21 20:32 - 2009-04-10 23:27 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\rekeywiz.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\PnPutil.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\rasdial.exe
2014-02-21 20:32 - 2009-04-10 23:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2014-02-21 20:32 - 2009-04-10 23:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2014-02-21 20:32 - 2009-04-10 23:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2014-02-21 20:32 - 2009-04-10 23:23 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2014-02-21 20:32 - 2009-04-10 22:03 - 12240896 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll
2014-02-21 20:32 - 2009-04-10 22:03 - 02644480 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2014-02-21 20:32 - 2009-04-10 21:46 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys
2014-02-21 20:32 - 2009-04-10 21:46 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys
2014-02-21 20:32 - 2009-04-10 21:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2014-02-21 20:32 - 2009-04-10 21:43 - 00392170 _____ () C:\Windows\system32\onex.tmf
2014-02-21 20:32 - 2009-04-10 21:43 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2014-02-21 20:32 - 2009-04-10 21:43 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-02-21 20:32 - 2009-04-10 21:43 - 00062208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys
2014-02-21 20:32 - 2009-04-10 21:14 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2014-02-21 20:32 - 2009-04-10 21:14 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2014-02-21 20:32 - 2009-02-19 17:20 - 00009212 _____ () C:\Windows\system32\RacUR.xml
2014-02-21 20:32 - 2009-02-18 11:43 - 00000153 _____ () C:\Windows\system32\RacUREx.xml
2014-02-21 20:32 - 2009-02-18 11:39 - 00779136 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-02-21 20:31 - 2009-04-10 23:32 - 00190424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2014-02-21 20:31 - 2009-04-10 23:32 - 00141288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys
2014-02-21 20:31 - 2009-04-10 23:32 - 00053736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2014-02-21 20:31 - 2009-04-10 23:32 - 00027624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys
2014-02-21 20:31 - 2009-04-10 23:28 - 01591296 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 01459200 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 01078784 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00978432 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2014-02-21 20:31 - 2009-04-10 23:28 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\IasMigReader.exe
2014-02-21 20:31 - 2009-04-10 23:28 - 00454144 _____ (Microsoft) C:\Windows\system32\IasMigPlugin.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\devmgr.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2014-02-21 20:31 - 2009-04-10 23:28 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\fundisc.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\dsprop.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00117248 _____ () C:\Windows\system32\EhStorAuthn.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\EhStorShell.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\dmsynth.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\dmusic.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\iashlpr.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\feclient.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\iasdatastore.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\EhStorPwdMgr.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\hidserv.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\fdBthProxy.dll
2014-02-21 20:31 - 2009-04-10 23:27 - 02926592 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 02092544 _____ (Microsoft Corporation) C:\Windows\system32\dfsr.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00407040 _____ (Microsoft Corporation) C:\Windows\system32\dpapimig.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\gpresult.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\hdwwiz.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\fc.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\gpupdate.exe
2014-02-21 20:31 - 2009-04-10 23:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\f3ahvoas.dll
2014-02-21 20:31 - 2009-04-10 21:48 - 00344698 _____ () C:\Windows\system32\eaphost.tmf
2014-02-21 20:31 - 2009-04-10 21:43 - 00442788 _____ () C:\Windows\system32\dot3.tmf
2014-02-21 20:31 - 2009-04-10 21:43 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2014-02-21 20:31 - 2009-04-10 21:42 - 00561152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-02-21 20:31 - 2009-04-10 21:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-02-21 20:31 - 2009-04-10 21:39 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-02-21 20:31 - 2009-04-10 21:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys
2014-02-21 20:31 - 2009-04-10 21:13 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2014-02-21 20:31 - 2009-04-10 21:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2014-02-21 20:30 - 2009-04-10 23:33 - 00614376 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-02-21 20:30 - 2009-04-10 23:32 - 00527848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00265688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00245736 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00223208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00180712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00161752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00125928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00109032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00099816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-02-21 20:30 - 2009-04-10 23:32 - 00048104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00035304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00019944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys
2014-02-21 20:30 - 2009-04-10 23:28 - 06103040 _____ (Microsoft Corporation) C:\Windows\system32\chtbrkr.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 03174400 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 03072000 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 02515968 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 02225664 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 02134528 _____ (Microsoft Corporation) C:\Windows\system32\FunctionDiscoveryFolder.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01985024 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01856512 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01788416 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01730560 _____ (Microsoft Corporation) C:\Windows\system32\apds.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01671680 _____ (Microsoft Corporation) C:\Windows\system32\chsbrkr.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01645568 _____ (Microsoft Corporation) C:\Windows\system32\connect.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01589248 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01502720 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01480704 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01342464 _____ (Microsoft Corporation) C:\Windows\system32\brcpl.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01324032 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01209856 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01112064 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01086464 _____ (Microsoft Corporation) C:\Windows\system32\NetProjW.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01053696 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\mswdat10.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00807424 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00759296 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00670720 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\msrepl40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00618496 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2VDEC.DLL
2014-02-21 20:30 - 2009-04-10 23:28 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00542720 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00516608 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\cmdial32.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\msxbde40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\msexch40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\msvcp60.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\mspbde40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00368640 _____ () C:\Windows\system32\msjetoledb40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00364032 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2014-02-21 20:30 - 2009-04-10 23:28 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-02-21 20:30 - 2009-04-10 23:28 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\msjtes40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\modemui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\mstext40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\msltus40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\mscandui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\adsldpc.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\msctfui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mstlsapi.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\msjter40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingProxy.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\bthci.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msstrc.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\networkitemfactory.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\msscb.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\bitsigd.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\msimtf.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\NcdProp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\MsCtfMonitor.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\CHxReadingStringIME.dll
2014-02-21 20:30 - 2009-04-10 23:27 - 01122304 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2014-02-21 20:30 - 2009-04-10 23:27 - 01102848 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2014-02-21 20:30 - 2009-04-10 23:27 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2014-02-21 20:30 - 2009-04-10 23:27 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00130024 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2014-02-21 20:30 - 2009-04-10 23:27 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2014-02-21 20:30 - 2009-04-10 23:27 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\conime.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingWizard.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\cipher.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\cmmon32.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\csrstub.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cbsra.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\bthudtask.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ipconfig.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEject.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\msacm32.drv
2014-02-21 20:30 - 2009-04-10 23:23 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2014-02-21 20:30 - 2009-04-10 23:22 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2014-02-21 20:30 - 2009-04-10 23:22 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2014-02-21 20:30 - 2009-04-10 22:42 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2014-02-21 20:30 - 2009-04-10 21:46 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2014-02-21 20:30 - 2009-04-10 21:45 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2014-02-21 20:30 - 2009-04-10 21:43 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2014-02-21 20:30 - 2009-04-10 21:39 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2014-02-21 20:30 - 2009-04-10 21:39 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2014-02-21 20:30 - 2009-04-10 21:27 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2014-02-21 20:30 - 2009-04-10 21:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-02-21 20:30 - 2009-04-10 21:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-02-21 20:30 - 2009-03-29 21:42 - 00155456 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-02-21 20:30 - 2009-03-29 21:42 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-02-21 20:30 - 2009-02-18 11:38 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-02-21 20:30 - 2009-02-18 11:38 - 00035168 _____ (Microsoft Corporation) C:\Windows\system32\infocardcpl.cpl
2014-02-21 20:29 - 2009-04-10 23:33 - 00926184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-02-21 20:29 - 2009-04-10 23:33 - 00292840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2014-02-21 20:29 - 2009-04-10 23:32 - 00438744 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2014-02-21 20:29 - 2009-04-10 23:32 - 00019944 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-02-21 20:29 - 2009-04-10 23:32 - 00017896 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-02-21 20:29 - 2009-04-10 23:32 - 00017384 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 02167808 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 02012160 _____ (Microsoft Corporation) C:\Windows\system32\milcore.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01671680 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01580544 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01575936 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2014-02-21 20:29 - 2009-04-10 23:28 - 01533440 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01524736 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01382912 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2014-02-21 20:29 - 2009-04-10 23:28 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\wercon.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01055232 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01017856 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00968192 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz2.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00852992 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-02-21 20:29 - 2009-04-10 23:28 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00657408 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2014-02-21 20:29 - 2009-04-10 23:28 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00532992 _____ (Microsoft Corporation) C:\Windows\system32\wpcao.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00507904 _____ (Microsoft Corporation) C:\Windows\system32\vdsdyn.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00399360 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00385536 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\WscEapPr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\wow32.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\iassdo.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\wscntfy.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\iassam.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\korwbrkr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wpcsvc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\imapi.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2014-02-21 20:29 - 2009-04-10 23:28 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\wshext.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\wlgpclnt.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\iassvcs.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\xmlfilter.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\mmci.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\l2nacp.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iaspolcy.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\whealogr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\ifmon.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\wsepno.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\uxsms.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\version.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\winrnr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\vdmdbg.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\midimap.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mmcico.dll
2014-02-21 20:29 - 2009-04-10 23:27 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2014-02-21 20:29 - 2009-04-10 23:27 - 01689600 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2014-02-21 20:29 - 2009-04-10 23:27 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2014-02-21 20:29 - 2009-04-10 23:27 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2014-02-21 20:29 - 2009-04-10 23:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2014-02-21 20:29 - 2009-04-10 23:27 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2014-02-21 20:29 - 2009-04-10 23:27 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2014-02-21 20:29 - 2009-04-10 23:27 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2014-02-21 20:29 - 2009-04-10 23:22 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2014-02-21 20:29 - 2009-04-10 21:42 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-02-21 20:29 - 2009-04-10 21:38 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-02-21 20:29 - 2009-04-10 21:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2014-02-21 20:29 - 2009-04-10 21:22 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys
2014-02-21 20:29 - 2009-04-10 18:54 - 03662128 _____ () C:\Windows\system32\locale.nls
2014-02-21 20:29 - 2009-02-18 11:38 - 00619864 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-02-21 20:29 - 2009-02-18 11:38 - 00009048 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-02-21 20:28 - 2009-04-10 23:33 - 00986600 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-02-21 20:28 - 2009-04-10 23:32 - 00122344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Storport.sys
2014-02-21 20:28 - 2009-04-10 23:28 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 02205184 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 01224192 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 01081344 _____ (Microsoft Corporation) C:\Windows\system32\SLCExt.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00996352 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00777216 _____ (Microsoft Corporation) C:\Windows\system32\slcc.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00582144 _____ (Microsoft Corporation) C:\Windows\system32\SLCommDlg.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00425472 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\SLUI.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\SnippingTool.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\SLC.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\sperror.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\SLLUA.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\spoolss.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\softkbd.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00083456 _____ (Microsoft) C:\Windows\system32\SMBHelperClass.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\slwmi.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\SLUINotify.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Storprop.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\slcinst.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\TSTheme.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\spcmsg.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\spwinsat.dll
2014-02-21 20:28 - 2009-04-10 23:27 - 03408896 _____ (Microsoft Corporation) C:\Windows\system32\SLsvc.exe
2014-02-21 20:28 - 2009-04-10 23:27 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2014-02-21 20:28 - 2009-04-10 21:45 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys
2014-02-21 20:28 - 2009-04-10 21:42 - 00052992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2014-02-21 20:28 - 2009-04-10 21:42 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2014-02-21 20:28 - 2009-04-10 21:14 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2014-02-21 20:28 - 2009-04-10 19:52 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys
2014-02-21 20:28 - 2009-04-10 18:59 - 00107612 _____ () C:\Windows\system32\StructuredQuerySchema.bin
2014-02-21 20:28 - 2009-02-19 17:20 - 00009239 _____ () C:\Windows\system32\spcinstrumentation.man
2014-02-21 20:28 - 2009-02-18 11:39 - 00092918 _____ () C:\Windows\system32\slmgr.vbs
2014-02-21 20:28 - 2009-02-18 11:39 - 00035680 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-02-21 20:27 - 2009-04-10 23:32 - 00053224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2014-02-21 20:27 - 2009-04-10 23:28 - 01576960 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 01152000 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\thawbrkr.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\ulib.dll
2014-02-21 20:27 - 2009-04-10 23:27 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2014-02-21 20:27 - 2009-04-10 23:23 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2014-02-21 20:27 - 2009-04-10 21:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-02-21 20:27 - 2009-04-10 21:42 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2014-02-21 20:27 - 2009-03-06 18:11 - 00130008 _____ () C:\Windows\system32\systemsf.ebd
2014-02-21 20:20 - 2014-02-21 20:20 - 00000000 ____D () C:\Windows\system32\EventProviders
2014-02-21 20:06 - 2014-02-21 20:15 - 365230920 _____ (Microsoft Corporation) C:\Users\Selda\Downloads\Windows6.0-KB948465-X86.exe
2014-02-21 18:55 - 2014-02-21 22:37 - 00008448 _____ () C:\Windows\IE9_main.log
2014-02-21 18:55 - 2014-02-21 18:55 - 18733360 _____ (Microsoft Corporation) C:\Users\Selda\Downloads\IE9-WindowsVista-x86-deu.exe
__________________
Alt 07.03.2014, 23:30   #4
pytagoras
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Code:
ATTFilter
2014-02-20 03:30 - 2014-02-20 03:30 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-02-20 03:30 - 2014-02-20 03:30 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-02-18 22:15 - 2014-02-18 22:15 - 00000784 _____ () C:\Windows\ie8_main.log
2014-02-18 21:00 - 2014-02-18 21:06 - 00000438 _____ () C:\Users\Selda\AppData\Roaming\wklnhst.dat
2014-02-18 21:00 - 2014-02-18 21:03 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Template
2014-02-18 19:53 - 2010-09-06 17:20 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-02-18 19:53 - 2010-09-06 17:19 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-02-18 19:51 - 2014-02-18 19:51 - 00000000 ____D () C:\Users\Selda\AppData\Local\Skype
2014-02-18 19:50 - 2014-02-18 19:50 - 00001880 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-18 19:50 - 2014-02-18 19:50 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-02-18 19:49 - 2014-02-18 19:50 - 00000000 ___RD () C:\Program Files\Skype
2014-02-18 19:39 - 2014-02-18 22:12 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Google
2014-02-18 13:04 - 2008-05-27 05:59 - 00018904 _____ () C:\Windows\system32\StructuredQuerySchemaTrivial.bin
2014-02-18 13:04 - 2007-11-08 10:04 - 11967524 _____ () C:\Windows\system32\korwbrkr.lex
2014-02-18 12:57 - 2010-02-12 11:48 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2014-02-18 10:48 - 2009-11-08 10:55 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-02-18 10:48 - 2009-11-08 10:55 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2014-02-18 10:48 - 2009-11-08 10:55 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2014-02-18 10:48 - 2009-11-08 10:55 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2014-02-18 10:48 - 2009-11-08 10:55 - 00049472 _____ (Microsoft Corporation) C:\Windows\system32\netfxperf.dll
2014-02-18 02:20 - 2014-02-18 02:20 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell
2014-02-18 01:32 - 2014-02-18 01:36 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-18 01:00 - 2014-03-04 11:29 - 00001963 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-18 00:57 - 2014-03-07 21:21 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-18 00:57 - 2014-03-07 21:01 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-18 00:57 - 2014-03-07 20:55 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-18 00:57 - 2014-02-21 15:01 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-18 00:57 - 2014-02-21 15:01 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-18 00:57 - 2014-02-18 19:39 - 00000000 ____D () C:\Users\Selda\AppData\Local\Google
2014-02-18 00:57 - 2014-02-18 01:00 - 00000000 ____D () C:\Program Files\Google
2014-02-18 00:57 - 2014-02-18 00:58 - 00000000 ____D () C:\ProgramData\Google
2014-02-18 00:37 - 2010-02-21 00:06 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\nshhttp.dll
2014-02-18 00:37 - 2010-02-21 00:05 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\httpapi.dll
2014-02-18 00:37 - 2010-02-20 21:53 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2014-02-18 00:36 - 2014-02-18 00:37 - 00283642 _____ () C:\Windows\msxml4-KB954430-enu.LOG
2014-02-18 00:34 - 2014-02-18 00:35 - 00289738 _____ () C:\Windows\msxml4-KB973688-enu.LOG
2014-02-18 00:34 - 2014-02-18 00:34 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-02-18 00:31 - 2009-10-09 22:56 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\winrs.exe
2014-02-18 00:31 - 2009-10-09 22:56 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\winrshost.exe
2014-02-18 00:31 - 2009-10-09 22:56 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2014-02-18 00:31 - 2009-10-09 22:56 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\winrsmgr.dll
2014-02-18 00:30 - 2009-10-09 22:56 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-02-18 00:30 - 2009-10-09 22:56 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-02-18 00:30 - 2009-10-09 22:56 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\winrscmd.dll
2014-02-18 00:30 - 2009-10-09 22:56 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-02-18 00:30 - 2009-10-09 22:56 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-02-18 00:30 - 2009-10-09 22:56 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\pwrshplugin.dll
2014-02-18 00:30 - 2009-10-09 22:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2014-02-18 00:30 - 2009-10-09 22:56 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\winrssrv.dll
2014-02-18 00:30 - 2009-10-09 22:55 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-02-18 00:30 - 2009-10-09 22:55 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\wecsvc.dll
2014-02-18 00:30 - 2009-10-09 22:55 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\wevtfwd.dll
2014-02-18 00:30 - 2009-10-09 22:55 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\wecutil.exe
2014-02-18 00:30 - 2009-10-09 22:55 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\wecapi.dll
2014-02-18 00:30 - 2009-10-09 22:55 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2014-02-18 00:30 - 2009-08-01 07:27 - 00201184 _____ () C:\Windows\system32\winrm.vbs
2014-02-18 00:30 - 2009-07-16 18:30 - 00004675 _____ () C:\Windows\system32\wsmanconfig_schema.xml
2014-02-18 00:30 - 2009-07-16 18:30 - 00002426 _____ () C:\Windows\system32\WsmTxt.xsl
2014-02-18 00:25 - 2009-07-10 12:47 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2014-02-18 00:25 - 2008-02-29 07:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\kbd106n.dll
2014-02-18 00:24 - 2009-08-14 14:49 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\NETSTAT.EXE
2014-02-18 00:24 - 2009-08-14 14:49 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\ARP.EXE
2014-02-18 00:24 - 2009-08-14 14:49 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\ROUTE.EXE
2014-02-18 00:24 - 2009-08-14 14:49 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\MRINFO.EXE
2014-02-18 00:24 - 2009-08-14 14:49 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\finger.exe
2014-02-18 00:24 - 2009-08-14 14:49 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\TCPSVCS.EXE
2014-02-18 00:24 - 2009-08-14 14:49 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\HOSTNAME.EXE
2014-02-18 00:24 - 2009-08-14 14:48 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\netiohlp.dll
2014-02-18 00:23 - 2010-09-13 16:46 - 10628096 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-02-18 00:23 - 2010-09-13 14:56 - 08147456 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-02-18 00:23 - 2009-07-15 13:39 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-02-18 00:23 - 2009-07-15 13:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-02-18 00:23 - 2009-07-15 13:39 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-02-18 00:22 - 2010-12-28 16:55 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2014-02-18 00:21 - 2011-04-29 14:25 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-02-18 00:21 - 2011-04-29 14:25 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-02-18 00:13 - 2013-12-18 06:13 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-02-18 00:12 - 2010-04-16 17:46 - 00502272 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-02-18 00:11 - 2011-02-22 14:23 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-02-18 00:11 - 2010-06-16 16:30 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-02-18 00:11 - 2009-10-23 18:10 - 00714240 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-02-18 00:11 - 2009-07-11 20:01 - 00513536 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2014-02-18 00:11 - 2009-07-11 20:01 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2014-02-18 00:11 - 2009-07-11 20:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-02-18 00:11 - 2009-07-11 20:01 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2014-02-18 00:11 - 2009-07-11 18:03 - 02501921 _____ () C:\Windows\system32\wlan.tmf
2014-02-18 00:11 - 2009-07-11 18:03 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\L2SecHC.dll
2014-02-18 00:11 - 2009-06-15 15:52 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-02-18 00:11 - 2009-06-15 15:51 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-02-18 00:11 - 2009-04-11 07:28 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2014-02-18 00:09 - 2011-07-06 16:31 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-02-18 00:09 - 2011-04-29 14:24 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-02-18 00:09 - 2011-04-29 14:24 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-02-18 00:09 - 2011-02-18 15:03 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-02-18 00:09 - 2010-08-17 15:11 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-02-18 00:08 - 2014-03-07 20:45 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Skype
2014-02-18 00:08 - 2010-10-18 14:37 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-02-18 00:08 - 2010-08-26 17:37 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2014-02-18 00:08 - 2010-06-18 18:31 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2014-02-18 00:08 - 2010-04-05 18:02 - 00317952 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2014-02-18 00:08 - 2010-01-25 13:00 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-18 00:08 - 2010-01-25 13:00 - 00471552 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-18 00:08 - 2010-01-25 09:21 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-18 00:08 - 2010-01-25 09:21 - 00518144 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-18 00:08 - 2009-06-15 15:54 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-02-18 00:08 - 2009-06-15 15:52 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-02-18 00:07 - 2011-03-03 16:40 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\Apphlpdm.dll
2014-02-18 00:07 - 2011-03-03 14:35 - 04240384 _____ (Microsoft) C:\Windows\system32\GameUXLegacyGDFs.dll
2014-02-18 00:07 - 2010-08-31 16:46 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2014-02-18 00:07 - 2010-08-31 16:46 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2014-02-18 00:07 - 2010-08-26 17:34 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-02-18 00:07 - 2010-02-18 14:30 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-02-18 00:07 - 2010-02-18 12:28 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tunnel.sys
2014-02-18 00:07 - 2010-01-25 13:00 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-18 00:07 - 2010-01-25 13:00 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-18 00:07 - 2010-01-25 12:58 - 00332288 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-18 00:07 - 2010-01-25 09:21 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-18 00:07 - 2010-01-25 09:21 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-18 00:07 - 2009-06-10 12:41 - 02386944 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2014-02-18 00:06 - 2011-05-02 18:16 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-02-18 00:06 - 2010-11-04 19:56 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2014-02-18 00:06 - 2010-11-04 19:55 - 00601600 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-02-18 00:06 - 2010-11-04 19:55 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2014-02-18 00:06 - 2010-11-04 19:55 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2014-02-18 00:06 - 2010-11-04 17:34 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\taskeng.exe
2014-02-18 00:06 - 2010-08-20 17:05 - 00867328 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-02-18 00:06 - 2009-09-10 17:48 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-02-18 00:06 - 2009-07-15 13:39 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2014-02-18 00:06 - 2009-07-15 11:21 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.tlb
2014-02-18 00:06 - 2009-07-15 11:21 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\amcompat.tlb
2014-02-18 00:06 - 2009-04-11 07:27 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-02-18 00:06 - 2009-04-11 07:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-02-18 00:06 - 2009-04-11 05:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-02-18 00:05 - 2011-04-14 15:59 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-02-18 00:05 - 2010-12-29 19:28 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-02-18 00:05 - 2010-12-29 19:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\sbeio.dll
2014-02-18 00:05 - 2010-12-29 19:26 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-02-18 00:05 - 2010-12-17 14:54 - 00677888 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-18 00:05 - 2010-06-28 18:00 - 01316864 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-02-18 00:05 - 2010-01-13 18:34 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cabview.dll
2014-02-18 00:05 - 2009-12-08 18:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-02-18 00:05 - 2009-09-04 12:41 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\msasn1.dll
2014-02-18 00:05 - 2009-08-10 13:35 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-02-18 00:05 - 2009-06-10 12:42 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2014-02-18 00:05 - 2009-04-11 07:28 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-02-18 00:05 - 2009-04-11 07:28 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tscupgrd.exe
2014-02-18 00:05 - 2009-04-11 07:28 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-18 00:04 - 2011-04-21 14:58 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-02-18 00:04 - 2011-03-10 18:03 - 01162240 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-02-18 00:04 - 2011-03-10 18:03 - 01136640 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-02-18 00:04 - 2011-03-02 16:44 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-02-18 00:04 - 2011-03-02 16:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-02-18 00:04 - 2010-12-14 15:49 - 01169408 _____ (Microsoft Corporation) C:\Windows\system32\sdclt.exe
2014-02-18 00:04 - 2010-05-27 21:08 - 00081920 _____ (Radius Inc.) C:\Windows\system32\iccvid.dll
2014-02-18 00:04 - 2010-04-05 18:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2014-02-18 00:04 - 2010-01-21 16:05 - 00062464 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\l3codeca.acm
2014-02-18 00:04 - 2009-10-07 12:36 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-02-18 00:04 - 2009-07-17 14:54 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\atl.dll
2014-02-18 00:04 - 2009-05-04 10:59 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-02-18 00:04 - 2009-04-11 07:27 - 00220672 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\l3codecp.acm
2014-02-18 00:03 - 2009-12-04 19:30 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2014-02-18 00:03 - 2009-12-04 19:28 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\msvfw32.dll
2014-02-18 00:03 - 2009-12-04 19:28 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\mciavi32.dll
2014-02-18 00:03 - 2009-12-04 19:28 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\iyuv_32.dll
2014-02-18 00:03 - 2009-12-04 19:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\msvidc32.dll
2014-02-18 00:03 - 2009-12-04 19:28 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\msyuv.dll
2014-02-18 00:03 - 2009-12-04 19:28 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msrle32.dll
2014-02-18 00:03 - 2009-12-04 19:27 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\avifil32.dll
2014-02-17 23:58 - 2014-02-18 19:50 - 00000000 ____D () C:\ProgramData\Skype
2014-02-17 23:47 - 2009-05-08 13:53 - 00604672 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2014-02-17 23:43 - 2014-02-18 10:33 - 00000000 ____D () C:\Users\Public\Documents\Symantec
2014-02-17 23:31 - 2009-09-10 15:58 - 00310784 _____ (Microsoft Corporation) C:\Windows\system32\unregmp2.exe
2014-02-17 23:26 - 2014-02-17 23:26 - 00000000 ____D () C:\Windows\Sun
2014-02-17 23:26 - 2014-02-17 23:26 - 00000000 ____D () C:\ProgramData\Sun
2014-02-17 23:26 - 2014-02-17 23:26 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-17 23:26 - 2014-02-17 23:26 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-02-17 23:26 - 2014-02-17 23:25 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-17 23:25 - 2014-02-17 23:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-17 23:25 - 2014-02-17 23:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-17 23:25 - 2014-02-17 23:24 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-17 23:24 - 2014-03-06 19:02 - 00000000 ____D () C:\Users\Selda\AppData\Local\Adobe
2014-02-17 23:24 - 2014-02-17 23:24 - 00000000 ____D () C:\Program Files\Java
2014-02-17 23:23 - 2014-02-17 23:23 - 00000000 ____D () C:\Users\Selda\AppData\Local\AOL
2014-02-17 22:15 - 2014-03-01 15:19 - 00000052 _____ () C:\Windows\system32\DOErrors.log
2014-02-17 22:15 - 2014-02-17 22:15 - 00000000 ____D () C:\Users\Selda\AppData\Local\Hewlett-Packard
2014-02-17 22:14 - 2014-02-17 22:14 - 00000000 ____D () C:\Users\Selda\Documents\Bluetooth-Exchange-Ordner
2014-02-17 22:14 - 2014-02-17 22:14 - 00000000 ____D () C:\Users\Selda\Bluetooth Software
2014-02-17 22:13 - 2014-03-07 21:42 - 00000582 _____ () C:\Windows\Tasks\Norton Internet Security - Systemprüfung ausführen - Selda.job
2014-02-17 22:13 - 2014-02-23 11:53 - 00000000 ____D () C:\Users\Selda\AppData\Local\QuickPlay
2014-02-17 22:13 - 2014-02-20 15:21 - 00070744 _____ () C:\Users\Selda\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Symantec
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\ATI
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 ____D () C:\Users\Selda\AppData\Local\ATI
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 _____ () C:\Users\Selda\AppData\Local\QSwitch.txt
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 _____ () C:\Users\Selda\AppData\Local\DSwitch.txt
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 _____ () C:\Users\Selda\AppData\Local\AtStart.txt
2014-02-17 22:12 - 2014-02-25 22:58 - 00000944 _____ () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-02-17 22:12 - 2014-02-21 23:05 - 00000949 _____ () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-17 22:12 - 2014-02-21 21:50 - 00000915 _____ () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2014-02-17 22:12 - 2014-02-17 22:15 - 00000000 ____D () C:\Users\Selda\AppData\Local\VirtualStore
2014-02-17 22:12 - 2014-02-17 22:12 - 00000044 _____ () C:\Windows\system\hpsysdrv.dat
2014-02-17 22:11 - 2014-02-17 22:11 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Macromedia
2014-02-17 22:10 - 2014-03-06 19:03 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Adobe
2014-02-17 22:10 - 2014-03-01 18:21 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Hewlett-Packard
2014-02-17 22:10 - 2014-02-17 22:10 - 00000373 ____H () C:\IPH.PH
2014-02-17 22:10 - 2014-02-17 22:10 - 00000000 ____D () C:\ProgramData\Viewpoint
2014-02-17 22:10 - 2014-02-17 22:10 - 00000000 ____D () C:\Program Files\Viewpoint
2014-02-17 22:10 - 2014-02-17 22:10 - 00000000 ____D () C:\Program Files\Common Files\AOL
2014-02-17 22:10 - 2014-02-17 22:10 - 00000000 ____D () C:\Program Files\AIM6
2014-02-17 22:10 - 2008-05-25 02:54 - 00001894 _____ () C:\Users\Public\Desktop\Für Kinder.lnk
2014-02-17 22:10 - 2008-05-25 02:53 - 00002035 _____ () C:\Users\Public\Desktop\eBay.lnk
2014-02-17 22:09 - 2008-05-25 02:57 - 00001859 _____ () C:\Users\Public\Desktop\HP Total Care Advisor.lnk
2014-02-17 22:08 - 2014-02-17 22:08 - 00000000 __RSH () C:\Windows\system32\Drivers\103C_HP_cNB_Pavilion dv5 Notebook PC_Y5335KV_0U_QCNF8404NQ5_E465488-042_4A_I3600_SQuanta_V98.36_F.38_T091111_WV3-1_L407_M3069_J320_7AMD_8F31_92.20_#140217_N10EC8168;168C002A_(FV675EA#ABD)_XMOBILE_CN10_Z_2Rev 1.MRK
2014-02-17 22:07 - 2014-03-07 21:50 - 00000000 ____D () C:\Users\Selda
2014-02-17 22:07 - 2014-02-17 22:07 - 00000020 ___SH () C:\Users\Selda\ntuser.ini
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\Startmenü
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\Netzwerkumgebung
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\Druckumgebung
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\Documents\Eigene Musik
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\Documents\Eigene Bilder
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\AppData\Local\Verlauf
2014-02-17 22:07 - 2014-02-17 21:54 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2014-02-17 22:07 - 2014-02-17 21:52 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-02-17 22:07 - 2008-01-21 03:42 - 00000000 ___RD () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-17 22:07 - 2008-01-21 03:42 - 00000000 ___RD () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Programme
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-02-17 21:55 - 2014-02-17 21:55 - 00000000 ____D () C:\ProgramData\ATI
2014-02-17 21:54 - 2014-03-07 19:44 - 00000269 _____ () C:\Users\Public\Documents\hpqp.ini
2014-02-17 21:54 - 2014-02-17 21:54 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2014-02-17 21:54 - 2014-02-17 21:54 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2014-02-17 21:54 - 2014-02-17 21:54 - 00000000 ____D () C:\ProgramData\CyberLink
2014-02-17 21:54 - 2000-06-23 12:46 - 00033820 _____ () C:\Windows\WMPrfDeu.prx
2014-02-17 21:49 - 2014-02-17 21:49 - 00000000 ____D () C:\Program Files\Common Files\LightScribe
2014-02-17 21:48 - 2014-02-17 21:55 - 00000045 _____ () C:\Windows\system32\HDDTempError.log
2014-02-17 21:47 - 2014-02-17 21:47 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-02-17 21:45 - 2014-02-17 21:45 - 00000000 ____D () C:\Windows\system32\es-MX
2014-02-17 21:45 - 2014-02-17 21:45 - 00000000 ____D () C:\Windows\system32\es-AR
2014-02-17 21:45 - 2014-02-17 21:45 - 00000000 ____D () C:\Program Files\WIDCOMM
2014-02-17 21:45 - 2008-02-01 09:41 - 00233472 _____ (Broadcom Corporation.) C:\Windows\system32\BtwRSupport.dll
2014-02-17 21:45 - 2008-02-01 09:41 - 00080936 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwavdt.sys
2014-02-17 21:45 - 2008-02-01 09:41 - 00080424 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwaudio.sys
2014-02-17 21:45 - 2008-02-01 09:41 - 00016168 _____ (Broadcom Corporation.) C:\Windows\system32\Drivers\btwrchid.sys
2014-02-17 21:44 - 2014-02-17 21:44 - 00000000 ____D () C:\Program Files\AMD
2014-02-17 21:44 - 2008-01-07 21:42 - 00015416 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\Amddfltr.sys
2014-02-17 21:43 - 2014-02-17 21:43 - 00000000 ____D () C:\Windows\system32\HPMDP
2014-02-17 21:43 - 2014-02-17 21:43 - 00000000 ____D () C:\Windows\Driver Cache
2014-02-17 21:43 - 2014-02-17 21:43 - 00000000 ____D () C:\Program Files\AVerMedia
2014-02-17 21:42 - 2014-02-17 21:42 - 00000000 ____D () C:\Windows\system32\nn-NO
2014-02-17 21:42 - 2014-02-17 21:42 - 00000000 ____D () C:\ProgramData\Atheros
2014-02-17 21:42 - 2014-02-17 21:42 - 00000000 ____D () C:\Program Files\Cisco
2014-02-17 21:42 - 2014-02-17 21:42 - 00000000 ____D () C:\Program Files\Atheros
2014-02-17 21:42 - 2008-04-27 11:07 - 00909824 _____ (Atheros Communications, Inc.) C:\Windows\system32\Drivers\athr.sys
2014-02-17 21:42 - 2008-04-22 05:13 - 00376832 _____ (Atheros) C:\Windows\system32\S64CPA.exe
2014-02-17 21:42 - 2008-04-22 05:13 - 00053248 _____ (Atheros) C:\Windows\system32\athihvui.dll
2014-02-17 21:42 - 2008-04-22 05:12 - 00393216 _____ (Atheros) C:\Windows\system32\athihvs.dll
2014-02-17 21:41 - 2014-02-17 21:41 - 00000000 ____D () C:\Program Files\Realtek
2014-02-17 21:41 - 2008-04-14 20:05 - 00118784 _____ (Realtek Corporation ) C:\Windows\system32\Drivers\Rtlh86.sys
2014-02-17 21:40 - 2008-06-27 20:53 - 00376832 _____ (Andrea Electronics Corporation) C:\Windows\system32\aestecap.dll
2014-02-17 21:40 - 2008-06-27 20:53 - 00133632 _____ (Andrea Electronics Corporation) C:\Windows\system32\aestacap.dll
2014-02-17 21:40 - 2008-06-27 20:53 - 00073728 _____ (Andrea Electronics Corporation) C:\Windows\system32\AESTCom.dll
2014-02-17 21:40 - 2008-06-27 20:53 - 00053248 _____ (Andrea Electronics Corporation) C:\Windows\system32\aestaren.dll
2014-02-17 21:40 - 2008-06-27 20:42 - 00442467 _____ (IDT, Inc.) C:\Windows\sttray.exe
2014-02-17 21:40 - 2008-06-27 20:41 - 02473984 _____ (IDT, Inc.) C:\Windows\system32\stlang.dll
2014-02-17 21:40 - 2008-06-27 20:40 - 05615715 _____ (IDT, Inc.) C:\Windows\system32\idtcpl.cpl
2014-02-17 21:40 - 2008-06-27 20:40 - 00516096 _____ (IDT, Inc.) C:\Windows\system32\idtmini1.exe
2014-02-17 21:39 - 2014-02-17 21:41 - 00000000 ____D () C:\Program Files\IDT
2014-02-17 21:39 - 2014-02-17 21:39 - 00000251 _____ () C:\Windows\xUninstall.bat
2014-02-17 21:39 - 2008-06-27 20:43 - 00678400 _____ (IDT, Inc.) C:\Windows\system32\stapo.dll
2014-02-17 21:39 - 2008-06-27 20:42 - 00173568 _____ (IDT, Inc.) C:\Windows\system32\staco.dll
2014-02-17 21:39 - 2008-06-27 20:41 - 00406016 _____ (IDT, Inc.) C:\Windows\system32\stapi32.dll
2014-02-17 21:38 - 2014-02-17 21:39 - 00000000 ____D () C:\Windows\JMCR_DIR
2014-02-17 21:38 - 2014-02-17 21:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01000.Wdf
2014-02-17 21:37 - 2014-02-17 21:37 - 00000000 ____D () C:\Program Files\Synaptics
2014-02-17 21:35 - 2014-02-17 21:36 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-17 21:33 - 2014-02-17 21:33 - 00000000 ____D () C:\Program Files\ATI
2014-02-17 21:29 - 2014-03-06 10:34 - 00000012 _____ () C:\Windows\bthservsdp.dat
2014-02-17 21:28 - 2014-03-07 21:23 - 01913636 _____ () C:\Windows\WindowsUpdate.log

