| |
| |||||||
Log-Analyse und Auswertung: Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOGWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
16.05.2014, 16:38
| #1 |
| |  Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG Hallo, ich hab seit längerem ein Problem mit einem Trojaner, der mir hier meiner Meinung nach einiges kaputt gemacht hat: - Mein Drucker wollte nicht mehr als 1 Dokument drucken, nach einem Neustart jedoch hat er die restlichen Dokumente ohne Probleme zu veranstalten gedruckt. (Lexmark) - Meine alte TV-Karte konnte plötzlich kein DVB-C empfangen, geschweige Teletext korrekt anzeigen etc. , es ging nur analog-TV (Hauppauge) -- sobald ich meine TV-Karte eingesteckt hatte und das Betriebsystem gestartet hatte, ging die Auslast nach oben und der RAM stieg...und stieg... --- dabei hab ich ein frisches Windows 7 x64 mit allen Updates installiert und dann erst die Karte eingebaut (ohne Treiber, ohne Netzwerkanschluss) ---- kann ich bei Gelegenheit mit einem Test-PC reproduzieren und Screenshots anhängen bei Interesse Zwar ist der Drucker nicht mehr da, die TV-Karte draußen und das Betriebsystem komplett neuaufgesetzt, d.h.: Bootsektor mit "dd urandom" überschrieben, Partitiontabelle angelegt, formatiert und installiert. Habe, ebenfalls ziemlich viele unnötige Windows Dienste deaktiviert, wie z.B.: IPsec, IPv6 etc. Da die Dienste damals am Anfang der Infizierung gestartet waren (Als Info: da liefen dann ca. 14-16 svchost.exe Prozesse).  Ich dachte, dass mein System nun nicht mehr infiziert wäre. Jedoch hat mir ein Blick auf den Router-Log schon wieder etwas Panik gemacht: man hat eindeutig gesehen, dass der Rechner zu verschiedenen IP-Adressen eine Verbindung aufbaut über das netbios-ns Protokoll. In Wireshark konnte ich feststellen, dass es sich um das exakt gleiche Datenpaket handelt. Das aller Beste (Ironie) ist, dass diese Verbindung im Taskmanager vom Prozess System hergestellt wird. Und ja, das kann verdammt viel sein... Was noch erwähnenswert ist: - Als die TV-Karte noch drin war hat mein Bildschirm nach einem Neustart immer genau einmal geflackert (oben links: war auch immer ein Riss und dieses schwarz weiß flackern (=ameisenhaufen?)), ebenso der Laptop -- mittlerweile ist die TV-Karte draußen und es nicht mehr zu beobachten - Leider war auch ein zweites Flackern zu beobachten, nach dem die TV-Karte draußen war -- anfangs habe mir nichts dabei gedacht: is vielleicht die Grafikkarte -- dann sah ich den Router-Log, daraufhin habe ich netbios beim Netzwerkadapter deaktiviert --- mittlerweile is auch dieses flackern weg (bei diesem flackern hat sich für ne Sekunde der Bildschirm nach oben verschoben) ---- das flackern ist doch noch da... Jetzt stellt mir sich die Frage ist mein Rechner überhaupt sauber, bzw. mach ich i-was bei der Neuinstallation falsch oder bin ich mittlerweile so  ... . Brauche auf jedenfall jetzt Unterstützung, da ich einfach nicht mehr weiter weiß ...PS: Ich werde evtl. mit der Antwort etwas brauchen, da ich momentan "nebenbei" studiere und nicht all zu viel Zeit habe, danke für euer Verständnis. |
|
17.05.2014, 11:59
| #2 |
| /// the machine /// TB-Ausbilder    | Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
22.05.2014, 10:32
| #3 |
| | Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG Hallo,
__________________die Logs musste ich als Archiv anhängen, Text ist zu lang. Was merkwürdig ist, mein Hauptrechner, hatte gestern einen unerwarteten BSOD. Dann musste ich leider feststellen, dass sobald ein Rechner im Netz ist, sehe Drops von fünf verschiedenen IP-Adressen auf unterschiedlichen Ports und es läuft im Hintergrund kein emule client o.ä.. Aber was mich noch mehr verunsichert ist, dass keiner der Rechner einen aktuellen Microcode enthält. Auch ein Versuch über ein Linuxsystem den Microcode des Prozessor zu updaten scheitert, in dem zwar im Log steht das ein Update durchgeführt wird, jedoch nach jedem Neustart nichts geändert hat (im BIOS ändert sich die Version auch). Auch nicht wenn ich es manuell durchführe. |
|
23.05.2014, 10:52
| #4 |
| /// the machine /// TB-Ausbilder | Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG Hi, Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
24.05.2014, 01:19
| #5 |
| | Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-05-2014
Ran by Administrator at 2014-05-22 11:10:44
Running from D:\Users\Administrator\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: G Data TotalProtection (Enabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0}
AS: G Data TotalProtection (Enabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G Data Personal Firewall (Enabled) {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}
==================== Installed Programs ======================
µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.111 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 13.0.0.111 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 13.20.100.31206 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (HKLM\...\{308051DA-0048-7A07-FE8B-9B6EC119A9E8}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2013.1206.1603.28764 - Ihr Firmenname) Hidden
AMD Media Foundation Decoders (Version: 1.0.81206.1620 - Advanced Micro Devices, Inc.) Hidden
AMD Steady Video Plug-In (Version: 2.06.0000 - AMD) Hidden
AMD USB Filter Driver (x32 Version: 1.0.14.91 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.14 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma: Cold War Assault (HKLM-x32\...\Steam App 65790) (Version: - Bohemia Interactive)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom Gigabit NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 14.6.1.3 - Broadcom Corporation)
BurnAware Free 7.0 (HKLM-x32\...\BurnAware Free_is1) (Version: - Burnaware)
Call of Duty: Black Ops II - Zombies (HKLM-x32\...\Steam App 212910) (Version: - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG5500 series Benutzerregistrierung (HKLM-x32\...\Canon MG5500 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG5500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5500_series) (Version: 1.01 - Canon Inc.)
Canon MG5500 series On-screen Manual (HKLM-x32\...\Canon MG5500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.1 - Canon Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.1206.1602.28764 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
Command and Conquer: Red Alert 3 (HKLM-x32\...\Steam App 17480) (Version: - EA Los Angeles)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Creative ALchemy (HKLM-x32\...\ALchemy) (Version: 1.43 - Creative Technology Limited)
Creative Audio-Systemsteuerung (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{349F73CA-653A-43A6-AE77-970B07D6EDA0}) (Version: - Microsoft)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: - Arkane Studios)
Etron USB3.0 Host Controller (HKLM-x32\...\InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}) (Version: 0.115 - Etron Technology)
Etron USB3.0 Host Controller (x32 Version: 0.115 - Etron Technology) Hidden
Flatout 3 (HKLM-x32\...\Steam App 201510) (Version: - Team 6 Studios)
FreeUndelete 2.1.36867.1 (HKLM-x32\...\{0F5ADA2F-C0B2-4AD6-8FF7-7DFA9D6B4CBA}) (Version: 2.1.36867.1 - Recoveronix)
G Data TotalProtection (HKLM-x32\...\{6715BEB5-01F1-41AC-B44B-0A78CD50C433}) (Version: 25.0.1.2 - G Data Software AG)
GeoGebra 4.4 (HKLM-x32\...\GeoGebra 4.4) (Version: 4.4.29.0 - International GeoGebra Institute)
Hauppauge WinTV 7 (HKLM-x32\...\Hauppauge WinTV 7) (Version: v7.0.32035 (CD 3.3) - Hauppauge Computer Works)
Host OpenAL (HKLM-x32\...\Host OpenAL) (Version: 2.02 - Creative Technology Limited)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
iTunes (HKLM\...\{1CF5754A-545B-4360-BFDE-2847BC728DFC}) (Version: 11.2.0.115 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{14297226-E0A0-3781-8911-E9D529552663}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Mozilla Firefox 29.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 29.0.1 (x86 de)) (Version: 29.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Need for Speed: Hot Pursuit (HKLM-x32\...\Steam App 47870) (Version: - Criterion Games)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Path of Exile (HKLM-x32\...\Steam App 238960) (Version: - Grinding Gear Games)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.9 - )
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAIDXpert (HKLM-x32\...\InstallShield_{8B76B8E9-F773-4B75-A08C-120079EB765E}) (Version: 3.3.1540.5 - AMD)
RAIDXpert (x32 Version: 3.3.1540.5 - AMD) Hidden
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.02 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6378 - Realtek Semiconductor Corp.)
S.T.A.L.K.E.R.: Shadow of Chernobyl (HKLM-x32\...\Steam App 4500) (Version: - GSC Game World)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Secure Download Manager (HKLM-x32\...\{C58626D6-7EBD-460D-8B6C-75B3C3464879}) (Version: 3.1.60 - Kivuto Solutions Inc.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27614 - TeamViewer)
Tomb Raider: Legend (HKLM-x32\...\Steam App 7000) (Version: - Crystal Dynamics)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version: - Microsoft)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
Worms Reloaded (HKLM-x32\...\Steam App 22600) (Version: - Team17 Software Ltd.)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.38 - ASRock Inc.)
