Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
docx-Dokumente werden nach Trojaner-Beseitigung teilweise nicht mehr erkannt.

docx-Dokumente werden nach Trojaner-Beseitigung teilweise nicht mehr erkannt.


Log-Analyse und Auswertung: docx-Dokumente werden nach Trojaner-Beseitigung teilweise nicht mehr erkannt.

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 08.04.2014, 10:27   #1
radklingel
 
docx-Dokumente werden nach Trojaner-Beseitigung teilweise nicht mehr erkannt. - Standard

docx-Dokumente werden nach Trojaner-Beseitigung teilweise nicht mehr erkannt.


PROBLEM:

Nach der Beseitigung eines Trojaners habe ich folgendes Problem: Während manche Dateien ganz normal als "docx" erkannt und von Word geöffnet werden, werden andere als "OpenXML"-Dateien augewiesen und von Word nicht erkannt. Wenn ich diese Dateien aber dann über einen Datenträger auf einen anderen Computer bringe und dort öffne, haben sie die Endung "docx" und werden von Word erkannt.
Das Problem betrifft auch ganz neu erstellte Word-Dateien.
Deinstallation und Neu-Installation von Office ändert daran nichts.

WIE DER VIRUS AUF DEN COMPUTER KAM:

Ich habe das Programm DVDshrink heruntergeladen von www.dvdshrink.org/.
Es haben sich dann einige Programme selbst installiert, u.a. "Mobogenie". Es folgten verschiedene Probleme, u.a. konnte Word keine Dateien mehr öffnen.

MEINE BISHERIGEN AKTIONEN:

1) Scan mit AVG

Logfile:
Code:
ATTFilter
Gesamten Computer scannen
Mittlere Priorität;"2";"2";"0"
Gesamten Computer scannen"
Gestartet:;"06.04.2014, 15:04:08"
Beendet:;"06.04.2014, 15:07:32"
Gescannter Objekte:;"120414"
Benutzer:;"magdalena"
C:\Users\magdalena\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MUP6HCIB\DVDshrink32setup_downloader-aVA1JFPi.exe;"Potentiell gefährliches Programm: Downloader.ATW";"Gesichert";"Geheilt";"Mittel"
C:\Users\magdalena\AppData\Local\Temp\is1914646434\6835029_stp.EXE;"Adware: Generic5.AQLA";"Gesichert";"Geheilt";"Mittel"
2) Verschiedene Scans zur Beseitigung

Ich ging der Reihe nach alle Schritte durch, die von euch hier empfohlen wurden:
http://www.trojaner-board.de/147055-...entfernen.html

- Malwarebytes:

Siehe unten

- Adw cleaner:
Habe das Logfile nicht gefunden. Die Quarantäneliste ist vorhanden, wenn das Programm geöffnet ist, aber nicht kopierbar. ...?

- JRT:
Probleme beseitigt. Habe aber leider die Log-Datei nicht mehr gefunden.

- Shortcutcleaner:
hat keine Probleme entdeckt.

- ESET:
Probleme beseitigt. Habe aber leider die Log-Datei nicht mehr gefunden.

- ANDERE

Ich habe allerdings noch Logfiles gefunden, die ich nicht zuordnen kann. Vielleicht ist eines davon brauchbar:

"sc-cleaner":

Code:
ATTFilter
Shortcut Cleaner 1.3.2 by Lawrence Abrams (Grinler)
hxxp://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
 hxxp://www.bleepingcomputer.com/download/shortcut-cleaner/

Windows Version: Windows 7 Ultimate Service Pack 1
Program started at: 04/07/2014 02:04:54 PM.

Scanning for registry hijacks:

 * No issues found in the Registry.

Searching for Hijacked Shortcuts:

Searching C:\Users\magdalena\AppData\Roaming\Microsoft\Windows\Start Menu\

Searching C:\ProgramData\Microsoft\Windows\Start Menu\

Searching C:\Users\magdalena\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\

Searching C:\Users\Public\Desktop\

Searching K:\magdalena\Desktop


0 bad shortcuts found.

Program finished at: 04/07/2014 02:04:54 PM
Execution time: 0 hours(s), 0 minute(s), and 0 seconds(s)
und

"foundthreats"

Code:
ATTFilter
C:\Users\magdalena\AppData\Local\Temp\is1914646434\20597886_stp\OptimizerPro.exe	a variant of Win32/SpeedingUpMyPC.H application
C:\Users\magdalena\AppData\Local\Temp\{88E4A6BA-AB54-4223-99A6-14DD9EEB14F6}\setup.exe	multiple threats
K:\Laurenz\rechner alt\XDFSExtract.exe	a variant of Generik.CPEZEDL trojan
3) Defogger

Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 09:39 on 08/04/2014 (magdalena)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
4) FRST

"frst": Erste Hälfte:

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014  01 (ATTENTION: ====> FRST version is 26 days old and could be outdated)
Ran by magdalena (administrator) on DORENZ-PC on 08-04-2014 09:43:04
Running from C:\Users\magdalena\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S26XQM47
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
(Realtek) C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtlService.exe
(Realtek Semiconductor Corp.) C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtWlan.exe
() C:\Program Files\Winamp\winampa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(Dropbox, Inc.) C:\Users\magdalena\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\system32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
() C:\Users\magdalena\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3K37ZCY3\Defogger.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [WinampAgent] - C:\Program Files\Winamp\winampa.exe [36352 2007-10-10] ()
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4971024 2014-03-19] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
HKU\.DEFAULT\...\RunOnce: [SPReview] - C:\Windows\System32\SPReview\SPReview.exe [280576 2014-04-03] (Microsoft Corporation)
HKU\S-1-5-21-664243076-959417423-1359243548-1003\...\MountPoints2: {38bd9430-8236-11e0-aaa2-806e6f6e6963} - G:\setup.exe /AUTORUN
Startup: C:\Users\magdalena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\magdalena\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://derstandard.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://at.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD39329DB614FCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-at
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://isearch.glarysoft.com/?src=iehome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://isearch.glarysoft.com/?src=iehome
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.glarysoft.com/?src=iehome
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM - DefaultScope {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = hxxp://isearch.glarysoft.com/?q={searchTerms}&src=iesearch
SearchScopes: HKLM - {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = hxxp://isearch.glarysoft.com/?q={searchTerms}&src=iesearch
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKCU - {c1d89ae7-449d-4929-b24b-fded04adbe06} URL = hxxp://isearch.glarysoft.com/?q={searchTerms}&src=iesearch
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 195.34.133.21 212.186.211.21

========================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3782672 2014-02-23] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 Realtek11nSU; C:\Program Files\REALTEK\11n USB Wireless LAN Utility\RtlService.exe [36864 2009-07-10] (Realtek)
S2 vToolbarUpdater18.0.5; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\ToolbarUpdater.exe [X]