==================== One Month Modified Files and Folders =======

2014-03-07 21:52 - 2014-03-07 21:52 - 00018233 _____ () C:\Users\Selda\Downloads\FRST.txt
2014-03-07 21:52 - 2014-03-07 21:52 - 00000000 ____D () C:\FRST
2014-03-07 21:51 - 2014-03-07 21:51 - 01145344 _____ (Farbar) C:\Users\Selda\Downloads\FRST.exe
2014-03-07 21:50 - 2014-03-07 21:50 - 00000472 _____ () C:\Users\Selda\Downloads\defogger_disable.log
2014-03-07 21:50 - 2014-03-07 21:50 - 00000000 _____ () C:\Users\Selda\defogger_reenable
2014-03-07 21:50 - 2014-02-17 22:07 - 00000000 ____D () C:\Users\Selda
2014-03-07 21:49 - 2014-03-07 21:49 - 00050477 _____ () C:\Users\Selda\Downloads\Defogger.exe
2014-03-07 21:43 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-07 21:43 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-07 21:42 - 2014-02-17 22:13 - 00000582 _____ () C:\Windows\Tasks\Norton Internet Security - Systemprüfung ausführen - Selda.job
2014-03-07 21:31 - 2014-03-07 21:31 - 00000974 _____ () C:\Users\Selda\Desktop\test.txt
2014-03-07 21:23 - 2014-02-17 21:28 - 01913636 _____ () C:\Windows\WindowsUpdate.log
2014-03-07 21:21 - 2014-02-18 00:57 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-07 21:01 - 2014-02-18 00:57 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-07 20:55 - 2014-02-18 00:57 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-07 20:45 - 2014-02-18 00:08 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Skype
2014-03-07 19:44 - 2014-02-17 21:54 - 00000269 _____ () C:\Users\Public\Documents\hpqp.ini
2014-03-07 19:44 - 2006-11-02 13:37 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-03-07 19:43 - 2006-11-02 14:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-06 23:00 - 2014-03-04 23:54 - 00000000 ____D () C:\Users\Selda\Desktop\Hits aktuell
2014-03-06 21:02 - 2014-03-06 21:02 - 00004608 _____ () C:\Users\Selda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-06 20:25 - 2014-03-06 19:24 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Apple Computer
2014-03-06 19:25 - 2014-03-06 19:25 - 00000000 ____D () C:\Users\Selda\AppData\Local\Apple Computer
2014-03-06 19:22 - 2014-03-06 19:21 - 00000000 ____D () C:\Program Files\QuickTime
2014-03-06 19:21 - 2014-03-06 19:21 - 00001726 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-03-06 19:21 - 2014-03-06 19:21 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-03-06 19:19 - 2014-03-06 19:19 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\Users\Selda\AppData\Local\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\ProgramData\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-03-06 19:17 - 2014-03-06 19:15 - 41945432 _____ (Apple Inc.) C:\Users\Selda\Downloads\QuickTimeInstaller.exe
2014-03-06 19:08 - 2014-03-06 19:08 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\at.helbling.eversion.pamina
2014-03-06 19:07 - 2014-03-06 19:07 - 00000941 _____ () C:\Users\Public\Desktop\PaMina e-version.lnk
2014-03-06 19:07 - 2014-03-06 19:07 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-06 19:07 - 2014-03-06 19:07 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-06 19:07 - 2014-03-06 19:06 - 00000000 ____D () C:\Program Files\Helbling
2014-03-06 19:07 - 2008-05-25 02:43 - 00000000 ____D () C:\ProgramData\Adobe
2014-03-06 19:07 - 2008-05-25 02:43 - 00000000 ____D () C:\Program Files\Adobe
2014-03-06 19:06 - 2014-03-06 19:06 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-03-06 19:03 - 2014-02-17 22:10 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Adobe
2014-03-06 19:02 - 2014-02-17 23:24 - 00000000 ____D () C:\Users\Selda\AppData\Local\Adobe
2014-03-06 10:35 - 2006-11-02 14:01 - 00019530 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-06 10:34 - 2014-02-17 21:29 - 00000012 _____ () C:\Windows\bthservsdp.dat
2014-03-04 11:29 - 2014-02-18 01:00 - 00001963 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-04 00:18 - 2014-03-04 00:18 - 00000000 ____D () C:\ProgramData\HP Product Assistant
2014-03-02 17:26 - 2006-11-02 11:33 - 01565124 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-02 16:16 - 2014-03-02 16:16 - 00010484 _____ () C:\Users\Selda\Downloads\Einfuehrungsstunde Tanzen.zip
2014-03-02 16:09 - 2014-03-02 16:09 - 00023552 _____ () C:\Users\Selda\Downloads\Freies Tanzen.xls
2014-03-01 18:21 - 2014-02-17 22:10 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Hewlett-Packard
2014-03-01 15:19 - 2014-02-17 22:15 - 00000052 _____ () C:\Windows\system32\DOErrors.log
2014-03-01 15:19 - 2008-05-25 02:11 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-02-28 00:59 - 2008-05-25 01:29 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-02-28 00:46 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-27 15:00 - 2014-02-23 21:59 - 00000000 ____D () C:\ProgramData\HP
2014-02-27 14:27 - 2014-02-23 21:59 - 00146162 _____ () C:\Windows\hpoins18.dat
2014-02-27 14:27 - 2014-02-23 21:59 - 00001313 _____ () C:\ProgramData\hpzinstall.log
2014-02-27 14:26 - 2006-11-02 13:52 - 00109578 _____ () C:\Windows\setupact.log
2014-02-27 14:26 - 2006-11-02 11:23 - 00000179 _____ () C:\Windows\win.ini
2014-02-26 16:54 - 2008-01-21 03:47 - 00074270 _____ () C:\Windows\PFRO.log
2014-02-25 23:04 - 2014-02-25 23:04 - 00000000 ____D () C:\Users\Selda\Desktop\bewegungslieder
2014-02-25 22:58 - 2014-02-17 22:12 - 00000944 _____ () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-02-25 22:19 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\rescache
2014-02-25 00:52 - 2014-02-25 00:52 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-02-25 00:33 - 2008-05-25 02:27 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-25 00:24 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-25 00:19 - 2014-02-25 00:19 - 00000056 ____H () C:\Windows\system32\ezsidmv.dat
2014-02-23 22:54 - 2014-02-23 22:54 - 00000000 ____D () C:\ProgramData\WEBREG
2014-02-23 22:54 - 2014-02-23 22:29 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\HP
2014-02-23 22:31 - 2014-02-23 22:28 - 00000680 _____ () C:\Users\Selda\AppData\Local\d3d9caps.dat
2014-02-23 22:19 - 2014-02-23 22:19 - 00001870 _____ () C:\Users\Public\Desktop\Shop für HP Zubehör.lnk
2014-02-23 22:19 - 2014-02-23 22:19 - 00000000 ____D () C:\ProgramData\HPSSUPPLY
2014-02-23 22:19 - 2008-05-25 01:45 - 00000000 ____D () C:\Program Files\HP
2014-02-23 22:18 - 2014-02-23 22:18 - 00002029 _____ () C:\Users\Public\Desktop\HP Photosmart Essential.lnk
2014-02-23 22:18 - 2014-02-23 22:10 - 00000000 ____D () C:\Program Files\Common Files\HP
2014-02-23 22:14 - 2014-02-23 22:14 - 00001204 _____ () C:\Users\Public\Desktop\HP Solution Center.lnk
2014-02-23 22:11 - 2014-02-23 22:11 - 00000000 ____D () C:\Program Files\Common Files\Hewlett-Packard
2014-02-23 22:11 - 2006-11-02 13:37 - 00000000 ____D () C:\Windows\twain_32
2014-02-23 22:07 - 2008-05-25 02:55 - 00030404 _____ () C:\Windows\DPINST.LOG
2014-02-23 21:57 - 2014-02-23 21:53 - 167339144 _____ () C:\Users\Selda\Downloads\AIO_CDA_Full_Network_deu_NB.exe
2014-02-23 21:18 - 2014-02-23 21:18 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2014-02-23 19:42 - 2014-02-23 19:42 - 00387584 _____ () C:\Users\Selda\Downloads\KL_bodyparts_guessing.ppt
2014-02-23 19:42 - 2014-02-23 19:42 - 00387584 _____ () C:\Users\Selda\Downloads\KL_bodyparts_guessing (1).ppt
2014-02-23 19:42 - 2014-02-23 19:42 - 00214528 _____ () C:\Users\Selda\Downloads\KL_mybody.ppt
2014-02-23 19:41 - 2008-05-25 02:39 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-23 11:53 - 2014-02-17 22:13 - 00000000 ____D () C:\Users\Selda\AppData\Local\QuickPlay
2014-02-23 11:48 - 2006-11-02 13:47 - 00296656 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-23 11:46 - 2014-02-23 11:46 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-02-23 11:46 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\el-GR
2014-02-23 11:46 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-02-23 11:45 - 2008-05-25 11:02 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-02-23 11:45 - 2006-11-02 13:37 - 00000000 ____D () C:\Windows\system32\XPSViewer
2014-02-23 11:45 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Journal
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\uk-UA
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\th-TH
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\it-IT
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\he-IL
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\et-EE
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Program Files\Common Files\System
2014-02-23 00:49 - 2014-02-23 00:49 - 03063561 _____ (Macromedia, Inc.) C:\Users\Public\Documents\MobileTV.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02989660 _____ (Macromedia, Inc.) C:\Users\Public\Documents\DVD.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02864396 _____ (Macromedia, Inc.) C:\Users\Public\Documents\MPV.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02331174 _____ (Macromedia, Inc.) C:\Users\Public\Documents\Karaoke.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02231606 _____ (Macromedia, Inc.) C:\Users\Public\Documents\Games.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 00000021 _____ () C:\Users\Public\Documents\hpqp.txt
2014-02-23 00:49 - 2014-02-23 00:49 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\CyberLink
2014-02-23 00:49 - 2014-02-23 00:49 - 00000000 ____D () C:\Users\Public\Documents\DEU
2014-02-23 00:14 - 2008-05-25 02:54 - 00000000 ____D () C:\Program Files\EasyBits For Kids
2014-02-21 23:05 - 2014-02-17 22:12 - 00000949 _____ () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-21 23:02 - 2006-11-02 12:18 - 00000000 ___RD () C:\Windows\Offline Web Pages
2014-02-21 22:37 - 2014-02-21 18:55 - 00008448 _____ () C:\Windows\IE9_main.log
2014-02-21 22:05 - 2014-02-21 22:05 - 12345344 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-21 22:05 - 2014-02-21 22:05 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-21 22:05 - 2014-02-21 22:05 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-21 22:05 - 2014-02-21 22:05 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-21 22:05 - 2014-02-21 22:05 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-21 22:05 - 2014-02-21 22:05 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-21 22:05 - 2006-11-02 07:32 - 00008798 _____ () C:\Windows\system32\icrav03.rat
2014-02-21 22:05 - 2006-11-02 07:32 - 00001988 _____ () C:\Windows\system32\ticrf.rat
2014-02-21 22:03 - 2014-02-21 22:03 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2014-02-21 22:02 - 2014-02-21 22:02 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-02-21 22:02 - 2014-02-21 22:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2014-02-21 21:58 - 2014-02-21 21:58 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-02-21 21:50 - 2014-02-17 22:12 - 00000915 _____ () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Photo Gallery
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Defender
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Collaboration
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Calendar
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Movie Maker
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\vi-VN
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\eu-ES
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\ca-ES
2014-02-21 21:39 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\SLUI
2014-02-21 21:39 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2014-02-21 21:39 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\IME
2014-02-21 21:05 - 2014-02-21 21:05 - 00000000 ____D () C:\Windows\system32\SPReview
2014-02-21 20:20 - 2014-02-21 20:20 - 00000000 ____D () C:\Windows\system32\EventProviders
2014-02-21 20:15 - 2014-02-21 20:06 - 365230920 _____ (Microsoft Corporation) C:\Users\Selda\Downloads\Windows6.0-KB948465-X86.exe
2014-02-21 18:55 - 2014-02-21 18:55 - 18733360 _____ (Microsoft Corporation) C:\Users\Selda\Downloads\IE9-WindowsVista-x86-deu.exe
2014-02-21 18:18 - 2008-05-25 01:30 - 00000000 ____D () C:\Program Files\Norton Internet Security
2014-02-21 15:01 - 2014-02-18 00:57 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-21 15:01 - 2014-02-18 00:57 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-20 15:21 - 2014-02-17 22:13 - 00070744 _____ () C:\Users\Selda\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-20 03:38 - 2008-05-25 02:26 - 00000000 ____D () C:\Program Files\Microsoft Works
2014-02-20 03:30 - 2014-02-20 03:30 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-02-20 03:30 - 2014-02-20 03:30 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-02-20 03:25 - 2006-11-02 12:18 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-02-18 22:15 - 2014-02-18 22:15 - 00000784 _____ () C:\Windows\ie8_main.log
2014-02-18 22:12 - 2014-02-18 19:39 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Google
2014-02-18 21:06 - 2014-02-18 21:00 - 00000438 _____ () C:\Users\Selda\AppData\Roaming\wklnhst.dat
2014-02-18 21:03 - 2014-02-18 21:00 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Template
2014-02-18 19:51 - 2014-02-18 19:51 - 00000000 ____D () C:\Users\Selda\AppData\Local\Skype
2014-02-18 19:50 - 2014-02-18 19:50 - 00001880 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-18 19:50 - 2014-02-18 19:50 - 00000000 ____D () C:\Program Files\Common Files\Skype
2014-02-18 19:50 - 2014-02-18 19:49 - 00000000 ___RD () C:\Program Files\Skype
2014-02-18 19:50 - 2014-02-17 23:58 - 00000000 ____D () C:\ProgramData\Skype
2014-02-18 19:39 - 2014-02-18 00:57 - 00000000 ____D () C:\Users\Selda\AppData\Local\Google
2014-02-18 10:56 - 2008-05-25 02:40 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-02-18 10:33 - 2014-02-17 23:43 - 00000000 ____D () C:\Users\Public\Documents\Symantec
2014-02-18 07:21 - 2008-05-25 02:09 - 00000012 _____ () C:\Windows\CSUP.txt
2014-02-18 02:20 - 2014-02-18 02:20 - 00000000 ____D () C:\Windows\system32\WindowsPowerShell
2014-02-18 01:36 - 2014-02-18 01:32 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-18 01:00 - 2014-02-18 00:57 - 00000000 ____D () C:\Program Files\Google
2014-02-18 00:58 - 2014-02-18 00:57 - 00000000 ____D () C:\ProgramData\Google
2014-02-18 00:37 - 2014-02-18 00:36 - 00283642 _____ () C:\Windows\msxml4-KB954430-enu.LOG
2014-02-18 00:35 - 2014-02-18 00:34 - 00289738 _____ () C:\Windows\msxml4-KB973688-enu.LOG
2014-02-18 00:34 - 2014-02-18 00:34 - 00000000 ____D () C:\Program Files\MSXML 4.0
2014-02-18 00:17 - 2008-05-25 02:54 - 00588472 _____ (EasyBits Software AS) C:\Windows\system32\ezsvc7x.dll
2014-02-17 23:51 - 2008-05-25 01:29 - 00000000 ____D () C:\ProgramData\Symantec
2014-02-17 23:50 - 2008-05-25 01:29 - 00124464 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT.SYS
2014-02-17 23:50 - 2008-05-25 01:29 - 00010635 _____ () C:\Windows\system32\Drivers\SYMEVENT.CAT
2014-02-17 23:50 - 2008-05-25 01:29 - 00000000 ____D () C:\Program Files\Symantec
2014-02-17 23:45 - 2006-11-02 12:18 - 00000000 __RHD () C:\Users\Default
2014-02-17 23:26 - 2014-02-17 23:26 - 00000000 ____D () C:\Windows\Sun
2014-02-17 23:26 - 2014-02-17 23:26 - 00000000 ____D () C:\ProgramData\Sun
2014-02-17 23:26 - 2014-02-17 23:26 - 00000000 ____D () C:\ProgramData\Oracle
2014-02-17 23:26 - 2014-02-17 23:26 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-02-17 23:25 - 2014-02-17 23:26 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-17 23:25 - 2014-02-17 23:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-17 23:25 - 2014-02-17 23:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-17 23:24 - 2014-02-17 23:25 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-17 23:24 - 2014-02-17 23:24 - 00000000 ____D () C:\Program Files\Java
2014-02-17 23:23 - 2014-02-17 23:23 - 00000000 ____D () C:\Users\Selda\AppData\Local\AOL
2014-02-17 23:23 - 2008-05-25 02:03 - 00000049 __RSH () C:\Users\Public\Documents\HBEPGUID.TXT
2014-02-17 22:15 - 2014-02-17 22:15 - 00000000 ____D () C:\Users\Selda\AppData\Local\Hewlett-Packard
2014-02-17 22:15 - 2014-02-17 22:12 - 00000000 ____D () C:\Users\Selda\AppData\Local\VirtualStore
2014-02-17 22:14 - 2014-02-17 22:14 - 00000000 ____D () C:\Users\Selda\Documents\Bluetooth-Exchange-Ordner
2014-02-17 22:14 - 2014-02-17 22:14 - 00000000 ____D () C:\Users\Selda\Bluetooth Software
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Symantec
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\ATI
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 ____D () C:\Users\Selda\AppData\Local\ATI
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 _____ () C:\Users\Selda\AppData\Local\QSwitch.txt
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 _____ () C:\Users\Selda\AppData\Local\DSwitch.txt
2014-02-17 22:13 - 2014-02-17 22:13 - 00000000 _____ () C:\Users\Selda\AppData\Local\AtStart.txt
2014-02-17 22:12 - 2014-02-17 22:12 - 00000044 _____ () C:\Windows\system\hpsysdrv.dat
2014-02-17 22:12 - 2008-04-10 11:26 - 00000000 ____D () C:\Windows\SMINST
2014-02-17 22:12 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system
2014-02-17 22:11 - 2014-02-17 22:11 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Macromedia
2014-02-17 22:10 - 2014-02-17 22:10 - 00000373 ____H () C:\IPH.PH
2014-02-17 22:10 - 2014-02-17 22:10 - 00000000 ____D () C:\ProgramData\Viewpoint
2014-02-17 22:10 - 2014-02-17 22:10 - 00000000 ____D () C:\Program Files\Viewpoint
2014-02-17 22:10 - 2014-02-17 22:10 - 00000000 ____D () C:\Program Files\Common Files\AOL
2014-02-17 22:10 - 2014-02-17 22:10 - 00000000 ____D () C:\Program Files\AIM6
2014-02-17 22:10 - 2008-05-25 10:55 - 00000000 ___HD () C:\HP
2014-02-17 22:10 - 2008-05-25 02:11 - 00000000 ___RD () C:\Program Files\Online Services
2014-02-17 22:09 - 2006-11-02 13:37 - 00000000 ____D () C:\Windows\system32\restore
2014-02-17 22:09 - 1999-03-30 19:17 - 00000000 ___HD () C:\System.sav
2014-02-17 22:08 - 2014-02-17 22:08 - 00000000 __RSH () C:\Windows\system32\Drivers\103C_HP_cNB_Pavilion dv5 Notebook PC_Y5335KV_0U_QCNF8404NQ5_E465488-042_4A_I3600_SQuanta_V98.36_F.38_T091111_WV3-1_L407_M3069_J320_7AMD_8F31_92.20_#140217_N10EC8168;168C002A_(FV675EA#ABD)_XMOBILE_CN10_Z_2Rev 1.MRK
2014-02-17 22:07 - 2014-02-17 22:07 - 00000020 ___SH () C:\Users\Selda\ntuser.ini
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\Startmenü
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\Netzwerkumgebung
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\Druckumgebung
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\Documents\Eigene Musik
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\Documents\Eigene Bilder
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-17 22:07 - 2014-02-17 22:07 - 00000000 _SHDL () C:\Users\Selda\AppData\Local\Verlauf
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\Programme
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-02-17 22:03 - 2014-02-17 22:03 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-02-17 22:03 - 2006-11-02 12:18 - 00000000 ____D () C:\Program Files\Windows NT
2014-02-17 21:56 - 2008-05-25 11:05 - 00000000 ____D () C:\Windows\panther
2014-02-17 21:55 - 2014-02-17 21:55 - 00000000 ____D () C:\ProgramData\ATI
2014-02-17 21:55 - 2014-02-17 21:48 - 00000045 _____ () C:\Windows\system32\HDDTempError.log
2014-02-17 21:55 - 2006-11-02 13:48 - 00005506 _____ () C:\Windows\DtcInstall.log
2014-02-17 21:54 - 2014-02-17 22:07 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2014-02-17 21:54 - 2014-02-17 21:54 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2014-02-17 21:54 - 2014-02-17 21:54 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2014-02-17 21:54 - 2014-02-17 21:54 - 00000000 ____D () C:\ProgramData\CyberLink
2014-02-17 21:54 - 2008-05-25 01:27 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-02-17 21:53 - 2008-05-25 02:44 - 00000000 ____D () C:\Program Files\CyberLink
2014-02-17 21:52 - 2014-02-17 22:07 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-02-17 21:52 - 2008-05-25 02:44 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-02-17 21:52 - 2008-05-25 02:44 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
2014-02-17 21:49 - 2014-02-17 21:49 - 00000000 ____D () C:\Program Files\Common Files\LightScribe
2014-02-17 21:47 - 2014-02-17 21:47 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-02-17 21:45 - 2014-02-17 21:45 - 00000000 ____D () C:\Windows\system32\es-MX
2014-02-17 21:45 - 2014-02-17 21:45 - 00000000 ____D () C:\Windows\system32\es-AR
2014-02-17 21:45 - 2014-02-17 21:45 - 00000000 ____D () C:\Program Files\WIDCOMM
2014-02-17 21:44 - 2014-02-17 21:44 - 00000000 ____D () C:\Program Files\AMD
2014-02-17 21:43 - 2014-02-17 21:43 - 00000000 ____D () C:\Windows\system32\HPMDP
2014-02-17 21:43 - 2014-02-17 21:43 - 00000000 ____D () C:\Windows\Driver Cache
2014-02-17 21:43 - 2014-02-17 21:43 - 00000000 ____D () C:\Program Files\AVerMedia
2014-02-17 21:43 - 2008-05-25 01:22 - 00000000 ____D () C:\Program Files\Hewlett-Packard
2014-02-17 21:42 - 2014-02-17 21:42 - 00000000 ____D () C:\Windows\system32\nn-NO
2014-02-17 21:42 - 2014-02-17 21:42 - 00000000 ____D () C:\ProgramData\Atheros
2014-02-17 21:42 - 2014-02-17 21:42 - 00000000 ____D () C:\Program Files\Cisco
2014-02-17 21:42 - 2014-02-17 21:42 - 00000000 ____D () C:\Program Files\Atheros
2014-02-17 21:41 - 2014-02-17 21:41 - 00000000 ____D () C:\Program Files\Realtek
2014-02-17 21:41 - 2014-02-17 21:39 - 00000000 ____D () C:\Program Files\IDT
2014-02-17 21:39 - 2014-02-17 21:39 - 00000251 _____ () C:\Windows\xUninstall.bat
2014-02-17 21:39 - 2014-02-17 21:38 - 00000000 ____D () C:\Windows\JMCR_DIR
2014-02-17 21:38 - 2014-02-17 21:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01000.Wdf
2014-02-17 21:37 - 2014-02-17 21:37 - 00000000 ____D () C:\Program Files\Synaptics
2014-02-17 21:36 - 2014-02-17 21:35 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-02-17 21:33 - 2014-02-17 21:33 - 00000000 ____D () C:\Program Files\ATI
2014-02-17 21:30 - 2008-02-08 07:51 - 00005949 _____ () C:\Windows\TSSysprep.log

Some content of TEMP:
====================
C:\Users\Selda\AppData\Local\Temp\HPQSi.exe
C:\Users\Selda\AppData\Local\Temp\SP42277.exe
C:\Users\Selda\AppData\Local\Temp\symlcsv1.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-07 19:50

==================== End Of Log ============================
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 07-03-2014 01
Ran by at 2014-03-07 21:54:28
Running from C:\Users\\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Norton Internet Security (Enabled - Up to date) {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Enabled - Up to date) {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
FW: Norton Internet Security (Enabled) {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}

==================== Installed Programs ======================

32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version:  - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2 - Hewlett-Packard) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.7.0.19530 - Adobe Systems Incorporated)
Adobe AIR (Version: 2.7.0.19530 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Reader 8.1.0 - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-A81000000003}) (Version: 8.1.0 - Adobe Systems Incorporated)
Adobe Shockwave Player (HKLM\...\{1BDC9633-895B-4842-BCB6-8FA1EC2A3C5A}) (Version: 10.2.0.023 - Adobe Systems, Inc.)
AIM (HKLM\...\AIM_6) (Version:  - )
AIO_CDA_ProductContext (Version: 82.0.233.000 - Hewlett-Packard) Hidden
AIO_CDA_Software (Version: 82.0.233.000 - Hewlett-Packard) Hidden
AIO_Scan (Version: 82.0.173.000 - Hewlett-Packard) Hidden
AMD Driver Support for HP 3D DriverGuard (Version: 5.1.0000.0066 - Advanced Micro Devices, Inc.) Hidden
AOL Toolbar 5.0 (HKLM\...\AOL Toolbar) (Version: 5.2.69.1 - AOL LLC)
AppCore (Version: 1.3 - Symantec Corporation) Hidden
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.0 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{80C2AD19-97A2-C829-38DE-5FD5B47F122B}) (Version: 3.0.664.0 - ATI Technologies, Inc.)
AVerMedia A309 (MiniCard, DVB-T) 1.0.0.43 (HKLM\...\AVerMedia A309 (MiniCard, DVB-T)) (Version: 1.0.0.43 - AVerMedia TECHNOLOGIES, Inc.)
BufferChm (Version: 82.0.173.000 - Hewlett-Packard) Hidden
C6100 (Version: 82.0.233.000 - Hewlett-Packard) Hidden
c6100_Help (Version: 82.0.233.000 - Hewlett-Packard) Hidden
Catalyst Control Center - Branding (HKLM\...\{3FA93E4C-CB3B-4B25-B091-9DB0FCC56A74}) (Version: 1.00.0000 - ATI)
Catalyst Control Center Core Implementation (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Chinese Standard (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Czech (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Danish (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Dutch (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Finnish (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization French (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization German (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Greek (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Hungarian (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Italian (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Japanese (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Korean (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Norwegian (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Polish (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Portuguese (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Russian (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Spanish (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Swedish (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Thai (Version: 2008.0328.2322.39969 - ATI) Hidden
Catalyst Control Center Localization Turkish (Version: 2008.0328.2322.39969 - ATI) Hidden
CCC Help Chinese Standard (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Czech (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Danish (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Dutch (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help English (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Finnish (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help French (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help German (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Greek (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Hungarian (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Italian (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Japanese (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Korean (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Norwegian (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Polish (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Portuguese (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Russian (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Spanish (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Swedish (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Thai (Version: 2008.0328.2321.39969 - ATI) Hidden
CCC Help Turkish (Version: 2008.0328.2321.39969 - ATI) Hidden
ccc-core-static (Version: 2008.0328.2322.39969 - Ihr Firmenname) Hidden
ccCommon (Version: 107.0.4.3 - Symantec) Hidden
ccc-utility (Version: 2008.0328.2322.39969 - ATI) Hidden
Cisco EAP-FAST Module (HKLM\...\{415B2719-AD3A-4944-B404-C472DB6085B3}) (Version: 2.1.6 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM\...\{83770D14-21B9-44B3-8689-F7B523F94560}) (Version: 1.0.12 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM\...\{669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}) (Version: 1.0.13 - Cisco Systems, Inc.)
Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Component Framework (Version: 2006.1.3.35 - Symantec Corporation) Hidden
Copy (Version: 82.0.188.000 - Hewlett-Packard) Hidden
CustomerResearchQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
CyberLink DVD Suite (HKLM\...\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 5.5.1519 - CyberLink Corp.)
CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.0.1616 - CyberLink Corp.)
CyberLink YouCam (Version: 2.0.1616 - CyberLink Corp.) Hidden
Destinations (Version: 82.0.173.000 - Hewlett-Packard) Hidden
DeviceManagementQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
DocProc (Version: 8.1.0.0 - Hewlett-Packard) Hidden
DocProcQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
eSupportQFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Fax (Version: 82.0.188.000 - Hewlett-Packard) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 33.0.1750.146 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.4805.320 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.22.5 - Google Inc.) Hidden
HP Active Support Library (Version: 3.1.4.1 - Hewlett-Packard) Hidden
HP Customer Experience Enhancements (HKLM\...\{B16DA0F8-26BC-4FFC-9363-1D9F3E6C3E21}) (Version: 5.7.0.2630 - Hewlett-Packard)
HP Customer Participation Program 8.0 (HKLM\...\HPExtendedCapabilities) (Version: 8.0 - HP)
HP Doc Viewer (HKLM\...\{082702D5-5DD8-4600-BCE5-48B15174687F}) (Version: 1.03.0001 - Hewlett-Packard)
HP DVD Play 3.7 (HKLM\...\{45D707E9-F3C4-11D9-A373-0050BAE317E1}) (Version:  - )
HP Easy Setup - Frontend (HKLM\...\{51E5C397-0AA0-48DD-9CB6-7259AFFDFB0A}) (Version: 5.7.0.2630 - Hewlett-Packard)
HP Help and Support (HKLM\...\{28C3E5E6-5ACA-408D-9A46-089C5334EC97}) (Version: 2.0.7.0 - Hewlett-Packard)
HP Imaging Device Functions 8.0 (HKLM\...\HP Imaging Device Functions) (Version: 8.0 - HP)
HP Integrated Module with Bluetooth wireless technology 6.0.1.6200 (HKLM\...\{03D1988F-469F-4843-8E6E-E5FE9D17889D}) (Version: 6.0.1.6200 - HP)
HP OCR Software 8.0 (HKLM\...\HPOCR) (Version: 8.0 - HP)
HP Photosmart Essential (HKLM\...\{EB21A812-671B-4D08-B974-2A347F0D8F70}) (Version: 1.12.0.46 - HP)
HP Photosmart.All-In-One Driver Software 8.0 .A (HKLM\...\{282E5AB2-8E47-4571-B6FA-6B512555B557}) (Version: 8.0 - HP)
HP Product Assistant (Version: 100.000.001.000 - Hewlett-Packard) Hidden
HP Quick Launch Buttons 6.40 D3 (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.40 D3 - Hewlett-Packard)
HP QuickTouch 1.00 D2 (HKLM\...\{30DAA715-5032-40F9-A0AE-95C9AEBB3E3F}) (Version: 1.0.9 - Hewlett-Packard)
HP Solution Center 8.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 8.0 - HP)
HP Total Care Advisor (HKLM\...\{f32502b5-5b64-4882-bf61-77f23edcac4f}) (Version: 2.1.3359.2635 - Hewlett-Packard)
HP Update (HKLM\...\{C8FD5BC1-92EF-4C15-92A9-F9AC7F61985F}) (Version: 4.000.010.008 - Hewlett-Packard)
HP User Guides 0102 (HKLM\...\{F48098CD-2D66-4861-85EC-DC1D4D09D5F9}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wireless Assistant (HKLM\...\{A5CE7175-080D-49AC-B5A3-E7E3502428F5}) (Version: 3.00 I2 - Hewlett-Packard)
HPAsset component for HP Active Support Library (Version: 3.0.2.2 - Hewlett-Packard) Hidden
HPNetworkAssistant (Version: 1.1.70 - Hewlett-Packard.) Hidden
HPProductAssistant (Version: 82.0.173.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM\...\{EB75DE50-5754-4F6F-875D-126EDF8E4CB3}) (Version: 2.1.3.0000 - Ihr Firmenname)
IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.5893.0 - IDT)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JMicron JMB38X Flash Media Controller (HKLM\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.00.10.04 - JMicron Technology Corp.)
LabelPrint (HKLM\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.20.2719 - CyberLink Corp.)
LightScribe System Software  1.12.33.2 (HKLM\...\{582287DA-0806-4AC0-BF19-C15E3A466034}) (Version: 1.12.33.2 - LightScribe)
LiveUpdate (Symantec Corporation) (HKLM\...\PsuedoLiveUpdate) (Version: 3.4.1.232 - Symantec Corporation)
LiveUpdate (Symantec Corporation) (Version: 3.4.1.238 - Symantec Corporation) Hidden
MarketResearch (Version: 82.0.174.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (German) (HKLM\...\{95120000-00AF-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Works (HKLM\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My HP Games (HKLM\...\WildTangent hp Master Uninstall) (Version: 1.0.0.43 - WildTangent)
Norton AntiVirus (Version: 15.5.0.23 - Symantec Corporation) Hidden
Norton AntiVirus Help (Version: 15.0 - Symantec Corporation) Hidden
Norton Confidential Core (Version: 2.5.0.32 - Symantec Corporation) Hidden
Norton Internet Security (Symantec Corporation) (HKLM\...\SymSetup.{C1C185CA-C531-49F5-A6FA-B838405A049D}) (Version: 15.5.0.23 - Symantec Corporation)
Norton Internet Security (Version: 15.5.0.23 - Symantec Corporation) Hidden
Norton Protection Center (Version: 3.6.0.18 - Symantec Corporation) Hidden
PaMina e-version (HKLM\...\at.helbling.eversion.pamina) (Version: 4.0 - Helbling Verlag Gmbh)
PaMina e-version (Version: 4.0 - Helbling Verlag Gmbh) Hidden
Power2Go (HKLM\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.3919 - CyberLink Corp.)
PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 6.5.2719 - CyberLink Corp.)
PowerDirector (Version: 6.5.2719 - CyberLink Corp.) Hidden
ProtectSmart Hard Drive Protection (HKLM\...\{CB71A20E-B1B4-4562-81FA-33E1DBD0342F}) (Version: 3.10 A7 - Hewlett-Packard)
QuickPlay SlingPlayer 0.4.6 (HKLM\...\SlingMedia.QPSlingPlayer_is1) (Version: 0.4.6 - SlingMedia)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek 8169 8168 8101E 8102E Ethernet Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0000 - Realtek)
Scan (Version: 8.1.0.0 - Hewlett-Packard) Hidden
Skins (Version: 2008.0328.2322.39969 - ATI) Hidden
Skype™ 6.13 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.13.104 - Skype Technologies S.A.)
SolutionCenter (Version: 82.0.188.000 - Hewlett-Packard) Hidden
SPBBC 32bit (Version: 4.1.0.15 - Symantec Corporation) Hidden
Status (Version: 82.0.173.000 - Hewlett-Packard) Hidden
Symantec Real Time Storage Protection Component (Version: 10.2.3.9 - Symantec Corporation) Hidden
SymNet (Version: 8.0.3.4 - Symantec Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
Toolbox (Version: 82.0.173.000 - Hewlett-Packard) Hidden
TrayApp (Version: 82.0.188.000 - Hewlett-Packard) Hidden
UnloadSupport (Version: 1.00.0000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6FAA03BD-2B51-4029-9AD9-64A3B8E3C84C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Viewpoint Media Player (HKLM\...\ViewpointMediaPlayer) (Version:  - )
WebReg (Version: 82.0.173.000 - Hewlett-Packard) Hidden
Windows Live Messenger (HKLM\...\{279DB581-239C-4E13-97F8-0F48E40BE75C}) (Version: 8.1.0178.00 - Microsoft Corporation)