==================== Restore Points =========================
21-05-2014 09:09:27 Windows Update
21-05-2014 15:47:25 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
21-05-2014 17:18:57 Windows Update
==================== Hosts content: ==========================
2009-07-14 04:34 - 2014-05-14 12:50 - 00000884 ____A C:\Windows\system32\Drivers\etc\hosts
91.226.213.216 quorks.net pics.quorks.net hosts.quorks.net
==================== Scheduled Tasks (whitelisted) =============
Task: {4ED88207-0526-4DD3-A76C-234D6DB17C5E} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {7C06DBAE-8CBB-4950-B144-6C7DB4B55161} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {BEB57304-EAB5-4634-AD36-594A6E50257B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-13] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Loaded Modules (whitelisted) =============
2013-12-06 16:06 - 2013-12-06 16:06 - 00214528 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 00814592 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2013-07-26 05:59 - 2013-07-26 05:59 - 03650560 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2010-11-28 12:33 - 2010-11-28 12:33 - 00071560 _____ () C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
2013-12-19 04:42 - 2013-12-19 04:42 - 00350840 ____N () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2013-12-06 16:06 - 2013-12-06 16:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2010-11-28 12:34 - 2010-11-28 12:34 - 00128904 _____ () C:\Windows\SysWOW64\WinMsgBalloonServer.exe
2010-11-28 12:34 - 2010-11-28 12:34 - 00145288 _____ () C:\Windows\SysWOW64\WinMsgBalloonClient.exe
2010-10-26 19:00 - 2010-10-26 19:00 - 00516096 _____ () C:\Program Files (x86)\AMD\RAIDXpert\bin\libxml2.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-21 17:46 - 2011-08-23 10:04 - 00057344 _____ () C:\Program Files (x86)\WinTV\TVServer\libhdhomerun.dll
2014-05-21 17:46 - 2014-01-31 20:03 - 00025600 _____ () C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServerps.dll
2014-05-13 22:14 - 2014-05-07 04:27 - 03839088 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2014-05-13 22:15 - 2014-05-13 22:15 - 16361136 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (05/22/2014 11:06:01 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/22/2014 10:57:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 07:22:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 07:17:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 06:57:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 05:42:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 05:20:55 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 04:30:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 01:23:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 01:15:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (05/22/2014 11:07:09 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: 490@01010004
Error: (05/22/2014 11:06:41 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004
Error: (05/22/2014 11:06:41 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004
Error: (05/22/2014 11:06:41 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004
Error: (05/22/2014 11:06:41 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004
Error: (05/22/2014 11:06:24 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422
Error: (05/22/2014 11:05:39 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: 490@01010004
Error: (05/22/2014 11:04:52 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: 490@01010004
Error: (05/22/2014 11:04:41 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuche-Ressourcenveröffentlichung" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (05/22/2014 11:04:41 AM) (Source: WMPNetworkSvc) (EventID: 14332) (User: )
Description: WMPNetworkSvc0x80070422
Microsoft Office Sessions:
=========================
Error: (05/22/2014 11:06:01 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/22/2014 10:57:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 07:22:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 07:17:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 06:57:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 05:42:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 05:20:55 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 04:30:47 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 01:23:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (05/21/2014 01:15:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
==================== Memory info ===========================
Percentage of memory in use: 43%
Total physical RAM: 8100.64 MB
Available physical RAM: 4573.1 MB
Total Pagefile: 16199.47 MB
Available Pagefile: 12273.62 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: (system) (Fixed) (Total:59.62 GB) (Free:26.46 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (data) (Fixed) (Total:596.04 GB) (Free:433.76 GB) NTFS
Drive e: (GSP1RMCPRXFRER_DE_DVD) (CDROM) (Total:3.04 GB) (Free:0 GB) UDF
Drive f: (STUFF) (Removable) (Total:14.61 GB) (Free:2.19 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 60 GB) (Disk ID: 0009368A)
Partition 1: (Active) - (Size=60 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: AB861148)
Partition 1: (Not Active) - (Size=596 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 15 GB) (Disk ID: 0006B8A3)
Partition 1: (Active) - (Size=15 GB) - (Type=0C)
==================== End Of Log ============================
|
|
24.05.2014, 01:31
| #6 |
| | Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG FRST Teil 1: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-05-2014
Ran by Administrator (administrator) on AR-PC on 22-05-2014 11:09:54
Running from D:\Users\Administrator\Downloads
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
() C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\CaptureDLNA.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKBap64.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GdBgInx64.exe
(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(FNet Co., Ltd.) C:\Program Files (x86)\XFastUSB\XFastUsb.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Windows\SysWOW64\WinMsgBalloonServer.exe
() C:\Windows\SysWOW64\WinMsgBalloonClient.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\CaptureGenUSB.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11855976 2011-05-18] (Realtek Semiconductor)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585048 2014-04-17] (Razer Inc.)
HKLM-x32\...\Run: [XFastUSB] => C:\Program Files (x86)\XFastUSB\XFastUsb.exe [6311104 2014-05-13] (FNet Co., Ltd.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-12-06] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [GDFirewallTray] => C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe [1724728 2013-12-19] (G Data Software AG)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1282120 2013-05-02] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-15] (Apple Inc.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutoStart IR.lnk
ShortcutTarget: AutoStart IR.lnk -> C:\Program Files (x86)\WinTV\Ir.exe (Hauppauge Computer Works)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinTV Recording Status.lnk
ShortcutTarget: WinTV Recording Status.lnk -> C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe (Hauppauge Computer Works, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x56ADB4731875CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO: No Name - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: No Name - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - No File
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Hosts: 91.226.213.216 quorks.net pics.quorks.net hosts.quorks.net
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: D:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\xpadv3jk.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll (CANON INC.)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
==================== Services (Whitelisted) =================
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-12-06] (Advanced Micro Devices, Inc.)
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2244728 2014-02-12] (G Data Software AG)
R2 AVKService; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe [914552 2013-12-19] (G Data Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlx64.exe [2723400 2014-03-25] (G Data Software AG)
R2 GDBackupSvc; C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe [3831416 2014-03-20] (G Data Software AG)
R3 GDFwSvc; C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe [2992760 2014-01-30] (G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [700024 2014-02-03] (G Data Software AG)
S3 GDTunerSvc; C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe [1637496 2013-12-19] (G Data Software AG)
R2 HauppaugeTVServer; C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe [582144 2014-02-04] (Hauppauge Computer Works)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
S3 TSNxGService; C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe [255608 2014-02-03] (G Data Software)
==================== Drivers (Whitelisted) ====================
R2 AODDriver4.2.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59648 2013-09-19] (Advanced Micro Devices)
R3 FNETTBOH_305; C:\Windows\System32\drivers\FNETTBOH_305.SYS [32320 2014-05-15] (FNet Co., Ltd.)
R1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [16648 2014-05-13] (FNet Co., Ltd.)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [57344 2014-05-14] (G Data Software AG)
R3 gddcd; C:\Windows\system32\drivers\gddcd64.sys [78848 2014-05-14] (G Data Software AG)
R1 gddcv; C:\Windows\system32\drivers\gddcv64.sys [58880 2014-05-14] (G Data Software AG)
R1 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt64.sys [22016 2014-05-14] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [135168 2014-05-14] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [68608 2014-05-14] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [64000 2014-05-14] (G Data Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [106272 2014-05-14] (G Data Software)
R3 hcw10bda; C:\Windows\System32\drivers\hcw10bda.sys [718936 2013-10-11] (Hauppauge Computer Works, Inc.)
R2 hcw10cir; C:\Windows\System32\drivers\hcw10cir.sys [46080 2010-05-10] (Hauppauge Computer Works, Inc.)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [65024 2014-05-14] (G Data Software AG)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
R3 rzp1endpt; C:\Windows\System32\DRIVERS\rzp1endpt.sys [39080 2014-04-09] (Razer Inc)
R3 rzvmouse; C:\Windows\System32\DRIVERS\rzvmouse.sys [31400 2014-04-09] (Razer Inc)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 skfiltv; C:\Windows\System32\drivers\skfiltv.sys [24064 2008-08-14] (Creative Technology Ltd.)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [386680 2014-05-13] (Duplex Secure Ltd.)
R0 TS4NT; C:\Windows\System32\Drivers\TS4nt.sys [98760 2014-05-14] (G Data Software)
U3 ap15bp7m; C:\Windows\System32\Drivers\ap15bp7m.sys [0 ] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-05-22 11:09 - 2014-05-22 11:10 - 00014916 _____ () D:\Users\Administrator\Downloads\FRST.txt
2014-05-22 11:08 - 2014-05-22 11:09 - 00000000 ____D () C:\FRST
2014-05-22 11:08 - 2014-05-22 11:08 - 02067456 _____ (Farbar) D:\Users\Administrator\Downloads\FRST64.exe
2014-05-21 19:19 - 2013-04-01 08:03 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_AuthenticAMD.dll
2014-05-21 19:06 - 2014-05-21 19:06 - 00791552 _____ (AMD) D:\Users\Administrator\Downloads\amddriverdownloader.exe
2014-05-21 19:00 - 2014-05-21 19:00 - 00000000 ____D () D:\Users\Administrator\AppData\Local\Macromedia
2014-05-21 18:58 - 2007-08-10 21:16 - 00011257 _____ () D:\Users\Administrator\Desktop\AmdPPM.cat
2014-05-21 18:58 - 2007-04-16 21:46 - 00044544 _____ (Advanced Micro Devices) D:\Users\Administrator\Desktop\AmdPPM64.sys
2014-05-21 18:58 - 2007-04-16 21:46 - 00033792 _____ (Advanced Micro Devices) D:\Users\Administrator\Desktop\AmdPPM.sys
2014-05-21 18:57 - 2007-08-10 21:16 - 00011257 _____ () D:\Users\Administrator\AmdPPM.cat
2014-05-21 17:47 - 2014-05-21 17:47 - 00000987 _____ () D:\Users\Public\Desktop\WinTV 7.lnk
2014-05-21 17:38 - 2014-05-21 17:39 - 00000186 _____ () D:\Users\Administrator\AppData\Roaming\burnaware.ini
2014-05-21 17:37 - 2014-05-21 17:37 - 00000000 __SHD () D:\Users\Administrator\AppData\Local\EmieUserList
2014-05-21 17:37 - 2014-05-21 17:37 - 00000000 __SHD () D:\Users\Administrator\AppData\Local\EmieSiteList
2014-05-21 17:36 - 2014-05-21 17:37 - 12257696 _____ (Burnaware ) D:\Users\aR!\Downloads\burnaware_free.exe
2014-05-21 17:36 - 2014-05-21 17:36 - 00000000 __SHD () D:\Users\aR!\AppData\Local\EmieUserList
2014-05-21 17:36 - 2014-05-21 17:36 - 00000000 __SHD () D:\Users\aR!\AppData\Local\EmieSiteList
2014-05-21 17:35 - 2014-05-21 17:55 - 00000193 _____ () D:\Users\aR!\AppData\Roaming\burnaware.ini
2014-05-21 17:34 - 2014-05-21 17:34 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\DAEMON Tools Lite
2014-05-21 17:17 - 2014-05-17 02:16 - 01095461 _____ (pendrivelinux.com) D:\Users\aR!\Downloads\Universal-USB-Installer-1.9.5.2.exe
2014-05-21 17:16 - 2014-05-21 17:16 - 00000000 ___HD () C:\ProgramData\CanonIJMyPrinter
2014-05-21 17:16 - 2014-05-18 00:24 - 00035470 _____ () D:\Users\aR!\Downloads\nvrambak.bin
2014-05-21 17:16 - 2014-05-17 15:09 - 192937984 _____ () D:\Users\aR!\Downloads\gparted-live-0.18.0-2-amd64.iso
2014-05-21 17:16 - 2014-05-17 02:17 - 925892608 _____ () D:\Users\aR!\Downloads\ubuntu-13.10-desktop-amd64.iso
2014-05-21 17:15 - 2014-05-21 17:16 - 00000000 ____D () D:\Users\aR!\Documents\Tomb Raider - Legend
2014-05-21 17:15 - 2014-05-21 17:16 - 00000000 ____D () D:\Users\aR!\Documents\Outlook-Dateien
2014-05-21 17:15 - 2014-05-21 17:15 - 00000000 ____D () D:\Users\aR!\Documents\Criterion Games
2014-05-21 17:15 - 2014-05-17 15:10 - 3268147200 _____ () D:\Users\aR!\Downloads\de_windows_7_professional_with_sp1_x64_dvd_u_676919.iso
2014-05-21 17:15 - 2014-05-17 03:21 - 252545024 _____ () D:\Users\aR!\Downloads\WINTV7HD-V3.2.iso
2014-05-21 17:15 - 2014-05-17 03:21 - 146945880 _____ () D:\Users\aR!\Downloads\wintv7_cd_3.3.exe
2014-05-21 17:10 - 2014-05-21 17:10 - 00000000 ____D () D:\Users\aR!\AppData\Local\Apple Computer
2014-05-21 17:10 - 2014-05-21 17:10 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-21 17:03 - 2014-05-21 17:03 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\Mozilla
2014-05-21 17:03 - 2014-05-21 17:03 - 00000000 ____D () D:\Users\aR!\AppData\Local\Mozilla
2014-05-21 17:03 - 2014-05-21 17:03 - 00000000 ____D () D:\Users\aR!\AppData\Local\Macromedia
2014-05-21 16:47 - 2014-05-21 16:47 - 00001045 _____ () D:\Users\aR!\Dokumente - Verknüpfung.lnk
2014-05-21 13:22 - 2014-05-21 17:10 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\Apple Computer
2014-05-21 13:22 - 2014-05-21 13:22 - 00109936 _____ () D:\Users\aR!\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\FNET
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\Canon
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\ATI
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Local\Razer
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Local\ATI
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Local\AMD
2014-05-21 13:21 - 2014-05-21 16:47 - 00000000 ____D () D:\Users\aR!
