Windows 7: Auf Festplattenpartition für Daten befindet sich ein Ordner "SoftwareUpdater" mit einer Datei "SoftwareUpdater.Bootstrapper"

balirocky · 09.02.2014, 15:39

Hallo,

habe vorhin entdeckt, dass sich in einem meiner Ordner der o.g. Ordner mit der dazugehörigen Datei befindet. Das kommt mir eigenartig vor, da ich nicht weiß wozu das gehören soll! Das verschieben in den Papierkorb führt auch zu nix, da der Ordner nach Laptop-Neustart wieder da ist!
Was kann ich dagegen machen?

cosinus · 09.02.2014, 15:49

Hallo und

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!

Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

balirocky · 09.02.2014, 16:00

Nein, ich habe keine weiteren Logs! Habe aber wie beschrieben einen Scan mit FRST durchgeführt und folgendes Ergebnis:

FRST.txt:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-02-2014
Ran by Rocky (administrator) on ROCKY-PC on 09-02-2014 15:55:57
Running from C:\Users\Rocky\Desktop
Microsoft Windows 7 Professional N  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2439920 2013-10-17] (Synaptics Incorporated)
HKLM\...\Run: [DivXMediaServer] - C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-2342514540-3986762835-358528620-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)

==================== Internet (Whitelisted) ====================

SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Rocky\AppData\Roaming\Mozilla\Firefox\Profiles\accogmht.default-1391955384294
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @soft-xpansion/npsxpdf - C:\Program Files\Common Files\Freemium\np-sxpdf.dll (soft-Xpansion)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Rocky\AppData\Roaming\Mozilla\Firefox\Profiles\accogmht.default-1391955384294\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-09]
FF HKLM\...\Firefox\Extensions: [{B45418F9-6406-4828-9D1A-35313FB1E2D6}] - C:\ProgramData\Freemium\Free PDF Perfect\Data\fftb
FF Extension: Free PDF Perfect - C:\ProgramData\Freemium\Free PDF Perfect\Data\fftb [2014-02-09]
FF HKLM\...\Thunderbird\Extensions: [{B45418F9-6406-4828-9D1A-35313FB1E2D6}] - C:\ProgramData\Freemium\Free PDF Perfect\Data\fftb
FF Extension: Free PDF Perfect - C:\ProgramData\Freemium\Free PDF Perfect\Data\fftb [2014-02-09]
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ []

Chrome: 
=======
CHR Extension: (Docs) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-08]
CHR Extension: (Google Drive) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-08]
CHR Extension: (YouTube) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-08]
CHR Extension: (Google-Suche) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-08]
CHR Extension: (DVDVideoSoft) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2014-02-09]
CHR Extension: (Google Wallet) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-08]
CHR Extension: (Google Mail) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-08]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2014-02-08]