==================== Restore Points  =========================

18-02-2014 18:44:50 Windows Update
20-02-2014 02:01:15 Windows Update
20-02-2014 23:27:59 Windows Update
21-02-2014 13:55:05 Windows Update
21-02-2014 14:07:11 Windows Update
21-02-2014 19:22:54 Windows Vista™ Service Pack 2
21-02-2014 20:57:31 Windows-Modulinstallation
21-02-2014 21:05:54 Windows Update
22-02-2014 15:04:03 Windows Update
22-02-2014 23:58:09 Windows Update
23-02-2014 20:23:50 Gerätetreiber-Paketinstallation: Hewlett-Packard Bildverarbeitungsgeräte
23-02-2014 21:01:40 Gerätetreiber-Paketinstallation: Hewlett-Packard Drucker
23-02-2014 21:02:21 Gerätetreiber-Paketinstallation: Hewlett-Packard Bildverarbeitungsgeräte
23-02-2014 21:04:07 Gerätetreiber-Paketinstallation: Hewlett-Packard USB-Controller
24-02-2014 23:32:51 Windows Update
24-02-2014 23:43:21 Windows Update
25-02-2014 23:43:19 Windows Update
27-02-2014 13:37:39 Windows Update
01-03-2014 18:32:49 Geplanter Prüfpunkt
03-03-2014 23:16:38 Installed HP Product Assistant
04-03-2014 09:49:56 Windows Update
06-03-2014 18:19:33 Installed QuickTime 7
07-03-2014 18:51:05 Windows Update

==================== Hosts content: ==========================

2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (whitelisted) =============

Task: {08BE33D2-17BD-411E-801D-8D7E373998C0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3837E7C3-D0F8-4DAB-B526-87CD5A3A0791} - System32\Tasks\ExtendedServicePlan => C:\Program Files\Hewlett-Packard\SDP\RemEngine.exe [2008-04-15] ()
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {4670F04F-62FD-40D4-8610-E391CE317F10} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-21] (Adobe Systems Incorporated)
Task: {49070B72-00ED-4279-8033-C84138404505} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-02-18] (Google Inc.)
Task: {54C0AC4D-0933-46C8-932E-681089274F8A} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {6E1DEF76-D261-4612-8F93-54E710B12853} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-02-18] (Google Inc.)
Task: {8FD24EE8-F692-444E-BBE6-3921706DB98C} - System32\Tasks\HP Health Check => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15] (Hewlett-Packard)
Task: {9D3C8042-CB4E-4296-8B16-3E7D84AE0368} - System32\Tasks\Norton Internet Security - Systemprüfung ausführen - Selda => c:\Program Files\Norton Internet Security\Norton AntiVirus\Navw32.exe [2008-02-07] (Symantec Corporation)
Task: {A37AEA0E-82EF-4739-8C59-675E376B925A} - System32\Tasks\ServicePlan => C:\Program Files\Hewlett-Packard\SDP\RemEngine.exe [2008-04-15] ()
Task: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => Rundll32.exe %windir%\system32\pla.dll,PlaConvertLogEntries
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Internet Security - Systemprüfung ausführen - Selda.job => c:\Program Files\Norton Internet Security\Norton AntiVirus\Navw32.exe

==================== Loaded Modules (whitelisted) =============

2014-02-21 20:30 - 2009-04-10 23:28 - 00368640 _____ () C:\Windows\system32\msjetoledb40.dll
2008-05-25 01:45 - 2008-05-14 21:56 - 00120216 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLSchMgr.dll
2008-05-25 01:45 - 2008-05-14 21:56 - 00259480 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapEngine.dll
2008-05-25 01:45 - 2008-05-14 21:56 - 00345384 _____ () C:\Program Files\HP\QuickPlay\Kernel\TV\CLTinyDB.dll
2008-03-28 10:19 - 2008-03-28 10:19 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
2007-07-12 12:55 - 2007-07-12 12:55 - 01581056 _____ () C:\Program Files\Common Files\LightScribe\QtCore4.dll
2007-08-14 12:59 - 2007-08-14 12:59 - 06365184 _____ () C:\Program Files\Common Files\LightScribe\QtGui4.dll
2007-07-12 12:55 - 2007-07-12 12:55 - 00131072 _____ () C:\Program Files\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2008-01-16 17:51 - 2008-01-16 17:51 - 00126976 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2008-05-25 02:59 - 2008-03-26 14:26 - 00341328 _____ () C:\Windows\SMINST\BLService.exe
2008-05-25 02:59 - 2006-09-13 12:54 - 00081920 _____ () C:\Windows\SMINST\STString.dll
2008-05-25 02:59 - 2007-11-14 14:46 - 00126976 _____ () C:\Windows\SMINST\STWmiM.dll
2008-05-25 02:52 - 2007-01-09 10:25 - 00272024 _____ () C:\Program Files\CyberLink\Shared Files\RichVideo.exe
2008-05-25 01:45 - 2008-05-14 21:56 - 00066856 _____ () C:\Program Files\HP\QuickPlay\Kernel\Common\MCEMediaStatus.dll
2008-05-25 01:58 - 2008-04-11 08:04 - 00685360 _____ () C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
2008-02-27 14:48 - 2008-02-27 14:48 - 00016384 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2008-05-25 01:29 - 2008-05-25 01:29 - 01245064 _____ () C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
2008-05-25 01:29 - 2008-05-25 01:29 - 00357768 _____ () C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcnet.dll
2014-03-04 11:29 - 2014-03-02 03:35 - 00051016 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.146\chrome_elf.dll
2014-03-04 11:29 - 2014-03-02 03:35 - 04061000 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.146\pdf.dll
2014-03-04 11:29 - 2014-03-02 03:35 - 00394568 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.146\ppGoogleNaClPluginChrome.dll
2014-03-04 11:29 - 2014-03-02 03:35 - 01647432 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.146\ffmpegsumo.dll
2014-02-18 11:00 - 2014-02-18 11:00 - 04591616 _____ () C:\Users\Selda\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.5.0\libglesv2.dll
2014-02-18 11:00 - 2014-02-18 11:00 - 00112128 _____ () C:\Users\Selda\AppData\Local\Google\Chrome\User Data\SwiftShader\1.0.5.0\libegl.dll
2014-03-04 11:29 - 2014-03-02 03:35 - 13632840 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.146\PepperFlash\pepflashplayer.dll
2014-03-07 21:49 - 2014-03-07 21:49 - 00050477 _____ () C:\Users\Selda\Downloads\Defogger.exe

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (03/07/2014 07:44:20 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/06/2014 08:24:35 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/06/2014 06:26:34 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/06/2014 10:34:35 AM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (03/05/2014 04:16:18 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/04/2014 11:06:59 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/04/2014 10:34:34 PM) (Source: Application Hang) (User: )
Description: Programm hpsdpapp.exe, Version 5.7.0.2630 arbeitet nicht mehr mit Windows zusammen und wurde beendet. Überprüfen Sie den Problemverlauf im Applet "Lösungen für Probleme" in der Systemsteuerung, um nach weiteren Informationen über das Problem zu suchen.
Prozess-ID: ba8
Anfangszeit: 01cf37efede2f050
Zeitpunkt der Beendigung: 4

Error: (03/04/2014 05:05:04 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/04/2014 10:43:23 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/02/2014 05:22:16 PM) (Source: Application Error) (User: )
Description: Fehlerhafte Anwendung svchost.exe_hpqcxs08, Version 6.0.6001.18000, Zeitstempel 0x47918b89, fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode 0xc0000005, Fehleroffset 0x3e210cc4,
Prozess-ID 0xc04, Anwendungsstartzeit svchost.exe_hpqcxs080.


System errors:
=============
Error: (03/07/2014 07:44:20 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (03/07/2014 07:43:39 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 07.03.2014 um 19:36:18 unerwartet heruntergefahren.

Error: (03/06/2014 10:13:04 PM) (Source: VDS Dynamic Provider) (User: )
Description: Der Anbieter konnte Benachrichtigungen nicht speichern, die vom Treiber stammen. Der Dienst für virtuelle Datenträger muss neu gestartet werden. hr=80042505

Error: (03/06/2014 08:25:01 PM) (Source: Service Control Manager) (User: )
Description: hpqwmiex%%1053

Error: (03/06/2014 08:25:01 PM) (Source: Service Control Manager) (User: )
Description: 30000hpqwmiex

Error: (03/06/2014 08:25:01 PM) (Source: DCOM) (User: )
Description: 1053hpqwmiex{F5539356-2F02-40D4-999E-FA61F45FE12E}

Error: (03/06/2014 08:24:36 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (03/06/2014 08:23:45 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 06.03.2014 um 20:22:40 unerwartet heruntergefahren.

Error: (03/06/2014 06:26:35 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (03/06/2014 05:48:13 AM) (Source: VDS Dynamic Provider) (User: )
Description: Der Anbieter konnte Benachrichtigungen nicht speichern, die vom Treiber stammen. Der Dienst für virtuelle Datenträger muss neu gestartet werden. hr=80042505


Microsoft Office Sessions:
=========================
Error: (03/04/2014 01:23:33 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 49328 seconds with 60 seconds of active time.  This session ended with a crash.


CodeIntegrity Errors:
===================================
  Date: 2014-02-21 20:22:25.635
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-21 20:22:25.419
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-21 20:22:25.199
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-21 20:22:24.962
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-02-21 20:22:24.729
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\WINDOWS\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2008-05-25 04:07:08.008
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2008-05-25 04:07:07.992
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2008-05-25 04:07:07.992
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2008-05-25 04:07:07.976
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2008-05-25 04:07:01.222
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 70%
Total physical RAM: 3068.9 MB
Available physical RAM: 917.96 MB
Total Pagefile: 6357.81 MB
Available Pagefile: 4426.98 MB
Total Virtual: 2047.88 MB
Available Virtual: 1908.34 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:289.16 GB) (Free:206.9 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (HP_RECOVERY) (Fixed) (Total:8.92 GB) (Free:1.62 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298 GB) (Disk ID: 6F7D32D3)
Partition 1: (Active) - (Size=289 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=9 GB) - (Type=07 NTFS)

==================== End Of Log ============================
hallo schrauber,

ich habe soeben den GMER Scan durchgeführt und es traten tatsächlich Probleme auf. Zunächst schaltete sich mein Norton Virenschutz wieder ein. Damit keine Verfälschungen im Scan auftreten habe ich den Scan gestoppt, woraufhin die Fehlermedung "GMER has found system modification, which might have been caused by ROOTKIT activity". Allerdings war anders als in eurer Beschreibung, nicht die Möglichkeit des Abwählens ("No") möglich, sondern nur ein "OK" Klick. Daraufhin habe ich das Fenster mit der Meldung geschlossen und den Scan fortgeführt, da der Haken von "show all" und allen anderen Laufwerken entfernt und auf "Quickscan" gesetzt war. Allerdings kamen dann Fehlermeldungen von Programmen auf wie z.B. Skype und anderen Anwedungen. Deshalb habe ich den Scan einige Zeit später abgebrochen, nachdem sich diese Meldungen häuften. Dann erschien die Fehlermeldung mit dem ROOTKIT erneut. Den Scan bis zu diesem Zeitpunkt habe ich abgespeichert und schicke euch diesen anbei.

P.S. Der Scan hat über eine halbe Stunde gedauert, ist das üblich?

LG
pytagoras

Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-03-07 23:11:02
Windows 6.0.6002 Service Pack 2 \Device\Harddisk0\DR0 -> \Device\00000099  rev. 298,09GB
Running: Gmer-19357.exe; Driver: C:\Users\Selda\AppData\Local\Temp\ugloypob.sys


---- System - GMER 2.1 ----

SSDT            8809CEF0                                                                                                    ZwAlertResumeThread
SSDT            8809CFD0                                                                                                    ZwAlertThread
SSDT            8809C730                                                                                                    ZwAllocateVirtualMemory
SSDT            87F57D18                                                                                                    ZwAlpcConnectPort
SSDT            8809CC40                                                                                                    ZwCreateMutant
SSDT            8809D5B0                                                                                                    ZwCreateThread
SSDT            880C1F70                                                                                                    ZwDebugActiveProcess
SSDT            8809C590                                                                                                    ZwFreeVirtualMemory
SSDT            8809CD30                                                                                                    ZwImpersonateAnonymousToken
SSDT            8809CE10                                                                                                    ZwImpersonateThread
SSDT            8809C2B0                                                                                                    ZwMapViewOfSection
SSDT            8809CB60                                                                                                    ZwOpenEvent
SSDT            8804B240                                                                                                    ZwOpenProcessToken
SSDT            8809C9A0                                                                                                    ZwOpenSection
SSDT            880C1008                                                                                                    ZwOpenThreadToken
SSDT            8812E870                                                                                                    ZwResumeThread
SSDT            880C1428                                                                                                    ZwSetContextThread
SSDT            8809C120                                                                                                    ZwSetInformationProcess
SSDT            880C1338                                                                                                    ZwSetInformationThread
SSDT            8809CA80                                                                                                    ZwSuspendProcess
SSDT            880C1178                                                                                                    ZwSuspendThread
SSDT            \??\C:\Windows\system32\drivers\CO_Mon.sys                                                                  ZwTerminateProcess [0xAC37D760]
SSDT            880C1258                                                                                                    ZwTerminateThread
SSDT            8809C1F0                                                                                                    ZwUnmapViewOfSection
SSDT            8809C660                                                                                                    ZwWriteVirtualMemory

---- Kernel code sections - GMER 2.1 ----

.text           ntkrnlpa.exe!KeSetEvent + 11D                                                                               81EB1768 2 Bytes  [F0, CE] {INTO }
.text           ntkrnlpa.exe!KeSetEvent + 120                                                                               81EB176B 5 Bytes  [88, D0, CF, 09, 88]
.text           ntkrnlpa.exe!KeSetEvent + 131                                                                               81EB177C 4 Bytes  [30, C7, 09, 88]
.text           ntkrnlpa.exe!KeSetEvent + 13D                                                                               81EB1788 4 Bytes  [18, 7D, F5, 87]
.text           ntkrnlpa.exe!KeSetEvent + 1F5                                                                               81EB1840 4 Bytes  [40, CC, 09, 88]
.text           ...                                                                                                         
.text           C:\Windows\system32\DRIVERS\atikmdag.sys                                                                    section is writeable [0x9F601000, 0x1FA4DA, 0xE8000020]

---- User IAT/EAT - GMER 2.1 ----

IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown]                       [73FB7817] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage]                        [73FFB4F1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI]                    [73FBBB22] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode]              [73FAF695] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup]                        [73FB75E9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC]                     [73FAE7CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM]         [73FE73F5] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream]            [73FBDA60] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight]                    [73FAFFFA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth]                     [73FAFF61] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage]                      [73FA71CF] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM]              [7403CB00] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile]                 [73FDC8D8] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics]                    [73FAD968] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree]                              [73FA6853] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc]                             [73FA687E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll
IAT             C:\Windows\Explorer.EXE[1956] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode]                [73FB2AD1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18813_none_9e51e050ca1696a4\gdiplus.dll

---- Devices - GMER 2.1 ----

AttachedDevice  \Driver\kbdclass \Device\KeyboardClass0                                                                     Wdf01000.sys
AttachedDevice  \Driver\kbdclass \Device\KeyboardClass1                                                                     Wdf01000.sys
AttachedDevice  \Driver\tdx \Device\Tcp                                                                                     SYMTDI.SYS
AttachedDevice  \Driver\tdx \Device\Udp                                                                                     SYMTDI.SYS

---- Threads - GMER 2.1 ----

Thread          System [4:356]                                                                                              A075D26E
Thread          System [4:360]                                                                                              A0A794C6
Thread          System [4:364]                                                                                              A0A10698
---- Processes - GMER 2.1 ----

Library         C:\Users\Selda\Downloads\Gmer-19357.exe (*** hidden *** ) @ C:\Users\Selda\Downloads\Gmer-19357.exe [3820]  0x00400000                                                                                                                    

---- Registry - GMER 2.1 ----

Reg             HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002186bd27f7                                 

---- Disk sectors - GMER 2.1 ----

Disk            \Device\Harddisk0\DR0                                                                                       unknown MBR code
Disk            \Device\Harddisk0\DR0                                                                                       sector 0: rootkit-like behavior

---- EOF - GMER 2.1 ----

Alt 08.03.2014, 20:15   #5
schrauber
/// the machine
/// TB-Ausbilder
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Kommt schonmal vor.


Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.