==================== Drivers (Whitelisted) ====================

R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [210712 2013-11-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [149272 2013-11-25] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22808 2014-01-19] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
R1 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [42272 2014-04-04] (AVG Technologies)
R3 dmxfire; C:\Windows\System32\drivers\dmx6fire.sys [99680 2007-08-31] (Terratec Electronic GmbH)
R3 dmxsens; C:\Windows\System32\drivers\dmxsens.sys [407328 2007-08-31] (Sensaura)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [218688 2011-05-10] (DT Soft Ltd)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [107736 2014-04-07] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-08 09:43 - 2014-04-08 09:43 - 00000000 ____D () C:\FRST
2014-04-08 09:39 - 2014-04-08 09:39 - 00000000 _____ () C:\Users\magdalena\defogger_reenable
2014-04-08 09:10 - 2014-04-08 09:27 - 00000000 ___RD () C:\Users\magdalena\Dropbox
2014-04-08 09:10 - 2014-04-08 09:10 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-04-08 09:10 - 2014-04-08 09:10 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\DropboxMaster
2014-04-08 08:37 - 2014-04-08 09:43 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\Dropbox
2014-04-08 08:30 - 2014-04-08 08:30 - 00000000 ____D () C:\Program Files\Common Files\Designer
2014-04-07 22:02 - 2014-04-07 22:02 - 00000000 ____D () C:\Users\dorenz\AppData\Local\Adobe
2014-04-07 21:30 - 2014-04-07 21:30 - 00000000 ____D () C:\Program Files\Microsoft.NET
2014-04-07 16:20 - 2014-04-07 16:20 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\GlarySoft
2014-04-07 14:00 - 2014-04-07 14:00 - 00000000 ____D () C:\Windows\ERUNT
2014-04-07 13:48 - 2014-04-07 13:54 - 00000000 ____D () C:\AdwCleaner
2014-04-07 13:45 - 2014-04-07 16:21 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-07 13:45 - 2014-04-07 13:45 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-07 09:17 - 2014-04-08 08:27 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-04-07 09:16 - 2014-04-07 09:16 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\TuneUp Software
2014-04-06 20:38 - 2013-12-21 10:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-06 15:58 - 2014-04-06 15:58 - 00000046 _____ () C:\Users\magdalena\AppData\Roaming\WB.CFG
2014-04-06 15:26 - 2014-04-06 16:38 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\Audacity
2014-04-06 15:26 - 2014-04-06 15:26 - 00000965 _____ () C:\Users\Public\Desktop\Audacity.lnk
2014-04-06 15:26 - 2014-04-06 15:26 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\Waves Preferences
2014-04-06 15:26 - 2014-04-06 15:26 - 00000000 ____D () C:\Program Files\Audacity
2014-04-06 15:01 - 2014-04-06 15:01 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\uTorrent
2014-04-06 14:59 - 2014-04-06 14:59 - 00000000 ____D () C:\Users\magdalena\AppData\Local\cache
2014-04-06 14:36 - 2014-04-07 09:13 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\qone8
2014-04-06 14:36 - 2014-04-06 18:46 - 00000000 ____D () C:\ProgramData\DVD Shrink
2014-04-06 14:36 - 2014-04-06 14:36 - 00000953 _____ () C:\Users\dorenz\Desktop\DVD Shrink 3.2.lnk
2014-04-06 14:36 - 2014-04-06 14:36 - 00000000 ____D () C:\Program Files\DVD Shrink
2014-04-06 09:19 - 2014-03-01 06:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-06 09:19 - 2014-03-01 06:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-06 09:19 - 2014-03-01 06:10 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-06 09:19 - 2014-03-01 05:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-06 09:19 - 2014-03-01 05:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-06 09:19 - 2014-03-01 05:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-06 09:19 - 2014-03-01 05:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-06 09:19 - 2014-03-01 05:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-06 09:19 - 2014-03-01 05:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-06 09:19 - 2014-03-01 05:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-06 09:19 - 2014-03-01 05:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-06 09:19 - 2014-03-01 05:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-06 09:19 - 2014-03-01 05:31 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-06 09:19 - 2014-03-01 05:25 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-06 09:19 - 2014-03-01 05:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-06 09:19 - 2014-03-01 05:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-06 09:19 - 2014-03-01 05:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-06 09:19 - 2014-03-01 05:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-06 09:19 - 2014-03-01 04:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-06 09:19 - 2014-03-01 04:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-06 09:19 - 2014-03-01 04:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-06 09:19 - 2014-03-01 04:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-06 09:19 - 2014-02-04 04:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-04-06 09:19 - 2013-12-25 01:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-04-06 09:19 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-04-06 09:19 - 2013-11-23 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-04-06 09:19 - 2012-02-11 07:37 - 00317440 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-04-06 09:19 - 2011-02-25 07:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-04-05 22:27 - 2014-04-05 22:27 - 00001989 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-04-05 22:27 - 2014-04-05 22:27 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-04-05 22:27 - 2014-04-05 22:27 - 00000000 ____D () C:\Program Files\Adobe
2014-04-05 22:26 - 2014-04-05 22:37 - 00000000 ____D () C:\Users\magdalena\AppData\Local\Adobe
2014-04-05 22:26 - 2014-04-05 22:37 - 00000000 ____D () C:\ProgramData\Adobe
2014-04-04 18:11 - 2014-04-04 18:11 - 01051136 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-04-04 18:11 - 2014-04-04 18:11 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-04-04 18:11 - 2014-04-04 18:11 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00238288 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00208384 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-04-04 18:11 - 2014-04-04 18:11 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-04-04 18:11 - 2014-04-04 18:11 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-04-04 18:11 - 2014-04-04 18:11 - 00071680 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-04-04 18:11 - 2014-04-04 18:11 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00069120 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-04-04 18:11 - 2014-04-04 18:11 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-04-04 18:11 - 2014-04-04 18:11 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-04-04 18:11 - 2014-04-04 18:11 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-04-04 18:03 - 2014-04-08 08:31 - 00000400 _____ () C:\Windows\ODBC.INI
2014-04-04 18:02 - 2014-04-08 08:30 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-04-04 18:02 - 2014-04-04 18:02 - 00000000 ____D () C:\Windows\Msagent
2014-04-04 16:58 - 2013-05-10 06:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-04-04 16:58 - 2013-05-10 06:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-04-04 16:56 - 2014-04-04 18:13 - 00015186 _____ () C:\Windows\IE11_main.log
2014-04-04 16:49 - 2014-04-04 16:49 - 02284544 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 01247744 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 01158144 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 01080832 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00906240 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00604160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-04-04 16:49 - 2014-04-04 16:49 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-04-04 16:49 - 2014-04-04 16:49 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-04-04 16:48 - 2014-04-04 16:51 - 00010717 _____ () C:\Windows\IE10_main.log
2014-04-04 16:48 - 2014-04-04 16:48 - 01505280 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-04-04 16:46 - 2014-04-05 20:22 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\Winamp