2014-05-21 13:21 - 2014-05-21 13:21 - 00001293 _____ () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-21 13:21 - 2014-05-21 13:21 - 00000020 ___SH () D:\Users\aR!\ntuser.ini
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Vorlagen
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Startmenü
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Netzwerkumgebung
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Lokale Einstellungen
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Eigene Dateien
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Druckumgebung
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Documents\Eigene Musik
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Documents\Eigene Bilder
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\AppData\Local\Verlauf
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\AppData\Local\Anwendungsdaten
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Anwendungsdaten
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 ___RD () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 ___RD () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\Adobe
2014-05-21 13:21 - 2014-05-14 01:08 - 00000000 ____D () D:\Users\aR!\AppData\Local\Microsoft Help
2014-05-21 13:21 - 2014-05-13 22:33 - 00000000 ___RD () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-21 13:21 - 2014-05-13 22:33 - 00000000 ___RD () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-21 13:21 - 2014-05-13 22:33 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\Macromedia
2014-05-21 13:14 - 2014-05-21 13:14 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\Mozilla
2014-05-21 13:14 - 2014-05-21 13:14 - 00000000 ____D () D:\Users\Administrator\AppData\Local\Mozilla
2014-05-21 12:17 - 2014-05-21 12:17 - 00275360 _____ () C:\Windows\Minidump\052114-52884-01.dmp
2014-05-21 12:17 - 2014-05-21 12:17 - 00000000 ____D () C:\Windows\Minidump
2014-05-21 12:15 - 2014-05-22 10:53 - 382349387 _____ () C:\Windows\MEMORY.DMP
2014-05-18 13:18 - 2014-05-18 13:18 - 00001695 _____ () D:\Users\Public\Desktop\iTunes.lnk
2014-05-18 13:18 - 2014-05-18 13:18 - 00000000 ____D () D:\Users\Administrator\AppData\Local\Apple Computer
2014-05-18 13:18 - 2014-05-18 13:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-18 13:18 - 2014-05-18 13:18 - 00000000 ____D () C:\Program Files\iTunes
2014-05-18 13:18 - 2014-05-18 13:18 - 00000000 ____D () C:\Program Files\iPod
2014-05-18 13:18 - 2014-05-18 13:18 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-18 13:16 - 2014-05-18 13:16 - 00001733 _____ () D:\Users\Public\Desktop\QuickTime Player.lnk
2014-05-18 13:16 - 2014-05-18 13:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-05-18 13:16 - 2014-05-18 13:16 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-05-18 13:15 - 2014-05-18 13:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-05-17 12:31 - 2014-05-17 12:31 - 00000000 ____D () C:\Program Files (x86)\OpenAL
2014-05-17 12:30 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-05-17 12:30 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-05-17 12:30 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-05-17 12:30 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-05-17 12:30 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-05-17 12:30 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-05-17 03:24 - 2014-05-21 17:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hauppauge WinTV
2014-05-17 03:23 - 2014-05-21 17:47 - 00000000 ____D () C:\Program Files (x86)\WinTV
2014-05-17 02:19 - 2014-05-18 01:09 - 00007607 _____ () D:\Users\Administrator\AppData\Local\Resmon.ResmonCfg
2014-05-17 01:53 - 2014-05-21 00:03 - 1505756248 _____ () D:\Users\aR!\Documents\tsnxg_disc.ts4
2014-05-17 01:43 - 2014-05-21 18:57 - 00000000 ____D () D:\Users\Administrator
2014-05-17 01:43 - 2014-05-21 12:18 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\Apple Computer
2014-05-17 01:43 - 2014-05-17 01:47 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\.purple
2014-05-17 01:43 - 2014-05-17 01:43 - 00109936 _____ () D:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-17 01:43 - 2014-05-17 01:43 - 00001289 _____ () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-17 01:43 - 2014-05-17 01:43 - 00000020 ___SH () D:\Users\Administrator\ntuser.ini
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Vorlagen
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Startmenü
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Netzwerkumgebung
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Lokale Einstellungen
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Eigene Dateien
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Druckumgebung
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Documents\Eigene Musik
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Documents\Eigene Bilder
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\AppData\Local\Verlauf
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Anwendungsdaten
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ___RD () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ___RD () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\FNET
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\Canon
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\ATI
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\Adobe
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Local\Razer
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Local\ATI
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Local\AMD
2014-05-17 01:43 - 2014-05-14 01:08 - 00000000 ____D () D:\Users\Administrator\AppData\Local\Microsoft Help
2014-05-17 01:43 - 2014-05-13 22:33 - 00000000 ___RD () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-17 01:43 - 2014-05-13 22:33 - 00000000 ___RD () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-17 01:43 - 2014-05-13 22:33 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\Macromedia
2014-05-16 23:49 - 2014-05-16 23:49 - 00000000 ____D () C:\Mozilla
2014-05-16 23:30 - 2014-05-16 23:30 - 00262144 _____ () C:\Windows\SysWOW64\Ͷ
2014-05-16 23:19 - 2014-05-16 23:19 - 00000000 ____D () C:\Windows\SysWOW64\tmp000002ab
2014-05-16 23:16 - 2014-05-16 23:16 - 00000000 ____D () C:\Windows\SysWOW64\tmp00000080
2014-05-16 23:13 - 2014-05-16 23:13 - 00109936 _____ () C:\GDIPFONTCACHEV1.DAT
2014-05-16 23:13 - 2014-05-16 23:13 - 00000000 ____D () C:\ATI
2014-05-16 23:12 - 2014-05-16 23:12 - 00000000 ____D () C:\Windows\SysWOW64\tmp00007d46
2014-05-15 15:12 - 2014-05-15 15:12 - 00262144 _____ () C:\Windows\SysWOW64\�DžDž崁誈罀[
2014-05-15 15:12 - 2014-05-15 15:12 - 00262144 _____ () C:\Windows\SysWOW64\�Dž18
2014-05-14 22:54 - 2014-05-14 22:54 - 00000000 ___HD () C:\ProgramData\CanonIJQuickMenu
2014-05-14 21:57 - 2014-05-21 17:16 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-05-14 21:56 - 2014-05-14 21:56 - 00000000 ____D () C:\Windows\system32\STRING
2014-05-14 21:56 - 2014-05-14 21:56 - 00000000 ____D () C:\ProgramData\Canon IJ Network Tool
2014-05-14 21:56 - 2013-02-04 15:10 - 00321536 _____ (CANON INC.) C:\Windows\SysWOW64\CNC_BUL.dll
2014-05-14 21:56 - 2013-01-24 09:24 - 00359936 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL
2014-05-14 21:56 - 2013-01-24 09:24 - 00039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL
2014-05-14 21:56 - 2013-01-24 09:23 - 00366592 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL
2014-05-14 21:56 - 2012-11-26 12:24 - 00095744 _____ () C:\Windows\SysWOW64\CNC1771D.TBL
2014-05-14 21:56 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\Windows\SysWOW64\CNHMCA.dll
2014-05-14 21:55 - 2014-05-14 21:55 - 00001903 _____ () D:\Users\Public\Desktop\Canon Quick Menu.lnk
2014-05-14 21:55 - 2014-05-14 21:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5500 series Benutzerregistrierung
2014-05-14 21:55 - 2014-05-14 21:55 - 00000000 ____D () C:\ProgramData\CanonIJWSpt
2014-05-14 21:54 - 2014-05-14 21:54 - 00106272 _____ (G Data Software) C:\Windows\system32\Drivers\GRD.sys
2014-05-14 21:54 - 2014-05-14 21:54 - 00018160 _____ (G Data Software) C:\Windows\system32\Drivers\GdPhyMem.sys
2014-05-14 21:51 - 2014-05-14 21:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2014-05-14 21:51 - 2014-05-14 21:51 - 00002356 _____ () D:\Users\Public\Desktop\Canon MG5500 series On-Screen-Handbuch.lnk
2014-05-14 21:51 - 2014-05-14 21:51 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-05-14 21:51 - 2014-05-14 21:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5500 series Manual
2014-05-14 21:51 - 2014-05-14 21:51 - 00000000 ____D () C:\Program Files\Canon
2014-05-14 21:50 - 2014-05-14 21:50 - 00000000 ___HD () C:\Program Files\CanonBJ
2014-05-14 21:50 - 2013-04-04 05:00 - 00391168 _____ (CANON INC.) C:\Windows\system32\CNMLMBU.DLL
2014-05-14 21:49 - 2014-05-14 21:57 - 00000000 ____D () C:\Program Files (x86)\Canon
2014-05-14 20:36 - 2014-05-14 20:36 - 00000000 _____ () C:\Windows\topsecret.INI
2014-05-14 20:36 - 2014-05-14 20:36 - 00000000 _____ () C:\Windows\GDDevCtrl.INI
2014-05-14 20:36 - 2013-04-10 01:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-05-14 20:36 - 2013-04-03 00:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-05-14 20:35 - 2014-05-14 20:35 - 00262144 _____ () C:\Windows\SysWOW64\5-18
2014-05-14 20:35 - 2014-05-14 20:35 - 00000000 __SHD () C:\#GDATA.Trash.Store#
2014-05-14 20:24 - 2014-05-14 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G Data TotalProtection
2014-05-14 19:50 - 2014-05-14 20:24 - 00001841 _____ () D:\Users\Public\Desktop\G Data TotalProtection.lnk
2014-05-14 19:50 - 2014-05-14 19:50 - 00068608 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2014-05-14 19:49 - 2014-05-14 20:24 - 00098760 _____ (G Data Software) C:\Windows\system32\Drivers\TS4nt.sys
2014-05-14 19:49 - 2014-05-14 20:24 - 00064000 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys
2014-05-14 19:49 - 2014-05-14 20:24 - 00022016 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBFlt64.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00135168 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00078848 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcd64.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00065024 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00058880 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcv64.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00057344 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00000000 ____D () C:\ProgramData\G DATA Software
2014-05-14 19:45 - 2014-05-14 19:45 - 00096771 _____ () C:\ProgramData\1400089497.bdinstall.bin
2014-05-14 19:44 - 2014-05-14 19:44 - 00037824 _____ () C:\ProgramData\1400089495.bdinstall.bin
2014-05-14 03:02 - 2014-05-22 11:06 - 00006902 _____ () C:\Windows\setupact.log
2014-05-14 03:02 - 2014-05-14 03:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-14 01:08 - 2014-05-14 01:08 - 00000000 ____D () D:\Users\Default\AppData\Local\Microsoft Help
2014-05-14 00:48 - 2014-05-14 00:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2014-05-14 00:48 - 2014-05-14 00:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-05-14 00:47 - 2014-05-14 00:47 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-14 00:47 - 2014-05-14 00:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-05-14 00:47 - 2014-05-14 00:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Sync Framework
2014-05-14 00:47 - 2014-05-14 00:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-05-14 00:46 - 2014-05-14 00:46 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-05-14 00:45 - 2014-05-14 00:45 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-05-14 00:44 - 2014-05-14 01:15 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-14 00:44 - 2014-05-14 00:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-05-14 00:44 - 2014-05-14 00:44 - 00000000 __RHD () C:\MSOCache
2014-05-14 00:44 - 2014-05-14 00:44 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-05-14 00:44 - 2014-05-14 00:44 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-05-14 00:14 - 2014-05-15 15:06 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2014-05-14 00:14 - 2014-05-14 00:14 - 00069344 _____ (FNet Co., Ltd.) C:\Windows\system32\TurboShell_105.dll
2014-05-14 00:14 - 2014-05-14 00:14 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-05-13 23:53 - 2014-05-13 23:53 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-05-13 23:51 - 2014-05-13 23:51 - 00197602 _____ () C:\ProgramData\1400017829.bdinstall.bin
2014-05-13 23:51 - 2014-05-13 23:51 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-05-13 23:50 - 2014-05-13 23:50 - 00096044 _____ () C:\ProgramData\1400017811.bdinstall.bin
2014-05-13 23:29 - 2014-05-13 23:29 - 00202710 _____ () C:\ProgramData\1400016475.bdinstall.bin
2014-05-13 23:29 - 2012-11-02 14:17 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\SETA497.tmp
2014-05-13 23:23 - 2014-05-13 23:23 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_gddcd64_01007.Wdf
2014-05-13 23:09 - 2014-05-14 20:32 - 00000000 ____D () C:\ProgramData\G Data
2014-05-13 23:09 - 2014-05-14 19:46 - 00000000 ____D () C:\Program Files (x86)\G Data
2014-05-13 23:09 - 2014-05-13 23:09 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_GDKBFlt64_01007.Wdf
2014-05-13 23:08 - 2014-05-21 17:47 - 00000401 _____ () C:\Windows\ODBCINST.INI
2014-05-13 23:08 - 2014-05-21 17:47 - 00000135 _____ () C:\Windows\ODBC.INI
2014-05-13 23:07 - 2014-05-21 17:47 - 00037639 _____ () C:\Windows\Irremote.ini
2014-05-13 23:07 - 2009-08-12 10:37 - 00038672 _____ (PCTV Systems S.à r.l.) C:\Windows\SysWOW64\pcleUtil.dll
2014-05-13 23:07 - 2009-01-28 10:52 - 00142337 _____ () C:\Windows\SysWOW64\Wait.exe
2014-05-13 23:07 - 2008-06-30 09:02 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-05-13 22:33 - 2014-05-21 17:47 - 00000000 ____D () D:\Users\Public\WinTV
2014-05-13 22:33 - 2014-05-21 17:37 - 00000944 _____ () D:\Users\Public\Desktop\BurnAware Free.lnk
2014-05-13 22:33 - 2014-05-14 22:53 - 00000841 _____ () D:\Users\Public\Desktop\µTorrent.lnk
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 __RHD () D:\Users\Public\Libraries