__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 09.03.2014, 19:42   #6
pytagoras
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Code:
ATTFilter
ComboFix 14-03-05.01 - 09.03.2014  15:07:39.1.2 - x86
Microsoft® Windows Vista™ Home Premium   6.0.6002.2.1252.49.1031.18.3069.1358 [GMT 1:00]
ausgeführt von:: c:\users\\Desktop\ComboFix.exe
AV: Norton Internet Security *Enabled/Updated* {88C95A36-8C3B-2F2C-1B8B-30FCCFDC4855}
FW: Norton Internet Security *Enabled* {B0F2DB13-C654-2E74-30D4-99C9310F0F2E}
SP: Norton Internet Security *Enabled/Updated* {33A8BBD2-AA01-20A2-213B-0B8EB45B02E8}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\security\Database\tmp.edb
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-02-09 bis 2014-03-09  ))))))))))))))))))))))))))))))
.
.
2014-03-09 14:17 . 2014-03-09 14:17	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-03-09 14:03 . 2014-03-09 14:03	12568	----a-w-	c:\windows\system32\drivers\PROCEXP113.SYS
2014-03-09 11:27 . 2014-03-09 11:27	62576	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{5C52E2B1-6610-4A10-A0AC-0AC373AD59FA}\offreg.dll
2014-03-07 20:52 . 2014-03-07 20:57	--------	d-----w-	C:\FRST
2014-03-07 18:52 . 2014-02-06 07:08	7947048	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{5C52E2B1-6610-4A10-A0AC-0AC373AD59FA}\mpengine.dll
2014-03-06 18:22 . 2014-03-06 18:22	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2014-03-06 18:22 . 2014-03-06 18:22	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2014-03-06 18:22 . 2014-03-06 18:22	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2014-03-06 18:22 . 2014-03-06 18:22	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2014-03-06 18:22 . 2014-03-06 18:22	159744	----a-w-	c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2014-03-06 18:21 . 2014-03-06 18:22	--------	d-----w-	c:\program files\QuickTime
2014-03-06 18:21 . 2014-03-06 18:21	--------	d-----w-	c:\programdata\Apple Computer
2014-03-06 18:19 . 2014-03-06 18:19	--------	d-----w-	c:\program files\Common Files\Apple
2014-03-06 18:18 . 2014-03-06 18:18	--------	d-----w-	c:\program files\Apple Software Update
2014-03-06 18:18 . 2014-03-06 18:18	--------	d-----w-	c:\programdata\Apple
2014-03-06 18:06 . 2014-03-06 18:06	--------	d-----w-	c:\program files\Common Files\Adobe AIR
2014-03-06 18:06 . 2014-03-06 18:07	--------	d-----w-	c:\program files\Helbling
2014-03-03 23:18 . 2014-03-03 23:18	--------	d-----w-	c:\programdata\HP Product Assistant
2014-02-25 23:47 . 2014-02-25 23:47	--------	d-----w-	c:\windows\Migration
2014-02-24 23:33 . 2014-02-24 23:33	--------	d-----w-	c:\program files\Microsoft
2014-02-23 21:54 . 2014-02-23 21:54	--------	d-----w-	c:\programdata\WEBREG
2014-02-23 21:11 . 2014-02-23 21:11	--------	d-----w-	c:\program files\Common Files\Hewlett-Packard
2014-02-23 21:10 . 2014-02-23 21:18	--------	d-----w-	c:\program files\Common Files\HP
2014-02-23 21:05 . 2007-02-02 10:26	273920	----a-w-	c:\windows\system32\Spool\prtprocs\w32x86\hpzpp4v2.dll
2014-02-23 21:01 . 2007-02-02 10:27	117760	----a-w-	c:\windows\system32\hpz3l4v2.dll
2014-02-23 21:01 . 2005-06-20 13:33	94208	----a-w-	c:\windows\system32\HPJIPX1U.DLL
2014-02-23 21:01 . 2005-06-20 13:33	163840	----a-w-	c:\windows\system32\HPJCMN2U.DLL
2014-02-23 21:01 . 2006-06-06 13:20	241721	----a-w-	c:\windows\system32\HPBMINI.DLL
2014-02-23 21:01 . 2005-06-20 13:33	49152	----a-w-	c:\windows\system32\HPBNRAC2.DLL
2014-02-23 20:59 . 2014-02-27 14:00	--------	d-----w-	c:\programdata\HP
2014-02-23 20:58 . 2007-02-01 08:24	258048	----a-w-	c:\windows\system32\hpzids01.dll
2014-02-23 10:46 . 2014-02-23 10:46	--------	d-----w-	c:\program files\Windows Portable Devices
2014-02-23 01:00 . 2009-09-10 02:00	92672	----a-w-	c:\windows\system32\UIAnimation.dll
2014-02-23 01:00 . 2009-09-10 02:00	1164800	----a-w-	c:\windows\system32\UIRibbonRes.dll
2014-02-23 01:00 . 2009-09-10 02:01	3023360	----a-w-	c:\windows\system32\UIRibbon.dll
2014-02-23 00:14 . 2012-07-26 02:46	9728	----a-w-	c:\windows\system32\Wdfres.dll
2014-02-23 00:14 . 2012-07-26 02:33	66560	----a-w-	c:\windows\system32\drivers\WUDFPf.sys
2014-02-23 00:14 . 2012-07-26 02:32	155136	----a-w-	c:\windows\system32\drivers\WUDFRd.sys
2014-02-23 00:14 . 2012-07-26 03:20	73216	----a-w-	c:\windows\system32\WUDFSvc.dll
2014-02-23 00:14 . 2012-07-26 03:20	172032	----a-w-	c:\windows\system32\WUDFPlatform.dll
2014-02-23 00:14 . 2009-07-14 12:12	16896	----a-w-	c:\windows\system32\winusb.dll
2014-02-23 00:14 . 2012-07-26 03:39	47720	----a-w-	c:\windows\system32\drivers\WdfLdr.sys
2014-02-23 00:14 . 2012-07-26 03:21	196608	----a-w-	c:\windows\system32\WUDFHost.exe
2014-02-23 00:14 . 2012-07-26 03:20	613888	----a-w-	c:\windows\system32\WUDFx.dll
2014-02-23 00:14 . 2012-07-26 03:20	38912	----a-w-	c:\windows\system32\WUDFCoinstaller.dll
2014-02-22 15:56 . 2012-09-25 16:19	75776	----a-w-	c:\windows\system32\synceng.dll
2014-02-22 15:55 . 2011-02-22 14:13	288768	----a-w-	c:\windows\system32\XpsGdiConverter.dll
2014-02-22 15:55 . 2011-11-18 17:47	66560	----a-w-	c:\windows\system32\packager.dll
2014-02-22 15:54 . 2012-11-20 04:22	204288	----a-w-	c:\windows\system32\ncrypt.dll
2014-02-22 15:54 . 2013-03-03 19:07	1082232	----a-w-	c:\windows\system32\drivers\ntfs.sys
2014-02-22 15:54 . 2011-12-14 16:17	680448	----a-w-	c:\windows\system32\msvcrt.dll
2014-02-22 15:54 . 2013-06-29 02:07	197632	----a-w-	c:\windows\system32\drivers\usbhub.sys
2014-02-22 15:54 . 2013-06-29 02:07	73216	----a-w-	c:\windows\system32\drivers\usbccgp.sys
2014-02-22 15:54 . 2013-06-29 02:07	226304	----a-w-	c:\windows\system32\drivers\usbport.sys
2014-02-22 15:54 . 2013-06-29 02:06	6016	----a-w-	c:\windows\system32\drivers\usbd.sys
2014-02-22 15:54 . 2011-05-05 13:54	39936	----a-w-	c:\windows\system32\drivers\usbehci.sys
2014-02-22 15:54 . 2011-05-05 13:54	19456	----a-w-	c:\windows\system32\drivers\usbohci.sys
2014-02-22 15:54 . 2011-03-12 21:55	876032	----a-w-	c:\windows\system32\XpsPrint.dll
2014-02-22 15:52 . 2013-06-26 23:01	527064	----a-w-	c:\windows\system32\drivers\Wdf01000.sys
2014-02-22 15:51 . 2013-03-08 03:52	2067968	----a-w-	c:\windows\system32\mstscax.dll
2014-02-22 15:51 . 2013-07-04 04:21	532480	----a-w-	c:\windows\system32\comctl32.dll
2014-02-22 15:51 . 2012-05-01 14:03	180736	----a-w-	c:\windows\system32\drivers\rdpwd.sys
2014-02-22 15:51 . 2013-03-08 03:53	376320	----a-w-	c:\windows\system32\winsrv.dll
2014-02-22 15:51 . 2013-04-17 12:30	24576	----a-w-	c:\windows\system32\cryptdlg.dll
2014-02-22 15:51 . 2013-07-03 02:33	35328	----a-w-	c:\windows\system32\drivers\usbscan.sys
2014-02-22 15:51 . 2013-07-03 02:10	25472	----a-w-	c:\windows\system32\drivers\hidparse.sys
2014-02-22 15:51 . 2011-09-30 15:57	707584	----a-w-	c:\program files\Common Files\System\wab32.dll
2014-02-22 15:50 . 2012-06-04 15:26	440704	----a-w-	c:\windows\system32\drivers\ksecdd.sys
2014-02-22 15:50 . 2012-06-02 00:04	278528	----a-w-	c:\windows\system32\schannel.dll
2014-02-22 15:50 . 2011-11-16 16:23	72704	----a-w-	c:\windows\system32\secur32.dll
2014-02-22 15:50 . 2011-11-16 16:21	1259008	----a-w-	c:\windows\system32\lsasrv.dll
2014-02-22 15:50 . 2011-11-16 14:12	9728	----a-w-	c:\windows\system32\lsass.exe
2014-02-22 15:49 . 2010-05-04 19:13	231424	----a-w-	c:\windows\system32\msshsq.dll
2014-02-22 15:49 . 2013-02-12 01:57	15872	----a-w-	c:\windows\system32\drivers\usb8023.sys
2014-02-22 15:49 . 2013-04-09 03:52	1218048	----a-w-	c:\program files\Windows Journal\NBDoc.DLL
2014-02-22 15:49 . 2013-04-09 03:51	964608	----a-w-	c:\program files\Windows Journal\JNWDRV.dll
2014-02-22 15:49 . 2012-02-01 15:10	1404928	----a-w-	c:\program files\Common Files\Microsoft Shared\ink\InkObj.dll
2014-02-22 15:49 . 2013-04-09 03:51	983552	----a-w-	c:\program files\Windows Journal\JNTFiltr.dll
2014-02-22 15:49 . 2013-04-09 03:51	936960	----a-w-	c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2014-02-22 15:49 . 2012-02-01 13:58	47104	----a-w-	c:\program files\Windows Journal\PDIALOG.exe
2014-02-22 15:27 . 2013-07-08 04:20	172544	----a-w-	c:\windows\system32\wintrust.dll
2014-02-22 15:27 . 2013-07-08 04:16	98304	----a-w-	c:\windows\system32\cryptnet.dll
2014-02-22 15:27 . 2013-07-08 04:16	133120	----a-w-	c:\windows\system32\cryptsvc.dll
2014-02-22 15:20 . 2012-01-09 15:54	613376	----a-w-	c:\windows\system32\rdpencom.dll
2014-02-22 15:05 . 2012-06-02 22:19	53784	----a-w-	c:\windows\system32\wuauclt.exe
2014-02-22 15:05 . 2012-06-02 22:19	45080	----a-w-	c:\windows\system32\wups2.dll
2014-02-22 15:05 . 2012-06-02 22:19	1933848	----a-w-	c:\windows\system32\wuaueng.dll
2014-02-22 15:05 . 2012-06-02 22:12	2422272	----a-w-	c:\windows\system32\wucltux.dll
2014-02-22 15:05 . 2012-06-02 22:19	35864	----a-w-	c:\windows\system32\wups.dll
2014-02-22 15:05 . 2012-06-02 22:12	88576	----a-w-	c:\windows\system32\wudriver.dll
2014-02-22 15:05 . 2012-06-02 22:19	577048	----a-w-	c:\windows\system32\wuapi.dll
2014-02-22 15:04 . 2012-06-02 14:19	171904	----a-w-	c:\windows\system32\wuwebv.dll
2014-02-22 15:04 . 2012-06-02 14:12	33792	----a-w-	c:\windows\system32\wuapp.exe
2014-02-21 21:03 . 2014-02-21 21:03	979456	----a-w-	c:\windows\system32\MFH264Dec.dll
2014-02-21 21:03 . 2014-02-21 21:03	357376	----a-w-	c:\windows\system32\MFHEAACdec.dll
2014-02-21 21:03 . 2014-02-21 21:03	302592	----a-w-	c:\windows\system32\mfmp4src.dll
2014-02-21 21:03 . 2014-02-21 21:03	98816	----a-w-	c:\windows\system32\mfps.dll
2014-02-21 21:03 . 2014-02-21 21:03	586240	----a-w-	c:\windows\system32\stobject.dll
2014-02-21 21:03 . 2014-02-21 21:03	2873344	----a-w-	c:\windows\system32\mf.dll
2014-02-21 21:03 . 2014-02-21 21:03	261632	----a-w-	c:\windows\system32\mfreadwrite.dll
2014-02-21 21:03 . 2014-02-21 21:03	209920	----a-w-	c:\windows\system32\mfplat.dll
2014-02-21 21:02 . 2014-02-21 21:02	135680	----a-w-	c:\windows\system32\XpsRasterService.dll
2014-02-21 21:02 . 2014-02-21 21:02	667648	----a-w-	c:\windows\system32\printfilterpipelinesvc.exe
2014-02-21 21:02 . 2014-02-21 21:02	478720	----a-w-	c:\windows\system32\dxgi.dll
2014-02-21 21:02 . 2014-02-21 21:02	26112	----a-w-	c:\windows\system32\printfilterpipelineprxy.dll
2014-02-21 21:02 . 2014-02-21 21:02	258048	----a-w-	c:\windows\system32\winspool.drv
2014-02-21 21:02 . 2014-02-21 21:02	847360	----a-w-	c:\windows\system32\OpcServices.dll
2014-02-21 21:02 . 2014-02-21 21:02	1554432	----a-w-	c:\windows\system32\xpsservices.dll
2014-02-21 20:58 . 2014-02-21 20:58	369664	----a-w-	c:\windows\system32\WMPhoto.dll
2014-02-21 20:58 . 2014-02-21 20:58	252928	----a-w-	c:\windows\system32\dxdiag.exe
2014-02-21 20:58 . 2014-02-21 20:58	195584	----a-w-	c:\windows\system32\dxdiagn.dll
2014-02-21 20:58 . 2014-02-21 20:58	974848	----a-w-	c:\windows\system32\WindowsCodecs.dll
2014-02-21 20:58 . 2014-02-21 20:58	519680	----a-w-	c:\windows\system32\d3d11.dll
2014-02-21 20:58 . 2014-02-21 20:58	321024	----a-w-	c:\windows\system32\PhotoMetadataHandler.dll
2014-02-21 20:58 . 2014-02-21 20:58	189440	----a-w-	c:\windows\system32\WindowsCodecsExt.dll
2014-02-21 20:39 . 2014-02-21 20:39	--------	d-----w-	c:\windows\system32\ca-ES
2014-02-21 20:39 . 2014-02-21 20:39	--------	d-----w-	c:\windows\system32\eu-ES
2014-02-21 20:39 . 2014-02-21 20:39	--------	d-----w-	c:\windows\system32\vi-VN
2014-02-21 20:05 . 2014-02-21 20:05	--------	d-----w-	c:\windows\system32\SPReview
2014-02-21 19:37 . 2009-04-10 22:28	928768	----a-w-	c:\windows\system32\scavenge.dll
2014-02-21 19:36 . 2009-04-10 22:27	57856	----a-w-	c:\windows\system32\compcln.exe
2014-02-21 19:32 . 2009-04-10 22:28	31744	----a-w-	c:\windows\system32\perfdisk.dll
2014-02-21 19:31 . 2009-04-10 22:28	69632	----a-w-	c:\windows\system32\sendmail.dll
2014-02-21 19:30 . 2009-04-10 22:27	41984	----a-w-	c:\windows\system32\ftp.exe
2014-02-21 19:28 . 2009-04-10 22:33	986600	----a-w-	c:\windows\system32\winload.exe
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-02-21 20:58 . 2014-02-21 20:58	4096	----a-w-	c:\windows\system32\drivers\de-DE\dxgkrnl.sys.mui
2014-02-17 23:17 . 2008-05-25 01:54	588472	----a-w-	c:\windows\system32\ezsvc7x.dll
2014-02-17 22:50 . 2008-05-25 00:29	124464	----a-w-	c:\windows\system32\drivers\SYMEVENT.SYS
2014-01-17 15:24 . 2014-01-17 15:24	94208	----a-w-	c:\windows\system32\QuickTimeVR.qtx
2014-01-17 15:24 . 2014-01-17 15:24	69632	----a-w-	c:\windows\system32\QuickTime.qts
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-10 1233920]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-02-26 2289664]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2014-02-17 39408]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2014-01-14 20728480]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 61440]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2011-10-14 2299176]
"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2007-12-24 222504]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2008-05-14 468264]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2008-02-07 51048]
"QlbCtrl.exe"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-03-14 202032]
"OnScreenDisplay"="c:\program files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe" [2007-11-01 554288]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 40048]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2008-04-15 70912]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 49152]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-11-20 488752]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2008-06-27 442467]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2014-01-17 421888]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-1-16 727592]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-1-2 210520]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\aestsrv.exe [2008-02-12 73728]
.
.
--- Andere Dienste/Treiber im Speicher ---
.
*NewlyCreated* - COMHOST
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs	REG_MULTI_SZ   	BthServ
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	FontCache
HPZ12	REG_MULTI_SZ   	Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs
ezSharedSvc
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-02-26 13:06	451872	----a-w-	c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-04 10:21	1150280	----a-w-	c:\program files\Google\Chrome\Application\33.0.1750.146\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2014-03-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-17 14:02]
.
2014-03-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-02-17 23:57]
.
2014-03-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-02-17 23:57]
.
2014-03-07 c:\windows\Tasks\Norton Internet Security - Systemprüfung ausführen - Selda.job
- c:\program files\Norton Internet Security\Norton AntiVirus\Navw32.exe [2008-02-07 12:05]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.com/
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=de_de&c=83&bd=Pavilion&pf=cnnb
IE: &AOL Toolbar-Suche - c:\programdata\AOL\ieToolbar\resources\de-DE\local\search.html
IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.178.1
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
SafeBoot-WudfPf
SafeBoot-WudfRd
AddRemove-AVerMedia A309 (MiniCard, DVB-T) - c:\program files\AVerMedia\AVerMedia A309 (MiniCard
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2014-03-09 15:17
Windows 6.0.6002 Service Pack 2 NTFS
.
Scanne versteckte Prozesse... 
.
Scanne versteckte Autostarteinträge... 
.
Scanne versteckte Dateien... 
.
.
c:\windows\TEMP\TMP0000008E42B937B1D5A4D673 524288 bytes
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 1
.
**************************************************************************
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_70_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_70_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Zeit der Fertigstellung: 2014-03-09  15:20:25
ComboFix-quarantined-files.txt  2014-03-09 14:20
.
Vor Suchlauf: 7 Verzeichnis(se), 222.246.465.536 Bytes frei
Nach Suchlauf: 14 Verzeichnis(se), 223.048.851.456 Bytes frei
.
- - End Of File - - 18BBE12DB961E9E9561750B6BEF944F0
85D751F0E41B8E520AEE8C07A8DA777B

Alt 10.03.2014, 14:40   #7
schrauber
/// the machine
/// TB-Ausbilder
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 23.03.2014, 21:05   #8
pytagoras
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Ich habe den Malware Quick Scan durchgeführt. Allerdings kam keine Option des Ergebnisse-löschens. Ich habe mich bei dem Scan an die Anleitung gehalten.



Code:
ATTFilter
 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.03.23.08

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
S :: S-PC [Administrator]

Schutz: Aktiviert

23.03.2014 19:53:34
mbam-log-2014-03-23 (19-53-34).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 234391
Laufzeit: 15 Minute(n), 50 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
Code:
ATTFilter
# AdwCleaner v3.022 - Bericht erstellt am 23/03/2014 um 20:18:14
# Aktualisiert 13/03/2014 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Benutzername : S - S-PC
# Gestartet von : C:\Users\S\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\ViewpointA
Ordner Gelöscht : C:\Program Files\Viewpoint
Datei Gelöscht : C:\Users\Public\Desktop\eBay.lnk
Datei Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{97D69524-BB57-4185-9C7F-5F05593B771A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
Schlüssel Gelöscht : HKLM\Software\MetaStream
Schlüssel Gelöscht : HKLM\Software\Viewpoint
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer

***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16540


-\\ Google Chrome v33.0.1750.154

[ Datei : C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2777 octets] - [23/03/2014 20:16:51]
AdwCleaner[S0].txt - [2702 octets] - [23/03/2014 20:18:15]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2762 octets] ##########
Als ich das JRT laufen ließ, kam nach kürzester Zeit folgende Meldung: "A bad module has been detected! A reboot is required to remove modules" Dann hane ich mit "y" das System rebootet. Danach kam eine Meldung von meinem Norton Antivirusscanner, das "reg.exe" Veränderungen an meinen Internet Explorer Einstellungen vorgenommen hat. Diese habe ich akzeptiert, wobei ich sie auch hätte verneinen können. Dachte mir, da die Meldung direkt nach dem Scan erschien, dass das Programm evtl. Veränderungen vorgenommen haben könnte.



Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.2 (02.20.2014:1)
OS: Windows Vista (TM) Home Premium x86
Ran by S on 23.03.2014 at 20:39:43,35
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values




~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{32E69FD7-A893-44A3-9124-1A8723526FCD}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{B172245C-EEC5-4805-9477-49F2999D1362}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{32E69FD7-A893-44A3-9124-1A8723526FCD}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{B172245C-EEC5-4805-9477-49F2999D1362}



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.03.2014 at 20:46:57,43
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Alt 23.03.2014, 21:11   #9
pytagoras
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014  01
Ran by S (administrator) on S-PC on 23-03-2014 21:07:02
Running from C:\Users\Selda\Desktop
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\STacSV.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Hewlett-Packard Company) C:\Windows\system32\Hpservice.exe
(ATI Technologies Inc.) C:\Windows\system32\Ati2evxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Symantec Corporation) c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\aestsrv.exe
(CyberLink Corp.) C:\Program Files\HP\QuickPlay\QPService.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Symantec Corporation) c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehtray.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
() C:\Windows\SMINST\BLService.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
(Microsoft Corporation) C:\Windows\ehome\ehsched.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
() C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Microsoft Corporation) C:\Windows\ehome\ehRecvr.exe
(Symantec Corporation) c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
(Hewlett-Packard) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
() C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2008-01-21] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2299176 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2007-12-24] (CyberLink Corp.)
HKLM\...\Run: [QPService] - C:\Program Files\HP\QuickPlay\QPService.exe [468264 2008-05-14] (CyberLink Corp.)
HKLM\...\Run: [ccApp] - c:\Program Files\Common Files\Symantec Shared\ccApp.exe [51048 2008-02-07] (Symantec Corporation)
HKLM\...\Run: [QlbCtrl.exe] - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [202032 2008-03-14] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [OnScreenDisplay] - C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe [554288 2007-11-01] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [40048 2007-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [HP Health Check Scheduler] - c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [70912 2008-04-15] (Hewlett-Packard)
HKLM\...\Run: [HP Software Update] - C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2006-12-10] (Hewlett-Packard Co.)
HKLM\...\Run: [hpWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2007-11-20] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [442467 2008-06-27] (IDT, Inc.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKU\S-1-5-21-3714923429-2905602066-2517820217-1000\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2289664 2008-02-26] (Hewlett-Packard Company)
HKU\S-1-5-21-3714923429-2905602066-2517820217-1000\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-02-18] (Google Inc.)
HKU\S-1-5-21-3714923429-2905602066-2517820217-1000\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [20728480 2014-01-14] (Skype Technologies S.A.)
HKU\S-1-5-21-3714923429-2905602066-2517820217-1000\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKU\S-1-5-21-3714923429-2905602066-2517820217-1000\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: No Name - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\coIEPlg.dll (Symantec Corporation)
BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Common Files\Symantec Shared\IDS\IPSBHO.dll (Symantec Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: AOL Toolbar BHO - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
BHO: No Name - {7E853D72-626A-48EC-A868-BA8D5E23E045} -  No File
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.5\CoIEPlg.dll (Symantec Corporation)
Toolbar: HKCU - AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (AOL LLC)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\33.0.1750.154\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 8.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.115\npGoogleUpdate3.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.510.13) - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Java(TM) Platform SE 7 U51) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (MetaStream 3 Plugin) - C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-18]
CHR Extension: (Google Drive) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-18]
CHR Extension: (YouTube) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-18]
CHR Extension: (Google-Suche) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-18]
CHR Extension: (Google Wallet) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-18]
CHR Extension: (Google Mail) - C:\Users\Selda\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-18]