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151744 2014-02-09] (IObit)
S3 SXDS10; C:\Program Files\Common Files\soft Xpansion\sxds10.exe [234096 2014-02-09] (soft Xpansion)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69240 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-02-07] (Disc Soft Ltd)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-12-09] (Avira GmbH)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-09 15:55 - 2014-02-09 15:56 - 00009144 _____ () C:\Users\Rocky\Desktop\FRST.txt
2014-02-09 15:55 - 2014-02-09 15:55 - 00000000 ____D () C:\FRST
2014-02-09 15:32 - 2014-02-09 15:33 - 01137664 _____ (Farbar) C:\Users\Rocky\Desktop\FRST.exe
2014-02-09 13:24 - 2014-02-09 13:24 - 00000000 ____D () C:\Program Files\ESET
2014-02-09 13:20 - 2014-02-09 13:20 - 00000758 _____ () C:\Users\Rocky\Desktop\JRT.txt
2014-02-09 13:18 - 2014-02-09 13:18 - 00000000 ____D () C:\Windows\ERUNT
2014-02-09 13:12 - 2014-02-09 13:13 - 00000000 ____D () C:\AdwCleaner
2014-02-09 12:29 - 2014-02-09 12:29 - 02347384 _____ (ESET) C:\Users\Rocky\Downloads\esetsmartinstaller_deu.exe
2014-02-09 12:28 - 2014-02-09 12:28 - 01166132 _____ () C:\Users\Rocky\Downloads\adwcleaner.exe
2014-02-09 12:26 - 2014-02-09 12:26 - 00001076 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Malwarebytes
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-02-09 12:26 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-09 12:20 - 2014-02-09 12:20 - 00001219 _____ () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2014-02-09 12:20 - 2014-02-09 12:20 - 00001195 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\ProductData
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\IObit
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\ProgramData\IObit
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Program Files\IObit
2014-02-09 12:15 - 2014-02-09 12:15 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Rocky\Downloads\WiNlOgOn.exe
2014-02-09 12:14 - 2014-02-09 12:14 - 00015088 _____ () C:\Users\Rocky\Desktop\bookmarks-2014-02-09.json
2014-02-09 11:50 - 2014-02-09 11:50 - 00010464 _____ () C:\Windows\system32\sx_p2d.tlb
2014-02-09 11:50 - 2014-02-09 11:50 - 00002117 _____ () C:\Users\Rocky\Desktop\Free PDF Perfect.lnk
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\ProgramData\Freemium
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Freemium
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Common Files\soft Xpansion
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Common Files\Freemium
2014-02-09 11:45 - 2014-02-09 11:45 - 00000000 ____D () C:\Program Files\Covus Freemium
2014-02-09 11:44 - 2014-02-09 11:44 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-09 11:42 - 2014-02-09 11:58 - 00000000 ____D () C:\Program Files\JDownloader
2014-02-09 11:39 - 2012-08-23 15:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-02-09 11:39 - 2012-08-23 15:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-02-09 11:39 - 2012-08-23 15:41 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-02-09 11:39 - 2012-08-23 15:40 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-02-09 11:39 - 2012-08-23 15:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-09 11:39 - 2012-08-23 15:10 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-09 11:39 - 2012-08-23 14:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-02-09 11:39 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-02-09 11:39 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-02-09 11:39 - 2012-08-23 14:32 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-09 11:39 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-09 11:39 - 2012-08-23 12:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-02-09 11:39 - 2012-08-23 12:32 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-02-09 11:39 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-02-09 11:39 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-02-09 11:39 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-09 11:39 - 2012-08-23 11:08 - 02739712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-02-09 11:39 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-09 11:38 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-02-09 11:17 - 2014-02-09 11:17 - 00000000 ____D () C:\Users\Rocky\.appwork
2014-02-09 11:14 - 2014-02-09 11:14 - 00000000 ____D () C:\ProgramData\Synaptics
2014-02-09 10:58 - 2014-02-09 10:58 - 00000471 _____ () C:\Users\Rocky\Desktop\Daten (F).lnk
2014-02-09 10:50 - 2014-02-09 10:50 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\ProgramData\Sun
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\Program Files\Java
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-02-09 03:01 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-09 03:01 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-09 03:01 - 2013-11-26 10:22 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-09 03:01 - 2013-11-26 09:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-09 03:01 - 2013-11-26 09:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-09 03:01 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-09 03:01 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-09 03:01 - 2013-11-26 09:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-09 03:01 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-09 03:01 - 2013-11-26 09:29 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-09 03:01 - 2013-11-26 09:29 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-09 03:01 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-09 03:01 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-09 03:01 - 2013-11-26 09:13 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-09 03:01 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-09 03:01 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-09 03:01 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-09 03:01 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-09 03:01 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-08 12:21 - 2012-02-11 06:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-02-08 12:21 - 2011-03-11 06:39 - 00148864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-02-08 12:21 - 2011-03-11 06:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-02-08 12:21 - 2011-03-11 06:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-02-08 12:21 - 2011-03-11 06:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-02-08 12:21 - 2011-03-11 06:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-02-08 12:21 - 2011-03-11 06:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-02-08 12:21 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-02-08 12:21 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-02-08 12:21 - 2011-03-11 05:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-02-08 12:20 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-02-08 12:20 - 2013-04-17 08:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-02-08 12:20 - 2011-02-25 06:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-02-08 11:05 - 2014-02-08 18:32 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Apple Computer
2014-02-08 11:05 - 2014-02-08 11:05 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Apple Computer
2014-02-08 11:04 - 2014-02-08 11:04 - 00001762 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-08 11:03 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-02-08 11:02 - 2014-02-08 11:03 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-02-08 11:02 - 2014-02-08 11:03 - 00000000 ____D () C:\Program Files\iTunes
2014-02-08 11:02 - 2014-02-08 11:02 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-08 11:02 - 2014-02-08 11:02 - 00000000 ____D () C:\Program Files\iPod
2014-02-08 10:57 - 2014-02-08 10:57 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Apple
2014-02-08 10:57 - 2014-02-08 10:57 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-02-08 10:56 - 2014-02-08 11:02 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-08 10:56 - 2014-02-08 10:57 - 00000000 ____D () C:\ProgramData\Apple
2014-02-08 10:56 - 2014-02-08 10:56 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-08 10:54 - 2014-02-08 10:54 - 00002281 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DVDVideoSoft
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Program Files\DVDVideoSoft
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-02-08 10:42 - 2014-02-08 10:43 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DivX
2014-02-08 10:41 - 2014-02-08 10:43 - 00000000 ____D () C:\Program Files\DivX
2014-02-08 10:41 - 2014-02-08 10:43 - 00000000 ____D () C:\Program Files\Common Files\DivX Shared
2014-02-08 10:36 - 2014-02-08 10:43 - 00000000 ____D () C:\ProgramData\DivX
2014-02-08 10:35 - 2014-02-09 15:48 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-08 10:35 - 2014-02-09 13:15 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-08 10:35 - 2014-02-08 10:35 - 00002202 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-08 10:34 - 2014-02-08 10:35 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Google
2014-02-08 10:34 - 2014-02-08 10:35 - 00000000 ____D () C:\Program Files\Google
2014-02-08 10:34 - 2014-02-08 10:34 - 00001904 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-02-08 10:34 - 2014-02-08 10:34 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Canneverbe Limited
2014-02-08 10:34 - 2014-02-08 10:34 - 00000000 ____D () C:\Program Files\CDBurnerXP
2014-02-08 10:33 - 2014-02-08 10:33 - 00000000 ____D () C:\Program Files\Ant Renamer
2014-02-08 10:19 - 2014-02-08 10:19 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Synaptics
2014-02-08 00:38 - 2014-02-08 00:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-02-08 00:37 - 2014-02-08 00:37 - 00000000 ____D () C:\Program Files\Synaptics
2014-02-08 00:36 - 2014-02-08 00:38 - 00004718 _____ () C:\Windows\DPINST.LOG
2014-02-08 00:36 - 2014-02-08 00:38 - 00001378 _____ () C:\Windows\Synaptics.log
2014-02-08 00:36 - 2013-10-17 23:47 - 00418032 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2014-02-08 00:36 - 2013-10-17 23:47 - 00403696 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2014-02-08 00:36 - 2013-10-17 23:47 - 00208112 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2014-02-08 00:36 - 2013-10-17 23:47 - 00174832 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo19.dll
2014-02-08 00:36 - 2013-04-16 18:33 - 01629040 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-02-07 23:43 - 2014-02-08 01:24 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\vlc
2014-02-07 23:34 - 2014-02-07 23:34 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-07 23:34 - 2014-02-07 23:34 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-07 23:34 - 2014-02-07 23:34 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-07 23:34 - 2014-02-07 23:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-07 23:33 - 2014-02-07 23:33 - 00001033 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-07 23:32 - 2014-02-07 23:36 - 00010058 _____ () C:\Windows\IE11_main.log
2014-02-07 23:32 - 2014-02-07 23:32 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-07 23:30 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-02-07 23:30 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-02-07 23:30 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-02-07 23:30 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-02-07 23:30 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-02-07 23:30 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-02-07 23:30 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-02-07 23:30 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-02-07 23:30 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-02-07 23:30 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-02-07 23:30 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-02-07 23:30 - 2012-11-02 06:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-02-07 23:30 - 2012-07-04 22:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-02-07 23:30 - 2012-07-04 22:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-02-07 23:30 - 2012-07-04 22:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-02-07 23:30 - 2012-05-05 08:46 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-02-07 23:30 - 2012-04-07 12:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-02-07 23:30 - 2011-10-15 06:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-02-07 23:30 - 2011-07-09 03:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-02-07 23:30 - 2011-04-27 03:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-02-07 23:30 - 2011-04-27 03:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-02-07 23:30 - 2011-02-12 06:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-02-07 23:29 - 2013-09-14 01:48 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-02-07 23:29 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-02-07 23:29 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-02-07 23:29 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-02-07 23:29 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-02-07 23:29 - 2011-04-29 03:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-02-07 23:29 - 2011-04-29 03:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-02-07 23:29 - 2011-04-29 03:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-02-07 23:28 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-02-07 23:28 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-02-07 23:28 - 2012-11-30 00:17 - 00420064 _____ () C:\Windows\system32\locale.nls
2014-02-07 23:28 - 2012-06-06 06:05 - 01236992 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-07 23:28 - 2010-06-26 04:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-07 23:27 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-02-07 23:27 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-02-07 23:27 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-02-07 23:27 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-02-07 23:27 - 2013-07-26 02:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-02-07 23:27 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-02-07 23:27 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-02-07 23:27 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-02-07 23:27 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-02-07 23:27 - 2013-01-24 05:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-02-07 23:27 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-02-07 23:27 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-02-07 23:27 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-02-07 23:27 - 2011-08-27 05:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-02-07 23:27 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-02-07 23:27 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-02-07 23:27 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-02-07 23:26 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-02-07 23:26 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-02-07 23:26 - 2013-08-02 02:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-02-07 23:26 - 2013-08-02 02:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-02-07 23:26 - 2013-08-02 02:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 01:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-02-07 23:26 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-02-07 23:26 - 2012-03-17 08:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-02-07 23:26 - 2011-11-17 06:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-02-07 23:25 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-02-07 23:25 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-02-07 23:25 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-02-07 23:25 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-02-07 23:25 - 2013-06-15 04:38 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-02-07 23:25 - 2011-04-22 20:14 - 00027008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-02-07 23:25 - 2011-02-23 05:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-02-07 23:19 - 2014-02-08 11:22 - 00058016 _____ () C:\Users\Rocky\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-07 23:19 - 2014-02-07 23:19 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-02-07 23:16 - 2014-02-07 23:16 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-02-07 23:01 - 2014-02-07 23:01 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Macromedia
2014-02-07 23:01 - 2014-02-07 23:01 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Macromedia
2014-02-07 22:57 - 2014-02-09 15:13 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-07 22:57 - 2014-02-07 23:01 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-07 22:57 - 2014-02-07 23:01 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-07 22:57 - 2014-02-07 22:57 - 00000000 ____D () C:\Windows\system32\Macromed
2014-02-07 22:56 - 2014-02-07 22:58 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Adobe
2014-02-07 22:53 - 2014-02-04 10:04 - 372676465 _____ () C:\Users\Rocky\Desktop\sof-hawaii-five-0-s04e05-480p.mkv
2014-02-07 21:40 - 2014-02-07 21:40 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Adobe
2014-02-07 21:22 - 2014-02-04 10:48 - 377059524 _____ () C:\Users\Rocky\Desktop\tvp-arrow-s01e21-480p.mkv
2014-02-07 21:21 - 2014-02-03 11:59 - 357379928 _____ () C:\Users\Rocky\Desktop\sof-ncis-los-angeles-s05e06rp-480p.mkv
2014-02-07 21:21 - 2014-02-02 21:33 - 269426690 _____ () C:\Users\Rocky\Desktop\sof-ncis-s11e06-480p.mkv
2014-02-07 21:21 - 2014-01-31 22:32 - 283204215 _____ () C:\Users\Rocky\Desktop\sof-castle-s06e06-480p.mkv
2014-02-07 20:53 - 2014-02-07 21:40 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-07 20:53 - 2014-02-07 20:53 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Startmenü
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-02-07 20:53 - 2013-09-05 02:39 - 00053024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-02-07 20:53 - 2013-08-30 00:08 - 04265760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-02-07 20:53 - 2013-08-30 00:08 - 03006240 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2014-02-07 20:53 - 2013-08-30 00:08 - 02555168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-02-07 20:53 - 2013-08-30 00:08 - 00662816 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-02-07 20:53 - 2013-08-30 00:08 - 00209184 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-02-07 20:53 - 2013-08-30 00:08 - 00062752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-07 20:53 - 2009-07-14 05:09 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-07 20:53 - 2009-07-14 05:06 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-07 20:52 - 2014-02-07 20:53 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-02-07 20:52 - 2014-02-07 20:52 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-07 20:47 - 2012-07-26 04:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-02-07 20:47 - 2012-07-26 03:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-02-07 20:47 - 2012-06-02 15:34 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-02-07 20:46 - 2012-07-26 04:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-02-07 20:46 - 2012-07-26 04:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-02-07 20:46 - 2012-07-26 04:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-02-07 20:46 - 2012-07-26 04:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-02-07 20:46 - 2012-07-26 04:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-02-07 20:46 - 2012-07-26 03:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-02-07 20:46 - 2012-07-26 03:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-02-07 20:46 - 2012-06-02 15:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-02-07 20:46 - 2012-03-01 06:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-02-07 20:46 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-02-07 20:44 - 2014-02-07 20:45 - 00004188 _____ () C:\Windows\IE9_main.log
2014-02-07 20:43 - 2010-02-11 08:10 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2014-02-07 20:38 - 2014-02-07 20:39 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-07 20:38 - 2014-02-07 20:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ATSwpWDF_01009.Wdf
2014-02-07 20:38 - 2014-02-07 20:38 - 00000000 ____D () C:\Program Files\AuthenTec
2014-02-07 20:38 - 2014-01-06 16:20 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-07 20:35 - 2014-02-07 20:35 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-02-07 20:33 - 2014-02-07 20:33 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-02-07 20:32 - 2014-02-08 02:02 - 00016373 _____ () C:\Windows\IE10_main.log
2014-02-07 20:32 - 2014-02-07 20:32 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-02-07 20:28 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-02-07 20:28 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-02-07 20:28 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-02-07 20:28 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-02-07 20:28 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-02-07 20:28 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-02-07 20:28 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-02-07 20:28 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-02-07 20:28 - 2013-08-05 02:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-02-07 20:28 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-02-07 20:28 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-02-07 20:28 - 2013-07-09 05:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-02-07 20:28 - 2013-07-09 05:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-02-07 20:28 - 2013-07-09 05:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-02-07 20:28 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-02-07 20:28 - 2013-03-19 05:53 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-02-07 20:28 - 2013-03-19 04:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-02-07 20:28 - 2012-11-22 05:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-02-07 20:28 - 2012-11-01 05:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-02-07 20:28 - 2012-08-22 18:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-02-07 20:28 - 2012-08-21 21:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-02-07 20:28 - 2012-07-04 20:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-02-07 20:28 - 2012-05-14 05:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-02-07 20:28 - 2012-05-01 05:44 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-02-07 20:28 - 2012-04-28 04:17 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-02-07 20:28 - 2012-04-26 05:45 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-02-07 20:28 - 2012-04-26 05:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-02-07 20:28 - 2012-04-26 05:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-02-07 20:28 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-02-07 20:28 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-02-07 20:28 - 2011-10-26 05:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-02-07 20:28 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-02-07 20:28 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2014-02-07 20:28 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-02-07 20:28 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-02-07 20:28 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-02-07 20:28 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-02-07 20:28 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-02-07 20:28 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-02-07 20:28 - 2010-12-23 06:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-02-07 20:28 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-02-07 20:23 - 2012-10-03 17:42 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-02-07 20:23 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-02-07 20:23 - 2012-10-03 17:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-02-07 20:23 - 2012-10-03 17:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-02-07 20:23 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-02-07 20:23 - 2012-10-03 17:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-02-07 20:23 - 2012-10-03 16:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-02-07 20:23 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-02-07 20:23 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-02-07 20:18 - 2014-02-07 20:18 - 00001820 _____ () C:\Users\Public\Desktop\ImgBurn.lnk
2014-02-07 20:18 - 2014-02-07 20:18 - 00000000 ____D () C:\Program Files\ImgBurn
2014-02-07 20:16 - 2011-05-03 05:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-02-07 20:15 - 2014-02-09 02:12 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-07 20:15 - 2014-02-07 20:16 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Mozilla
2014-02-07 20:15 - 2014-02-07 20:16 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Mozilla
2014-02-07 20:15 - 2014-02-07 20:15 - 00001114 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-07 20:15 - 2014-02-07 20:15 - 00000000 ____D () C:\ProgramData\Mozilla
2014-02-07 20:15 - 2014-02-07 20:15 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-07 20:14 - 2014-02-07 20:14 - 00001905 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-02-07 20:13 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-02-07 20:13 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-02-07 20:13 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-02-07 20:13 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-02-07 20:13 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-02-07 20:13 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-02-07 20:13 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-02-07 20:13 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-02-07 20:13 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-02-07 20:13 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-02-07 20:13 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-02-07 20:13 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-02-07 20:13 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-02-07 20:13 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-02-07 20:13 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-02-07 20:13 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-02-07 20:13 - 2013-09-08 03:07 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-02-07 20:13 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-02-07 20:13 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-02-07 20:13 - 2013-08-29 02:50 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-02-07 20:13 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-02-07 20:13 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-02-07 20:13 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-02-07 20:13 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-07 20:13 - 2013-07-09 05:50 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-02-07 20:13 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-02-07 20:13 - 2013-06-04 05:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-02-07 20:13 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-02-07 20:13 - 2013-04-12 14:45 - 01211752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-02-07 20:13 - 2013-04-10 06:18 - 00218984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-02-07 20:13 - 2013-03-19 05:48 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-02-07 20:13 - 2013-03-19 03:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-02-07 20:13 - 2013-02-27 06:05 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-02-07 20:13 - 2013-02-27 05:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-02-07 20:13 - 2013-02-12 04:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-02-07 20:13 - 2013-01-03 06:04 - 00187752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-02-07 20:13 - 2012-09-25 23:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-02-07 20:13 - 2012-08-11 00:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-02-07 20:13 - 2011-11-19 15:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-02-07 20:13 - 2011-05-24 11:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-02-07 20:13 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-02-07 20:13 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-02-07 20:13 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-02-07 20:13 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-02-07 20:13 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-02-07 20:13 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-02-07 20:13 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-02-07 20:13 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-02-07 20:13 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-02-07 20:13 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-02-07 20:13 - 2011-03-03 06:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-02-07 20:13 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-02-07 20:10 - 2014-02-07 20:10 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-02-07 20:10 - 2014-02-07 20:10 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DAEMON Tools Lite
2014-02-07 20:10 - 2014-02-07 20:10 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite
2014-02-07 20:09 - 2014-02-07 20:10 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-02-07 20:09 - 2014-02-07 20:09 - 00000974 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-07 20:09 - 2014-02-07 20:09 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-07 20:06 - 2014-02-07 20:06 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Avira
2014-02-07 20:06 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-02-07 20:04 - 2014-02-07 20:04 - 00002021 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-07 20:04 - 2014-02-07 20:04 - 00000000 ____D () C:\ProgramData\Avira
2014-02-07 20:04 - 2014-02-07 20:04 - 00000000 ____D () C:\Program Files\Avira
2014-02-07 20:04 - 2013-12-09 11:37 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-07 20:04 - 2013-12-09 11:37 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-07 20:04 - 2013-12-09 11:37 - 00069240 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-07 20:04 - 2013-12-09 11:37 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-07 20:04 - 2013-12-09 11:37 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2014-02-07 19:48 - 2014-02-07 19:48 - 00000000 ____D () C:\ProgramData\createpart
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\ProgramData\launcher
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\ProgramData\explauncher
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\BM2005
2014-02-07 18:47 - 2014-01-16 09:59 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-02-07 18:35 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-02-07 18:35 - 2012-02-17 05:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-02-07 18:34 - 2014-02-07 18:34 - 00002408 _____ () C:\Users\Public\Desktop\Paragon Partition Manager™ 12 Professional.lnk
2014-02-07 18:34 - 2014-02-07 18:34 - 00000000 ____D () C:\Program Files\Paragon Software
2014-02-07 18:31 - 2014-02-07 20:08 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-02-07 18:31 - 2014-02-07 20:07 - 00000000 ____D () C:\Program Files\WinRAR
2014-02-07 18:31 - 2014-02-07 18:31 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\WinRAR
2014-02-07 18:21 - 2012-06-02 23:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-02-07 18:21 - 2012-06-02 23:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-02-07 18:21 - 2012-06-02 23:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-02-07 18:21 - 2012-06-02 23:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-02-07 18:21 - 2012-06-02 23:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-02-07 18:21 - 2012-06-02 23:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-02-07 18:21 - 2012-06-02 23:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-02-07 18:20 - 2014-02-09 11:17 - 00000000 ____D () C:\Users\Rocky
2014-02-07 18:20 - 2014-02-07 18:20 - 00001418 _____ () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-07 18:20 - 2014-02-07 18:20 - 00000020 ___SH () C:\Users\Rocky\ntuser.ini
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Netzwerkumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Druckumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 __SHD () C:\Recovery
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 ____D () C:\Users\Rocky\AppData\Local\VirtualStore
2014-02-07 18:20 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-02-07 18:20 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-02-07 18:20 - 2009-07-14 05:09 - 00000000 ___RD () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-07 18:20 - 2009-07-14 05:06 - 00000000 ___RD () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-07 18:12 - 2014-02-09 15:13 - 01536279 _____ () C:\Windows\WindowsUpdate.log
2014-02-07 18:10 - 2014-02-07 18:12 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-02-07 18:09 - 2014-02-07 18:20 - 00000000 ____D () C:\Windows\Panther
2014-02-07 18:08 - 2014-02-07 18:08 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-02-07 18:08 - 2010-11-20 22:30 - 00383786 __RSH () C:\bootmgr
2014-02-07 17:59 - 2014-02-07 17:59 - 00000000 ____D () C:\Windows.old