2014-04-04 15:55 - 2014-02-07 03:07 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-04-04 15:55 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-04-04 15:55 - 2014-01-28 04:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-04-04 15:55 - 2014-01-01 01:05 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-04-04 15:55 - 2013-12-06 04:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-04-04 15:55 - 2013-12-06 04:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-04-04 15:55 - 2013-11-12 04:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-04-04 15:55 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-04-04 15:55 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-04-04 15:55 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-04-04 15:55 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-04-04 15:55 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-04-04 15:55 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-04-04 15:55 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-04-04 15:55 - 2013-10-04 03:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-04-04 15:55 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-04-04 15:55 - 2013-10-04 03:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-04-04 15:55 - 2013-10-04 03:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-04-04 15:55 - 2013-10-03 03:58 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-04-04 15:55 - 2013-09-25 04:01 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-04-04 15:55 - 2013-09-25 04:01 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-04-04 15:55 - 2013-09-25 03:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-04-04 15:55 - 2013-09-25 03:57 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-04-04 15:55 - 2013-09-25 03:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-04-04 15:55 - 2013-09-25 03:56 - 01038848 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-04-04 15:55 - 2013-09-25 03:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-04-04 15:55 - 2013-09-25 02:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-04-04 15:55 - 2013-09-25 02:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-04-04 15:55 - 2013-09-14 02:48 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-04-04 15:55 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-04-04 15:55 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-04-04 15:55 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-04-04 15:55 - 2013-08-29 03:50 - 01289096 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-04-04 15:55 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-04-04 15:55 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-04-04 15:55 - 2013-08-28 02:57 - 00434688 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-04-04 15:55 - 2013-08-01 13:03 - 00729024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-04-04 15:55 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-04-04 15:55 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-04-04 15:55 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-04-04 15:55 - 2013-07-09 06:50 - 00652800 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-04-04 15:55 - 2013-07-04 14:16 - 00369848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-04-04 15:55 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-04-04 15:55 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-04-04 15:55 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-04-04 15:55 - 2013-07-04 11:48 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-04-04 15:55 - 2013-07-03 05:36 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-04-04 15:55 - 2013-07-03 05:36 - 00025728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-04-04 15:55 - 2013-06-06 06:52 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-04-04 15:55 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-04-04 15:55 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-04-04 15:55 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-04-04 15:55 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-04-04 15:55 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-04-04 15:55 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-04-04 15:55 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-04-04 15:55 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-04-04 15:55 - 2013-04-10 07:18 - 00218984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-04-04 15:55 - 2013-03-19 05:33 - 00040960 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-04-04 15:55 - 2012-10-03 18:42 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-04-04 15:55 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-04-04 15:55 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-04-04 15:55 - 2012-10-03 18:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-04-04 15:55 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-04-04 15:55 - 2012-10-03 18:40 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-04-04 15:55 - 2012-10-03 17:21 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-04-04 15:55 - 2012-08-22 19:16 - 00712048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-04-04 15:55 - 2012-08-21 22:12 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-04-04 15:55 - 2012-07-04 21:45 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-04-04 15:55 - 2011-03-11 07:39 - 00148864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-04 15:55 - 2011-03-11 07:39 - 00143744 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-04-04 15:55 - 2011-03-11 07:39 - 00117120 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-04-04 15:55 - 2011-03-11 07:38 - 00332160 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-04-04 15:55 - 2011-03-11 07:38 - 00080256 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-04-04 15:55 - 2011-03-11 07:38 - 00022400 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-04-04 15:55 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-04-04 15:55 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-04-04 15:55 - 2011-03-11 06:01 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-04-04 15:54 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-04-04 15:54 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-04-04 15:54 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-04-04 15:54 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-04-04 15:54 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-04-04 15:54 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-04-04 15:54 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-04-04 15:54 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-04-04 15:54 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-04-04 15:54 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-04-04 15:54 - 2013-11-27 03:14 - 00258560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-04-04 15:54 - 2013-11-27 03:13 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-04-04 15:54 - 2013-11-27 03:13 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-04-04 15:54 - 2013-11-27 03:13 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-04-04 15:54 - 2013-11-27 03:13 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-04-04 15:54 - 2013-11-27 03:13 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-04-04 15:54 - 2013-11-27 03:13 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-04-04 15:54 - 2013-11-26 13:11 - 00240576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-04-04 15:54 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-04-04 15:54 - 2013-10-12 04:01 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-04-04 15:54 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-04-04 15:54 - 2013-10-05 21:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-04-04 15:54 - 2013-09-08 04:07 - 01294272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-04-04 15:54 - 2013-08-05 03:56 - 00133056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-04-04 15:54 - 2013-08-02 03:50 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-04-04 15:54 - 2013-08-02 03:49 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-04 15:54 - 2013-08-02 03:49 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 02:52 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-04-04 15:54 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-04-04 15:54 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-04-04 15:54 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-04-04 15:54 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-04-04 15:54 - 2013-07-12 12:07 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-04-04 15:54 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-04-04 15:54 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-04-04 15:54 - 2013-06-26 00:56 - 00527064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-04-04 15:54 - 2013-06-15 05:40 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-04-04 15:54 - 2013-06-15 05:38 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-04-04 15:54 - 2013-02-27 07:05 - 00101720 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-04-04 15:54 - 2013-02-27 06:49 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-04-04 15:54 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-04-04 15:54 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-04-04 15:52 - 2014-04-04 15:52 - 00042272 _____ (AVG Technologies) C:\Windows\system32\Drivers\avgtpx86.sys
2014-04-03 22:38 - 2014-04-03 22:38 - 00000000 ____D () C:\ProgramData\Western Digital
2014-04-03 22:36 - 2014-04-07 21:17 - 00030768 _____ () C:\Windows\PFRO.log
2014-04-03 19:43 - 2014-04-03 19:43 - 00000000 ____D () C:\Windows\system32\SPReview
2014-04-03 19:43 - 2014-04-03 19:43 - 00000000 ____D () C:\Windows\system32\EventProviders
2014-04-03 19:26 - 2014-04-05 22:37 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\Adobe
2014-04-03 19:26 - 2014-04-03 19:26 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\Macromedia
2014-04-03 19:02 - 2014-04-08 09:06 - 00063552 _____ () C:\Users\magdalena\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-03 18:45 - 2014-04-03 18:45 - 00000000 ____D () C:\Users\magdalena\AppData\Roaming\AVG
2014-04-03 18:45 - 2014-04-03 18:45 - 00000000 ____D () C:\Users\magdalena\AppData\Local\AVG
2014-04-03 15:59 - 2010-11-20 14:32 - 05066752 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2014-04-03 15:59 - 2010-11-20 14:30 - 00233344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-03 15:59 - 2010-11-20 14:29 - 00520064 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2014-04-03 15:59 - 2010-11-20 14:29 - 00014208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hwpolicy.sys
2014-04-03 15:59 - 2010-11-20 14:21 - 01159168 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 01128448 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 01115136 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 01086976 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 00521216 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 00505856 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\umrdp.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\tssrvlic.dll