========================== Services (Whitelisted) =================

R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_f691e717\aestsrv.exe [73728 2008-02-12] (Andrea Electronics Corporation)
R2 Automatic LiveUpdate Scheduler; c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe [238968 2008-02-09] (Symantec Corporation)
R2 ccEvtMgr; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149864 2008-02-07] (Symantec Corporation)
R2 ccSetMgr; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149864 2008-02-07] (Symantec Corporation)
R2 CLTNetCnService; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149864 2008-02-07] (Symantec Corporation)
S3 comHost; c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe [55640 2007-08-22] (Symantec Corporation)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-04-15] (Hewlett-Packard)
S3 LiveUpdate; c:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE [3220856 2008-09-05] (Symantec Corporation)
R2 LiveUpdate Notice; c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [149864 2008-02-07] (Symantec Corporation)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 Recovery Service for Windows; C:\Windows\SMINST\BLService.exe [341328 2008-03-26] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-01-09] ()
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_a7e996cd\STacSV.exe [221273 2008-06-27] (IDT, Inc.)
R3 Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [1245064 2008-05-25] ()
S3 usnjsvc; C:\Program Files\MSN Messenger\usnsvc.exe [97136 2007-01-19] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R0 ahcix86s; C:\Windows\System32\DRIVERS\ahcix86s.sys [170000 2008-04-14] (AMD Technologies Inc.)
R0 Amddfltr; C:\Windows\System32\DRIVERS\Amddfltr.sys [15416 2008-01-07] (Advanced Micro Devices)
S3 COH_Mon; C:\Windows\system32\Drivers\COH_Mon.sys [23888 2008-07-30] (Symantec Corporation)
R2 CO_Mon; C:\Windows\system32\drivers\CO_Mon.sys [36056 2007-08-09] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [376920 2014-01-22] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [108120 2014-01-22] (Symantec Corporation)
S3 HpqRemHid; C:\Windows\System32\DRIVERS\HpqRemHid.sys [7168 2007-07-11] (Hewlett-Packard Development Company, L.P.)
R1 IDSvix86; C:\ProgramData\Symantec\Definitions\SymcData\ipsdefs\20140317.001\IDSvix86.sys [286328 2014-01-29] (Symantec Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R3 NAVENG; C:\ProgramData\Symantec\Definitions\VirusDefs\20140322.002\NAVENG.SYS [93272 2014-02-17] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Symantec\Definitions\VirusDefs\20140322.002\NAVEX15.SYS [1612376 2014-02-17] (Symantec Corporation)
R1 SPBBCDrv; C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [447024 2009-03-17] (Symantec Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [279088 2008-02-01] (Symantec Corporation)
S3 SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [317616 2008-02-01] (Symantec Corporation)
R1 SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [43696 2008-02-01] (Symantec Corporation)
R3 SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [13616 2009-02-19] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [124464 2014-02-17] (Symantec Corporation)
R3 SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [96560 2009-02-19] (Symantec Corporation)
R1 SymIM; C:\Windows\System32\DRIVERS\SymIMv.sys [24112 2009-02-19] (Symantec Corporation)
R3 SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [41008 2009-02-19] (Symantec Corporation)
R3 SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [22320 2009-02-19] (Symantec Corporation)
R1 SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [184496 2009-02-19] (Symantec Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 catchme; \??\C:\Users\Selda\AppData\Local\Temp\catchme.sys [X]
U1 eabfiltr; 
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-03-23 21:06 - 2014-03-23 21:06 - 00000000 ____D () C:\Users\Selda\Desktop\FRST-OlderVersion
2014-03-23 20:46 - 2014-03-23 21:06 - 00001243 _____ () C:\Users\Selda\Desktop\JRT.txt
2014-03-23 20:32 - 2014-03-23 20:32 - 00000000 ____D () C:\Windows\ERUNT
2014-03-23 20:29 - 2014-03-23 20:29 - 00002843 _____ () C:\Users\Selda\Desktop\AdwCleaner[S0].txt
2014-03-23 20:16 - 2014-03-23 20:18 - 00000000 ____D () C:\AdwCleaner
2014-03-23 19:49 - 2014-03-23 19:49 - 00000906 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-03-23 19:49 - 2014-03-23 19:49 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Malwarebytes
2014-03-23 19:49 - 2014-03-23 19:49 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-23 19:49 - 2014-03-23 19:49 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-03-23 19:49 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-23 19:47 - 2014-03-23 19:47 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Selda\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-23 19:47 - 2014-03-23 19:47 - 01950720 _____ () C:\Users\Selda\Desktop\adwcleaner.exe
2014-03-23 19:47 - 2014-03-23 19:47 - 01037734 _____ (Thisisu) C:\Users\Selda\Desktop\JRT.exe
2014-03-17 21:57 - 2014-03-17 21:57 - 00000971 _____ () C:\Users\Selda\Desktop\LibreOffice Writer.lnk
2014-03-17 18:00 - 2014-03-17 18:00 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\LibreOffice
2014-03-17 17:59 - 2014-03-17 17:59 - 00000931 _____ () C:\Users\Public\Desktop\LibreOffice 4.2.lnk
2014-03-17 17:55 - 2014-03-17 17:59 - 00000000 ____D () C:\Program Files\LibreOffice 4
2014-03-17 17:50 - 2014-03-17 17:56 - 220602368 _____ () C:\Users\Selda\Downloads\LibreOffice_4.2.2_Win_x86 (1).msi
2014-03-17 17:45 - 2014-03-17 17:50 - 220602368 _____ () C:\Users\Selda\Downloads\LibreOffice_4.2.2_Win_x86.msi
2014-03-16 20:28 - 2014-03-16 20:28 - 00000000 ____D () C:\Users\Selda\AppData\Local\Microsoft Help
2014-03-16 20:28 - 2014-03-16 20:28 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-03-16 17:23 - 2014-03-17 19:15 - 00000000 ____D () C:\Users\Selda\Desktop\Musik GUB 18.3
2014-03-12 03:02 - 2014-02-23 06:47 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-12 03:02 - 2014-02-23 06:43 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-12 03:02 - 2014-02-23 06:41 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-12 03:02 - 2014-02-23 06:40 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-12 03:02 - 2014-02-23 06:39 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-12 03:02 - 2014-02-23 06:38 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-03-12 03:02 - 2014-02-23 06:38 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-12 03:02 - 2014-02-23 06:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-12 03:02 - 2014-02-23 06:37 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-12 03:02 - 2014-02-23 06:37 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-03-12 03:02 - 2014-02-23 06:37 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-12 03:02 - 2014-02-23 06:37 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-12 03:02 - 2014-02-23 06:36 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-12 03:02 - 2014-02-23 06:36 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-03-12 03:02 - 2014-02-23 06:35 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-12 03:01 - 2014-02-23 06:50 - 12347904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-11 22:45 - 2014-03-11 22:45 - 00545280 _____ () C:\Users\Selda\Desktop\bewegungslieder geschnitten.MSWMM
2014-03-11 21:28 - 2014-03-11 21:28 - 00000000 ____D () C:\ProgramData\WindowsSearch
2014-03-11 20:55 - 2014-02-07 11:38 - 02050560 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-11 20:55 - 2014-02-03 11:37 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-11 20:54 - 2014-01-30 08:46 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-11 20:54 - 2013-11-13 01:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-03-11 20:47 - 2014-03-11 20:47 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Printer Info Cache
2014-03-11 20:47 - 2014-03-11 20:47 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Image Zone Express
2014-03-10 23:44 - 2014-03-10 23:45 - 00531440 _____ () C:\Users\Selda\Downloads\Outlook (1).zip
2014-03-10 23:44 - 2014-03-10 23:44 - 00531430 _____ () C:\Users\Selda\Downloads\Outlook.zip
2014-03-09 21:28 - 2014-03-11 20:57 - 00000000 ____D () C:\Users\Selda\Downloads\mamas bewerbung
2014-03-09 21:27 - 2014-03-09 21:27 - 00026234 _____ () C:\Users\Selda\Downloads\mamas bewerbung.zip
2014-03-09 16:22 - 2014-03-09 16:22 - 00020376 _____ () C:\Users\Selda\Desktop\zweiter scan.txt
2014-03-09 15:20 - 2014-03-09 15:20 - 00020376 _____ () C:\ComboFix.txt
2014-03-09 15:05 - 2014-03-09 15:20 - 00000000 ____D () C:\ComboFix
2014-03-09 15:05 - 2011-06-26 07:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-03-09 15:05 - 2010-11-07 18:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-03-09 15:05 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-03-09 15:05 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-03-09 15:05 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-03-09 15:05 - 2000-08-31 01:00 - 00098816 _____ () C:\Windows\sed.exe
2014-03-09 15:05 - 2000-08-31 01:00 - 00080412 _____ () C:\Windows\grep.exe
2014-03-09 15:05 - 2000-08-31 01:00 - 00068096 _____ () C:\Windows\zip.exe
2014-03-09 15:03 - 2014-03-09 15:20 - 00000000 ____D () C:\Qoobox
2014-03-09 15:03 - 2014-03-09 15:18 - 00000000 ____D () C:\Windows\erdnt
2014-03-09 15:03 - 2014-03-09 15:03 - 00012568 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCEXP113.SYS
2014-03-09 14:49 - 2014-03-09 14:52 - 05187267 ____R (Swearware) C:\Users\Selda\Desktop\ComboFix.exe
2014-03-09 13:50 - 2014-03-09 13:51 - 00000000 ____D () C:\Users\Selda\Desktop\Referendariat
2014-03-07 23:11 - 2014-03-07 23:11 - 00011164 _____ () C:\Users\Selda\Desktop\gmer.log
2014-03-07 21:59 - 2014-03-07 21:59 - 00380416 _____ () C:\Users\Selda\Desktop\Gmer-19357.exe
2014-03-07 21:54 - 2014-03-07 21:57 - 00035626 _____ () C:\Users\Selda\Desktop\Addition.txt
2014-03-07 21:52 - 2014-03-23 21:07 - 00017552 _____ () C:\Users\Selda\Desktop\FRST.txt
2014-03-07 21:52 - 2014-03-23 21:07 - 00000000 ____D () C:\FRST
2014-03-07 21:51 - 2014-03-23 21:06 - 01145856 _____ (Farbar) C:\Users\Selda\Desktop\FRST.exe
2014-03-07 21:50 - 2014-03-07 21:50 - 00000472 _____ () C:\Users\Selda\Desktop\defogger_disable.log
2014-03-07 21:50 - 2014-03-07 21:50 - 00000000 _____ () C:\Users\Selda\defogger_reenable
2014-03-07 21:49 - 2014-03-07 21:49 - 00050477 _____ () C:\Users\Selda\Desktop\Defogger.exe
2014-03-07 21:31 - 2014-03-07 21:31 - 00000974 _____ () C:\Users\Selda\Desktop\test.txt
2014-03-06 21:02 - 2014-03-06 21:02 - 00004608 _____ () C:\Users\Selda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-06 19:25 - 2014-03-06 19:25 - 00000000 ____D () C:\Users\Selda\AppData\Local\Apple Computer
2014-03-06 19:24 - 2014-03-06 20:25 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Apple Computer
2014-03-06 19:21 - 2014-03-06 19:22 - 00000000 ____D () C:\Program Files\QuickTime
2014-03-06 19:21 - 2014-03-06 19:21 - 00001726 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-03-06 19:21 - 2014-03-06 19:21 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-03-06 19:19 - 2014-03-06 19:19 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\Users\Selda\AppData\Local\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\ProgramData\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-03-06 19:15 - 2014-03-06 19:17 - 41945432 _____ (Apple Inc.) C:\Users\Selda\Downloads\QuickTimeInstaller.exe
2014-03-06 19:08 - 2014-03-16 16:54 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\at.helbling.eversion.pamina
2014-03-06 19:07 - 2014-03-06 19:07 - 00000941 _____ () C:\Users\Public\Desktop\PaMina e-version.lnk
2014-03-06 19:07 - 2014-03-06 19:07 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-06 19:07 - 2014-03-06 19:07 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-06 19:06 - 2014-03-16 16:44 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR
2014-03-06 19:06 - 2014-03-06 19:07 - 00000000 ____D () C:\Program Files\Helbling
2014-03-04 23:54 - 2014-03-06 23:00 - 00000000 ____D () C:\Users\Selda\Desktop\Hits aktuell
2014-03-04 00:18 - 2014-03-04 00:18 - 00000000 ____D () C:\ProgramData\HP Product Assistant
2014-03-02 16:16 - 2014-03-02 16:16 - 00010484 _____ () C:\Users\Selda\Downloads\Einfuehrungsstunde Tanzen.zip
2014-03-02 16:09 - 2014-03-02 16:09 - 00023552 _____ () C:\Users\Selda\Downloads\Freies Tanzen.xls
2014-02-27 16:37 - 2014-02-27 16:37 - 00773968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100.dll
2014-02-27 16:37 - 2014-02-27 16:37 - 00421200 _____ (Microsoft Corporation) C:\Windows\system32\msvcp100.dll
2014-02-25 23:04 - 2014-02-25 23:04 - 00000000 ____D () C:\Users\Selda\Desktop\bewegungslieder
2014-02-25 00:52 - 2014-02-25 00:52 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-02-25 00:19 - 2014-02-25 00:19 - 00000056 ____H () C:\Windows\system32\ezsidmv.dat
2014-02-23 22:54 - 2014-02-23 22:54 - 00000000 ____D () C:\ProgramData\WEBREG
2014-02-23 22:29 - 2014-02-23 22:54 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\HP
2014-02-23 22:28 - 2014-02-23 22:31 - 00000680 _____ () C:\Users\Selda\AppData\Local\d3d9caps.dat
2014-02-23 22:19 - 2014-02-23 22:19 - 00001870 _____ () C:\Users\Public\Desktop\Shop für HP Zubehör.lnk
2014-02-23 22:19 - 2014-02-23 22:19 - 00000000 ____D () C:\ProgramData\HPSSUPPLY
2014-02-23 22:18 - 2014-02-23 22:18 - 00002029 _____ () C:\Users\Public\Desktop\HP Photosmart Essential.lnk
2014-02-23 22:14 - 2014-02-23 22:14 - 00001204 _____ () C:\Users\Public\Desktop\HP Solution Center.lnk
2014-02-23 22:11 - 2014-02-23 22:11 - 00000000 ____D () C:\Program Files\Common Files\Hewlett-Packard
2014-02-23 22:10 - 2014-02-23 22:18 - 00000000 ____D () C:\Program Files\Common Files\HP
2014-02-23 22:01 - 2007-02-02 11:27 - 00117760 _____ (Hewlett-Packard Company) C:\Windows\system32\hpz3l4v2.dll
2014-02-23 22:01 - 2006-11-02 19:32 - 00018747 _____ () C:\Windows\system32\HPCEAC06.HPI
2014-02-23 22:01 - 2006-06-06 14:20 - 00241721 _____ (Hewlett-Packard) C:\Windows\system32\HPBMINI.DLL
2014-02-23 22:01 - 2005-06-20 14:33 - 00163840 _____ (Hewlett-Packard) C:\Windows\system32\HPJCMN2U.DLL
2014-02-23 22:01 - 2005-06-20 14:33 - 00094208 _____ (Hewlett-Packard) C:\Windows\system32\HPJIPX1U.DLL
2014-02-23 22:01 - 2005-06-20 14:33 - 00049152 _____ (Hewlett-Packard) C:\Windows\system32\HPBNRAC2.DLL
2014-02-23 21:59 - 2014-02-27 15:00 - 00000000 ____D () C:\ProgramData\HP
2014-02-23 21:59 - 2014-02-27 14:27 - 00146162 _____ () C:\Windows\hpoins18.dat
2014-02-23 21:59 - 2014-02-27 14:27 - 00001313 _____ () C:\ProgramData\hpzinstall.log
2014-02-23 21:58 - 2007-03-01 01:05 - 00006600 _____ () C:\Windows\hpomdl18.dat
2014-02-23 21:58 - 2007-02-01 09:24 - 00258048 _____ (Hewlett-Packard) C:\Windows\system32\hpzids01.dll
2014-02-23 21:53 - 2014-02-23 21:57 - 167339144 _____ () C:\Users\Selda\Downloads\AIO_CDA_Full_Network_deu_NB.exe
2014-02-23 21:18 - 2014-02-23 21:18 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2014-02-23 19:42 - 2014-02-23 19:42 - 00387584 _____ () C:\Users\Selda\Downloads\KL_bodyparts_guessing.ppt
2014-02-23 19:42 - 2014-02-23 19:42 - 00387584 _____ () C:\Users\Selda\Downloads\KL_bodyparts_guessing (1).ppt
2014-02-23 19:42 - 2014-02-23 19:42 - 00214528 _____ () C:\Users\Selda\Downloads\KL_mybody.ppt
2014-02-23 11:46 - 2014-02-23 11:46 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-02-23 02:00 - 2009-09-10 03:01 - 03023360 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2014-02-23 02:00 - 2009-09-10 03:00 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbonRes.dll
2014-02-23 02:00 - 2009-09-10 03:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-02-23 01:59 - 2009-10-01 02:02 - 02537472 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2014-02-23 01:59 - 2009-10-01 02:02 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2014-02-23 01:59 - 2009-10-01 02:02 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2014-02-23 01:59 - 2009-10-01 02:02 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\BthMtpContextHandler.dll
2014-02-23 01:59 - 2009-10-01 02:02 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\WPDShextAutoplay.exe
2014-02-23 01:59 - 2009-10-01 02:01 - 00546816 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceWMDRM.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceTypes.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceClassExtension.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2014-02-23 01:59 - 2009-10-01 02:01 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceConnectApi.dll
2014-02-23 01:14 - 2012-07-26 04:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-02-23 01:14 - 2012-07-26 04:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-02-23 01:14 - 2012-07-26 04:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-02-23 01:14 - 2012-07-26 04:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-02-23 01:14 - 2012-07-26 04:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-02-23 01:14 - 2012-07-26 04:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-02-23 01:14 - 2012-07-26 03:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-02-23 01:14 - 2012-07-26 03:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-02-23 01:14 - 2012-07-26 03:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-02-23 01:14 - 2012-06-02 15:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-02-23 01:14 - 2009-07-14 13:12 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\winusb.dll
2014-02-23 00:49 - 2014-02-23 00:49 - 03063561 _____ (Macromedia, Inc.) C:\Users\Public\Documents\MobileTV.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02989660 _____ (Macromedia, Inc.) C:\Users\Public\Documents\DVD.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02864396 _____ (Macromedia, Inc.) C:\Users\Public\Documents\MPV.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02331174 _____ (Macromedia, Inc.) C:\Users\Public\Documents\Karaoke.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02231606 _____ (Macromedia, Inc.) C:\Users\Public\Documents\Games.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 00000021 _____ () C:\Users\Public\Documents\hpqp.txt
2014-02-23 00:49 - 2014-02-23 00:49 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\CyberLink
2014-02-23 00:49 - 2014-02-23 00:49 - 00000000 ____D () C:\Users\Public\Documents\DEU
2014-02-22 16:57 - 2013-08-27 03:47 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-02-22 16:57 - 2013-08-27 03:47 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-02-22 16:57 - 2013-08-27 03:47 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-02-22 16:57 - 2013-08-27 03:47 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-02-22 16:57 - 2013-08-27 02:52 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-22 16:57 - 2013-08-27 02:50 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-02-22 16:57 - 2013-08-27 02:32 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-22 16:57 - 2013-08-27 02:28 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-02-22 16:57 - 2013-08-27 02:28 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-02-22 16:57 - 2013-08-01 04:16 - 00638400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-22 16:57 - 2013-08-01 03:49 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-02-22 16:57 - 2013-07-20 11:44 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-02-22 16:57 - 2013-06-15 14:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2014-02-22 16:57 - 2013-06-15 12:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-02-22 16:57 - 2012-05-11 16:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-02-22 16:57 - 2011-10-14 17:03 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-02-22 16:57 - 2011-10-14 17:00 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\mciseq.dll
2014-02-22 16:57 - 2011-07-29 17:01 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-02-22 16:57 - 2011-07-29 17:01 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-02-22 16:57 - 2011-07-29 17:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Mpeg2Data.ax
2014-02-22 16:57 - 2011-07-29 17:00 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\MSDvbNP.ax
2014-02-22 16:57 - 2011-04-21 14:55 - 00508416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2014-02-22 16:57 - 2009-06-17 14:23 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2014-02-22 16:56 - 2013-12-05 03:12 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-22 16:56 - 2013-10-30 03:12 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\SysFxUI.dll
2014-02-22 16:56 - 2013-10-30 02:43 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-02-22 16:56 - 2013-10-30 01:43 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-02-22 16:56 - 2013-07-10 10:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-02-22 16:56 - 2013-07-05 05:53 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-02-22 16:56 - 2012-11-02 11:18 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-02-22 16:56 - 2012-11-02 09:26 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2014-02-22 16:56 - 2012-09-25 17:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-02-22 16:56 - 2012-08-21 12:47 - 00224640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-02-22 16:56 - 2012-06-29 17:01 - 00467968 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-02-22 16:56 - 2012-06-08 18:47 - 11586048 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-02-22 16:56 - 2012-03-21 00:28 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-02-22 16:56 - 2011-10-14 17:02 - 00429056 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-02-22 16:55 - 2011-11-18 18:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-02-22 16:55 - 2011-02-22 15:13 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-02-22 16:54 - 2013-06-29 03:07 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-02-22 16:54 - 2013-06-29 03:07 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-02-22 16:54 - 2013-06-29 03:07 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-02-22 16:54 - 2013-06-29 03:06 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-02-22 16:54 - 2013-03-03 20:07 - 01082232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-02-22 16:54 - 2012-11-20 05:22 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-02-22 16:54 - 2012-09-28 17:11 - 00892928 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-02-22 16:54 - 2011-12-14 17:17 - 00680448 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-02-22 16:54 - 2011-05-05 14:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-02-22 16:54 - 2011-05-05 14:54 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-02-22 16:54 - 2011-03-12 22:55 - 00876032 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-02-22 16:53 - 2013-10-11 03:08 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-02-22 16:53 - 2013-10-11 03:08 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-02-22 16:53 - 2013-10-11 03:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wshcon.dll
2014-02-22 16:53 - 2013-10-11 01:35 - 00155648 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-02-22 16:53 - 2013-10-11 01:35 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-02-22 16:53 - 2013-10-03 13:45 - 00993792 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-02-22 16:53 - 2013-10-03 13:45 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-02-22 16:53 - 2013-08-02 05:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-02-22 16:53 - 2013-07-12 10:04 - 00134272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-02-22 16:53 - 2013-05-02 05:04 - 00443904 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-02-22 16:53 - 2013-05-02 05:03 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\printcom.dll
2014-02-22 16:53 - 2013-04-24 05:00 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-02-22 16:53 - 2013-04-24 02:46 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-02-22 16:53 - 2012-11-22 04:54 - 00353280 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2014-02-22 16:53 - 2012-11-08 04:48 - 01314816 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-02-22 16:53 - 2012-11-02 11:19 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-02-22 16:52 - 2013-10-22 08:19 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-02-22 16:52 - 2013-10-11 03:08 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-02-22 16:52 - 2013-10-11 03:07 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-02-22 16:52 - 2013-10-11 01:39 - 00218228 _____ () C:\Windows\system32\WFP.TMF
2014-02-22 16:52 - 2013-07-16 05:35 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-02-22 16:52 - 2013-07-09 13:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-02-22 16:52 - 2013-07-08 05:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-02-22 16:52 - 2013-07-08 05:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-02-22 16:52 - 2013-06-27 00:01 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-02-22 16:52 - 2013-06-04 05:16 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-02-22 16:52 - 2013-06-04 02:49 - 00293376 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-02-22 16:52 - 2013-03-09 04:45 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-02-22 16:52 - 2013-03-09 02:28 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-02-22 16:52 - 2012-02-29 16:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-02-22 16:52 - 2012-02-29 14:32 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-02-22 16:52 - 2011-11-16 17:23 - 00377344 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2014-02-22 16:52 - 2011-10-25 16:58 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-02-22 16:52 - 2011-08-25 17:15 - 00555520 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2014-02-22 16:52 - 2011-08-25 17:14 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-02-22 16:52 - 2011-08-25 17:14 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-02-22 16:52 - 2011-08-25 14:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\oleaccrc.dll
2014-02-22 16:51 - 2013-07-04 05:21 - 00532480 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-02-22 16:51 - 2013-07-03 03:33 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2014-02-22 16:51 - 2013-07-03 03:10 - 00025472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-02-22 16:51 - 2013-04-17 13:30 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-02-22 16:51 - 2013-03-08 04:53 - 00376320 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-02-22 16:51 - 2013-03-08 04:52 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-22 16:51 - 2012-05-01 15:03 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-02-22 16:51 - 2011-06-15 17:12 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-02-22 16:50 - 2012-06-04 16:26 - 00440704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-02-22 16:50 - 2012-06-02 01:04 - 00278528 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-02-22 16:50 - 2011-11-16 17:23 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-02-22 16:50 - 2011-11-16 17:21 - 01259008 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-02-22 16:50 - 2011-11-16 15:12 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-02-22 16:49 - 2013-02-12 02:57 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-02-22 16:49 - 2010-05-04 20:13 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\msshsq.dll
2014-02-22 16:27 - 2013-07-08 05:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-02-22 16:27 - 2013-07-08 05:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-02-22 16:27 - 2013-07-08 05:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-02-22 16:20 - 2012-01-09 16:54 - 00613376 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-02-22 16:05 - 2012-06-02 23:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-02-22 16:05 - 2012-06-02 23:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-02-22 16:05 - 2012-06-02 23:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-02-22 16:05 - 2012-06-02 23:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-02-22 16:05 - 2012-06-02 23:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-02-22 16:05 - 2012-06-02 23:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-02-22 16:05 - 2012-06-02 23:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-02-22 16:04 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-02-22 16:04 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-21 22:05 - 2014-02-21 22:05 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-21 22:05 - 2014-02-21 22:05 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-21 22:05 - 2014-02-21 22:05 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-21 22:03 - 2014-02-21 22:03 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2014-02-21 22:02 - 2014-02-21 22:02 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-02-21 22:02 - 2014-02-21 22:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2014-02-21 21:58 - 2014-02-21 21:58 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\vi-VN
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\eu-ES
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\ca-ES
2014-02-21 21:05 - 2014-02-21 21:05 - 00000000 ____D () C:\Windows\system32\SPReview
2014-02-21 20:37 - 2009-04-10 23:28 - 00928768 _____ (Microsoft Corporation) C:\Windows\system32\scavenge.dll
2014-02-21 20:36 - 2009-04-10 23:27 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\compcln.exe
2014-02-21 20:33 - 2009-04-10 23:28 - 00550400 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00483328 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00441344 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-02-21 20:33 - 2009-04-10 23:28 - 00324608 _____ (Microsoft Corporation) C:\Windows\system32\sdohlp.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00306176 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-02-21 20:33 - 2009-04-10 23:28 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\scksp.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\SCardSvr.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-02-21 20:33 - 2009-04-10 23:28 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2014-02-21 20:33 - 2009-04-10 23:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\rtffilt.dll
2014-02-21 20:33 - 2009-04-10 23:27 - 00241128 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2014-02-21 20:33 - 2009-04-10 21:46 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-02-21 20:33 - 2009-04-10 21:45 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2014-02-21 20:32 - 2009-04-10 23:32 - 00149480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2014-02-21 20:32 - 2009-04-10 23:32 - 00050664 _____ (Microsoft Corporation) C:\Windows\system32\PSHED.DLL
2014-02-21 20:32 - 2009-04-10 23:32 - 00043496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciidex.sys
2014-02-21 20:32 - 2009-04-10 23:32 - 00014312 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pciide.sys
2014-02-21 20:32 - 2009-04-10 23:28 - 02153472 _____ (Microsoft Corporation) C:\Windows\system32\oobefldr.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 01823744 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 01541120 _____ (Microsoft Corporation) C:\Windows\system32\onex.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 01381376 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 01107968 _____ (Microsoft Corporation) C:\Windows\system32\pidgenx.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00869888 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00825856 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00644608 _____ (Microsoft Corporation) C:\Windows\system32\p2psvc.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00642560 _____ (Microsoft Corporation) C:\Windows\system32\rasgcw.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00551936 _____ (Microsoft Corporation) C:\Windows\system32\prnntfy.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\pnpui.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00464384 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rasplap.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\RelMon.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\P2PGraph.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\QAGENTRT.DLL