==================== One Month Modified Files and Folders =======

2014-02-09 15:56 - 2014-02-09 15:55 - 00009144 _____ () C:\Users\Rocky\Desktop\FRST.txt
2014-02-09 15:55 - 2014-02-09 15:55 - 00000000 ____D () C:\FRST
2014-02-09 15:48 - 2014-02-08 10:35 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-09 15:33 - 2014-02-09 15:32 - 01137664 _____ (Farbar) C:\Users\Rocky\Desktop\FRST.exe
2014-02-09 15:13 - 2014-02-07 22:57 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-09 15:13 - 2014-02-07 18:12 - 01536279 _____ () C:\Windows\WindowsUpdate.log
2014-02-09 13:24 - 2014-02-09 13:24 - 00000000 ____D () C:\Program Files\ESET
2014-02-09 13:20 - 2014-02-09 13:20 - 00000758 _____ () C:\Users\Rocky\Desktop\JRT.txt
2014-02-09 13:20 - 2010-11-20 22:03 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-09 13:18 - 2014-02-09 13:18 - 00000000 ____D () C:\Windows\ERUNT
2014-02-09 13:15 - 2014-02-08 10:35 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-09 13:15 - 2009-07-14 05:17 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-09 13:15 - 2009-07-14 05:07 - 00023730 _____ () C:\Windows\setupact.log
2014-02-09 13:13 - 2014-02-09 13:12 - 00000000 ____D () C:\AdwCleaner
2014-02-09 13:06 - 2010-11-20 22:49 - 00181616 _____ () C:\Windows\PFRO.log
2014-02-09 13:06 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Cursors
2014-02-09 13:05 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-02-09 13:05 - 2009-07-14 05:02 - 00019248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-09 13:05 - 2009-07-14 05:02 - 00019248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-09 13:05 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-02-09 12:29 - 2014-02-09 12:29 - 02347384 _____ (ESET) C:\Users\Rocky\Downloads\esetsmartinstaller_deu.exe
2014-02-09 12:28 - 2014-02-09 12:28 - 01166132 _____ () C:\Users\Rocky\Downloads\adwcleaner.exe
2014-02-09 12:26 - 2014-02-09 12:26 - 00001076 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Malwarebytes
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-02-09 12:20 - 2014-02-09 12:20 - 00001219 _____ () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2014-02-09 12:20 - 2014-02-09 12:20 - 00001195 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\ProductData
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\IObit
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\ProgramData\IObit
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Program Files\IObit
2014-02-09 12:15 - 2014-02-09 12:15 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Rocky\Downloads\WiNlOgOn.exe
2014-02-09 12:14 - 2014-02-09 12:14 - 00015088 _____ () C:\Users\Rocky\Desktop\bookmarks-2014-02-09.json
2014-02-09 11:58 - 2014-02-09 11:42 - 00000000 ____D () C:\Program Files\JDownloader
2014-02-09 11:50 - 2014-02-09 11:50 - 00010464 _____ () C:\Windows\system32\sx_p2d.tlb
2014-02-09 11:50 - 2014-02-09 11:50 - 00002117 _____ () C:\Users\Rocky\Desktop\Free PDF Perfect.lnk
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\ProgramData\Freemium
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Freemium
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Common Files\soft Xpansion
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Common Files\Freemium
2014-02-09 11:45 - 2014-02-09 11:45 - 00000000 ____D () C:\Program Files\Covus Freemium
2014-02-09 11:44 - 2014-02-09 11:44 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-09 11:17 - 2014-02-09 11:17 - 00000000 ____D () C:\Users\Rocky\.appwork
2014-02-09 11:17 - 2014-02-07 18:20 - 00000000 ____D () C:\Users\Rocky
2014-02-09 11:14 - 2014-02-09 11:14 - 00000000 ____D () C:\ProgramData\Synaptics
2014-02-09 10:58 - 2014-02-09 10:58 - 00000471 _____ () C:\Users\Rocky\Desktop\Daten (F).lnk
2014-02-09 10:50 - 2014-02-09 10:50 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\ProgramData\Sun
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\Program Files\Java
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-02-09 09:55 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-02-09 03:18 - 2009-07-14 05:02 - 00270344 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-09 02:12 - 2014-02-07 20:15 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-08 18:32 - 2014-02-08 11:05 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Apple Computer
2014-02-08 11:22 - 2014-02-07 23:19 - 00058016 _____ () C:\Users\Rocky\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-08 11:20 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-08 11:05 - 2014-02-08 11:05 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Apple Computer
2014-02-08 11:04 - 2014-02-08 11:04 - 00001762 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-08 11:03 - 2014-02-08 11:02 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-02-08 11:03 - 2014-02-08 11:02 - 00000000 ____D () C:\Program Files\iTunes
2014-02-08 11:02 - 2014-02-08 11:02 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-08 11:02 - 2014-02-08 11:02 - 00000000 ____D () C:\Program Files\iPod
2014-02-08 11:02 - 2014-02-08 10:56 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-08 10:57 - 2014-02-08 10:57 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Apple
2014-02-08 10:57 - 2014-02-08 10:57 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-02-08 10:57 - 2014-02-08 10:56 - 00000000 ____D () C:\ProgramData\Apple
2014-02-08 10:56 - 2014-02-08 10:56 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-08 10:54 - 2014-02-08 10:54 - 00002281 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DVDVideoSoft
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Program Files\DVDVideoSoft
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-02-08 10:43 - 2014-02-08 10:42 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DivX
2014-02-08 10:43 - 2014-02-08 10:41 - 00000000 ____D () C:\Program Files\DivX
2014-02-08 10:43 - 2014-02-08 10:41 - 00000000 ____D () C:\Program Files\Common Files\DivX Shared
2014-02-08 10:43 - 2014-02-08 10:36 - 00000000 ____D () C:\ProgramData\DivX
2014-02-08 10:35 - 2014-02-08 10:35 - 00002202 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-08 10:35 - 2014-02-08 10:34 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Google
2014-02-08 10:35 - 2014-02-08 10:34 - 00000000 ____D () C:\Program Files\Google
2014-02-08 10:34 - 2014-02-08 10:34 - 00001904 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-02-08 10:34 - 2014-02-08 10:34 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Canneverbe Limited
2014-02-08 10:34 - 2014-02-08 10:34 - 00000000 ____D () C:\Program Files\CDBurnerXP
2014-02-08 10:33 - 2014-02-08 10:33 - 00000000 ____D () C:\Program Files\Ant Renamer
2014-02-08 10:19 - 2014-02-08 10:19 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Synaptics
2014-02-08 02:03 - 2011-04-12 03:25 - 00000000 ____D () C:\Program Files\Windows Journal
2014-02-08 02:03 - 2009-07-14 05:51 - 00000000 ____D () C:\Program Files\Windows Defender
2014-02-08 02:03 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-02-08 02:02 - 2014-02-07 20:32 - 00016373 _____ () C:\Windows\IE10_main.log
2014-02-08 01:24 - 2014-02-07 23:43 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\vlc
2014-02-08 00:38 - 2014-02-08 00:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-02-08 00:38 - 2014-02-08 00:36 - 00004718 _____ () C:\Windows\DPINST.LOG
2014-02-08 00:38 - 2014-02-08 00:36 - 00001378 _____ () C:\Windows\Synaptics.log
2014-02-08 00:37 - 2014-02-08 00:37 - 00000000 ____D () C:\Program Files\Synaptics
2014-02-07 23:36 - 2014-02-07 23:32 - 00010058 _____ () C:\Windows\IE11_main.log
2014-02-07 23:34 - 2014-02-07 23:34 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-07 23:34 - 2014-02-07 23:34 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-07 23:34 - 2014-02-07 23:34 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-07 23:34 - 2014-02-07 23:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-07 23:33 - 2014-02-07 23:33 - 00001033 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-07 23:32 - 2014-02-07 23:32 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-07 23:22 - 2010-11-20 22:31 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-02-07 23:22 - 2010-11-20 22:31 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2014-02-07 23:22 - 2010-11-20 22:30 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2014-02-07 23:19 - 2014-02-07 23:19 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-02-07 23:16 - 2014-02-07 23:16 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-02-07 23:01 - 2014-02-07 23:01 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Macromedia
2014-02-07 23:01 - 2014-02-07 23:01 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Macromedia
2014-02-07 23:01 - 2014-02-07 22:57 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-07 23:01 - 2014-02-07 22:57 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-07 22:58 - 2014-02-07 22:56 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Adobe
2014-02-07 22:57 - 2014-02-07 22:57 - 00000000 ____D () C:\Windows\system32\Macromed
2014-02-07 21:40 - 2014-02-07 21:40 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Adobe
2014-02-07 21:40 - 2014-02-07 20:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\it-IT
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\el-GR
2014-02-07 20:53 - 2014-02-07 20:53 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Startmenü
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-02-07 20:53 - 2014-02-07 20:52 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-02-07 20:53 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Help
2014-02-07 20:52 - 2014-02-07 20:52 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-07 20:45 - 2014-02-07 20:44 - 00004188 _____ () C:\Windows\IE9_main.log
2014-02-07 20:39 - 2014-02-07 20:38 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-07 20:38 - 2014-02-07 20:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ATSwpWDF_01009.Wdf
2014-02-07 20:38 - 2014-02-07 20:38 - 00000000 ____D () C:\Program Files\AuthenTec
2014-02-07 20:38 - 2009-07-14 05:51 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-02-07 20:35 - 2014-02-07 20:35 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-02-07 20:33 - 2014-02-07 20:33 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-02-07 20:32 - 2014-02-07 20:32 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-02-07 20:18 - 2014-02-07 20:18 - 00001820 _____ () C:\Users\Public\Desktop\ImgBurn.lnk
2014-02-07 20:18 - 2014-02-07 20:18 - 00000000 ____D () C:\Program Files\ImgBurn
2014-02-07 20:16 - 2014-02-07 20:15 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Mozilla
2014-02-07 20:16 - 2014-02-07 20:15 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Mozilla
2014-02-07 20:15 - 2014-02-07 20:15 - 00001114 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-07 20:15 - 2014-02-07 20:15 - 00000000 ____D () C:\ProgramData\Mozilla
2014-02-07 20:15 - 2014-02-07 20:15 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-07 20:14 - 2014-02-07 20:14 - 00001905 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-02-07 20:10 - 2014-02-07 20:10 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-02-07 20:10 - 2014-02-07 20:10 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DAEMON Tools Lite
2014-02-07 20:10 - 2014-02-07 20:10 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite
2014-02-07 20:10 - 2014-02-07 20:09 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-02-07 20:09 - 2014-02-07 20:09 - 00000974 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-07 20:09 - 2014-02-07 20:09 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-07 20:08 - 2014-02-07 18:31 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-02-07 20:07 - 2014-02-07 18:31 - 00000000 ____D () C:\Program Files\WinRAR
2014-02-07 20:06 - 2014-02-07 20:06 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Avira
2014-02-07 20:04 - 2014-02-07 20:04 - 00002021 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-07 20:04 - 2014-02-07 20:04 - 00000000 ____D () C:\ProgramData\Avira
2014-02-07 20:04 - 2014-02-07 20:04 - 00000000 ____D () C:\Program Files\Avira
2014-02-07 20:04 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-02-07 19:48 - 2014-02-07 19:48 - 00000000 ____D () C:\ProgramData\createpart
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\ProgramData\launcher
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\ProgramData\explauncher
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\BM2005
2014-02-07 18:36 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-02-07 18:34 - 2014-02-07 18:34 - 00002408 _____ () C:\Users\Public\Desktop\Paragon Partition Manager™ 12 Professional.lnk
2014-02-07 18:34 - 2014-02-07 18:34 - 00000000 ____D () C:\Program Files\Paragon Software
2014-02-07 18:31 - 2014-02-07 18:31 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\WinRAR
2014-02-07 18:20 - 2014-02-07 18:20 - 00001418 _____ () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-07 18:20 - 2014-02-07 18:20 - 00000020 ___SH () C:\Users\Rocky\ntuser.ini
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Netzwerkumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Druckumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 __SHD () C:\Recovery
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 ____D () C:\Users\Rocky\AppData\Local\VirtualStore
2014-02-07 18:20 - 2014-02-07 18:09 - 00000000 ____D () C:\Windows\Panther
2014-02-07 18:20 - 2009-07-14 05:51 - 00000000 ____D () C:\Windows\system32\restore
2014-02-07 18:20 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Default
2014-02-07 18:20 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\Recovery
2014-02-07 18:20 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Windows NT
2014-02-07 18:12 - 2014-02-07 18:10 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-02-07 18:10 - 2011-04-12 03:26 - 00000000 ____D () C:\Windows\CSC
2014-02-07 18:10 - 2009-07-14 05:02 - 00002790 _____ () C:\Windows\DtcInstall.log
2014-02-07 18:08 - 2014-02-07 18:08 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-02-07 18:08 - 2009-07-14 05:55 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-02-07 18:08 - 2009-07-14 05:51 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-02-07 17:59 - 2014-02-07 17:59 - 00000000 ____D () C:\Windows.old
2014-02-04 10:48 - 2014-02-07 21:22 - 377059524 _____ () C:\Users\Rocky\Desktop\tvp-arrow-s01e21-480p.mkv
2014-02-04 10:04 - 2014-02-07 22:53 - 372676465 _____ () C:\Users\Rocky\Desktop\sof-hawaii-five-0-s04e05-480p.mkv
2014-02-03 11:59 - 2014-02-07 21:21 - 357379928 _____ () C:\Users\Rocky\Desktop\sof-ncis-los-angeles-s05e06rp-480p.mkv
2014-02-02 21:33 - 2014-02-07 21:21 - 269426690 _____ () C:\Users\Rocky\Desktop\sof-ncis-s11e06-480p.mkv
2014-01-31 22:32 - 2014-02-07 21:21 - 283204215 _____ () C:\Users\Rocky\Desktop\sof-castle-s06e06-480p.mkv
2014-01-16 09:59 - 2014-02-07 18:47 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\Rocky\AppData\Local\Temp\avgnt.exe
C:\Users\Rocky\AppData\Local\Temp\proxy_vole4723490287128604342.dll
C:\Users\Rocky\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-08 12:40