2014-04-03 15:59 - 2010-11-20 14:21 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-04-03 15:59 - 2010-11-20 14:20 - 01414144 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2014-04-03 15:59 - 2010-11-20 14:20 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\qmgr.dll
2014-04-03 15:59 - 2010-11-20 14:20 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\odbc32.dll
2014-04-03 15:59 - 2010-11-20 14:19 - 03207680 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-04-03 15:59 - 2010-11-20 14:19 - 01493504 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2014-04-03 15:59 - 2010-11-20 14:19 - 00954752 _____ (Microsoft Corporation) C:\Windows\system32\mfc40.dll
2014-04-03 15:59 - 2010-11-20 14:19 - 00954288 _____ (Microsoft Corporation) C:\Windows\system32\mfc40u.dll
2014-04-03 15:59 - 2010-11-20 14:19 - 00593408 _____ (Microsoft Corporation) C:\Windows\system32\gpsvc.dll
2014-04-03 15:59 - 2010-11-20 14:19 - 00566272 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2014-04-03 15:59 - 2010-11-20 14:19 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\LSCSHostPolicy.dll
2014-04-03 15:59 - 2010-11-20 14:18 - 01828352 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll
2014-04-03 15:59 - 2010-11-20 14:18 - 01371136 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2014-04-03 15:59 - 2010-11-20 14:18 - 01334272 _____ (Microsoft Corporation) C:\Windows\system32\CertEnroll.dll
2014-04-03 15:59 - 2010-11-20 14:18 - 00863744 _____ (Microsoft Corporation) C:\Windows\system32\diagperf.dll
2014-04-03 15:59 - 2010-11-20 14:18 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-04-03 15:59 - 2010-11-20 14:17 - 03367424 _____ (Microsoft Corporation) C:\Windows\system32\WinSAT.exe
2014-04-03 15:59 - 2010-11-20 14:17 - 01203200 _____ (Microsoft Corporation) C:\Windows\system32\wbengine.exe
2014-04-03 15:59 - 2010-11-20 14:17 - 01049600 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-04-03 15:59 - 2010-11-20 14:17 - 00456192 _____ (Microsoft Corporation) C:\Windows\system32\spinstall.exe
2014-04-03 15:59 - 2010-11-20 14:17 - 00280576 _____ (Microsoft Corporation) C:\Windows\system32\spreview.exe
2014-04-03 15:59 - 2010-11-20 14:17 - 00080896 _____ () C:\Windows\system32\RDVGHelper.exe
2014-04-03 15:59 - 2010-11-20 14:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\PushPrinterConnections.exe
2014-04-03 15:59 - 2010-11-20 12:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-04-03 15:59 - 2010-11-20 12:22 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\rdpdd.dll
2014-04-03 15:59 - 2010-11-05 04:20 - 00146852 _____ () C:\Windows\system32\systemsf.ebd
2014-04-03 15:59 - 2010-11-05 03:58 - 01130824 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-04-03 15:59 - 2010-11-05 03:58 - 00297808 _____ (Microsoft Corporation) C:\Windows\system32\mscoree.dll
2014-04-03 15:59 - 2010-11-05 03:53 - 00295264 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHost.exe
2014-04-03 15:59 - 2010-11-05 03:53 - 00099176 _____ (Microsoft Corporation) C:\Windows\system32\PresentationHostProxy.dll
2014-04-03 15:58 - 2010-11-20 14:36 - 01077248 _____ (Microsoft Corporation) C:\Windows\system32\Narrator.exe
2014-04-03 15:58 - 2010-11-20 14:36 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\NAPHLPR.DLL
2014-04-03 15:58 - 2010-11-20 14:36 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\NAPCRYPT.DLL
2014-04-03 15:58 - 2010-11-20 14:30 - 00245632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00175360 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmbus.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00173440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00160128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00153984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00140160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\scsiport.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00130432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpio.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00116096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msdsm.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00085376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sbp2port.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00078208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00053120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\termdd.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00040704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vmstorfl.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00028032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storvsc.sys
2014-04-03 15:58 - 2010-11-20 14:30 - 00028032 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msahci.sys
2014-04-03 15:58 - 2010-11-20 14:29 - 02217856 _____ (Microsoft Corporation) C:\Windows\system32\bootres.dll
2014-04-03 15:58 - 2010-11-20 14:29 - 00274304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys
2014-04-03 15:58 - 2010-11-20 14:29 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2014-04-03 15:58 - 2010-11-20 14:29 - 00194432 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2014-04-03 15:58 - 2010-11-20 14:29 - 00137088 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2014-04-03 15:58 - 2010-11-20 14:29 - 00043392 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\winhv.sys
2014-04-03 15:58 - 2010-11-20 14:24 - 00690680 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-04-03 15:58 - 2010-11-20 14:24 - 00508904 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-04-03 15:58 - 2010-11-20 14:24 - 00442720 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-04-03 15:58 - 2010-11-20 14:24 - 00271664 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2014-04-03 15:58 - 2010-11-20 14:23 - 00144768 _____ (Microsoft Corporation) C:\Windows\system32\basecsp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 02983424 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 02755072 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 02202624 _____ (Microsoft Corporation) C:\Windows\system32\SensorsCpl.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 02157568 _____ (Microsoft Corporation) C:\Windows\system32\themecpl.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\SyncCenter.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 01712640 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 01667584 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 01624064 _____ (Microsoft Corporation) C:\Windows\system32\WMPEncEn.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 01363456 _____ (Microsoft Corporation) C:\Windows\system32\Query.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 01326592 _____ (Microsoft Corporation) C:\Windows\system32\wlanpref.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 01227776 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 01175040 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\werconcpl.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 01003008 _____ (Microsoft Corporation) C:\Windows\system32\WMNetMgr.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00974336 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00933376 _____ (Microsoft Corporation) C:\Windows\system32\Vault.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00907776 _____ (Microsoft Corporation) C:\Windows\system32\sdengin2.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00902656 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2014-04-03 15:58 - 2010-11-20 14:21 - 00811520 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00782336 _____ (Microsoft Corporation) C:\Windows\system32\webservices.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\sqlsrv32.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00766464 _____ (Microsoft Corporation) C:\Windows\system32\wpccpl.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00755200 _____ (Microsoft Corporation) C:\Windows\system32\sud.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00750080 _____ (Microsoft Corporation) C:\Windows\system32\sdcpl.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00739328 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2014-04-03 15:58 - 2010-11-20 14:21 - 00738816 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00697344 _____ (Microsoft Corporation) C:\Windows\system32\SmiEngine.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00638976 _____ (Microsoft Corporation) C:\Windows\system32\VAN.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00597504 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00577024 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00541184 _____ (Microsoft Corporation) C:\Windows\system32\WMVSDECD.DLL