2014-02-21 20:32 - 2009-04-10 23:28 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\ntprint.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\offfilt.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\pnpsetup.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\puiapi.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\rasmontr.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\nlhtml.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\ntmarta.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\regsvc.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\powrprof.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\oleprn.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\propdefs.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\PNPXAssoc.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\odbcconf.dll
2014-02-21 20:32 - 2009-04-10 23:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\perfdisk.dll
2014-02-21 20:32 - 2009-04-10 23:27 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\PhotoScreensaver.scr
2014-02-21 20:32 - 2009-04-10 23:27 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\PresentationSettings.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\PkgMgr.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\nslookup.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\reg.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\PnPUnattend.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\rekeywiz.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\ocsetup.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\PnPutil.exe
2014-02-21 20:32 - 2009-04-10 23:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\rasdial.exe
2014-02-21 20:32 - 2009-04-10 23:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2014-02-21 20:32 - 2009-04-10 23:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2014-02-21 20:32 - 2009-04-10 23:23 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2014-02-21 20:32 - 2009-04-10 23:23 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2014-02-21 20:32 - 2009-04-10 22:03 - 12240896 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0007.dll
2014-02-21 20:32 - 2009-04-10 22:03 - 02644480 _____ (Microsoft Corporation) C:\Windows\system32\NlsLexicons0009.dll
2014-02-21 20:32 - 2009-04-10 21:46 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rassstp.sys
2014-02-21 20:32 - 2009-04-10 21:46 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\raspppoe.sys
2014-02-21 20:32 - 2009-04-10 21:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pacer.sys
2014-02-21 20:32 - 2009-04-10 21:43 - 00392170 _____ () C:\Windows\system32\onex.tmf
2014-02-21 20:32 - 2009-04-10 21:43 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2014-02-21 20:32 - 2009-04-10 21:43 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\nwifi.sys
2014-02-21 20:32 - 2009-04-10 21:43 - 00062208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ohci1394.sys
2014-02-21 20:32 - 2009-04-10 21:14 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2014-02-21 20:32 - 2009-04-10 21:14 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2014-02-21 20:32 - 2009-02-19 17:20 - 00009212 _____ () C:\Windows\system32\RacUR.xml
2014-02-21 20:32 - 2009-02-18 11:43 - 00000153 _____ () C:\Windows\system32\RacUREx.xml
2014-02-21 20:32 - 2009-02-18 11:39 - 00779136 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2014-02-21 20:31 - 2009-04-10 23:32 - 00190424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fltMgr.sys
2014-02-21 20:31 - 2009-04-10 23:32 - 00141288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ecache.sys
2014-02-21 20:31 - 2009-04-10 23:32 - 00053736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2014-02-21 20:31 - 2009-04-10 23:32 - 00027624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Dumpata.sys
2014-02-21 20:31 - 2009-04-10 23:28 - 01591296 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 01459200 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 01078784 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00978432 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\sethc.exe
2014-02-21 20:31 - 2009-04-10 23:28 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\emdmgmt.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\IasMigReader.exe
2014-02-21 20:31 - 2009-04-10 23:28 - 00454144 _____ (Microsoft) C:\Windows\system32\IasMigPlugin.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00444416 _____ (Microsoft Corporation) C:\Windows\system32\dsound.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\devmgr.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00279552 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2014-02-21 20:31 - 2009-04-10 23:28 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\es.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00204288 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\dot3svc.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00153088 _____ (Microsoft Corporation) C:\Windows\system32\fundisc.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iasnap.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\fontext.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00137728 _____ (Microsoft Corporation) C:\Windows\system32\dsprop.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\EhStorAPI.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00117248 _____ () C:\Windows\system32\EhStorAuthn.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\EhStorShell.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\dmsynth.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\dmusic.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\fdBth.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\gpapi.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\dot3msm.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\iashlpr.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\sendmail.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\fdSSDP.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\fdWSD.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\iasacct.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\iasads.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\feclient.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\fdeploy.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\dot3cfg.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\iasdatastore.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\hbaapi.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\EhStorPwdMgr.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\hidserv.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\fdProxy.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2014-02-21 20:31 - 2009-04-10 23:28 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\fdBthProxy.dll
2014-02-21 20:31 - 2009-04-10 23:27 - 02926592 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 02092544 _____ (Microsoft Corporation) C:\Windows\system32\dfsr.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00407040 _____ (Microsoft Corporation) C:\Windows\system32\dpapimig.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\diskraid.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\eudcedit.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\drvinst.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\gpresult.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\diskpart.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\dwm.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\hdwwiz.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\findstr.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\fc.exe
2014-02-21 20:31 - 2009-04-10 23:27 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\gpupdate.exe
2014-02-21 20:31 - 2009-04-10 23:22 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\f3ahvoas.dll
2014-02-21 20:31 - 2009-04-10 21:48 - 00344698 _____ () C:\Windows\system32\eaphost.tmf
2014-02-21 20:31 - 2009-04-10 21:43 - 00442788 _____ () C:\Windows\system32\dot3.tmf
2014-02-21 20:31 - 2009-04-10 21:43 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2014-02-21 20:31 - 2009-04-10 21:42 - 00561152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-02-21 20:31 - 2009-04-10 21:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-02-21 20:31 - 2009-04-10 21:39 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-02-21 20:31 - 2009-04-10 21:23 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxg.sys
2014-02-21 20:31 - 2009-04-10 21:13 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fastfat.sys
2014-02-21 20:31 - 2009-04-10 21:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\exfat.sys
2014-02-21 20:30 - 2009-04-10 23:33 - 00614376 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-02-21 20:30 - 2009-04-10 23:32 - 00527848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00265688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00245736 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00223208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00180712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00161752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msrpc.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00125928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00109032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00099816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-02-21 20:30 - 2009-04-10 23:32 - 00048104 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mup.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00035304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2014-02-21 20:30 - 2009-04-10 23:32 - 00019944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\atapi.sys
2014-02-21 20:30 - 2009-04-10 23:28 - 06103040 _____ (Microsoft Corporation) C:\Windows\system32\chtbrkr.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 03174400 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 03072000 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 02515968 _____ (Microsoft Corporation) C:\Windows\system32\accessibilitycpl.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 02241536 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 02226688 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 02225664 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 02134528 _____ (Microsoft Corporation) C:\Windows\system32\FunctionDiscoveryFolder.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01985024 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01856512 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01788416 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01730560 _____ (Microsoft Corporation) C:\Windows\system32\apds.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01671680 _____ (Microsoft Corporation) C:\Windows\system32\chsbrkr.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01645568 _____ (Microsoft Corporation) C:\Windows\system32\connect.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01589248 _____ (Microsoft Corporation) C:\Windows\system32\msjet40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01544704 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01502720 _____ (Microsoft Corporation) C:\Windows\system32\certmgr.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01480704 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01342464 _____ (Microsoft Corporation) C:\Windows\system32\brcpl.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01324032 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayCpl.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01209856 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01112064 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01086464 _____ (Microsoft Corporation) C:\Windows\system32\NetProjW.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 01053696 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00971264 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00856064 _____ (Microsoft Corporation) C:\Windows\system32\mswdat10.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00807424 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00759296 _____ (Microsoft Corporation) C:\Windows\system32\ipsecsnp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00757248 _____ (Microsoft Corporation) C:\Windows\system32\azroles.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00670720 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\msrepl40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\CertEnrollUI.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00618496 _____ (Microsoft Corporation) C:\Windows\system32\mswstr10.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2VDEC.DLL
2014-02-21 20:30 - 2009-04-10 23:28 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\comuid.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00564224 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\msdtcprx.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00542720 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00516608 _____ (Microsoft Corporation) C:\Windows\system32\autoplay.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\cmdial32.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00469504 _____ (Microsoft Corporation) C:\Windows\system32\newdev.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\msxbde40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00445952 _____ (Microsoft Corporation) C:\Windows\system32\ncryptui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00409600 _____ (Microsoft Corporation) C:\Windows\system32\msexch40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\msvcp60.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\ipsmsnap.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\mspbde40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00368640 _____ () C:\Windows\system32\msjetoledb40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00364032 _____ (Microsoft Corporation) C:\Windows\system32\IPSECSVC.DLL
2014-02-21 20:30 - 2009-04-10 23:28 - 00351744 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\msexcl40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00334848 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-02-21 20:30 - 2009-04-10 23:28 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00323584 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\msrd2x40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\mtxclu.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\msjtes40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\modemui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\mstext40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00274432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00241664 _____ (Microsoft Corporation) C:\Windows\system32\msltus40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\mscandui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00217600 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00200704 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\adsldpc.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00180736 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00178176 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\msutb.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\MMDevAPI.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\imm32.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\AuxiliaryDisplayServices.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\mprapi.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\mssitlb.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\msctfui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mstlsapi.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\msctfp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\mpr.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\msjter40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingProxy.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\bthci.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dataclen.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msstrc.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\certprop.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\networkitemfactory.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\msscb.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\cscapi.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\bitsigd.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\msimtf.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\FwRemoteSvr.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\msjint40.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\cscdll.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\NcdProp.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\MsCtfMonitor.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msisip.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\inetppui.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2014-02-21 20:30 - 2009-04-10 23:28 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\CHxReadingStringIME.dll
2014-02-21 20:30 - 2009-04-10 23:27 - 01122304 _____ (Microsoft Corporation) C:\Windows\system32\appwiz.cpl
2014-02-21 20:30 - 2009-04-10 23:27 - 01102848 _____ (Microsoft Corporation) C:\Windows\system32\mmsys.cpl
2014-02-21 20:30 - 2009-04-10 23:27 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\autoconv.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00643072 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2014-02-21 20:30 - 2009-04-10 23:27 - 00636416 _____ (Microsoft Corporation) C:\Windows\system32\autofmt.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\msinfo32.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\certreq.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00130024 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2014-02-21 20:30 - 2009-04-10 23:27 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MSNP.ax
2014-02-21 20:30 - 2009-04-10 23:27 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\newdev.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\conime.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairingWizard.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\cipher.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\cmmon32.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\csrstub.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cbsra.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\bthudtask.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ipconfig.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\DeviceEject.exe
2014-02-21 20:30 - 2009-04-10 23:27 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\msacm32.drv
2014-02-21 20:30 - 2009-04-10 23:23 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2014-02-21 20:30 - 2009-04-10 23:22 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2014-02-21 20:30 - 2009-04-10 23:22 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2014-02-21 20:30 - 2009-04-10 22:42 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bridge.sys
2014-02-21 20:30 - 2009-04-10 21:46 - 00121344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndiswan.sys
2014-02-21 20:30 - 2009-04-10 21:45 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netbt.sys
2014-02-21 20:30 - 2009-04-10 21:43 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2014-02-21 20:30 - 2009-04-10 21:39 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cdrom.sys
2014-02-21 20:30 - 2009-04-10 21:39 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2014-02-21 20:30 - 2009-04-10 21:27 - 00002560 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2014-02-21 20:30 - 2009-04-10 21:14 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-02-21 20:30 - 2009-04-10 21:12 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-02-21 20:30 - 2009-03-29 21:42 - 00155456 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-02-21 20:30 - 2009-03-29 21:42 - 00080720 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-02-21 20:30 - 2009-02-18 11:38 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-02-21 20:30 - 2009-02-18 11:38 - 00035168 _____ (Microsoft Corporation) C:\Windows\system32\infocardcpl.cpl
2014-02-21 20:29 - 2009-04-10 23:33 - 00926184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-02-21 20:29 - 2009-04-10 23:33 - 00292840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgrx.sys
2014-02-21 20:29 - 2009-04-10 23:32 - 00438744 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2014-02-21 20:29 - 2009-04-10 23:32 - 00019944 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-02-21 20:29 - 2009-04-10 23:32 - 00017896 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-02-21 20:29 - 2009-04-10 23:32 - 00017384 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 02167808 _____ (Microsoft Corporation) C:\Windows\system32\mmcndmgr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 02012160 _____ (Microsoft Corporation) C:\Windows\system32\milcore.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01671680 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01580544 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01575936 _____ (Microsoft Corporation) C:\Windows\system32\WMVENCOD.DLL
2014-02-21 20:29 - 2009-04-10 23:28 - 01533440 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01524736 _____ (Microsoft Corporation) C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01382912 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2014-02-21 20:29 - 2009-04-10 23:28 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\wercon.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 01123840 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01055232 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 01017856 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00968192 _____ (Microsoft Corporation) C:\Windows\system32\wcnwiz2.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00860160 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00852992 _____ (Microsoft Corporation) C:\Windows\system32\mcmde.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-02-21 20:29 - 2009-04-10 23:28 - 00677376 _____ (Microsoft Corporation) C:\Windows\system32\imapi2fs.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00657408 _____ (Microsoft Corporation) C:\Windows\system32\WMVXENCD.DLL
2014-02-21 20:29 - 2009-04-10 23:28 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\Utilman.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00627712 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\wiaaut.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00532992 _____ (Microsoft Corporation) C:\Windows\system32\wpcao.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00507904 _____ (Microsoft Corporation) C:\Windows\system32\vdsdyn.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00399360 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00385536 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\imapi2.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00356864 _____ (Microsoft Corporation) C:\Windows\system32\MediaMetadataHandler.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\WscEapPr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00282624 _____ (Microsoft Corporation) C:\Windows\system32\w32time.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\wow32.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\iassdo.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\wevtapi.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\wisptis.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\wscntfy.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00217088 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\iassam.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\WcnNetsh.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\iasrad.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\korwbrkr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-02-21 20:29 - 2009-04-10 23:28 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wpcsvc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\iasrecst.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\imapi.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2014-02-21 20:29 - 2009-04-10 23:28 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\wshext.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\wlgpclnt.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\iassvcs.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\xmlfilter.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\mmci.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\l2nacp.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\mimefilt.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iaspolcy.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\whealogr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\ifmon.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\wsepno.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\uxsms.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\version.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\winrnr.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wscisvif.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\vdmdbg.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\midimap.dll
2014-02-21 20:29 - 2009-04-10 23:28 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\mmcico.dll
2014-02-21 20:29 - 2009-04-10 23:27 - 01792512 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2014-02-21 20:29 - 2009-04-10 23:27 - 01689600 _____ (Microsoft Corporation) C:\Windows\system32\wscui.cpl
2014-02-21 20:29 - 2009-04-10 23:27 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\mblctr.exe
2014-02-21 20:29 - 2009-04-10 23:27 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2014-02-21 20:29 - 2009-04-10 23:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\wdmaud.drv
2014-02-21 20:29 - 2009-04-10 23:27 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\logagent.exe
2014-02-21 20:29 - 2009-04-10 23:27 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\Kswdmcap.ax
2014-02-21 20:29 - 2009-04-10 23:27 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe
2014-02-21 20:29 - 2009-04-10 23:22 - 00883712 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2014-02-21 20:29 - 2009-04-10 21:42 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-02-21 20:29 - 2009-04-10 21:38 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2014-02-21 20:29 - 2009-04-10 21:38 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2014-02-21 20:29 - 2009-04-10 21:22 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\watchdog.sys
2014-02-21 20:29 - 2009-04-10 18:54 - 03662128 _____ () C:\Windows\system32\locale.nls
2014-02-21 20:29 - 2009-02-18 11:38 - 00619864 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-02-21 20:29 - 2009-02-18 11:38 - 00009048 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-02-21 20:28 - 2009-04-10 23:33 - 00986600 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-02-21 20:28 - 2009-04-10 23:32 - 00122344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Storport.sys
2014-02-21 20:28 - 2009-04-10 23:28 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 02205184 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 01224192 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 01081344 _____ (Microsoft Corporation) C:\Windows\system32\SLCExt.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00996352 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00777216 _____ (Microsoft Corporation) C:\Windows\system32\slcc.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00582144 _____ (Microsoft Corporation) C:\Windows\system32\SLCommDlg.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00425472 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00378368 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00361984 _____ (Microsoft Corporation) C:\Windows\system32\SLUI.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00342528 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00314368 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\swprv.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00303616 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00289792 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\SnippingTool.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\SLC.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00197632 _____ (Microsoft Corporation) C:\Windows\system32\SndVol.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\sperror.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\SLLUA.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\spoolss.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\softkbd.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00083456 _____ (Microsoft) C:\Windows\system32\SMBHelperClass.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\slwmi.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\SLUINotify.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Storprop.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\slcinst.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\TSTheme.exe
2014-02-21 20:28 - 2009-04-10 23:28 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\spcmsg.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2014-02-21 20:28 - 2009-04-10 23:28 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\spwinsat.dll
2014-02-21 20:28 - 2009-04-10 23:27 - 03408896 _____ (Microsoft Corporation) C:\Windows\system32\SLsvc.exe
2014-02-21 20:28 - 2009-04-10 23:27 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2014-02-21 20:28 - 2009-04-10 21:45 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\smb.sys
2014-02-21 20:28 - 2009-04-10 21:42 - 00052992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys
2014-02-21 20:28 - 2009-04-10 21:42 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD.sys
2014-02-21 20:28 - 2009-04-10 21:14 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2014-02-21 20:28 - 2009-04-10 19:52 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spsys.sys
2014-02-21 20:28 - 2009-04-10 18:59 - 00107612 _____ () C:\Windows\system32\StructuredQuerySchema.bin
2014-02-21 20:28 - 2009-02-19 17:20 - 00009239 _____ () C:\Windows\system32\spcinstrumentation.man
2014-02-21 20:28 - 2009-02-18 11:39 - 00092918 _____ () C:\Windows\system32\slmgr.vbs
2014-02-21 20:28 - 2009-02-18 11:39 - 00035680 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-02-21 20:27 - 2009-04-10 23:32 - 00053224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2014-02-21 20:27 - 2009-04-10 23:28 - 01576960 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 01152000 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00313344 _____ (Microsoft Corporation) C:\Windows\system32\thawbrkr.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00242688 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\uDWM.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\tcpmon.dll
2014-02-21 20:27 - 2009-04-10 23:28 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\ulib.dll
2014-02-21 20:27 - 2009-04-10 23:27 - 00280064 _____ (Microsoft Corporation) C:\Windows\system32\unimdm.tsp
2014-02-21 20:27 - 2009-04-10 23:23 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2014-02-21 20:27 - 2009-04-10 21:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-02-21 20:27 - 2009-04-10 21:42 - 00025856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBCAMD2.sys
2014-02-21 20:27 - 2009-03-06 18:11 - 00130008 _____ () C:\Windows\system32\systemsf.ebd
2014-02-21 20:20 - 2014-02-21 20:20 - 00000000 ____D () C:\Windows\system32\EventProviders
2014-02-21 20:06 - 2014-02-21 20:15 - 365230920 _____ (Microsoft Corporation) C:\Users\Selda\Downloads\Windows6.0-KB948465-X86.exe
2014-02-21 18:55 - 2014-02-21 22:37 - 00008448 _____ () C:\Windows\IE9_main.log
2014-02-21 18:55 - 2014-02-21 18:55 - 18733360 _____ (Microsoft Corporation) C:\Users\Selda\Downloads\IE9-WindowsVista-x86-deu.exe