==================== End Of Log ============================

--- --- ---

Addition.txt:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 09-02-2014
Ran by Rocky at 2014-02-09 15:56:33
Running from C:\Users\Rocky\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Adobe Flash Player 12 Plugin (Version: 12.0.0.44 - Adobe Systems Incorporated)
Ant Renamer (Version: 2.10.0 - Ant Software)
Apple Application Support (Version: 3.0 - Apple Inc.)
Apple Mobile Device Support (Version: 7.1.0.32 - Apple Inc.)
Apple Software Update (Version: 2.1.3.127 - Apple Inc.)
Avira Free Antivirus (Version: 14.0.2.286 - Avira)
Bonjour (Version: 3.0.0.10 - Apple Inc.)
CCleaner (Version: 4.10 - Piriform)
CDBurnerXP (Version: 4.5.2.4478 - CDBurnerXP)
DAEMON Tools Lite (Version: 4.48.1.0347 - Disc Soft Ltd)
DivX-Setup (Version: 2.6.1.90 - DivX, LLC)
ESET Online Scanner v3 (Version:  - )
Free Pdf Perfect Prereq (Version: 1.0.0.0 - Covus Freemium GmbH)
Free Pdf Perfect Prereq (Version: 1.0.0.0 - Covus Freemium GmbH) Hidden
Free YouTube to MP3 Converter version 3.12.20.1230 (Version: 3.12.20.1230 - DVDVideoSoft Ltd.)
Freemium Free PDF Perfect (Version: 1.0 - Freemium)
Google Chrome (Version: 32.0.1700.107 - Google Inc.)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
ImgBurn (Version: 2.5.8.0 - LIGHTNING UK!)
IObit Uninstaller (Version: 3.1.7.2405 - IObit)
iTunes (Version: 11.1.4.62 - Apple Inc.)
Java 7 Update 45 (Version: 7.0.450 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 27.0 (x86 de) (Version: 27.0 - Mozilla)
Mozilla Maintenance Service (Version: 27.0 - Mozilla)
NVIDIA Grafiktreiber 327.02 (Version: 327.02 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 327.02 (Version: 327.02 - NVIDIA Corporation) Hidden
NVIDIA Update 1.14.17 (Version: 1.14.17 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.14.17 - NVIDIA Corporation) Hidden
Paragon Partition Manager™ 12 Professional (Version: 90.00.0003 - Paragon Software)
Synaptics Pointing Device Driver (Version: 17.0.19.0 - Synaptics Incorporated)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 2.1.3 (Version: 2.1.3 - VideoLAN)
WinRAR 5.01 (32-Bit) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points  =========================

07-02-2014 19:10:49 Gerätetreiber-Paketinstallation: DT Soft Ltd Systemgeräte
07-02-2014 19:28:59 Windows Update
07-02-2014 22:21:20 Windows Update
07-02-2014 22:30:57 Windows Update
07-02-2014 23:37:28 Gerätetreiber-Paketinstallation: Synaptics Mäuse und andere Zeigegeräte
08-02-2014 01:02:01 Windows Update
08-02-2014 09:57:51 Installed iTunes
09-02-2014 02:00:14 Windows Update
09-02-2014 10:38:17 Windows Update
09-02-2014 10:44:38 Free Pdf Perfect Prereq
09-02-2014 11:21:38 IObit Uninstaller restore point

==================== Hosts content: ==========================

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0862C638-C0FF-418A-B684-9983D14F35C2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-07] (Adobe Systems Incorporated)
Task: {3CA086AC-BF1F-4729-8E84-8ECFD02B1C84} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-02-08] (Google Inc.)
Task: {431B4AC1-D3CD-4AD8-9CB7-871641D00CFE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-02-08] (Google Inc.)
Task: {5397618C-4B54-4EA6-98AD-57A369422A2A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {77D54360-26C8-4E48-88EC-F29BE3192AD3} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe [2014-02-09] (IObit)
Task: {FB33AA02-0D66-4214-8B77-345213EEE86A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-11-15 01:48 - 2013-11-15 01:48 - 01861968 _____ () C:\Program Files\DivX\DivX Update\DivXUpdate.exe
2013-11-15 01:49 - 2013-11-15 01:49 - 00100688 _____ () C:\Program Files\DivX\DivX Update\DivXUpdateCheck.dll
2014-01-20 13:17 - 2014-01-20 13:17 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-01-20 13:16 - 2014-01-20 13:16 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-02-07 20:15 - 2014-01-28 07:54 - 03583600 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (02/09/2014 03:13:06 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}


Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 45%
Total physical RAM: 3066.88 MB
Available physical RAM: 1665.24 MB
Total Pagefile: 6132.04 MB
Available Pagefile: 4660.59 MB
Total Virtual: 2047.88 MB
Available Virtual: 1891.92 MB

==================== Drives ================================

Drive c: (Windows 7) (Fixed) (Total:200.06 GB) (Free:172.93 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (Windows Vista) (Fixed) (Total:39.06 GB) (Free:14.83 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (Daten) (Fixed) (Total:692.38 GB) (Free:535.8 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 87979491)
Partition 1: (Not Active) - (Size=39 GB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=692 GB) - (Type=07 NTFS)

==================== End Of Log ============================

cosinus · 09.02.2014, 16:15

Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte

Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.

Starte bitte die mbar.exe.
Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
Klicke auf den CleanUp Button und erlaube den Neustart.
Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
Nach dem Neustart starte die mbar.exe erneut.
Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.

Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers

balirocky · 09.02.2014, 16:32

Also das Programm hat keinen Fund ausgegeben und somit auch keine Anweisung zum Neustart gegeben.

Code:

ATTFilter

Malwarebytes Anti-Rootkit BETA 1.07.0.1009
www.malwarebytes.org

Database version: v2014.02.09.04

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16476
Rocky :: ROCKY-PC [administrator]

09.02.2014 16:24:09
mbar-log-2014-02-09 (16-24-09).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 223247
Time elapsed: 6 minute(s), 37 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)

cosinus · 09.02.2014, 16:43

Adware/Junkware/Toolbars entfernen

1. Schritt: adwCleaner

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

3. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

balirocky · 09.02.2014, 17:01

Code:

ATTFilter

# AdwCleaner v3.018 - Bericht erstellt am 09/02/2014 um 16:48:48
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows 7 Professional N Service Pack 1 (32 bits)
# Benutzername : Rocky - ROCKY-PC
# Gestartet von : C:\Users\Rocky\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v27.0 (de)

[ Datei : C:\Users\Rocky\AppData\Roaming\Mozilla\Firefox\Profiles\accogmht.default-1391955384294\prefs.js ]


-\\ Google Chrome v32.0.1700.107

[ Datei : C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1972 octets] - [09/02/2014 13:12:47]
AdwCleaner[R1].txt - [1062 octets] - [09/02/2014 16:47:58]
AdwCleaner[S0].txt - [2037 octets] - [09/02/2014 13:13:33]
AdwCleaner[S1].txt - [985 octets] - [09/02/2014 16:48:48]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1044 octets] ##########

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.1 (02.04.2014:1)
OS: Windows 7 Professional N x86
Ran by Rocky on 09.02.2014 at 16:52:58,42
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2342514540-3986762835-358528620-1001\Software\Microsoft\Internet Explorer\Main\\Start Page



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 09.02.2014 at 16:55:26,07
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-02-2014 02
Ran by Rocky (administrator) on ROCKY-PC on 09-02-2014 16:59:19
Running from C:\Users\Rocky\Desktop
Microsoft Windows 7 Professional N  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\AUDIODG.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2439920 2013-10-17] (Synaptics Incorporated)
HKLM\...\Run: [DivXMediaServer] - C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-01-20] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKU\S-1-5-21-2342514540-3986762835-358528620-1001\...\Run: [DAEMON Tools Lite] - C:\Program Files\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)

==================== Internet (Whitelisted) ====================

SearchScopes: HKLM - DefaultScope value is missing.
BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll (IObit)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Rocky\AppData\Roaming\Mozilla\Firefox\Profiles\accogmht.default-1391955384294
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @java.com/DTPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @soft-xpansion/npsxpdf - C:\Program Files\Common Files\Freemium\np-sxpdf.dll (soft-Xpansion)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\Rocky\AppData\Roaming\Mozilla\Firefox\Profiles\accogmht.default-1391955384294\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-02-09]
FF HKLM\...\Firefox\Extensions: [{B45418F9-6406-4828-9D1A-35313FB1E2D6}] - C:\ProgramData\Freemium\Free PDF Perfect\Data\fftb
FF Extension: Free PDF Perfect - C:\ProgramData\Freemium\Free PDF Perfect\Data\fftb [2014-02-09]
FF HKLM\...\Thunderbird\Extensions: [{B45418F9-6406-4828-9D1A-35313FB1E2D6}] - C:\ProgramData\Freemium\Free PDF Perfect\Data\fftb
FF Extension: Free PDF Perfect - C:\ProgramData\Freemium\Free PDF Perfect\Data\fftb [2014-02-09]
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ []

Chrome: 
=======
CHR Extension: (Docs) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-08]
CHR Extension: (Google Drive) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-08]
CHR Extension: (YouTube) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-08]
CHR Extension: (Google-Suche) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-08]
CHR Extension: (DVDVideoSoft) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2014-02-09]
CHR Extension: (Google Wallet) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-08]
CHR Extension: (Google Mail) - C:\Users\Rocky\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-08]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Program Files\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx [2014-02-08]