2014-04-03 15:58 - 2010-11-20 14:21 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmdev.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00473600 _____ (Microsoft Corporation) C:\Windows\system32\riched20.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00464896 _____ (Microsoft Corporation) C:\Windows\system32\scrptadm.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00463360 _____ (Microsoft Corporation) C:\Windows\system32\wiaservc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00444928 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00436736 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmnet.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00428544 _____ (Microsoft Corporation) C:\Windows\system32\shwebsvc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\wiadefui.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\wlangpui.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00410624 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\wlanui.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00380416 _____ (Microsoft Corporation) C:\Windows\system32\sxs.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00376832 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00372224 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00363520 _____ (Microsoft Corporation) C:\Windows\system32\StructuredQuery.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\wbemcomn.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\termmgr.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00352768 _____ (Microsoft Corporation) C:\Windows\system32\spwizeng.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00352256 _____ (Microsoft Corporation) C:\Windows\system32\wmpeffects.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\wmicmiplugin.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00351232 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00350720 _____ (Microsoft Corporation) C:\Windows\system32\WPDSp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00350208 _____ (Microsoft Corporation) C:\Windows\system32\shlwapi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00335872 _____ (Microsoft Corporation) C:\Windows\system32\WinSATAPI.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00328192 _____ (Microsoft Corporation) C:\Windows\system32\shsvcs.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00327680 _____ (Microsoft Corporation) C:\Windows\system32\zipfldr.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\raschap.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\sharemediacpl.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\sqlcese30.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00307712 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\taskcomp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\srchadmin.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00299520 _____ (Microsoft Corporation) C:\Windows\system32\wmpdxm.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\rasmans.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00276992 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\Wldap32.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\srrstr.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\scansetting.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\tapisrv.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\taskbarcpl.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\wavemsp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\SndVolSSO.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\ws2_32.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\unattend.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\wpdwcn.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\sysclass.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\vaultsvc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\sppcomapi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\wdscore.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\sqmapi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\rdpencom.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\wmpsrcwp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\tcpipcfg.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\rasppp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\scecli.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\spp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00160256 _____ (Microsoft Corporation) C:\Windows\system32\vdsbas.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\syncui.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00154624 _____ (Microsoft Corporation) C:\Windows\system32\tscfgwmi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\remotepg.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\twext.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wmpps.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\recovery.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00133632 _____ (Microsoft Corporation) C:\Windows\system32\tspubwmi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\sdrsvc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00119808 _____ (Microsoft Corporation) C:\Windows\system32\umpo.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\uxlib.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\sppnp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SessEnv.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00111104 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00109568 _____ (Microsoft Corporation) C:\Windows\system32\wiavideo.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\t2embed.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\WPDShServiceObj.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00105472 _____ (Microsoft Corporation) C:\Windows\system32\wmpshell.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\sppinst.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\srvcli.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\wkssvc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\thumbcache.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00081920 _____ (Microsoft Corporation) C:\Windows\system32\userenv.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\QUTIL.DLL
2014-04-03 15:58 - 2010-11-20 14:21 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\UserAccountControlSettings.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\TabSvc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\regapi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\tlscsp.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\spbcd.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\unimdmat.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\vfwwdm32.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\sppuinotify.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\rdpd3d.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wsnmp32.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00051200 _____ (Twain Working Group) C:\Windows\twain_32.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\samcli.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\umb.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\wkscli.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\WavDest.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00046080 _____ (Microsoft Corporation) C:\Windows\system32\RpcRtRemote.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wtsapi32.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\rtutils.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\shimgvw.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\wiarpc.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\wdiasqmmodule.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\utildll.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\vpnikeapi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\wsdchngr.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\TRAPI.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00021504 _____ (Microsoft Corporation) C:\Windows\system32\rdprefdrvapi.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\shgina.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\spopk.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\sisbkup.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\schedcli.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\syssetup.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\tsbyuv.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00011264 _____ (Microsoft Corporation) C:\Windows\system32\wshirda.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\shunimpl.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\riched32.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\rdpcfgex.dll
2014-04-03 15:58 - 2010-11-20 14:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-04-03 15:58 - 2010-11-20 14:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 02504192 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2014-04-03 15:58 - 2010-11-20 14:20 - 02494464 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 02130944 _____ (Microsoft Corporation) C:\Windows\system32\networkmap.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 01750528 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 01661440 _____ (Microsoft Corporation) C:\Windows\system32\networkexplorer.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 01644032 _____ (Microsoft Corporation) C:\Windows\system32\netcenter.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\pla.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\OpcServices.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\onexui.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\propsys.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00932352 _____ (Microsoft Corporation) C:\Windows\system32\printui.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\OobeFldr.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\PerfCenterCPL.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00563712 _____ (Microsoft Corporation) C:\Windows\system32\netlogon.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00547840 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceApi.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\powercpl.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\PortableDeviceStatus.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00395264 _____ (Microsoft Corporation) C:\Windows\system32\prnfldr.dll
2014-04-03 15:58 - 2010-11-20 14:20 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\nshipsec.dll
5) GMER

Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-04-08 09:54:19
Windows 6.1.7601 Service Pack 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-2 Corsair_CSSD-F60GB2 rev.2.0 55,90GB
Running: 2olm1uby.exe; Driver: C:\Users\MAGDAL~1\AppData\Local\Temp\awdirpow.sys


---- System - GMER 2.1 ----

SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwNotifyChangeKey [0x90C016E0]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwNotifyChangeMultipleKeys [0x90C01800]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwOpenProcess [0x90C01010]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwOpenThread [0x90C014D0]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwSuspendProcess [0x90C01300]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwSuspendThread [0x90C013E0]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwTerminateProcess [0x90C01120]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwTerminateThread [0x90C01210]
SSDT            \SystemRoot\system32\DRIVERS\avgidsshimx.sys  ZwWriteVirtualMemory [0x90C015E0]

---- Kernel code sections - GMER 2.1 ----

.text           ntkrnlpa.exe!ZwRollbackEnlistment + 142D      82A8AA15 1 Byte  [06]
.text           ntkrnlpa.exe!KiDispatchInterrupt + 5A2        82AC4212 19 Bytes  [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text           ntkrnlpa.exe!KeRemoveQueueEx + 1357           82ACB6EC 8 Bytes  [E0, 16, C0, 90, 00, 18, C0, ...]
.text           ntkrnlpa.exe!KeRemoveQueueEx + 139F           82ACB734 4 Bytes  [10, 10, C0, 90]
.text           ntkrnlpa.exe!KeRemoveQueueEx + 13BF           82ACB754 4 Bytes  [D0, 14, C0, 90] {RCL BYTE [EAX+EAX*8], 0x1; NOP }
.text           ntkrnlpa.exe!KeRemoveQueueEx + 165F           82ACB9F4 8 Bytes  [00, 13, C0, 90, E0, 13, C0, ...]
.text           ntkrnlpa.exe!KeRemoveQueueEx + 166F           82ACBA04 8 Bytes  [20, 11, C0, 90, 10, 12, C0, ...]
.text           ...                                           
.text           C:\Windows\system32\DRIVERS\atikmdag.sys      section is writeable [0x9523B000, 0x388539, 0xE8000020]
init            C:\Windows\system32\drivers\dmxsens.sys       entry point in "init" section [0x95B85A00]