==================== One Month Modified Files and Folders =======

2014-03-23 21:07 - 2014-03-07 21:52 - 00017552 _____ () C:\Users\Selda\Desktop\FRST.txt
2014-03-23 21:07 - 2014-03-07 21:52 - 00000000 ____D () C:\FRST
2014-03-23 21:06 - 2014-03-23 21:06 - 00000000 ____D () C:\Users\Selda\Desktop\FRST-OlderVersion
2014-03-23 21:06 - 2014-03-23 20:46 - 00001243 _____ () C:\Users\Selda\Desktop\JRT.txt
2014-03-23 21:06 - 2014-03-07 21:51 - 01145856 _____ (Farbar) C:\Users\Selda\Desktop\FRST.exe
2014-03-23 21:01 - 2014-02-18 00:57 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-23 20:41 - 2014-02-17 21:28 - 01449866 _____ () C:\Windows\WindowsUpdate.log
2014-03-23 20:40 - 2006-11-02 13:37 - 00000000 ___RD () C:\Users\Public\Recorded TV
2014-03-23 20:38 - 2014-02-18 00:57 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-23 20:38 - 2014-02-17 21:54 - 00000269 _____ () C:\Users\Public\Documents\hpqp.ini
2014-03-23 20:38 - 2006-11-02 14:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-23 20:38 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-23 20:38 - 2006-11-02 13:47 - 00003216 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-23 20:37 - 2014-02-17 21:29 - 00000012 _____ () C:\Windows\bthservsdp.dat
2014-03-23 20:37 - 2006-11-02 14:01 - 00028296 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-03-23 20:32 - 2014-03-23 20:32 - 00000000 ____D () C:\Windows\ERUNT
2014-03-23 20:29 - 2014-03-23 20:29 - 00002843 _____ () C:\Users\Selda\Desktop\AdwCleaner[S0].txt
2014-03-23 20:21 - 2014-02-18 00:57 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-23 20:18 - 2014-03-23 20:16 - 00000000 ____D () C:\AdwCleaner
2014-03-23 20:00 - 2014-02-17 22:13 - 00000582 _____ () C:\Windows\Tasks\Norton Internet Security - Systemprüfung ausführen - Selda.job
2014-03-23 19:49 - 2014-03-23 19:49 - 00000906 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-03-23 19:49 - 2014-03-23 19:49 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Malwarebytes
2014-03-23 19:49 - 2014-03-23 19:49 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-23 19:49 - 2014-03-23 19:49 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-03-23 19:47 - 2014-03-23 19:47 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Selda\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-23 19:47 - 2014-03-23 19:47 - 01950720 _____ () C:\Users\Selda\Desktop\adwcleaner.exe
2014-03-23 19:47 - 2014-03-23 19:47 - 01037734 _____ (Thisisu) C:\Users\Selda\Desktop\JRT.exe
2014-03-23 18:48 - 2014-02-18 00:08 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Skype
2014-03-19 03:01 - 2014-02-18 01:32 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-19 03:01 - 2006-11-02 11:24 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-03-17 22:50 - 2014-02-17 22:13 - 00083080 _____ () C:\Users\Selda\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-17 22:49 - 2006-11-02 13:47 - 00352304 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-17 21:57 - 2014-03-17 21:57 - 00000971 _____ () C:\Users\Selda\Desktop\LibreOffice Writer.lnk
2014-03-17 19:15 - 2014-03-16 17:23 - 00000000 ____D () C:\Users\Selda\Desktop\Musik GUB 18.3
2014-03-17 18:00 - 2014-03-17 18:00 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\LibreOffice
2014-03-17 17:59 - 2014-03-17 17:59 - 00000931 _____ () C:\Users\Public\Desktop\LibreOffice 4.2.lnk
2014-03-17 17:59 - 2014-03-17 17:55 - 00000000 ____D () C:\Program Files\LibreOffice 4
2014-03-17 17:56 - 2014-03-17 17:50 - 220602368 _____ () C:\Users\Selda\Downloads\LibreOffice_4.2.2_Win_x86 (1).msi
2014-03-17 17:50 - 2014-03-17 17:45 - 220602368 _____ () C:\Users\Selda\Downloads\LibreOffice_4.2.2_Win_x86.msi
2014-03-16 20:33 - 2008-05-25 02:39 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-16 20:28 - 2014-03-16 20:28 - 00000000 ____D () C:\Users\Selda\AppData\Local\Microsoft Help
2014-03-16 20:28 - 2014-03-16 20:28 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-03-16 20:28 - 2006-11-02 12:18 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-03-16 16:54 - 2014-03-06 19:08 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\at.helbling.eversion.pamina
2014-03-16 16:44 - 2014-03-06 19:06 - 00000000 ____D () C:\Program Files\Common Files\Adobe AIR