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2151744 2014-02-09] (IObit)
S3 SXDS10; C:\Program Files\Common Files\soft Xpansion\sxds10.exe [234096 2014-02-09] (soft Xpansion)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [90400 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [135648 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [69240 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-02-07] (Disc Soft Ltd)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-12-09] (Avira GmbH)
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-09 16:57 - 2014-02-09 16:57 - 00000000 ____D () C:\Users\Rocky\Desktop\FRST-OlderVersion
2014-02-09 16:55 - 2014-02-09 16:55 - 00001354 _____ () C:\Users\Rocky\Desktop\JRT.txt
2014-02-09 16:46 - 2014-02-09 16:48 - 10773621 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part6.rar.part
2014-02-09 16:46 - 2014-02-09 16:48 - 10420628 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part4.rar.part
2014-02-09 16:46 - 2014-02-09 16:48 - 09739564 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part3.rar.part
2014-02-09 16:46 - 2014-02-09 16:48 - 09493588 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part5.rar.part
2014-02-09 16:46 - 2014-02-09 16:48 - 08193032 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part1.rar.part
2014-02-09 16:46 - 2014-02-09 16:48 - 07902280 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part2.rar.part
2014-02-09 16:45 - 2014-02-09 16:48 - 16513824 _____ () C:\Users\Rocky\Downloads\fdgfgfdgdfgfdgdfgd.part1.rar.part
2014-02-09 16:45 - 2014-02-09 16:48 - 16152356 _____ () C:\Users\Rocky\Downloads\fdgfgfdgdfgfdgdfgd.part2.rar.part
2014-02-09 16:44 - 2014-02-09 16:48 - 28541057 _____ () C:\Users\Rocky\Downloads\fdgfgfdgdfgfdgdfgd.part5.rar.part
2014-02-09 16:44 - 2014-02-09 16:48 - 17946708 _____ () C:\Users\Rocky\Downloads\fdgfgfdgdfgfdgdfgd.part4.rar.part
2014-02-09 16:44 - 2014-02-09 16:48 - 16680176 _____ () C:\Users\Rocky\Downloads\fdgfgfdgdfgfdgdfgd.part3.rar.part
2014-02-09 16:24 - 2014-02-09 16:30 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-09 16:24 - 2014-02-09 16:24 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-02-09 16:23 - 2014-02-09 16:30 - 00000000 ____D () C:\Users\Rocky\Desktop\mbar
2014-02-09 16:23 - 2014-02-09 16:23 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-02-09 16:20 - 2014-02-09 16:20 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Rocky\Downloads\mbar-1.07.0.1009.exe
2014-02-09 16:10 - 2014-02-09 16:10 - 00001359 _____ () C:\Users\Rocky\Desktop\JDownloader - Verknüpfung.lnk
2014-02-09 15:55 - 2014-02-09 16:59 - 00009119 _____ () C:\Users\Rocky\Desktop\FRST.txt
2014-02-09 15:55 - 2014-02-09 16:59 - 00000000 ____D () C:\FRST
2014-02-09 15:32 - 2014-02-09 16:57 - 01138688 _____ (Farbar) C:\Users\Rocky\Desktop\FRST.exe
2014-02-09 13:24 - 2014-02-09 13:24 - 00000000 ____D () C:\Program Files\ESET
2014-02-09 13:18 - 2014-02-09 13:18 - 00000000 ____D () C:\Windows\ERUNT
2014-02-09 13:12 - 2014-02-09 16:48 - 00000000 ____D () C:\AdwCleaner
2014-02-09 12:29 - 2014-02-09 12:29 - 02347384 _____ (ESET) C:\Users\Rocky\Downloads\esetsmartinstaller_deu.exe
2014-02-09 12:28 - 2014-02-09 12:28 - 01166132 _____ () C:\Users\Rocky\Downloads\adwcleaner.exe
2014-02-09 12:26 - 2014-02-09 12:26 - 00001076 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Malwarebytes
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-02-09 12:26 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-02-09 12:20 - 2014-02-09 12:20 - 00001219 _____ () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2014-02-09 12:20 - 2014-02-09 12:20 - 00001195 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\ProductData
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\IObit
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\ProgramData\IObit
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Program Files\IObit
2014-02-09 12:15 - 2014-02-09 12:15 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Rocky\Downloads\WiNlOgOn.exe
2014-02-09 12:14 - 2014-02-09 12:14 - 00015088 _____ () C:\Users\Rocky\Desktop\bookmarks-2014-02-09.json
2014-02-09 11:50 - 2014-02-09 11:50 - 00010464 _____ () C:\Windows\system32\sx_p2d.tlb
2014-02-09 11:50 - 2014-02-09 11:50 - 00002117 _____ () C:\Users\Rocky\Desktop\Free PDF Perfect.lnk
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\ProgramData\Freemium
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Freemium
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Common Files\soft Xpansion
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Common Files\Freemium
2014-02-09 11:45 - 2014-02-09 11:45 - 00000000 ____D () C:\Program Files\Covus Freemium
2014-02-09 11:44 - 2014-02-09 11:44 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-09 11:42 - 2014-02-09 16:34 - 00000000 ____D () C:\Program Files\JDownloader
2014-02-09 11:39 - 2012-08-23 15:48 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-02-09 11:39 - 2012-08-23 15:44 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-02-09 11:39 - 2012-08-23 15:41 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-02-09 11:39 - 2012-08-23 15:40 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-02-09 11:39 - 2012-08-23 15:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-02-09 11:39 - 2012-08-23 15:10 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-02-09 11:39 - 2012-08-23 14:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-02-09 11:39 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-02-09 11:39 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-02-09 11:39 - 2012-08-23 14:32 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-02-09 11:39 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-02-09 11:39 - 2012-08-23 12:40 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-02-09 11:39 - 2012-08-23 12:32 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-02-09 11:39 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-02-09 11:39 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-02-09 11:39 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-02-09 11:39 - 2012-08-23 11:08 - 02739712 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-02-09 11:39 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-02-09 11:38 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-02-09 11:17 - 2014-02-09 11:17 - 00000000 ____D () C:\Users\Rocky\.appwork
2014-02-09 11:14 - 2014-02-09 11:14 - 00000000 ____D () C:\ProgramData\Synaptics
2014-02-09 10:58 - 2014-02-09 10:58 - 00000471 _____ () C:\Users\Rocky\Desktop\Daten (F).lnk
2014-02-09 10:50 - 2014-02-09 10:50 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\ProgramData\Sun
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\Program Files\Java
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-02-09 03:01 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-02-09 03:01 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-02-09 03:01 - 2013-11-26 10:22 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-09 03:01 - 2013-11-26 09:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-09 03:01 - 2013-11-26 09:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-09 03:01 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-09 03:01 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-09 03:01 - 2013-11-26 09:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-09 03:01 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-09 03:01 - 2013-11-26 09:29 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-09 03:01 - 2013-11-26 09:29 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-09 03:01 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-09 03:01 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-09 03:01 - 2013-11-26 09:13 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-09 03:01 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-09 03:01 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-09 03:01 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-09 03:01 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-09 03:01 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-08 12:21 - 2012-02-11 06:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-02-08 12:21 - 2011-03-11 06:39 - 00148864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-02-08 12:21 - 2011-03-11 06:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-02-08 12:21 - 2011-03-11 06:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-02-08 12:21 - 2011-03-11 06:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-02-08 12:21 - 2011-03-11 06:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-02-08 12:21 - 2011-03-11 06:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-02-08 12:21 - 2011-03-11 06:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-02-08 12:21 - 2011-03-11 06:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-02-08 12:21 - 2011-03-11 05:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-02-08 12:20 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-02-08 12:20 - 2013-04-17 08:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-02-08 12:20 - 2011-02-25 06:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-02-08 11:05 - 2014-02-08 18:32 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Apple Computer
2014-02-08 11:05 - 2014-02-08 11:05 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Apple Computer
2014-02-08 11:04 - 2014-02-08 11:04 - 00001762 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-08 11:03 - 2012-08-21 13:01 - 00026840 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-02-08 11:02 - 2014-02-08 11:03 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-02-08 11:02 - 2014-02-08 11:03 - 00000000 ____D () C:\Program Files\iTunes
2014-02-08 11:02 - 2014-02-08 11:02 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-08 11:02 - 2014-02-08 11:02 - 00000000 ____D () C:\Program Files\iPod
2014-02-08 10:57 - 2014-02-08 10:57 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Apple
2014-02-08 10:57 - 2014-02-08 10:57 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-02-08 10:56 - 2014-02-08 11:02 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-08 10:56 - 2014-02-08 10:57 - 00000000 ____D () C:\ProgramData\Apple
2014-02-08 10:56 - 2014-02-08 10:56 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-08 10:54 - 2014-02-08 10:54 - 00002281 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DVDVideoSoft
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Program Files\DVDVideoSoft
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-02-08 10:42 - 2014-02-08 10:43 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DivX
2014-02-08 10:41 - 2014-02-08 10:43 - 00000000 ____D () C:\Program Files\DivX
2014-02-08 10:41 - 2014-02-08 10:43 - 00000000 ____D () C:\Program Files\Common Files\DivX Shared
2014-02-08 10:36 - 2014-02-08 10:43 - 00000000 ____D () C:\ProgramData\DivX
2014-02-08 10:35 - 2014-02-09 16:50 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-08 10:35 - 2014-02-09 16:48 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-08 10:35 - 2014-02-08 10:35 - 00002202 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-08 10:34 - 2014-02-08 10:35 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Google
2014-02-08 10:34 - 2014-02-08 10:35 - 00000000 ____D () C:\Program Files\Google
2014-02-08 10:34 - 2014-02-08 10:34 - 00001904 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-02-08 10:34 - 2014-02-08 10:34 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Canneverbe Limited
2014-02-08 10:34 - 2014-02-08 10:34 - 00000000 ____D () C:\Program Files\CDBurnerXP
2014-02-08 10:33 - 2014-02-08 10:33 - 00000000 ____D () C:\Program Files\Ant Renamer
2014-02-08 10:19 - 2014-02-08 10:19 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Synaptics
2014-02-08 00:38 - 2014-02-08 00:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-02-08 00:37 - 2014-02-08 00:37 - 00000000 ____D () C:\Program Files\Synaptics
2014-02-08 00:36 - 2014-02-08 00:38 - 00004718 _____ () C:\Windows\DPINST.LOG
2014-02-08 00:36 - 2014-02-08 00:38 - 00001378 _____ () C:\Windows\Synaptics.log
2014-02-08 00:36 - 2013-10-17 23:47 - 00418032 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2014-02-08 00:36 - 2013-10-17 23:47 - 00403696 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2014-02-08 00:36 - 2013-10-17 23:47 - 00208112 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2014-02-08 00:36 - 2013-10-17 23:47 - 00174832 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo19.dll
2014-02-08 00:36 - 2013-04-16 18:33 - 01629040 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-02-07 23:43 - 2014-02-08 01:24 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\vlc
2014-02-07 23:34 - 2014-02-07 23:34 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-07 23:34 - 2014-02-07 23:34 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-07 23:34 - 2014-02-07 23:34 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-07 23:34 - 2014-02-07 23:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-07 23:33 - 2014-02-07 23:33 - 00001033 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-07 23:32 - 2014-02-07 23:36 - 00010058 _____ () C:\Windows\IE11_main.log
2014-02-07 23:32 - 2014-02-07 23:32 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-07 23:30 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-02-07 23:30 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-02-07 23:30 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-02-07 23:30 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-02-07 23:30 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-02-07 23:30 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-02-07 23:30 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-02-07 23:30 - 2013-05-10 04:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-02-07 23:30 - 2012-12-07 13:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-02-07 23:30 - 2012-12-07 13:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-02-07 23:30 - 2012-12-07 11:46 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-02-07 23:30 - 2012-12-07 11:46 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-02-07 23:30 - 2012-11-02 06:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-02-07 23:30 - 2012-07-04 22:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-02-07 23:30 - 2012-07-04 22:14 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-02-07 23:30 - 2012-07-04 22:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-02-07 23:30 - 2012-05-05 08:46 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-02-07 23:30 - 2012-04-07 12:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-02-07 23:30 - 2011-10-15 06:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-02-07 23:30 - 2011-07-09 03:30 - 00223744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-02-07 23:30 - 2011-04-27 03:17 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-02-07 23:30 - 2011-04-27 03:17 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-02-07 23:30 - 2011-02-12 06:35 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-02-07 23:29 - 2013-09-14 01:48 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-02-07 23:29 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-02-07 23:29 - 2013-05-13 04:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-02-07 23:29 - 2013-05-13 04:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-02-07 23:29 - 2012-06-06 06:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-02-07 23:29 - 2011-04-29 03:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-02-07 23:29 - 2011-04-29 03:46 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-02-07 23:29 - 2011-04-29 03:46 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-02-07 23:28 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-02-07 23:28 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-02-07 23:28 - 2012-11-30 00:17 - 00420064 _____ () C:\Windows\system32\locale.nls
2014-02-07 23:28 - 2012-06-06 06:05 - 01236992 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-07 23:28 - 2010-06-26 04:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-07 23:27 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-02-07 23:27 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-02-07 23:27 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-02-07 23:27 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-02-07 23:27 - 2013-07-26 02:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-02-07 23:27 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-02-07 23:27 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-02-07 23:27 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-02-07 23:27 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-02-07 23:27 - 2013-01-24 05:47 - 00196328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-02-07 23:27 - 2012-10-09 18:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-02-07 23:27 - 2012-10-09 18:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-02-07 23:27 - 2012-01-04 09:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-02-07 23:27 - 2011-08-27 05:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-02-07 23:27 - 2011-08-27 05:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-02-07 23:27 - 2011-03-11 06:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-02-07 23:27 - 2011-03-11 06:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-02-07 23:26 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-02-07 23:26 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-02-07 23:26 - 2013-08-02 02:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-02-07 23:26 - 2013-08-02 02:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-02-07 23:26 - 2013-08-02 02:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 01:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-02-07 23:26 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-02-07 23:26 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-02-07 23:26 - 2012-03-17 08:27 - 00056176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-02-07 23:26 - 2011-11-17 06:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-02-07 23:25 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-02-07 23:25 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-02-07 23:25 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-02-07 23:25 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-02-07 23:25 - 2013-06-15 04:38 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-02-07 23:25 - 2011-04-22 20:14 - 00027008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-02-07 23:25 - 2011-02-23 05:47 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-02-07 23:19 - 2014-02-08 11:22 - 00058016 _____ () C:\Users\Rocky\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-07 23:19 - 2014-02-07 23:19 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-02-07 23:16 - 2014-02-07 23:16 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-02-07 23:01 - 2014-02-07 23:01 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Macromedia