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 __RHD () D:\Users\Default
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 ___RD () D:\Users\Public\Recorded TV
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 ___RD () D:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 ___RD () D:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 ____D () D:\Users\Default\AppData\Roaming\Macromedia
2014-05-13 22:33 - 2014-05-13 22:28 - 00001954 _____ () D:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-05-13 22:33 - 2014-05-13 22:21 - 00001070 _____ () D:\Users\Public\Desktop\VLC media player.lnk
2014-05-13 22:33 - 2014-05-13 22:20 - 00002019 _____ () D:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-05-13 22:33 - 2014-05-13 22:20 - 00001166 _____ () D:\Users\Public\Desktop\TeamViewer 9.lnk
2014-05-13 22:33 - 2014-05-13 22:19 - 00000967 _____ () D:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-05-13 22:33 - 2014-05-13 22:19 - 00000967 _____ () D:\Users\Public\Desktop\Steam.lnk
2014-05-13 22:33 - 2014-05-13 22:14 - 00001151 _____ () D:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-13 22:33 - 2014-05-13 19:42 - 00001889 _____ () D:\Users\Public\Desktop\XFast USB.LNK
2014-05-13 22:33 - 2014-05-13 19:10 - 00001754 _____ () D:\Users\Public\Desktop\Browserwahl.lnk
2014-05-13 22:29 - 2014-05-21 17:48 - 00000000 ____D () C:\ProgramData\Hauppauge
2014-05-13 22:29 - 2014-05-21 17:45 - 00005206 _____ () C:\Windows\HCWPNP.INI
2014-05-13 22:29 - 2013-05-03 12:37 - 00118840 _____ (Hauppauge Computer Works, Inc.) C:\Windows\SysWOW64\hcwi2c32.dll
2014-05-13 22:29 - 2013-04-17 15:05 - 00323640 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwpnp32.dll
2014-05-13 22:29 - 2009-02-16 22:09 - 00831554 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwtvwnd.dll
2014-05-13 22:29 - 2006-10-10 17:47 - 00036921 _____ (Hauppauge Computer Works) C:\Windows\SysWOW64\hcwutl32.dll
2014-05-13 22:28 - 2014-05-13 22:28 - 00386680 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
2014-05-13 22:28 - 2014-05-13 22:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-05-13 22:27 - 2014-05-21 17:45 - 00001324 _____ () C:\hcwDriverInstall.txt
2014-05-13 22:27 - 2014-05-17 03:16 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-05-13 22:27 - 2014-05-13 22:27 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-05-13 22:27 - 2013-10-11 12:06 - 00718936 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw10bda.sys
2014-05-13 22:27 - 2013-10-11 12:05 - 00099840 _____ (Hauppauge Computer Works, Inc) C:\Windows\system32\hcw10prop.ax
2014-05-13 22:27 - 2010-05-10 10:29 - 00046080 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\Drivers\hcw10cir.sys
2014-05-13 22:27 - 2009-06-04 12:35 - 00147456 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwECPPP.ax
2014-05-13 22:27 - 2009-06-04 12:35 - 00099328 _____ (Hauppauge Computer Works, Inc.) C:\Windows\system32\hcwcp.ax
2014-05-13 22:27 - 2008-12-29 09:35 - 00016382 _____ () C:\Windows\system32\Drivers\hcw10mlD.rom
2014-05-13 22:27 - 2004-10-07 19:40 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-05-13 22:21 - 2014-05-13 22:21 - 00001073 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2014-05-13 22:21 - 2014-05-13 22:21 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-05-13 22:21 - 2014-05-13 22:21 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-05-13 22:20 - 2014-05-14 22:53 - 00000949 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-05-13 22:20 - 2014-05-14 22:53 - 00000000 ____D () C:\Program Files (x86)\uTorrent
2014-05-13 22:20 - 2014-05-13 22:20 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-13 22:20 - 2014-05-13 22:20 - 00001178 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-05-13 22:20 - 2014-05-13 22:20 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-05-13 22:19 - 2014-05-21 12:10 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-13 22:19 - 2014-05-13 22:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-13 22:19 - 2014-05-13 22:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-13 22:19 - 2014-05-13 22:19 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-13 22:18 - 2014-05-13 22:18 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-05-13 22:18 - 2014-05-13 22:18 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-05-13 22:18 - 2014-05-13 22:18 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-05-13 22:18 - 2014-05-13 22:18 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-13 22:18 - 2014-05-13 22:18 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-13 22:18 - 2014-05-13 22:18 - 00000995 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\ProgramData\Sun
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\Program Files (x86)\Pidgin
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-13 22:16 - 2014-05-17 12:30 - 00027598 _____ () C:\Windows\DirectX.log
2014-05-13 22:16 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-05-13 22:16 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-05-13 22:16 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-05-13 22:16 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-05-13 22:16 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-05-13 22:16 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-05-13 22:16 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-05-13 22:16 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-05-13 22:16 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-05-13 22:16 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-05-13 22:16 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-05-13 22:16 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-05-13 22:16 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-05-13 22:16 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-05-13 22:16 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-05-13 22:16 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-05-13 22:16 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-05-13 22:16 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-05-13 22:16 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-05-13 22:16 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-05-13 22:16 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-05-13 22:16 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-05-13 22:16 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-05-13 22:16 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-05-13 22:16 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-05-13 22:16 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-05-13 22:16 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-05-13 22:16 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-05-13 22:16 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-05-13 22:16 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-05-13 22:16 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-05-13 22:16 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-05-13 22:16 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-05-13 22:16 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-05-13 22:16 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-05-13 22:16 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-05-13 22:16 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-05-13 22:16 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-05-13 22:16 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-05-13 22:16 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-05-13 22:16 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-05-13 22:16 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-05-13 22:16 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-05-13 22:16 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-05-13 22:16 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-05-13 22:16 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-05-13 22:16 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-05-13 22:16 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-05-13 22:16 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-05-13 22:16 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-05-13 22:16 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-05-13 22:16 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-05-13 22:16 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-05-13 22:16 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-05-13 22:16 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-05-13 22:16 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-05-13 22:16 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-05-13 22:16 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-05-13 22:16 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-05-13 22:16 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-05-13 22:16 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-05-13 22:16 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-05-13 22:16 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-05-13 22:16 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-05-13 22:16 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-05-13 22:16 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-05-13 22:16 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-05-13 22:16 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-05-13 22:16 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-05-13 22:16 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-05-13 22:16 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-05-13 22:16 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-05-13 22:16 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-05-13 22:16 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-05-13 22:16 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-05-13 22:16 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-05-13 22:16 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-05-13 22:16 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-05-13 22:16 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-05-13 22:16 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-05-13 22:16 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-05-13 22:16 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-05-13 22:16 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-05-13 22:16 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-05-13 22:16 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-05-13 22:16 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-05-13 22:16 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-05-13 22:16 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-05-13 22:16 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-05-13 22:16 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-05-13 22:16 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-05-13 22:16 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-05-13 22:16 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-05-13 22:16 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-05-13 22:16 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-05-13 22:16 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-05-13 22:16 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-05-13 22:16 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-05-13 22:16 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-05-13 22:16 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-05-13 22:16 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-05-13 22:16 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-05-13 22:16 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-05-13 22:16 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-05-13 22:16 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-05-13 22:16 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-05-13 22:16 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-05-13 22:16 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-05-13 22:16 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-05-13 22:16 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-05-13 22:16 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-05-13 22:16 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-05-13 22:16 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-05-13 22:16 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-05-13 22:16 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-05-13 22:16 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-05-13 22:16 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-05-13 22:16 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-05-13 22:16 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-05-13 22:16 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-05-13 22:16 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-05-13 22:16 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-05-13 22:16 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-05-13 22:16 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-05-13 22:16 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-05-13 22:16 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-05-13 22:16 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-05-13 22:16 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-05-13 22:16 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-05-13 22:16 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-05-13 22:16 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-05-13 22:16 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-05-13 22:16 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-05-13 22:16 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-05-13 22:16 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-05-13 22:16 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-05-13 22:16 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-05-13 22:16 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-05-13 22:16 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-05-13 22:16 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-05-13 22:16 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-05-13 