Alt 23.03.2014, 21:12   #10
pytagoras
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Code:
ATTFilter
2014-03-16 12:25 - 2014-02-18 01:00 - 00001963 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-13 00:01 - 2014-02-18 00:57 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-03-13 00:01 - 2014-02-18 00:57 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-03-12 03:38 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\rescache
2014-03-12 03:01 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\de-DE
2014-03-11 22:45 - 2014-03-11 22:45 - 00545280 _____ () C:\Users\Selda\Desktop\bewegungslieder geschnitten.MSWMM
2014-03-11 21:47 - 2006-11-02 11:33 - 01565124 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-11 21:44 - 2006-11-02 13:52 - 00112762 _____ () C:\Windows\setupact.log
2014-03-11 21:44 - 2006-11-02 11:23 - 00000179 _____ () C:\Windows\win.ini
2014-03-11 21:28 - 2014-03-11 21:28 - 00000000 ____D () C:\ProgramData\WindowsSearch
2014-03-11 20:57 - 2014-03-09 21:28 - 00000000 ____D () C:\Users\Selda\Downloads\mamas bewerbung
2014-03-11 20:48 - 2006-11-02 13:37 - 00000000 ____D () C:\Windows\twain_32
2014-03-11 20:47 - 2014-03-11 20:47 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Printer Info Cache
2014-03-11 20:47 - 2014-03-11 20:47 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Image Zone Express
2014-03-10 23:45 - 2014-03-10 23:44 - 00531440 _____ () C:\Users\Selda\Downloads\Outlook (1).zip
2014-03-10 23:44 - 2014-03-10 23:44 - 00531430 _____ () C:\Users\Selda\Downloads\Outlook.zip
2014-03-09 21:27 - 2014-03-09 21:27 - 00026234 _____ () C:\Users\Selda\Downloads\mamas bewerbung.zip
2014-03-09 16:27 - 2008-01-21 03:47 - 00074810 _____ () C:\Windows\PFRO.log
2014-03-09 16:22 - 2014-03-09 16:22 - 00020376 _____ () C:\Users\Selda\Desktop\zweiter scan.txt
2014-03-09 15:20 - 2014-03-09 15:20 - 00020376 _____ () C:\ComboFix.txt
2014-03-09 15:20 - 2014-03-09 15:05 - 00000000 ____D () C:\ComboFix
2014-03-09 15:20 - 2014-03-09 15:03 - 00000000 ____D () C:\Qoobox
2014-03-09 15:20 - 2006-11-02 12:18 - 00000000 __RHD () C:\Users\Default
2014-03-09 15:20 - 2006-11-02 12:18 - 00000000 ___RD () C:\Users\Public
2014-03-09 15:18 - 2014-03-09 15:03 - 00000000 ____D () C:\Windows\erdnt
2014-03-09 15:17 - 2006-11-02 11:23 - 00000215 _____ () C:\Windows\system.ini
2014-03-09 15:03 - 2014-03-09 15:03 - 00012568 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\Drivers\PROCEXP113.SYS
2014-03-09 14:52 - 2014-03-09 14:49 - 05187267 ____R (Swearware) C:\Users\Selda\Desktop\ComboFix.exe
2014-03-09 13:51 - 2014-03-09 13:50 - 00000000 ____D () C:\Users\Selda\Desktop\Referendariat
2014-03-08 14:31 - 2014-02-17 22:15 - 00000052 _____ () C:\Windows\system32\DOErrors.log
2014-03-07 23:11 - 2014-03-07 23:11 - 00011164 _____ () C:\Users\Selda\Desktop\gmer.log
2014-03-07 21:59 - 2014-03-07 21:59 - 00380416 _____ () C:\Users\Selda\Desktop\Gmer-19357.exe
2014-03-07 21:57 - 2014-03-07 21:54 - 00035626 _____ () C:\Users\Selda\Desktop\Addition.txt
2014-03-07 21:50 - 2014-03-07 21:50 - 00000472 _____ () C:\Users\Selda\Desktop\defogger_disable.log
2014-03-07 21:50 - 2014-03-07 21:50 - 00000000 _____ () C:\Users\Selda\defogger_reenable
2014-03-07 21:50 - 2014-02-17 22:07 - 00000000 ____D () C:\Users\Selda
2014-03-07 21:49 - 2014-03-07 21:49 - 00050477 _____ () C:\Users\Selda\Desktop\Defogger.exe
2014-03-07 21:31 - 2014-03-07 21:31 - 00000974 _____ () C:\Users\Selda\Desktop\test.txt
2014-03-06 23:00 - 2014-03-04 23:54 - 00000000 ____D () C:\Users\Selda\Desktop\Hits aktuell
2014-03-06 21:02 - 2014-03-06 21:02 - 00004608 _____ () C:\Users\Selda\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-03-06 20:25 - 2014-03-06 19:24 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Apple Computer
2014-03-06 19:25 - 2014-03-06 19:25 - 00000000 ____D () C:\Users\Selda\AppData\Local\Apple Computer
2014-03-06 19:22 - 2014-03-06 19:21 - 00000000 ____D () C:\Program Files\QuickTime
2014-03-06 19:21 - 2014-03-06 19:21 - 00001726 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-03-06 19:21 - 2014-03-06 19:21 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-03-06 19:19 - 2014-03-06 19:19 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\Users\Selda\AppData\Local\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\ProgramData\Apple
2014-03-06 19:18 - 2014-03-06 19:18 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-03-06 19:17 - 2014-03-06 19:15 - 41945432 _____ (Apple Inc.) C:\Users\Selda\Downloads\QuickTimeInstaller.exe
2014-03-06 19:07 - 2014-03-06 19:07 - 00000941 _____ () C:\Users\Public\Desktop\PaMina e-version.lnk
2014-03-06 19:07 - 2014-03-06 19:07 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-03-06 19:07 - 2014-03-06 19:07 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-03-06 19:07 - 2014-03-06 19:06 - 00000000 ____D () C:\Program Files\Helbling
2014-03-06 19:07 - 2008-05-25 02:43 - 00000000 ____D () C:\ProgramData\Adobe
2014-03-06 19:07 - 2008-05-25 02:43 - 00000000 ____D () C:\Program Files\Adobe
2014-03-06 19:03 - 2014-02-17 22:10 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Adobe
2014-03-06 19:02 - 2014-02-17 23:24 - 00000000 ____D () C:\Users\Selda\AppData\Local\Adobe
2014-03-04 00:18 - 2014-03-04 00:18 - 00000000 ____D () C:\ProgramData\HP Product Assistant
2014-03-02 16:16 - 2014-03-02 16:16 - 00010484 _____ () C:\Users\Selda\Downloads\Einfuehrungsstunde Tanzen.zip
2014-03-02 16:09 - 2014-03-02 16:09 - 00023552 _____ () C:\Users\Selda\Downloads\Freies Tanzen.xls
2014-03-01 18:21 - 2014-02-17 22:10 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\Hewlett-Packard
2014-03-01 15:19 - 2008-05-25 02:11 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-02-28 00:59 - 2008-05-25 01:29 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-02-28 00:46 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-27 16:37 - 2014-02-27 16:37 - 00773968 _____ (Microsoft Corporation) C:\Windows\system32\msvcr100.dll
2014-02-27 16:37 - 2014-02-27 16:37 - 00421200 _____ (Microsoft Corporation) C:\Windows\system32\msvcp100.dll
2014-02-27 15:00 - 2014-02-23 21:59 - 00000000 ____D () C:\ProgramData\HP
2014-02-27 14:27 - 2014-02-23 21:59 - 00146162 _____ () C:\Windows\hpoins18.dat
2014-02-27 14:27 - 2014-02-23 21:59 - 00001313 _____ () C:\ProgramData\hpzinstall.log
2014-02-25 23:04 - 2014-02-25 23:04 - 00000000 ____D () C:\Users\Selda\Desktop\bewegungslieder
2014-02-25 22:58 - 2014-02-17 22:12 - 00000944 _____ () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-02-25 00:52 - 2014-02-25 00:52 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2014-02-25 00:33 - 2008-05-25 02:27 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-02-25 00:24 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\NDF
2014-02-25 00:19 - 2014-02-25 00:19 - 00000056 ____H () C:\Windows\system32\ezsidmv.dat
2014-02-23 22:54 - 2014-02-23 22:54 - 00000000 ____D () C:\ProgramData\WEBREG
2014-02-23 22:54 - 2014-02-23 22:29 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\HP
2014-02-23 22:31 - 2014-02-23 22:28 - 00000680 _____ () C:\Users\Selda\AppData\Local\d3d9caps.dat
2014-02-23 22:19 - 2014-02-23 22:19 - 00001870 _____ () C:\Users\Public\Desktop\Shop für HP Zubehör.lnk
2014-02-23 22:19 - 2014-02-23 22:19 - 00000000 ____D () C:\ProgramData\HPSSUPPLY
2014-02-23 22:19 - 2008-05-25 01:45 - 00000000 ____D () C:\Program Files\HP
2014-02-23 22:18 - 2014-02-23 22:18 - 00002029 _____ () C:\Users\Public\Desktop\HP Photosmart Essential.lnk
2014-02-23 22:18 - 2014-02-23 22:10 - 00000000 ____D () C:\Program Files\Common Files\HP
2014-02-23 22:14 - 2014-02-23 22:14 - 00001204 _____ () C:\Users\Public\Desktop\HP Solution Center.lnk
2014-02-23 22:11 - 2014-02-23 22:11 - 00000000 ____D () C:\Program Files\Common Files\Hewlett-Packard
2014-02-23 22:07 - 2008-05-25 02:55 - 00030404 _____ () C:\Windows\DPINST.LOG
2014-02-23 21:57 - 2014-02-23 21:53 - 167339144 _____ () C:\Users\Selda\Downloads\AIO_CDA_Full_Network_deu_NB.exe
2014-02-23 21:18 - 2014-02-23 21:18 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_07_00.Wdf
2014-02-23 19:42 - 2014-02-23 19:42 - 00387584 _____ () C:\Users\Selda\Downloads\KL_bodyparts_guessing.ppt
2014-02-23 19:42 - 2014-02-23 19:42 - 00387584 _____ () C:\Users\Selda\Downloads\KL_bodyparts_guessing (1).ppt
2014-02-23 19:42 - 2014-02-23 19:42 - 00214528 _____ () C:\Users\Selda\Downloads\KL_mybody.ppt
2014-02-23 11:53 - 2014-02-17 22:13 - 00000000 ____D () C:\Users\Selda\AppData\Local\QuickPlay
2014-02-23 11:46 - 2014-02-23 11:46 - 00000000 ____D () C:\Program Files\Windows Portable Devices
2014-02-23 11:46 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\el-GR
2014-02-23 11:45 - 2008-05-25 11:02 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-02-23 11:45 - 2006-11-02 13:37 - 00000000 ____D () C:\Windows\system32\XPSViewer
2014-02-23 11:45 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Journal
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\uk-UA
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\th-TH
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\sl-SI
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\sk-SK
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\ro-RO
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\lv-LV
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\lt-LT
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\it-IT
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\hr-HR
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\he-IL
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\et-EE
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\bg-BG
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\ar-SA
2014-02-23 11:45 - 2006-11-02 12:18 - 00000000 ____D () C:\Program Files\Common Files\System
2014-02-23 06:50 - 2014-03-12 03:01 - 12347904 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-23 06:47 - 2014-03-12 03:02 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-23 06:43 - 2014-03-12 03:02 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-23 06:41 - 2014-03-12 03:02 - 01105408 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-23 06:40 - 2014-03-12 03:02 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-23 06:39 - 2014-03-12 03:02 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-23 06:38 - 2014-03-12 03:02 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-23 06:38 - 2014-03-12 03:02 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-23 06:38 - 2014-03-12 03:02 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-23 06:37 - 2014-03-12 03:02 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-23 06:37 - 2014-03-12 03:02 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-23 06:37 - 2014-03-12 03:02 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-23 06:37 - 2014-03-12 03:02 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-23 06:36 - 2014-03-12 03:02 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-23 06:36 - 2014-03-12 03:02 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-23 06:35 - 2014-03-12 03:02 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-23 00:49 - 2014-02-23 00:49 - 03063561 _____ (Macromedia, Inc.) C:\Users\Public\Documents\MobileTV.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02989660 _____ (Macromedia, Inc.) C:\Users\Public\Documents\DVD.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02864396 _____ (Macromedia, Inc.) C:\Users\Public\Documents\MPV.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02331174 _____ (Macromedia, Inc.) C:\Users\Public\Documents\Karaoke.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 02231606 _____ (Macromedia, Inc.) C:\Users\Public\Documents\Games.exe
2014-02-23 00:49 - 2014-02-23 00:49 - 00000021 _____ () C:\Users\Public\Documents\hpqp.txt
2014-02-23 00:49 - 2014-02-23 00:49 - 00000000 ____D () C:\Users\Selda\AppData\Roaming\CyberLink
2014-02-23 00:49 - 2014-02-23 00:49 - 00000000 ____D () C:\Users\Public\Documents\DEU
2014-02-23 00:14 - 2008-05-25 02:54 - 00000000 ____D () C:\Program Files\EasyBits For Kids
2014-02-21 23:05 - 2014-02-17 22:12 - 00000949 _____ () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-21 23:02 - 2006-11-02 12:18 - 00000000 ___RD () C:\Windows\Offline Web Pages
2014-02-21 22:37 - 2014-02-21 18:55 - 00008448 _____ () C:\Windows\IE9_main.log
2014-02-21 22:05 - 2014-02-21 22:05 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-21 22:05 - 2014-02-21 22:05 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-21 22:05 - 2014-02-21 22:05 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00114176 _____ (Microsoft Corporation) C:\Windows\system32\advpack.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-21 22:05 - 2014-02-21 22:05 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-21 22:05 - 2014-02-21 22:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-21 22:05 - 2014-02-21 22:05 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-21 22:05 - 2006-11-02 07:32 - 00008798 _____ () C:\Windows\system32\icrav03.rat
2014-02-21 22:05 - 2006-11-02 07:32 - 00001988 _____ () C:\Windows\system32\ticrf.rat
2014-02-21 22:03 - 2014-02-21 22:03 - 02873344 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 01075712 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00979456 _____ (Microsoft Corporation) C:\Windows\system32\MFH264Dec.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\MFHEAACdec.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4src.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00261632 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-02-21 22:03 - 2014-02-21 22:03 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 01554432 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00847360 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelinesvc.exe
2014-02-21 22:02 - 2014-02-21 22:02 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2014-02-21 22:02 - 2014-02-21 22:02 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-02-21 22:02 - 2014-02-21 22:02 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\printfilterpipelineprxy.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00974848 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00321024 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00252928 _____ (Microsoft Corporation) C:\Windows\system32\dxdiag.exe
2014-02-21 21:58 - 2014-02-21 21:58 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\dxdiagn.dll
2014-02-21 21:58 - 2014-02-21 21:58 - 00189440 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-02-21 21:50 - 2014-02-17 22:12 - 00000915 _____ () C:\Users\Selda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Photo Gallery
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Defender
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Collaboration
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Windows Calendar
2014-02-21 21:40 - 2006-11-02 13:37 - 00000000 ____D () C:\Program Files\Movie Maker
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\vi-VN
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\eu-ES
2014-02-21 21:39 - 2014-02-21 21:39 - 00000000 ____D () C:\Windows\system32\ca-ES
2014-02-21 21:39 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\SLUI
2014-02-21 21:39 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2014-02-21 21:39 - 2006-11-02 12:18 - 00000000 ____D () C:\Windows\IME
2014-02-21 21:05 - 2014-02-21 21:05 - 00000000 ____D () C:\Windows\system32\SPReview
2014-02-21 20:20 - 2014-02-21 20:20 - 00000000 ____D () C:\Windows\system32\EventProviders
2014-02-21 20:15 - 2014-02-21 20:06 - 365230920 _____ (Microsoft Corporation) C:\Users\Selda\Downloads\Windows6.0-KB948465-X86.exe
2014-02-21 18:55 - 2014-02-21 18:55 - 18733360 _____ (Microsoft Corporation) C:\Users\Selda\Downloads\IE9-WindowsVista-x86-deu.exe
2014-02-21 18:18 - 2008-05-25 01:30 - 00000000 ____D () C:\Program Files\Norton Internet Security

Some content of TEMP:
====================
C:\Users\Selda\AppData\Local\Temp\Quarantine.exe
C:\Users\Selda\AppData\Local\Temp\symlcsv1.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-03-23 20:44

==================== End Of Log ============================

Alt 24.03.2014, 12:29   #11
schrauber
/// the machine
/// TB-Ausbilder
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


passt


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 24.03.2014, 16:23   #12
pytagoras
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Eine Frage habe ich noch bezüglich der Wechseldatenträger. Ich habe mein Smartphone des öfteren angeschlossen, soll bzw. darf ich das zum Scannen auch am Notebook anschließen oder bezieht sich das ausschließlich auf USB-Sticks etc?

Alt 25.03.2014, 12:03   #13
schrauber
/// the machine
/// TB-Ausbilder
 
Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Standard

Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


Kannste anklemmen, weiß aber nicht ob ESET das auch erkennt.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!
einloggen, email gehackt, emails, falsch, fehlermeldung, gelöscht, hotmail, installiert, kaspersky, laptop, link, mail, mails, meldung, nicht mehr, notebook, passwort, pcs, recovery, recovery cd, trojaner, verschickt, virus, vista, warnmeldung, zugang


« Desktop ist gesperrt, Windows 7 startet sehr langsam, Downloads werden nicht gespeichert | WINDOWS 7, 64bit - Trojaneralarm - Werbefenster poppen auf - z.B. beim GMX-login »


Ähnliche Themen: Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!


  1. Mein GMX-Account versendet Spam an alle meine Kontakte
    Log-Analyse und Auswertung - 10.12.2014 (10)
  2. Hotmail-Account verschickt Spam an alle Kontakte
    Plagegeister aller Art und deren Bekämpfung - 08.06.2014 (7)
  3. Kann mich in keinen client mehr einloggen...
    Alles rund um Windows - 17.03.2014 (3)
  4. Eigene E-Mail versendet Link an Adressbuch Kontakte
    Überwachung, Datenschutz und Spam - 14.06.2013 (4)
  5. Kann mich nicht einloggen
    Alles rund um Windows - 04.11.2012 (1)
  6. Mein yahoo mail account verschickt spam emails an alle Kontakte
    Plagegeister aller Art und deren Bekämpfung - 08.06.2012 (1)
  7. Emails mit link+attachment wurden an alle meine kontakte geschickt
    Plagegeister aller Art und deren Bekämpfung - 20.04.2012 (3)
  8. Hotmail versendet automatisch Emails
    Plagegeister aller Art und deren Bekämpfung - 16.03.2012 (1)
  9. Hotmail verschickt automatisch Emails an alle Kontakte
    Plagegeister aller Art und deren Bekämpfung - 04.11.2011 (37)
  10. Hotmail verschickt automatisch Emails an alle Kontakte
    Plagegeister aller Art und deren Bekämpfung - 26.10.2011 (6)
  11. Hotmail verschickt Email's automatisch an alle Kontakte, auch wenn der Pc aus ist!
    Plagegeister aller Art und deren Bekämpfung - 20.10.2011 (23)
  12. Facebook versendet an alle meine Kontakte Spam mails
    Log-Analyse und Auswertung - 15.08.2011 (1)
  13. Yahoo mail account versendet wiederholt emails an alle Kontakte.
    Plagegeister aller Art und deren Bekämpfung - 08.08.2011 (3)
  14. Yahoo Account versendet ungefragt Mails an alle Kontakte
    Plagegeister aller Art und deren Bekämpfung - 23.05.2011 (4)
  15. Computer versendet automatisch mit Hotmail an alle Kontakte Spam-Mails
    Log-Analyse und Auswertung - 08.02.2011 (13)
  16. Worm.Win32.NetSky / TrojanSPM/LX kann mich nicht mehr einloggen (XPPro)
    Log-Analyse und Auswertung - 03.02.2010 (6)
  17. kann mich nicht mehr einloggen
    Log-Analyse und Auswertung - 07.08.2005 (7)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! - Hallo liebes Tojaner-Board Team, ich hatte vor einigen Monaten einen Virus auf meinem Laptop, welches das Betrienssystem Wondows 7 drauf hatte. Ich bin leider kein Genie was PCs angeht aber - Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen!...
Archiv
Du betrachtest: Hotmail versendet Emails mit Link an alle Kontakte. Ich kann mich nicht mehr einloggen! auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131