2014-02-07 23:01 - 2014-02-07 23:01 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Macromedia
2014-02-07 22:57 - 2014-02-09 16:08 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-07 22:57 - 2014-02-07 23:01 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-07 22:57 - 2014-02-07 23:01 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-07 22:57 - 2014-02-07 22:57 - 00000000 ____D () C:\Windows\system32\Macromed
2014-02-07 22:56 - 2014-02-07 22:58 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Adobe
2014-02-07 22:53 - 2014-02-04 10:04 - 372676465 _____ () C:\Users\Rocky\Desktop\sof-hawaii-five-0-s04e05-480p.mkv
2014-02-07 21:40 - 2014-02-07 21:40 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Adobe
2014-02-07 21:22 - 2014-02-04 10:48 - 377059524 _____ () C:\Users\Rocky\Desktop\tvp-arrow-s01e21-480p.mkv
2014-02-07 21:21 - 2014-02-03 11:59 - 357379928 _____ () C:\Users\Rocky\Desktop\sof-ncis-los-angeles-s05e06rp-480p.mkv
2014-02-07 21:21 - 2014-02-02 21:33 - 269426690 _____ () C:\Users\Rocky\Desktop\sof-ncis-s11e06-480p.mkv
2014-02-07 21:21 - 2014-01-31 22:32 - 283204215 _____ () C:\Users\Rocky\Desktop\sof-castle-s06e06-480p.mkv
2014-02-07 20:53 - 2014-02-07 21:40 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-07 20:53 - 2014-02-07 20:53 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Startmenü
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-02-07 20:53 - 2013-09-05 02:39 - 00053024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-02-07 20:53 - 2013-08-30 00:08 - 04265760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-02-07 20:53 - 2013-08-30 00:08 - 03006240 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc.dll
2014-02-07 20:53 - 2013-08-30 00:08 - 02555168 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-02-07 20:53 - 2013-08-30 00:08 - 00662816 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-02-07 20:53 - 2013-08-30 00:08 - 00209184 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-02-07 20:53 - 2013-08-30 00:08 - 00062752 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-02-07 20:53 - 2009-07-14 05:09 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-07 20:53 - 2009-07-14 05:06 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-07 20:52 - 2014-02-07 20:53 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-02-07 20:52 - 2014-02-07 20:52 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-07 20:47 - 2012-07-26 04:39 - 00047720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-02-07 20:47 - 2012-07-26 03:46 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-02-07 20:47 - 2012-06-02 15:34 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-02-07 20:46 - 2012-07-26 04:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-02-07 20:46 - 2012-07-26 04:20 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-02-07 20:46 - 2012-07-26 04:20 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-02-07 20:46 - 2012-07-26 04:20 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-02-07 20:46 - 2012-07-26 04:20 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-02-07 20:46 - 2012-07-26 03:33 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-02-07 20:46 - 2012-07-26 03:32 - 00155136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-02-07 20:46 - 2012-06-02 15:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-02-07 20:46 - 2012-03-01 06:46 - 00019824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-02-07 20:46 - 2012-03-01 06:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-02-07 20:44 - 2014-02-07 20:45 - 00004188 _____ () C:\Windows\IE9_main.log
2014-02-07 20:43 - 2010-02-11 08:10 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2014-02-07 20:38 - 2014-02-07 20:39 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-07 20:38 - 2014-02-07 20:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ATSwpWDF_01009.Wdf
2014-02-07 20:38 - 2014-02-07 20:38 - 00000000 ____D () C:\Program Files\AuthenTec
2014-02-07 20:38 - 2014-01-06 16:20 - 83425928 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-02-07 20:35 - 2014-02-07 20:35 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-02-07 20:33 - 2014-02-07 20:33 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-02-07 20:32 - 2014-02-08 02:02 - 00016373 _____ () C:\Windows\IE10_main.log
2014-02-07 20:32 - 2014-02-07 20:32 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-02-07 20:28 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-02-07 20:28 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-02-07 20:28 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-02-07 20:28 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-02-07 20:28 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-02-07 20:28 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-02-07 20:28 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-02-07 20:28 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-02-07 20:28 - 2013-08-05 02:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-02-07 20:28 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-02-07 20:28 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-02-07 20:28 - 2013-07-09 05:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-02-07 20:28 - 2013-07-09 05:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-02-07 20:28 - 2013-07-09 05:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-02-07 20:28 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-02-07 20:28 - 2013-03-19 05:53 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-02-07 20:28 - 2013-03-19 04:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-02-07 20:28 - 2012-11-22 05:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-02-07 20:28 - 2012-11-01 05:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-02-07 20:28 - 2012-08-22 18:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-02-07 20:28 - 2012-08-21 21:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-02-07 20:28 - 2012-07-04 20:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-02-07 20:28 - 2012-05-14 05:33 - 00769024 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-02-07 20:28 - 2012-05-01 05:44 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-02-07 20:28 - 2012-04-28 04:17 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-02-07 20:28 - 2012-04-26 05:45 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-02-07 20:28 - 2012-04-26 05:45 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-02-07 20:28 - 2012-04-26 05:41 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-02-07 20:28 - 2011-12-30 06:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-02-07 20:28 - 2011-12-16 08:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-02-07 20:28 - 2011-10-26 05:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-02-07 20:28 - 2011-06-16 05:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-02-07 20:28 - 2011-06-15 09:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\system32\odbcjt32.dll
2014-02-07 20:28 - 2011-06-15 09:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-02-07 20:28 - 2011-06-15 09:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-02-07 20:28 - 2011-06-15 09:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-02-07 20:28 - 2011-06-15 09:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-02-07 20:28 - 2011-02-18 06:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-02-07 20:28 - 2010-12-23 06:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-02-07 20:28 - 2010-12-23 06:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-02-07 20:28 - 2010-12-23 06:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-02-07 20:23 - 2012-10-03 17:42 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-02-07 20:23 - 2012-10-03 17:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-02-07 20:23 - 2012-10-03 17:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-02-07 20:23 - 2012-10-03 17:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-02-07 20:23 - 2012-10-03 17:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-02-07 20:23 - 2012-10-03 17:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-02-07 20:23 - 2012-10-03 16:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-02-07 20:23 - 2011-08-17 05:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-02-07 20:23 - 2011-08-17 05:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-02-07 20:18 - 2014-02-07 20:18 - 00001820 _____ () C:\Users\Public\Desktop\ImgBurn.lnk
2014-02-07 20:18 - 2014-02-07 20:18 - 00000000 ____D () C:\Program Files\ImgBurn
2014-02-07 20:16 - 2011-05-03 05:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-02-07 20:15 - 2014-02-09 02:12 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-07 20:15 - 2014-02-07 20:16 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Mozilla
2014-02-07 20:15 - 2014-02-07 20:16 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Mozilla
2014-02-07 20:15 - 2014-02-07 20:15 - 00001114 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-07 20:15 - 2014-02-07 20:15 - 00000000 ____D () C:\ProgramData\Mozilla
2014-02-07 20:15 - 2014-02-07 20:15 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-07 20:14 - 2014-02-07 20:14 - 00001905 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-02-07 20:13 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-02-07 20:13 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-02-07 20:13 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-02-07 20:13 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-02-07 20:13 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-02-07 20:13 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-02-07 20:13 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-02-07 20:13 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-02-07 20:13 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-02-07 20:13 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-02-07 20:13 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-02-07 20:13 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-02-07 20:13 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-02-07 20:13 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-02-07 20:13 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-02-07 20:13 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-02-07 20:13 - 2013-09-08 03:07 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-02-07 20:13 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-02-07 20:13 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-02-07 20:13 - 2013-08-29 02:50 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-02-07 20:13 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-02-07 20:13 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-02-07 20:13 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-02-07 20:13 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-07 20:13 - 2013-07-09 05:50 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-02-07 20:13 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-02-07 20:13 - 2013-06-04 05:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-02-07 20:13 - 2013-04-26 05:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-02-07 20:13 - 2013-04-12 14:45 - 01211752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-02-07 20:13 - 2013-04-10 06:18 - 00218984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-02-07 20:13 - 2013-03-19 05:48 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-02-07 20:13 - 2013-03-19 03:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-02-07 20:13 - 2013-02-27 06:05 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-02-07 20:13 - 2013-02-27 05:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-02-07 20:13 - 2013-02-12 04:32 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-02-07 20:13 - 2013-01-03 06:04 - 00187752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-02-07 20:13 - 2012-09-25 23:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-02-07 20:13 - 2012-08-11 00:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-02-07 20:13 - 2011-11-19 15:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-02-07 20:13 - 2011-05-24 11:44 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-02-07 20:13 - 2011-05-04 05:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-02-07 20:13 - 2011-05-04 05:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-02-07 20:13 - 2011-05-04 05:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-02-07 20:13 - 2011-05-04 05:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-02-07 20:13 - 2011-05-04 05:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-02-07 20:13 - 2011-05-04 05:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-02-07 20:13 - 2011-05-04 05:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-02-07 20:13 - 2011-05-04 05:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-02-07 20:13 - 2011-05-04 05:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-02-07 20:13 - 2011-03-03 06:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-02-07 20:13 - 2011-03-03 06:38 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-02-07 20:13 - 2011-03-03 06:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-02-07 20:10 - 2014-02-07 20:10 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-02-07 20:10 - 2014-02-07 20:10 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DAEMON Tools Lite
2014-02-07 20:10 - 2014-02-07 20:10 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite
2014-02-07 20:09 - 2014-02-07 20:10 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-02-07 20:09 - 2014-02-07 20:09 - 00000974 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-07 20:09 - 2014-02-07 20:09 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-07 20:06 - 2014-02-07 20:06 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Avira
2014-02-07 20:06 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-02-07 20:04 - 2014-02-07 20:04 - 00002021 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-07 20:04 - 2014-02-07 20:04 - 00000000 ____D () C:\ProgramData\Avira
2014-02-07 20:04 - 2014-02-07 20:04 - 00000000 ____D () C:\Program Files\Avira
2014-02-07 20:04 - 2013-12-09 11:37 - 00135648 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-02-07 20:04 - 2013-12-09 11:37 - 00090400 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-02-07 20:04 - 2013-12-09 11:37 - 00069240 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-02-07 20:04 - 2013-12-09 11:37 - 00037352 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-02-07 20:04 - 2013-12-09 11:37 - 00028520 _____ (Avira GmbH) C:\Windows\system32\Drivers\ssmdrv.sys
2014-02-07 19:48 - 2014-02-07 19:48 - 00000000 ____D () C:\ProgramData\createpart
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\ProgramData\launcher
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\ProgramData\explauncher
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\BM2005
2014-02-07 18:47 - 2014-01-16 09:59 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-02-07 18:35 - 2012-02-17 06:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-02-07 18:35 - 2012-02-17 05:13 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-02-07 18:34 - 2014-02-07 18:34 - 00002408 _____ () C:\Users\Public\Desktop\Paragon Partition Manager™ 12 Professional.lnk
2014-02-07 18:34 - 2014-02-07 18:34 - 00000000 ____D () C:\Program Files\Paragon Software
2014-02-07 18:31 - 2014-02-07 20:08 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-02-07 18:31 - 2014-02-07 20:07 - 00000000 ____D () C:\Program Files\WinRAR
2014-02-07 18:31 - 2014-02-07 18:31 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\WinRAR
2014-02-07 18:21 - 2012-06-02 23:19 - 01933848 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-02-07 18:21 - 2012-06-02 23:19 - 00577048 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-02-07 18:21 - 2012-06-02 23:19 - 00053784 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-02-07 18:21 - 2012-06-02 23:19 - 00045080 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-02-07 18:21 - 2012-06-02 23:19 - 00035864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-02-07 18:21 - 2012-06-02 23:12 - 02422272 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-02-07 18:21 - 2012-06-02 23:12 - 00088576 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-02-07 18:20 - 2014-02-09 11:17 - 00000000 ____D () C:\Users\Rocky
2014-02-07 18:20 - 2014-02-07 18:20 - 00001418 _____ () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-07 18:20 - 2014-02-07 18:20 - 00000020 ___SH () C:\Users\Rocky\ntuser.ini
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Netzwerkumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Druckumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 __SHD () C:\Recovery
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 ____D () C:\Users\Rocky\AppData\Local\VirtualStore
2014-02-07 18:20 - 2012-06-02 15:19 - 00171904 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-02-07 18:20 - 2012-06-02 15:12 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-02-07 18:20 - 2009-07-14 05:09 - 00000000 ___RD () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-02-07 18:20 - 2009-07-14 05:06 - 00000000 ___RD () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-02-07 18:12 - 2014-02-09 16:54 - 01546453 _____ () C:\Windows\WindowsUpdate.log
2014-02-07 18:10 - 2014-02-07 18:12 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-02-07 18:09 - 2014-02-07 18:20 - 00000000 ____D () C:\Windows\Panther
2014-02-07 18:08 - 2014-02-07 18:08 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-02-07 18:08 - 2010-11-20 22:30 - 00383786 __RSH () C:\bootmgr
2014-02-07 17:59 - 2014-02-07 17:59 - 00000000 ____D () C:\Windows.old