22:16 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-05-13 22:16 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-05-13 22:16 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-05-13 22:16 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-05-13 22:16 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-05-13 22:16 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-05-13 22:16 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-05-13 22:16 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-05-13 22:16 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-05-13 22:16 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-05-13 22:16 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-05-13 22:16 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-05-13 22:16 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-05-13 22:16 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-05-13 22:16 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-05-13 22:16 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-05-13 22:16 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-05-13 22:16 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-05-13 22:16 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-05-13 22:16 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-05-13 22:16 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-05-13 22:16 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-05-13 22:16 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-05-13 22:16 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-05-13 22:16 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-05-13 22:16 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-05-13 22:16 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-05-13 22:16 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-05-13 22:16 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-05-13 22:16 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-05-13 22:16 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-05-13 22:16 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-05-13 22:16 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-05-13 22:16 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-05-13 22:16 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-05-13 22:15 - 2014-05-21 17:33 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-13 22:15 - 2014-05-13 22:15 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-13 22:15 - 2014-05-13 22:15 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-13 22:15 - 2014-05-13 22:15 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-13 22:15 - 2014-05-13 22:15 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-05-13 22:15 - 2014-05-13 22:15 - 00000000 ____D () C:\Windows\system32\Macromed
2014-05-13 22:15 - 2014-05-13 22:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 4.4
2014-05-13 22:15 - 2014-05-13 22:15 - 00000000 ____D () C:\Program Files (x86)\GeoGebra 4.4
2014-05-13 22:14 - 2014-05-13 22:14 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-13 22:14 - 2014-05-13 22:14 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-13 22:14 - 2014-05-13 22:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-13 22:14 - 2014-05-13 22:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-13 22:12 - 2014-05-21 17:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnAware Free
2014-05-13 22:12 - 2014-05-21 17:37 - 00000000 ____D () C:\Program Files (x86)\BurnAware Free
2014-05-13 22:12 - 2014-05-13 22:12 - 00000000 ____D () C:\ProgramData\Creative
2014-05-13 22:12 - 2006-10-06 14:17 - 00053248 ____N (Creative Technology Ltd ) C:\Windows\Ctregrun.exe
2014-05-13 22:12 - 2000-05-22 16:58 - 00647872 ____N (Microsoft Corporation) C:\Windows\SysWOW64\Mscomct2.ocx
2014-05-13 22:11 - 2014-05-20 10:05 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-13 22:11 - 2014-05-13 22:20 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-13 22:10 - 2014-05-13 22:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-05-13 22:10 - 2014-05-13 22:10 - 00000000 ____D () C:\Program Files\7-Zip
2014-05-13 20:10 - 2014-05-13 20:10 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-13 19:52 - 2014-05-13 23:00 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-05-13 19:49 - 2012-08-21 13:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-05-13 19:48 - 2014-05-18 13:15 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-05-13 19:48 - 2014-05-13 19:48 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-05-13 19:48 - 2014-05-13 19:48 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-05-13 19:48 - 2014-05-13 19:48 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-13 19:48 - 2014-05-13 19:48 - 00000000 ____D () C:\Program Files\Bonjour
2014-05-13 19:48 - 2014-05-13 19:48 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-05-13 19:48 - 2014-05-13 19:48 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-05-13 19:47 - 2014-05-13 19:48 - 00000000 ____D () C:\ProgramData\Apple
2014-05-13 19:47 - 2014-05-13 19:47 - 00000000 ____D () C:\ProgramData\ATI
2014-05-13 19:47 - 2014-05-13 19:47 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-05-13 19:46 - 2014-05-13 19:46 - 00000000 ____D () C:\Program Files (x86)\Etron Technology
2014-05-13 19:46 - 2011-09-11 14:41 - 00088832 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronXHCI.sys
2014-05-13 19:46 - 2011-09-11 14:41 - 00065152 _____ (Etron Technology Inc) C:\Windows\system32\Drivers\EtronHub3.sys
2014-05-13 19:45 - 2014-05-13 19:45 - 00066765 _____ () C:\Windows\SysWOW64\CCCInstall_201405131945498730.log
2014-05-13 19:45 - 2014-05-13 19:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-13 19:45 - 2014-05-13 19:45 - 00000000 ____D () C:\ProgramData\AMD
2014-05-13 19:45 - 2014-05-13 19:45 - 00000000 ____D () C:\Program Files\AMD
2014-05-13 19:45 - 2014-05-13 19:45 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-13 19:44 - 2014-05-13 23:08 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-13 19:44 - 2014-05-13 19:44 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_rzudd_01009.Wdf
2014-05-13 19:44 - 2014-05-13 19:44 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-05-13 19:44 - 2014-05-13 19:44 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-05-13 19:43 - 2014-05-13 19:43 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_rzp1endpt_01009.Wdf
2014-05-13 19:43 - 2014-05-13 19:43 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-05-13 19:43 - 2014-05-13 19:43 - 00000000 ____D () C:\Program Files\Realtek
2014-05-13 19:43 - 2014-05-13 19:43 - 00000000 ____D () C:\AMD
2014-05-13 19:42 - 2014-05-17 12:31 - 00466520 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2014-05-13 19:42 - 2014-05-17 12:31 - 00445016 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2014-05-13 19:42 - 2014-05-17 12:31 - 00123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2014-05-13 19:42 - 2014-05-17 12:31 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2014-05-13 19:42 - 2014-05-13 22:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2014-05-13 19:42 - 2014-05-13 19:42 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS
2014-05-13 19:42 - 2014-05-13 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB
2014-05-13 19:42 - 2014-05-13 19:42 - 00000000 ____D () C:\ProgramData\FNET
2014-05-13 19:42 - 2014-05-13 19:42 - 00000000 ____D () C:\Program Files (x86)\XFastUSB
2014-05-13 19:42 - 2014-05-13 19:42 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-05-13 19:42 - 2011-05-24 20:34 - 02881256 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-05-13 19:42 - 2011-05-24 19:13 - 01284712 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-05-13 19:42 - 2011-05-24 15:01 - 01559656 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-05-13 19:42 - 2011-05-23 17:32 - 00090728 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInst64.dll
2014-05-13 19:42 - 2011-05-23 17:12 - 01245288 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-05-13 19:42 - 2011-05-20 22:08 - 00624728 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll
2014-05-13 19:42 - 2011-05-20 22:08 - 00559704 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll
2014-05-13 19:42 - 2011-05-20 10:44 - 03129448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-05-13 19:42 - 2011-05-20 10:44 - 02405992 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-05-13 19:42 - 2011-05-05 15:24 - 02085440 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-05-13 19:42 - 2011-04-18 18:50 - 02601816 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib.dll
2014-05-13 19:42 - 2011-03-15 15:32 - 00648808 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-05-13 19:42 - 2010-12-23 19:06 - 00876120 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2014-05-13 19:42 - 2010-12-23 19:06 - 00738392 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2014-05-13 19:42 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-05-13 19:42 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-05-13 19:42 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-05-13 19:42 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-05-13 19:42 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-05-13 19:42 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-05-13 19:42 - 2010-11-03 18:31 - 00332392 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-05-13 19:42 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-05-13 19:42 - 2010-10-15 19:20 - 02261764 _____ () C:\Windows\system32\Drivers\rtvienna.dat
2014-05-13 19:42 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-05-13 19:42 - 2010-07-22 16:37 - 00200800 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-05-13 19:42 - 2010-07-02 19:40 - 00080984 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2014-05-13 19:42 - 2010-02-02 10:59 - 01940992 ____N (Creative) C:\Windows\system32\Sens_oal.dll
2014-05-13 19:42 - 2010-02-02 10:57 - 02902498 ____N (Creative) C:\Windows\SysWOW64\Sens_oal.dll
2014-05-13 19:42 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-05-13 19:42 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-05-13 19:42 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-05-13 19:42 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-05-13 19:42 - 2009-11-18 18:42 - 02197264 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ.dll
2014-05-13 19:42 - 2009-11-18 07:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2014-05-13 19:42 - 2009-11-17 18:12 - 00108960 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-05-13 19:41 - 2014-05-13 19:43 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-05-13 19:41 - 2014-05-13 19:41 - 00000000 ____D () C:\ProgramData\Razer
2014-05-13 19:41 - 2014-05-13 19:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-13 19:40 - 2014-05-14 20:35 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-05-13 19:40 - 2014-05-13 19:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD
2014-05-13 19:39 - 2014-05-13 22:12 - 00000000 ____D () C:\Program Files (x86)\Creative
2014-05-13 19:39 - 2014-05-13 19:41 - 00000314 ___RH () C:\Windows\ctfile.rfc
2014-05-13 19:39 - 2014-05-13 19:41 - 00000000 ____D () C:\Program Files\Creative
2014-05-13 19:39 - 2010-04-29 14:03 - 00163840 _____ () C:\Windows\system32\APOMgr64.DLL
2014-05-13 19:39 - 2010-04-29 14:03 - 00128512 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2014-05-13 19:39 - 2010-03-15 09:57 - 00025262 _____ () C:\Windows\system32\xfisk.ini
2014-05-13 19:39 - 2008-03-11 10:57 - 00083456 _____ () C:\Windows\system32\CmdRtr64.DLL
2014-05-13 19:39 - 2008-03-11 10:55 - 00069120 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2014-05-13 19:39 - 2007-09-13 16:27 - 00000052 _____ () C:\Windows\system32\ctzapxx.ini
2014-05-13 19:38 - 2014-05-13 22:12 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-13 19:38 - 2014-05-13 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-05-13 19:38 - 2014-05-13 19:38 - 00000000 ____D () C:\Program Files\Logitech
2014-05-13 19:38 - 2014-05-13 19:38 - 00000000 ____D () C:\Program Files\Common Files\Logitech
2014-05-13 19:37 - 2014-05-21 17:17 - 00136866 _____ () C:\Windows\DPINST.LOG
2014-05-13 19:37 - 2014-05-13 19:45 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-13 19:37 - 2014-05-13 19:45 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-05-13 19:37 - 2014-05-13 19:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2014-05-13 19:37 - 2014-05-13 19:37 - 00000000 ____D () C:\Program Files\DIFX
2014-05-13 19:37 - 2014-05-13 19:37 - 00000000 ____D () C:\Program Files\ATI
2014-05-13 19:37 - 2014-05-13 19:37 - 00000000 ____D () C:\Program Files\ASRock Utility
2014-05-13 19:37 - 2011-11-07 10:13 - 00017192 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\AsrAppCharger.sys
2014-05-13 19:37 - 2009-10-19 14:45 - 00039480 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys
2014-05-13 19:33 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-13 19:32 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-05-13 19:32 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-05-13 19:30 - 2014-05-13 19:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-13 19:22 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-13 19:22 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-13 19:22 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-13 19:22 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-13 19:22 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-13 19:22 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-13 19:22 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-05-13 19:22 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-05-13 19:22 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-05-13 19:22 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-05-13 19:22 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-05-13 19:22 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-05-13 19:22 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-05-13 19:22 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-05-13 19:22 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-05-13 19:22 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-05-13 19:22 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-05-13 19:22 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-05-13 19:22 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-05-13 19:22 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-05-13 19:22 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-05-13 19:22 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-05-13 19:18 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-13 19:18 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-13 19:18 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-13 19:18 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-13 19:18 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-13 19:18 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-13 19:18 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-13 19:18 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-13 19:18 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-13 19:18 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-13 19:18 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-13 19:18 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-13 19:18 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-13 19:18 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-13 19:18 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-13 19:18 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-13 19:18 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-13 19:18 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-13 19:18 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-13 19:18 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-13 19:18 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-13 19:18 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-13 19:18 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-13 19:18 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-13 19:18 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-13 19:18 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-13 19:18 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-13 19:18 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-13 19:18 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-13 19:18 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-13 19:18 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-13 19:18 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-13 19:18 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-13 19:18 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-13 19:18 - 2014-02-04 04:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-05-13 19:18 - 2014-02-04 04:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-05-13 19:18 - 2013-12-25 01:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-05-13 19:18 - 2013-12-25 00:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-05-13 19:18 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-05-13 19:18 - 2013-11-23 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-05-13 19:18 - 2013-11-23 19:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-05-13 19:18 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-05-13 19:18 - 2012-02-11 08:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-05-13 19:18 - 2012-02-11 08:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2014-05-13 19:18 - 2011-03-11 08:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2014-05-13 19:18 - 2011-03-11 08:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2014-05-13 19:18 - 2011-03-11 08:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2014-05-13 19:18 - 2011-03-11 08:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2014-05-13 19:18 - 2011-03-11 08:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2014-05-13 19:18 - 2011-03-11 08:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2014-05-13 19:18 - 2011-03-11 08:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2014-05-13 19:18 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2014-05-13 19:18 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2014-05-13 19:18 - 2011-03-11 06:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2014-05-13 19:18 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-05-13 19:18 - 2011-02-25 07:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2014-05-13 19:10 - 2014-05-13 19:10 - 00003536 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask
2014-05-13 19:02 - 2013-05-10 07:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-05-13 19:02 - 2013-05-10 07:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-05-13 19:02 - 2013-05-10 06:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-05-13 19:02 - 2013-05-10 06:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-05-13 18:54 - 2014-05-13 19:21 - 01591896 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-05-13 18:49 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-05-13 18:43 - 2014-05-13 18:43 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-13 18:43 - 2014-05-13 18:43 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-13 18:43 - 2014-05-13 18:43 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-05-13 18:43 - 2014-05-13 18:43 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-05-13 18:43 - 2014-05-13 18:43 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-05-13 18:43 - 2014-05-13 18:43 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-05-13 18:43 - 2014-05-13 18:43 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-05-13 18:43 - 2014-05-13 18:43 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-05-13 18:43 - 2014-05-13 18:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-13 18:40 - 2014-05-13 18:50 - 00015343 _____ () C:\Windows\IE11_main.log
2014-05-13 18:27 - 2014-05-13 18:27 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-05-13 18:27 - 2014-05-13 17:31 - 00000000 ____D () C:\Windows\Panther
2014-05-13 18:27 - 2010-11-21 05:23 - 00383786 __RSH () C:\bootmgr
2014-05-13 18:22 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
|
|
24.05.2014, 02:09
| #7 |
| | Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG FRST Teil 2: Code:
ATTFilter 2014-05-13 18:22 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-05-13 18:22 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-05-13 18:22 - 2012-08-23 15:24 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-05-13 18:22 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-05-13 18:22 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-05-13 18:22 - 2012-08-23 11:51 - 03174912 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-05-13 18:19 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2014-05-13 18:12 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-05-13 18:12 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-05-13 18:12 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-05-13 18:12 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-05-13 18:12 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-05-13 18:12 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-05-13 18:12 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-05-13 18:12 - 2012-06-02 16:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-05-13 18:07 - 2014-05-03 14:39 - 00267344 _____ (Advanced Micro Devices, Inc) C:\Windows\system32\Drivers\ahcix64.sys
2014-05-13 18:02 - 2014-05-13 19:20 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-13 18:02 - 2014-05-13 19:19 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-13 18:01 - 2013-01-13 23:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 23:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 23:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-13 18:01 - 2013-01-13 23:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-13 18:01 - 2013-01-13 23:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 23:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 23:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 23:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 22:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 22:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 22:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 22:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-05-13 18:01 - 2013-01-13 22:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-05-13 18:01 - 2013-01-13 22:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 22:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 22:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 22:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-05-13 18:01 - 2013-01-13 22:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-05-13 18:01 - 2013-01-13 22:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-05-13 18:01 - 2013-01-13 22:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-05-13 18:01 - 2013-01-13 21:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-05-13 18:01 - 2013-01-13 21:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-05-13 18:01 - 2013-01-13 21:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-05-13 18:01 - 2013-01-13 21:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-05-13 18:01 - 2013-01-13 21:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-05-13 18:01 - 2013-01-13 21:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-05-13 18:01 - 2013-01-13 21:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-05-13 18:01 - 2013-01-13 21:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-05-13 18:01 - 2013-01-13 21:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-05-13 18:01 - 2013-01-13 21:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-05-13 18:01 - 2013-01-13 21:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-05-13 18:01 - 2013-01-13 21:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-05-13 18:01 - 2013-01-13 21:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-05-13 18:01 - 2013-01-13 21:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-05-13 18:01 - 2013-01-13 20:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-05-13 18:01 - 2013-01-13 20:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-05-13 18:01 - 2013-01-13 19:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-05-13 18:01 - 2013-01-13 19:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-05-13 18:01 - 2013-01-04 08:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-05-13 18:01 - 2013-01-04 08:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-05-13 18:00 - 2014-05-13 19:49 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-05-13 18:00 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-05-13 18:00 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-05-13 18:00 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-05-13 17:53 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-05-13 17:53 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-05-13 17:53 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-05-13 17:53 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-05-13 17:49 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-05-13 17:49 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-05-13 17:49 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-05-13 17:49 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-05-13 17:49 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-05-13 17:49 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-05-13 17:49 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-05-13 17:49 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-05-13 17:49 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-05-13 17:49 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-05-13 17:49 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-05-13 17:49 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-05-13 17:49 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-05-13 17:49 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-05-13 17:49 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-05-13 17:49 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-05-13 17:49 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-05-13 17:49 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-05-13 17:49 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-05-13 17:49 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-05-13 17:49 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2014-05-13 17:48 - 2014-02-07 03:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-05-13 17:48 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-05-13 17:48 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-05-13 17:48 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-05-13 17:48 - 2014-01-01 01:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-05-13 17:48 - 2014-01-01 01:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-05-13 17:48 - 2013-12-06 04:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-05-13 17:48 - 2013-12-06 04:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-05-13 17:48 - 2013-12-06 04:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-05-13 17:48 - 2013-12-06 04:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-05-13 17:48 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-05-13 17:48 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-05-13 17:48 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-05-13 17:48 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-05-13 17:48 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-05-13 17:48 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-05-13 17:48 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-05-13 17:48 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-05-13 17:48 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-05-13 17:48 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-05-13 17:48 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-05-13 17:48 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-05-13 17:48 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-05-13 17:48 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-05-13 17:48 