---- Devices - GMER 2.1 ----

AttachedDevice  \Driver\tdx \Device\Tcp                       avgtdix.sys
AttachedDevice  \Driver\tdx \Device\Udp                       avgtdix.sys
AttachedDevice  \Driver\tdx \Device\RawIp                     avgtdix.sys

---- EOF - GMER 2.1 ----
_____________________________

Sind diese Informationen für euch ausreichend?

VIELEN DANK FÜR DIE HILFE!!!
Geändert von radklingel (08.04.2014 um 10:47 Uhr)

 

Themen zu docx-Dokumente werden nach Trojaner-Beseitigung teilweise nicht mehr erkannt.
beseitigung, internet explorer, launch, log-datei, mobogenie, mobogenie entfernen, pup.optional.filesfrog.a, pup.optional.iepluginservice.a, pup.optional.installcore.a, pup.optional.mysearchdial.a, pup.optional.qone8, pup.optional.qone8.a, pup.optional.skytech.a, pup.optional.somoto, pup.optional.somoto.a, pup.optional.suptab.a, pup.optional.wajam, pup.optional.wpmanager, pup.optional.wpmanager.a, secure search, vtoolbarupdater, win32/speedingupmypc.h


« Windows 7 nach Trojaner Entfernung durch AntiVir Internet unerträglich langsam ! | Firefox öffnet Werbetabs »


Ähnliche Themen: docx-Dokumente werden nach Trojaner-Beseitigung teilweise nicht mehr erkannt.


  1. USB Sticks werden unter Win 8.1 nicht mehr erkannt.
    Alles rund um Windows - 03.06.2015 (5)
  2. USB-Geräte werden nicht mehr erkannt
    Plagegeister aller Art und deren Bekämpfung - 30.04.2015 (21)
  3. Linker Mausklick wird teilweise nicht erkannt
    Alles rund um Windows - 20.01.2015 (2)
  4. Dokumente nach Trojaner nicht zu öffnen
    Alles rund um Windows - 12.04.2014 (9)
  5. kurz nach google chrome start funktioniert Internetverbindung teilweise nicht mehr
    Plagegeister aller Art und deren Bekämpfung - 18.02.2014 (6)
  6. Windows XP: Word-Dokumente können nicht mehr geöffnet werden nach Schädlingsbefall
    Log-Analyse und Auswertung - 10.12.2013 (21)
  7. Laufwerke werden nach infizierung nicht mehr erkannt
    Plagegeister aller Art und deren Bekämpfung - 23.07.2012 (1)
  8. Nach Virus (EXP/MS04-028.JPEG.A) lassen sich Bilder, OpenOffice-Dokumente usw. nicht mehr öffnen
    Log-Analyse und Auswertung - 18.07.2012 (3)
  9. alle Datendateien und Photos werden nicht mehr erkannt
    Log-Analyse und Auswertung - 10.06.2012 (8)
  10. Trojan.Win32.Mediyes, Netzlaufwerke (Nas) werden nicht mehr erkannt
    Plagegeister aller Art und deren Bekämpfung - 22.05.2012 (10)
  11. CD/DVD Laufwerke werden nicht mehr oder falsch erkannt
    Netzwerk und Hardware - 24.07.2009 (6)
  12. PC-Lautsprecher werden nach Mainboardwechsel nicht erkannt
    Netzwerk und Hardware - 16.12.2008 (9)
  13. Meine Boxen werden nicht mehr erkannt!!!
    Netzwerk und Hardware - 28.05.2008 (3)
  14. CD Brenner werden nicht mehr erkannt
    Log-Analyse und Auswertung - 30.01.2007 (1)
  15. CD/DVD - Laufwerke werden nicht mehr erkannt
    Mülltonne - 23.07.2006 (1)
  16. Meine Kartenleser werden nicht mehr erkannt!
    Netzwerk und Hardware - 26.01.2005 (4)
  17. OS wird nach Festplattentausch nicht mehr erkannt
    Netzwerk und Hardware - 24.08.2003 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema docx-Dokumente werden nach Trojaner-Beseitigung teilweise nicht mehr erkannt. - PROBLEM: Nach der Beseitigung eines Trojaners habe ich folgendes Problem: Während manche Dateien ganz normal als "docx" erkannt und von Word geöffnet werden, werden andere als "OpenXML"-Dateien augewiesen und von - docx-Dokumente werden nach Trojaner-Beseitigung teilweise nicht mehr erkannt....
Archiv
Du betrachtest: docx-Dokumente werden nach Trojaner-Beseitigung teilweise nicht mehr erkannt. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131