==================== One Month Modified Files and Folders =======

2014-02-09 16:59 - 2014-02-09 15:55 - 00009119 _____ () C:\Users\Rocky\Desktop\FRST.txt
2014-02-09 16:59 - 2014-02-09 15:55 - 00000000 ____D () C:\FRST
2014-02-09 16:57 - 2014-02-09 16:57 - 00000000 ____D () C:\Users\Rocky\Desktop\FRST-OlderVersion
2014-02-09 16:57 - 2014-02-09 15:32 - 01138688 _____ (Farbar) C:\Users\Rocky\Desktop\FRST.exe
2014-02-09 16:55 - 2014-02-09 16:55 - 00001354 _____ () C:\Users\Rocky\Desktop\JRT.txt
2014-02-09 16:55 - 2010-11-20 22:03 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-02-09 16:54 - 2014-02-07 18:12 - 01546453 _____ () C:\Windows\WindowsUpdate.log
2014-02-09 16:50 - 2014-02-08 10:35 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-09 16:50 - 2009-07-14 05:17 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-02-09 16:50 - 2009-07-14 05:07 - 00023786 _____ () C:\Windows\setupact.log
2014-02-09 16:48 - 2014-02-09 16:46 - 10773621 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part6.rar.part
2014-02-09 16:48 - 2014-02-09 16:46 - 10420628 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part4.rar.part
2014-02-09 16:48 - 2014-02-09 16:46 - 09739564 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part3.rar.part
2014-02-09 16:48 - 2014-02-09 16:46 - 09493588 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part5.rar.part
2014-02-09 16:48 - 2014-02-09 16:46 - 08193032 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part1.rar.part
2014-02-09 16:48 - 2014-02-09 16:46 - 07902280 _____ () C:\Users\Rocky\Downloads\fdgdfgdfgdfgdf.part2.rar.part
2014-02-09 16:48 - 2014-02-09 16:45 - 16513824 _____ () C:\Users\Rocky\Downloads\fdgfgfdgdfgfdgdfgd.part1.rar.part
2014-02-09 16:48 - 2014-02-09 16:45 - 16152356 _____ () C:\Users\Rocky\Downloads\fdgfgfdgdfgfdgdfgd.part2.rar.part
2014-02-09 16:48 - 2014-02-09 16:44 - 28541057 _____ () C:\Users\Rocky\Downloads\fdgfgfdgdfgfdgdfgd.part5.rar.part
2014-02-09 16:48 - 2014-02-09 16:44 - 17946708 _____ () C:\Users\Rocky\Downloads\fdgfgfdgdfgfdgdfgd.part4.rar.part
2014-02-09 16:48 - 2014-02-09 16:44 - 16680176 _____ () C:\Users\Rocky\Downloads\fdgfgfdgdfgfdgdfgd.part3.rar.part
2014-02-09 16:48 - 2014-02-09 13:12 - 00000000 ____D () C:\AdwCleaner
2014-02-09 16:48 - 2014-02-08 10:35 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-09 16:34 - 2014-02-09 11:42 - 00000000 ____D () C:\Program Files\JDownloader
2014-02-09 16:30 - 2014-02-09 16:24 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-02-09 16:30 - 2014-02-09 16:23 - 00000000 ____D () C:\Users\Rocky\Desktop\mbar
2014-02-09 16:24 - 2014-02-09 16:24 - 00107224 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-02-09 16:23 - 2014-02-09 16:23 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-02-09 16:20 - 2014-02-09 16:20 - 12589848 _____ (Malwarebytes Corp.) C:\Users\Rocky\Downloads\mbar-1.07.0.1009.exe
2014-02-09 16:10 - 2014-02-09 16:10 - 00001359 _____ () C:\Users\Rocky\Desktop\JDownloader - Verknüpfung.lnk
2014-02-09 16:08 - 2014-02-07 22:57 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-02-09 13:24 - 2014-02-09 13:24 - 00000000 ____D () C:\Program Files\ESET
2014-02-09 13:18 - 2014-02-09 13:18 - 00000000 ____D () C:\Windows\ERUNT
2014-02-09 13:06 - 2010-11-20 22:49 - 00181616 _____ () C:\Windows\PFRO.log
2014-02-09 13:06 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Cursors
2014-02-09 13:05 - 2011-04-12 03:17 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-02-09 13:05 - 2009-07-14 05:02 - 00019248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-09 13:05 - 2009-07-14 05:02 - 00019248 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-09 13:05 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-02-09 12:29 - 2014-02-09 12:29 - 02347384 _____ (ESET) C:\Users\Rocky\Downloads\esetsmartinstaller_deu.exe
2014-02-09 12:28 - 2014-02-09 12:28 - 01166132 _____ () C:\Users\Rocky\Downloads\adwcleaner.exe
2014-02-09 12:26 - 2014-02-09 12:26 - 00001076 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Malwarebytes
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-02-09 12:26 - 2014-02-09 12:26 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-02-09 12:20 - 2014-02-09 12:20 - 00001219 _____ () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2014-02-09 12:20 - 2014-02-09 12:20 - 00001195 _____ () C:\Users\Public\Desktop\IObit Uninstaller.lnk
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\ProductData
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\IObit
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\ProgramData\ProductData
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\ProgramData\IObit
2014-02-09 12:20 - 2014-02-09 12:20 - 00000000 ____D () C:\Program Files\IObit
2014-02-09 12:15 - 2014-02-09 12:15 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Rocky\Downloads\WiNlOgOn.exe
2014-02-09 12:14 - 2014-02-09 12:14 - 00015088 _____ () C:\Users\Rocky\Desktop\bookmarks-2014-02-09.json
2014-02-09 11:50 - 2014-02-09 11:50 - 00010464 _____ () C:\Windows\system32\sx_p2d.tlb
2014-02-09 11:50 - 2014-02-09 11:50 - 00002117 _____ () C:\Users\Rocky\Desktop\Free PDF Perfect.lnk
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\ProgramData\Freemium
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Freemium
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Common Files\soft Xpansion
2014-02-09 11:50 - 2014-02-09 11:50 - 00000000 ____D () C:\Program Files\Common Files\Freemium
2014-02-09 11:45 - 2014-02-09 11:45 - 00000000 ____D () C:\Program Files\Covus Freemium
2014-02-09 11:44 - 2014-02-09 11:44 - 00000000 ____D () C:\ProgramData\Package Cache
2014-02-09 11:17 - 2014-02-09 11:17 - 00000000 ____D () C:\Users\Rocky\.appwork
2014-02-09 11:17 - 2014-02-07 18:20 - 00000000 ____D () C:\Users\Rocky
2014-02-09 11:14 - 2014-02-09 11:14 - 00000000 ____D () C:\ProgramData\Synaptics
2014-02-09 10:58 - 2014-02-09 10:58 - 00000471 _____ () C:\Users\Rocky\Desktop\Daten (F).lnk
2014-02-09 10:50 - 2014-02-09 10:50 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-02-09 10:50 - 2014-02-09 10:50 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\ProgramData\Sun
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\Program Files\Java
2014-02-09 10:50 - 2014-02-09 10:50 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-02-09 09:55 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\rescache
2014-02-09 03:18 - 2009-07-14 05:02 - 00270344 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-02-09 02:12 - 2014-02-07 20:15 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-08 18:32 - 2014-02-08 11:05 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Apple Computer
2014-02-08 11:22 - 2014-02-07 23:19 - 00058016 _____ () C:\Users\Rocky\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-08 11:20 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-02-08 11:05 - 2014-02-08 11:05 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Apple Computer
2014-02-08 11:04 - 2014-02-08 11:04 - 00001762 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-02-08 11:03 - 2014-02-08 11:02 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2014-02-08 11:03 - 2014-02-08 11:02 - 00000000 ____D () C:\Program Files\iTunes
2014-02-08 11:02 - 2014-02-08 11:02 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-02-08 11:02 - 2014-02-08 11:02 - 00000000 ____D () C:\Program Files\iPod
2014-02-08 11:02 - 2014-02-08 10:56 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-02-08 10:57 - 2014-02-08 10:57 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Apple
2014-02-08 10:57 - 2014-02-08 10:57 - 00000000 ____D () C:\Program Files\Apple Software Update
2014-02-08 10:57 - 2014-02-08 10:56 - 00000000 ____D () C:\ProgramData\Apple
2014-02-08 10:56 - 2014-02-08 10:56 - 00000000 ____D () C:\Program Files\Bonjour
2014-02-08 10:54 - 2014-02-08 10:54 - 00002281 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DVDVideoSoft
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Program Files\DVDVideoSoft
2014-02-08 10:54 - 2014-02-08 10:54 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-02-08 10:43 - 2014-02-08 10:42 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DivX
2014-02-08 10:43 - 2014-02-08 10:41 - 00000000 ____D () C:\Program Files\DivX
2014-02-08 10:43 - 2014-02-08 10:41 - 00000000 ____D () C:\Program Files\Common Files\DivX Shared
2014-02-08 10:43 - 2014-02-08 10:36 - 00000000 ____D () C:\ProgramData\DivX
2014-02-08 10:35 - 2014-02-08 10:35 - 00002202 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-02-08 10:35 - 2014-02-08 10:34 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Google
2014-02-08 10:35 - 2014-02-08 10:34 - 00000000 ____D () C:\Program Files\Google
2014-02-08 10:34 - 2014-02-08 10:34 - 00001904 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-02-08 10:34 - 2014-02-08 10:34 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Canneverbe Limited
2014-02-08 10:34 - 2014-02-08 10:34 - 00000000 ____D () C:\Program Files\CDBurnerXP
2014-02-08 10:33 - 2014-02-08 10:33 - 00000000 ____D () C:\Program Files\Ant Renamer
2014-02-08 10:19 - 2014-02-08 10:19 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Synaptics
2014-02-08 02:03 - 2011-04-12 03:25 - 00000000 ____D () C:\Program Files\Windows Journal
2014-02-08 02:03 - 2009-07-14 05:51 - 00000000 ____D () C:\Program Files\Windows Defender
2014-02-08 02:03 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\System
2014-02-08 02:02 - 2014-02-07 20:32 - 00016373 _____ () C:\Windows\IE10_main.log
2014-02-08 01:24 - 2014-02-07 23:43 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\vlc
2014-02-08 00:38 - 2014-02-08 00:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2014-02-08 00:38 - 2014-02-08 00:36 - 00004718 _____ () C:\Windows\DPINST.LOG
2014-02-08 00:38 - 2014-02-08 00:36 - 00001378 _____ () C:\Windows\Synaptics.log
2014-02-08 00:37 - 2014-02-08 00:37 - 00000000 ____D () C:\Program Files\Synaptics
2014-02-07 23:36 - 2014-02-07 23:32 - 00010058 _____ () C:\Windows\IE11_main.log
2014-02-07 23:34 - 2014-02-07 23:34 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-07 23:34 - 2014-02-07 23:34 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-07 23:34 - 2014-02-07 23:34 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-07 23:34 - 2014-02-07 23:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-07 23:34 - 2014-02-07 23:34 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-07 23:34 - 2014-02-07 23:34 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-07 23:33 - 2014-02-07 23:33 - 00001033 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-02-07 23:32 - 2014-02-07 23:32 - 00000000 ____D () C:\Program Files\VideoLAN
2014-02-07 23:22 - 2010-11-20 22:31 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-02-07 23:22 - 2010-11-20 22:31 - 00409088 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2014-02-07 23:22 - 2010-11-20 22:30 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2014-02-07 23:19 - 2014-02-07 23:19 - 00000000 ____D () C:\ProgramData\Microsoft Toolkit
2014-02-07 23:16 - 2014-02-07 23:16 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-02-07 23:01 - 2014-02-07 23:01 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Macromedia
2014-02-07 23:01 - 2014-02-07 23:01 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Macromedia
2014-02-07 23:01 - 2014-02-07 22:57 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-02-07 23:01 - 2014-02-07 22:57 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-02-07 22:58 - 2014-02-07 22:56 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Adobe
2014-02-07 22:57 - 2014-02-07 22:57 - 00000000 ____D () C:\Windows\system32\Macromed
2014-02-07 21:40 - 2014-02-07 21:40 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Adobe
2014-02-07 21:40 - 2014-02-07 20:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-TW
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\zh-CN
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ru-RU
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pt-PT
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pt-BR
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\pl-PL
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\nl-NL
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\nb-NO
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ko-KR
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\ja-JP
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\it-IT
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\hu-HU
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\fr-FR
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\fi-FI
2014-02-07 21:28 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\el-GR
2014-02-07 20:53 - 2014-02-07 20:53 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Startmenü
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 20:53 - 2014-02-07 20:53 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-02-07 20:53 - 2014-02-07 20:52 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-02-07 20:53 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\Help
2014-02-07 20:52 - 2014-02-07 20:52 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-02-07 20:45 - 2014-02-07 20:44 - 00004188 _____ () C:\Windows\IE9_main.log
2014-02-07 20:39 - 2014-02-07 20:38 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-07 20:38 - 2014-02-07 20:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ATSwpWDF_01009.Wdf
2014-02-07 20:38 - 2014-02-07 20:38 - 00000000 ____D () C:\Program Files\AuthenTec
2014-02-07 20:38 - 2009-07-14 05:51 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-02-07 20:35 - 2014-02-07 20:35 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-02-07 20:33 - 2014-02-07 20:33 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01988096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-02-07 20:33 - 2014-02-07 20:33 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-02-07 20:32 - 2014-02-07 20:32 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-02-07 20:18 - 2014-02-07 20:18 - 00001820 _____ () C:\Users\Public\Desktop\ImgBurn.lnk
2014-02-07 20:18 - 2014-02-07 20:18 - 00000000 ____D () C:\Program Files\ImgBurn
2014-02-07 20:16 - 2014-02-07 20:15 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Mozilla
2014-02-07 20:16 - 2014-02-07 20:15 - 00000000 ____D () C:\Users\Rocky\AppData\Local\Mozilla
2014-02-07 20:15 - 2014-02-07 20:15 - 00001114 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-02-07 20:15 - 2014-02-07 20:15 - 00000000 ____D () C:\ProgramData\Mozilla
2014-02-07 20:15 - 2014-02-07 20:15 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-07 20:14 - 2014-02-07 20:14 - 00001905 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-02-07 20:10 - 2014-02-07 20:10 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-02-07 20:10 - 2014-02-07 20:10 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\DAEMON Tools Lite
2014-02-07 20:10 - 2014-02-07 20:10 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite
2014-02-07 20:10 - 2014-02-07 20:09 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-02-07 20:09 - 2014-02-07 20:09 - 00000974 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-02-07 20:09 - 2014-02-07 20:09 - 00000000 ____D () C:\Program Files\CCleaner
2014-02-07 20:08 - 2014-02-07 18:31 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-02-07 20:07 - 2014-02-07 18:31 - 00000000 ____D () C:\Program Files\WinRAR
2014-02-07 20:06 - 2014-02-07 20:06 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\Avira
2014-02-07 20:04 - 2014-02-07 20:04 - 00002021 _____ () C:\Users\Public\Desktop\Avira Control Center.lnk
2014-02-07 20:04 - 2014-02-07 20:04 - 00000000 ____D () C:\ProgramData\Avira
2014-02-07 20:04 - 2014-02-07 20:04 - 00000000 ____D () C:\Program Files\Avira
2014-02-07 20:04 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-02-07 19:48 - 2014-02-07 19:48 - 00000000 ____D () C:\ProgramData\createpart
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\ProgramData\launcher
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\ProgramData\explauncher
2014-02-07 19:02 - 2014-02-07 19:02 - 00000000 ____D () C:\BM2005
2014-02-07 18:36 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\LogFiles
2014-02-07 18:34 - 2014-02-07 18:34 - 00002408 _____ () C:\Users\Public\Desktop\Paragon Partition Manager™ 12 Professional.lnk
2014-02-07 18:34 - 2014-02-07 18:34 - 00000000 ____D () C:\Program Files\Paragon Software
2014-02-07 18:31 - 2014-02-07 18:31 - 00000000 ____D () C:\Users\Rocky\AppData\Roaming\WinRAR
2014-02-07 18:20 - 2014-02-07 18:20 - 00001418 _____ () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-07 18:20 - 2014-02-07 18:20 - 00000020 ___SH () C:\Users\Rocky\ntuser.ini
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Netzwerkumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Druckumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Rocky\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\Programme
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 __SHD () C:\Recovery
2014-02-07 18:20 - 2014-02-07 18:20 - 00000000 ____D () C:\Users\Rocky\AppData\Local\VirtualStore
2014-02-07 18:20 - 2014-02-07 18:09 - 00000000 ____D () C:\Windows\Panther
2014-02-07 18:20 - 2009-07-14 05:51 - 00000000 ____D () C:\Windows\system32\restore
2014-02-07 18:20 - 2009-07-14 03:37 - 00000000 __RHD () C:\Users\Default
2014-02-07 18:20 - 2009-07-14 03:37 - 00000000 ____D () C:\Windows\system32\Recovery
2014-02-07 18:20 - 2009-07-14 03:37 - 00000000 ____D () C:\Program Files\Windows NT
2014-02-07 18:12 - 2014-02-07 18:10 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-02-07 18:10 - 2011-04-12 03:26 - 00000000 ____D () C:\Windows\CSC
2014-02-07 18:10 - 2009-07-14 05:02 - 00002790 _____ () C:\Windows\DtcInstall.log
2014-02-07 18:08 - 2014-02-07 18:08 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-02-07 18:08 - 2009-07-14 05:55 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-02-07 18:08 - 2009-07-14 05:51 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-02-07 17:59 - 2014-02-07 17:59 - 00000000 ____D () C:\Windows.old
2014-02-04 10:48 - 2014-02-07 21:22 - 377059524 _____ () C:\Users\Rocky\Desktop\tvp-arrow-s01e21-480p.mkv
2014-02-04 10:04 - 2014-02-07 22:53 - 372676465 _____ () C:\Users\Rocky\Desktop\sof-hawaii-five-0-s04e05-480p.mkv
2014-02-03 11:59 - 2014-02-07 21:21 - 357379928 _____ () C:\Users\Rocky\Desktop\sof-ncis-los-angeles-s05e06rp-480p.mkv
2014-02-02 21:33 - 2014-02-07 21:21 - 269426690 _____ () C:\Users\Rocky\Desktop\sof-ncis-s11e06-480p.mkv
2014-01-31 22:32 - 2014-02-07 21:21 - 283204215 _____ () C:\Users\Rocky\Desktop\sof-castle-s06e06-480p.mkv
2014-01-16 09:59 - 2014-02-07 18:47 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\Rocky\AppData\Local\Temp\avgnt.exe
C:\Users\Rocky\AppData\Local\Temp\proxy_vole4723490287128604342.dll
C:\Users\Rocky\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-02-08 12:40

==================== End Of Log ============================

--- --- ---

cosinus · 09.02.2014, 17:07

Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle einen Quickscan mit Malwarebytes Anti-Malware (MBAM)

Hinweis: Denk bitte vorher daran, Malwarebytes Anti-Malware über den Updatebutton zu aktualisieren!

Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt:

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

balirocky · 09.02.2014, 21:44

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=9c52fce542f48a4c8e9e18c2a4644b51
# engine=17003
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-02-09 01:29:34
# local_time=2014-02-09 02:29:34 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 95 0 5370736 41000 0
# compatibility_mode=5893 16776574 100 94 131191 143583765 0 0
# scanned=223685
# found=18
# cleaned=18
# scan_time=3718
sh=16068B8977B4DC562AE782D91BC009472667E331 ft=1 fh=c3b5a87b7d152749 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\Rocky\AppData\Local\Temp\OCS\ocs_v71a.exe.vir"
sh=B9A96D9AE94C4B42CA5499933F6DF218B3903768 ft=1 fh=966b3592656dc188 vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung (gelöscht (nach dem nächsten Neustart) - in Quarantäne kopiert)" ac=C fn="C:\Program Files\Avira\AntiVir Desktop\offercast_avirav7_.exe"
sh=A836A8346F791EC8A83B51BC78E84B2F6659E6DA ft=1 fh=0a2e45c370149901 vn="Win32/Wajam.F evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Rocky\AppData\Local\Temp\is961225091\2419914_stp\wajam_validate.exe"
sh=1CAB54D2D07ECDA19DD7732AEB5C44852736F430 ft=1 fh=ffe629ba08bb3363 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Rocky\Downloads\IObit Uninstaller - CHIP-Downloader.exe"
sh=8EFC1BA96B10B9BFDDAD88E9F8438B123A3FF101 ft=1 fh=26fb013250172eba vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Rocky\Downloads\Malwarebytes Anti Malware - CHIP-Downloader.exe"
sh=B9A96D9AE94C4B42CA5499933F6DF218B3903768 ft=1 fh=966b3592656dc188 vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="E:\Program Files\Avira\AntiVir Desktop\offercast_avirav7_.exe"
sh=0B756802CDD8FCA064D7546EC920F16F3187448B ft=1 fh=75a4f95b51866dba vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="E:\Users\Rocky\Downloads\avira_free344_antivirus_de.exe"
sh=8A72F448F17C026A1B2A59686DE720079CCBA08F ft=1 fh=4d4a711952b3453e vn="Win32/DownWare.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="E:\Users\Rocky\Downloads\DTLite4481-0347.exe"
sh=5CA96A0C243390C378DEE1A629684EA261E2CFC4 ft=1 fh=a717dcd23690f0a7 vn="Win32/OpenCandy potenziell unsichere Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="E:\Users\Rocky\Downloads\SetupImgBurn_2.5.8.0.exe"
sh=1447092BA29779C726829611180994E17718C412 ft=1 fh=23f22b72eb3a5b90 vn="Win32/InstallMonetizer.AQ evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\$RECYCLE.BIN\S-1-5-21-2342514540-3986762835-358528620-1001\$R8RE4GV.exe"
sh=0B756802CDD8FCA064D7546EC920F16F3187448B ft=1 fh=75a4f95b51866dba vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\Installationsdateien\avira_free344_antivirus_de.exe"
sh=8A72F448F17C026A1B2A59686DE720079CCBA08F ft=1 fh=4d4a711952b3453e vn="Win32/DownWare.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\Installationsdateien\DTLite4481-0347.exe"
sh=0AC6FB59331461821C9595D586665821E12F0D61 ft=1 fh=3df583480aa882bd vn="Win32/OpenCandy potenziell unsichere Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\Installationsdateien\FreemakeVideoDownloaderSetup_3.6.2.5.exe"
sh=9CDD87BC95DEA954665CB7F22579E04FC360077A ft=1 fh=9319ecaed0a22c9b vn="Win32/OpenCandy potenziell unsichere Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\Installationsdateien\FreeYouTubeToMP3Converter-3.12.20.1230.exe"
sh=03CA808A875E53FD04954DA53E2B74BC7825FBE1 ft=1 fh=c621e275a25b2bda vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\Installationsdateien\Java Runtime Environment 32 Bit - CHIP-Downloader.exe"
sh=5CA96A0C243390C378DEE1A629684EA261E2CFC4 ft=1 fh=a717dcd23690f0a7 vn="Win32/OpenCandy potenziell unsichere Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\Installationsdateien\SetupImgBurn_2.5.8.0.exe"
sh=458CF7D4D35F858644C8181C40C1CD849E67F38E ft=1 fh=1922d9a5adbd9cdc vn="Win32/Toolbar.Zugo evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\Installationsdateien\VeohWebPlayer138Setup_eng.exe"
sh=E4C3F77A07D0DF59683899616E5A23C77C91774E ft=1 fh=85055cbf4ba2b34e vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="F:\Installationsdateien\VLC media player 32 Bit - CHIP-Downloader.exe"
ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=9c52fce542f48a4c8e9e18c2a4644b51
# engine=17003
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-02-09 08:33:16
# local_time=2014-02-09 09:33:16 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=1799 16775165 100 95 20606 5396158 16984 0
# compatibility_mode=5893 16776574 100 94 0 143609187 0 0
# scanned=254107
# found=0
# cleaned=0
# scan_time=14612

cosinus · 10.02.2014, 10:36

Log von MBAM fehlt

balirocky · 10.02.2014, 10:45

Sorry, hatte ich vergessen zu posten.

Code:

ATTFilter

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.02.09.04

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16476
Rocky :: ROCKY-PC [Administrator]

09.02.2014 17:14:06
mbam-log-2014-02-09 (17-14-06).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 220967
Laufzeit: 5 Minute(n), 51 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 3
C:\Users\Rocky\AppData\Local\Temp\ct3288691 (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Rocky\AppData\Local\Temp\ct3297265 (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Rocky\AppData\Local\Temp\ct3297861 (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateien: 5
C:\Users\Rocky\AppData\Local\Temp\ct3288691\chromeid.txt (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Rocky\AppData\Local\Temp\ct3288691\setup.ini.txt (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Rocky\AppData\Local\Temp\ct3297265\ism.exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Rocky\AppData\Local\Temp\ct3297861\chromeid.txt (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Rocky\AppData\Local\Temp\ct3297861\setup.ini.txt (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)

cosinus · 10.02.2014, 10:46

TFC - Temp File Cleaner

Lade dir

TFC (TempFileCleaner von Oldtimer) herunter und speichere es auf den Desktop.

Öffne die TFC.exe.
Vista und Win 7 User mit Rechtsklick "als Administrator starten".
Schließe alle anderen Programme.
Drücke auf den Button Start.
Falls du zu einem Neustart aufgefordert wirst, bestätige diesen.

Sieht soweit ok aus

Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) müsstest du dir mal sowas wie MVPS Hosts File anschauen => Blocking Unwanted Parasites with a Hosts File - sinnvollerweise solltest du alle 4 Wochen mal bei MVPS nachsehen, ob er eine neue Hosts Datei herausgebracht hat.

Info: Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie )

Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller
Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird.

Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?

balirocky · 10.02.2014, 11:22

Scheint alles in Ordnung zu sein.
Vielen Dank für die Hilfe

cosinus · 10.02.2014, 11:29

Dann wären wir durch!

Falls du noch Lob oder Kritik loswerden möchtest => Lob, Kritik und Wünsche - Trojaner-Board

Die Programme, die hier zum Einsatz kamen, können alle deinstalliert werden.

Helfen kann dir dabei delfix:

Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Bitte abschließend noch die Updates prüfen, unten mein Leitfaden dazu. Um in Zukunft die Aktualität der installierten Programme besser im Überblick zu halten, kannst du zB Secunia PSI verwenden.
Für noch mehr Sicherheit solltest Du nach der beseitigten Infektion auch möglichst alle Passwörter ändern.

Microsoftupdate
Windows XP:Besuch mit dem IE die MS-Updateseite und lass Dir alle wichtigen Updates installieren.
Windows Vista/7: Start, Systemsteuerung, Windows-Update

PDF-Reader aktualisieren
Ein veralteter AdobeReader stellt ein großes Sicherheitsrisiko dar. Du solltest daher besser alte Versionen vom AdobeReader über Systemsteuerung => Software bzw. Programme und Funktionen deinstallieren, indem Du dort auf "Adobe Reader x.0" klickst und das Programm entfernst. (falls du AdobeReader installiert hast)

Ich empfehle einen alternativen PDF-Reader wie PDF Xchange Viewer, SumatraPDF oder Foxit PDF Reader, die sind sehr viel schlanker und flotter als der AdobeReader.

Bitte überprüf bei der Gelegenheit auch die Aktualität des Flashplayers:
Prüfen => Adobe - Flash Player
Downloadlinks findest du hier => Browsers and Plugins - FilePony.de

Alle Plugins im Firefox-Browser kannst du auch ganz einfach hier auf Aktualität prüfen => https://www.mozilla.org/de/plugincheck

Natürlich auch darauf achten, dass andere installierte Browser wie zB Firefox, Opera oder Chrome aktuell sind.

Java-Update
Veraltete Java-Installationen sind ein großes Sicherheitsrisiko, daher solltest Du die alten Versionen deinstallieren. Beende dazu alle Programme (v.a. die Browser), klick danach auf Start, Systemsteuerung, Software (bzw. Programme und Funktionen) und deinstalliere darüber alle aufgelisteten Java-Versionen. Lad Dir danach von hier das aktuelle Java SE Runtime Environment (JRE) herunter und installiere es.

10.02.2014, 10:36	#10
cosinus /// Winkelfunktion /// TB-Süch-Tiger™	Windows 7: Auf Festplattenpartition für Daten befindet sich ein Ordner "SoftwareUpdater" mit einer Datei "SoftwareUpdater.Bootstrapper" Log von MBAM fehlt __________________ Logfiles bitte immer in CODE-Tags posten

Windows 7: Auf Festplattenpartition für Daten befindet sich ein Ordner "SoftwareUpdater" mit einer Datei "SoftwareUpdater.Bootstrapper"

Plagegeister aller Art und deren Bekämpfung: Windows 7: Auf Festplattenpartition für Daten befindet sich ein Ordner "SoftwareUpdater" mit einer Datei "SoftwareUpdater.Bootstrapper"