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-05-13 17:48 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-05-13 17:48 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-05-13 17:48 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-05-13 17:48 - 2013-11-27 03:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-05-13 17:48 - 2013-11-27 03:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-05-13 17:48 - 2013-11-27 03:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-05-13 17:48 - 2013-11-27 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-05-13 17:48 - 2013-11-27 03:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-05-13 17:48 - 2013-11-27 03:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-05-13 17:48 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-05-13 17:48 - 2013-11-12 04:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-05-13 17:48 - 2013-11-12 04:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-05-13 17:48 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-05-13 17:48 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-05-13 17:48 - 2013-10-19 04:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-05-13 17:48 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-05-13 17:48 - 2013-10-05 22:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-05-13 17:48 - 2013-10-05 21:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-05-13 17:48 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-05-13 17:48 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-05-13 17:48 - 2013-10-04 04:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-05-13 17:48 - 2013-10-04 04:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-05-13 17:48 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-05-13 17:48 - 2013-10-04 03:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-05-13 17:48 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-05-13 17:48 - 2013-10-04 03:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-05-13 17:48 - 2013-09-28 03:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-05-13 17:48 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-05-13 17:48 - 2013-09-25 04:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-05-13 17:48 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-05-13 17:48 - 2013-09-25 03:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-05-13 17:48 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-05-13 17:48 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-05-13 17:48 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-05-13 17:48 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-05-13 17:48 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-05-13 17:48 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-05-13 17:48 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-05-13 17:48 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-05-13 17:48 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-05-13 17:48 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-05-13 17:48 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-05-13 17:48 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-05-13 17:48 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-05-13 17:48 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-05-13 17:48 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-05-13 17:48 - 2013-07-12 12:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2014-05-13 17:48 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-05-13 17:48 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-05-13 17:48 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-05-13 17:48 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-05-13 17:48 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-05-13 17:48 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-05-13 17:48 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-05-13 17:48 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-05-13 17:48 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-05-13 17:48 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-05-13 17:48 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-05-13 17:48 - 2013-07-04 14:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-05-13 17:48 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-05-13 17:48 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-05-13 17:48 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-05-13 17:48 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-05-13 17:48 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-05-13 17:48 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-05-13 17:48 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-05-13 17:48 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-05-13 17:48 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-05-13 17:48 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-05-13 17:48 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-05-13 17:48 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-05-13 17:48 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-05-13 17:48 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-05-13 17:48 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-05-13 17:48 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-05-13 17:48 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-05-13 17:48 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-05-13 17:48 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-05-13 17:48 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-05-13 17:48 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-05-13 17:48 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-05-13 17:48 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-05-13 17:48 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-05-13 17:48 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-05-13 17:48 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-05-13 17:48 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-05-13 17:48 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-05-13 17:48 - 2012-11-29 00:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-05-13 17:48 - 2012-11-22 07:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-05-13 17:48 - 2012-11-22 06:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-05-13 17:48 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-05-13 17:48 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-05-13 17:48 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-05-13 17:48 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-05-13 17:48 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-05-13 17:48 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-05-13 17:48 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-05-13 17:48 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-05-13 17:48 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-05-13 17:48 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-05-13 17:48 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-05-13 17:48 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-05-13 17:48 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-05-13 17:48 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-05-13 17:48 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-05-13 17:48 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-05-13 17:48 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-05-13 17:48 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-05-13 17:48 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-05-13 17:48 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-05-13 17:48 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-05-13 17:48 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-05-13 17:48 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-05-13 17:48 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-05-13 17:48 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-05-13 17:48 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-05-13 17:48 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-05-13 17:48 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-05-13 17:48 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-05-13 17:48 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-05-13 17:48 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-05-13 17:48 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-05-13 17:48 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-05-13 17:48 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-05-13 17:48 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-05-13 17:48 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-05-13 17:48 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-05-13 17:48 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-05-13 17:48 - 2011-10-26 07:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-05-13 17:48 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-05-13 17:48 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-05-13 17:48 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-05-13 17:48 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-05-13 17:48 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-05-13 17:48 - 2011-07-09 04:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-05-13 17:48 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-05-13 17:48 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-05-13 17:48 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-05-13 17:48 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-05-13 17:48 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-05-13 17:48 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-05-13 17:48 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-05-13 17:48 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-05-13 17:48 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-05-13 17:48 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-05-13 17:48 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-05-13 17:48 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-05-13 17:48 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-05-13 17:48 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-05-13 17:48 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-05-13 17:48 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-05-13 17:48 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-05-13 17:48 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-05-13 17:48 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-05-13 17:48 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-05-13 17:48 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-05-13 17:48 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-05-13 17:48 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-05-13 17:48 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-05-13 17:48 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-05-13 17:48 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-05-13 17:48 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-05-13 17:48 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-05-13 17:48 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-05-13 17:48 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-05-13 17:48 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-05-13 17:48 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-05-13 17:48 - 2011-04-27 04:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-05-13 17:48 - 2011-04-27 04:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-05-13 17:48 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-05-13 17:48 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-05-13 17:48 - 2011-03-11 08:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-05-13 17:48 - 2011-03-11 08:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-05-13 17:48 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-05-13 17:48 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-05-13 17:48 - 2011-03-03 08:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-05-13 17:48 - 2011-03-03 08:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-05-13 17:48 - 2011-03-03 08:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-05-13 17:48 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-05-13 17:48 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-05-13 17:48 - 2010-12-23 12:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-05-13 17:48 - 2010-12-23 12:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-05-13 17:48 - 2010-12-23 12:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-05-13 17:48 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-05-13 17:48 - 2010-12-23 07:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-05-13 17:48 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-05-13 17:47 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-05-13 17:47 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-05-13 17:47 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-05-13 17:47 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-05-13 17:47 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-05-13 17:47 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-05-13 17:47 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-05-13 17:47 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-05-13 17:47 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-05-13 17:47 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-05-13 17:47 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-05-13 17:47 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-05-13 17:47 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-05-13 17:47 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-05-13 17:47 - 2014-02-04 04:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-05-13 17:47 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-05-13 17:47 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-05-13 17:47 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-05-13 17:47 - 2013-10-03 04:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-05-13 17:47 - 2013-10-03 04:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-05-13 17:47 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-05-13 17:47 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-05-13 17:47 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-05-13 17:47 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-05-13 17:47 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-05-13 17:47 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-05-13 17:47 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-05-13 17:47 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-05-13 17:47 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-05-13 17:47 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-05-13 17:47 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-05-13 17:47 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-05-13 17:47 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-05-13 17:47 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-05-13 17:47 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-05-13 17:47 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-05-13 17:47 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-05-13 17:47 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-05-13 17:47 - 2011-02-05 19:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-05-13 17:47 - 2011-02-05 19:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-05-13 17:47 - 2011-02-05 19:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-05-13 17:47 - 2011-02-05 19:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-05-13 17:47 - 2011-02-05 19:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-05-13 17:47 - 2011-02-05 19:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-05-13 17:47 - 2011-02-05 19:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-05-13 17:44 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-05-13 17:44 - 2013-10-12 04:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-05-13 17:44 - 2013-10-12 04:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-05-13 17:44 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-05-13 17:44 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-05-13 17:44 - 2013-10-12 03:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-05-13 17:44 - 2013-10-12 03:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-05-13 17:44 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-05-13 17:44 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-05-13 17:44 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-05-13 17:44 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-05-13 17:44 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-05-13 17:44 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-05-13 17:44 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-05-13 17:44 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-05-13 17:44 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-05-13 17:44 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-05-13 17:44 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-05-13 17:44 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-05-13 17:44 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-05-13 17:44 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-05-13 17:44 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-05-13 17:44 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-05-13 17:44 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-05-13 17:44 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-05-13 17:44 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-05-13 17:44 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-05-13 17:44 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-05-13 17:44 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-05-13 17:44 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-05-13 17:44 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-05-13 17:44 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-05-13 17:44 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-05-13 17:44 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-05-13 17:44 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-05-13 17:43 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-05-13 17:43 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-05-13 17:43 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-05-13 17:43 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-05-13 17:43 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-05-13 17:43 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-05-13 17:43 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-05-13 17:42 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-05-13 17:42 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-05-13 17:42 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-05-13 17:41 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-05-13 17:41 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-05-13 17:41 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-05-13 17:37 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-05-13 17:37 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-05-13 17:37 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-05-13 17:37 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-05-13 17:37 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-05-13 17:37 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-05-13 17:37 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-05-13 17:37 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-05-13 17:37 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-05-13 17:36 - 2014-05-13 17:36 - 00000000 ____D () C:\Program Files\Broadcom
2014-05-13 17:31 - 2014-05-22 11:07 - 02023296 _____ () C:\Windows\WindowsUpdate.log
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\Programme
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 __SHD () C:\Recovery
2014-05-13 17:30 - 2014-05-13 17:30 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-05-13 17:30 - 2014-05-13 17:30 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-05-13 17:30 - 2014-05-13 17:30 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
==================== One Month Modified Files and Folders =======
2014-05-22 11:10 - 2014-05-22 11:09 - 00014916 _____ () D:\Users\Administrator\Downloads\FRST.txt
2014-05-22 11:09 - 2014-05-22 11:08 - 00000000 ____D () C:\FRST
2014-05-22 11:08 - 2014-05-22 11:08 - 02067456 _____ (Farbar) D:\Users\Administrator\Downloads\FRST64.exe
2014-05-22 11:07 - 2014-05-13 17:31 - 02023296 _____ () C:\Windows\WindowsUpdate.log
2014-05-22 11:06 - 2014-05-14 03:02 - 00006902 _____ () C:\Windows\setupact.log
2014-05-22 11:06 - 2011-04-12 09:43 - 00698688 _____ () C:\Windows\system32\perfh007.dat
2014-05-22 11:06 - 2011-04-12 09:43 - 00148828 _____ () C:\Windows\system32\perfc007.dat
2014-05-22 11:06 - 2009-07-14 07:13 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-22 11:04 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-22 11:00 - 2009-07-14 06:45 - 00020496 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-22 11:00 - 2009-07-14 06:45 - 00020496 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-22 10:53 - 2014-05-21 12:15 - 382349387 _____ () C:\Windows\MEMORY.DMP
2014-05-21 19:06 - 2014-05-21 19:06 - 00791552 _____ (AMD) D:\Users\Administrator\Downloads\amddriverdownloader.exe
2014-05-21 19:00 - 2014-05-21 19:00 - 00000000 ____D () D:\Users\Administrator\AppData\Local\Macromedia
2014-05-21 18:57 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator
2014-05-21 17:55 - 2014-05-21 17:35 - 00000193 _____ () D:\Users\aR!\AppData\Roaming\burnaware.ini
2014-05-21 17:48 - 2014-05-13 22:29 - 00000000 ____D () C:\ProgramData\Hauppauge
2014-05-21 17:47 - 2014-05-21 17:47 - 00000987 _____ () D:\Users\Public\Desktop\WinTV 7.lnk
2014-05-21 17:47 - 2014-05-17 03:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hauppauge WinTV
2014-05-21 17:47 - 2014-05-17 03:23 - 00000000 ____D () C:\Program Files (x86)\WinTV
2014-05-21 17:47 - 2014-05-13 23:08 - 00000401 _____ () C:\Windows\ODBCINST.INI
2014-05-21 17:47 - 2014-05-13 23:08 - 00000135 _____ () C:\Windows\ODBC.INI
2014-05-21 17:47 - 2014-05-13 23:07 - 00037639 _____ () C:\Windows\Irremote.ini
2014-05-21 17:47 - 2014-05-13 22:33 - 00000000 ____D () D:\Users\Public\WinTV
2014-05-21 17:47 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-21 17:45 - 2014-05-13 22:29 - 00005206 _____ () C:\Windows\HCWPNP.INI
2014-05-21 17:45 - 2014-05-13 22:27 - 00001324 _____ () C:\hcwDriverInstall.txt
2014-05-21 17:39 - 2014-05-21 17:38 - 00000186 _____ () D:\Users\Administrator\AppData\Roaming\burnaware.ini
2014-05-21 17:37 - 2014-05-21 17:37 - 00000000 __SHD () D:\Users\Administrator\AppData\Local\EmieUserList
2014-05-21 17:37 - 2014-05-21 17:37 - 00000000 __SHD () D:\Users\Administrator\AppData\Local\EmieSiteList
2014-05-21 17:37 - 2014-05-21 17:36 - 12257696 _____ (Burnaware ) D:\Users\aR!\Downloads\burnaware_free.exe
2014-05-21 17:37 - 2014-05-13 22:33 - 00000944 _____ () D:\Users\Public\Desktop\BurnAware Free.lnk
2014-05-21 17:37 - 2014-05-13 22:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BurnAware Free
2014-05-21 17:37 - 2014-05-13 22:12 - 00000000 ____D () C:\Program Files (x86)\BurnAware Free
2014-05-21 17:36 - 2014-05-21 17:36 - 00000000 __SHD () D:\Users\aR!\AppData\Local\EmieUserList
2014-05-21 17:36 - 2014-05-21 17:36 - 00000000 __SHD () D:\Users\aR!\AppData\Local\EmieSiteList
2014-05-21 17:34 - 2014-05-21 17:34 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\DAEMON Tools Lite
2014-05-21 17:33 - 2014-05-13 22:15 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-21 17:17 - 2014-05-13 19:37 - 00136866 _____ () C:\Windows\DPINST.LOG
2014-05-21 17:16 - 2014-05-21 17:16 - 00000000 ___HD () C:\ProgramData\CanonIJMyPrinter
2014-05-21 17:16 - 2014-05-21 17:15 - 00000000 ____D () D:\Users\aR!\Documents\Tomb Raider - Legend
2014-05-21 17:16 - 2014-05-21 17:15 - 00000000 ____D () D:\Users\aR!\Documents\Outlook-Dateien
2014-05-21 17:16 - 2014-05-14 21:57 - 00000000 ____D () C:\ProgramData\CanonIJPLM
2014-05-21 17:15 - 2014-05-21 17:15 - 00000000 ____D () D:\Users\aR!\Documents\Criterion Games
2014-05-21 17:10 - 2014-05-21 17:10 - 00000000 ____D () D:\Users\aR!\AppData\Local\Apple Computer
2014-05-21 17:10 - 2014-05-21 17:10 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-05-21 17:10 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\Apple Computer
2014-05-21 17:03 - 2014-05-21 17:03 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\Mozilla
2014-05-21 17:03 - 2014-05-21 17:03 - 00000000 ____D () D:\Users\aR!\AppData\Local\Mozilla
2014-05-21 17:03 - 2014-05-21 17:03 - 00000000 ____D () D:\Users\aR!\AppData\Local\Macromedia
2014-05-21 16:47 - 2014-05-21 16:47 - 00001045 _____ () D:\Users\aR!\Dokumente - Verknüpfung.lnk
2014-05-21 16:47 - 2014-05-21 13:21 - 00000000 ____D () D:\Users\aR!
2014-05-21 13:22 - 2014-05-21 13:22 - 00109936 _____ () D:\Users\aR!\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\FNET
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\Canon
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\ATI
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Local\Razer
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Local\ATI
2014-05-21 13:22 - 2014-05-21 13:22 - 00000000 ____D () D:\Users\aR!\AppData\Local\AMD
2014-05-21 13:21 - 2014-05-21 13:21 - 00001293 _____ () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-21 13:21 - 2014-05-21 13:21 - 00000020 ___SH () D:\Users\aR!\ntuser.ini
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Vorlagen
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Startmenü
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Netzwerkumgebung
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Lokale Einstellungen
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Eigene Dateien
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Druckumgebung
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Documents\Eigene Musik
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Documents\Eigene Bilder
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\AppData\Local\Verlauf
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\AppData\Local\Anwendungsdaten
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 _SHDL () D:\Users\aR!\Anwendungsdaten
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 ___RD () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 ___RD () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-21 13:21 - 2014-05-21 13:21 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\Adobe
2014-05-21 13:14 - 2014-05-21 13:14 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\Mozilla
2014-05-21 13:14 - 2014-05-21 13:14 - 00000000 ____D () D:\Users\Administrator\AppData\Local\Mozilla
2014-05-21 12:18 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\Apple Computer
2014-05-21 12:17 - 2014-05-21 12:17 - 00275360 _____ () C:\Windows\Minidump\052114-52884-01.dmp
2014-05-21 12:17 - 2014-05-21 12:17 - 00000000 ____D () C:\Windows\Minidump
2014-05-21 12:10 - 2014-05-13 22:19 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-05-21 00:03 - 2014-05-17 01:53 - 1505756248 _____ () D:\Users\aR!\Documents\tsnxg_disc.ts4
2014-05-20 10:05 - 2014-05-13 22:11 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-18 15:09 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-18 13:18 - 2014-05-18 13:18 - 00001695 _____ () D:\Users\Public\Desktop\iTunes.lnk
2014-05-18 13:18 - 2014-05-18 13:18 - 00000000 ____D () D:\Users\Administrator\AppData\Local\Apple Computer
2014-05-18 13:18 - 2014-05-18 13:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-05-18 13:18 - 2014-05-18 13:18 - 00000000 ____D () C:\Program Files\iTunes
2014-05-18 13:18 - 2014-05-18 13:18 - 00000000 ____D () C:\Program Files\iPod
2014-05-18 13:18 - 2014-05-18 13:18 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-05-18 13:16 - 2014-05-18 13:16 - 00001733 _____ () D:\Users\Public\Desktop\QuickTime Player.lnk
2014-05-18 13:16 - 2014-05-18 13:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-05-18 13:16 - 2014-05-18 13:16 - 00000000 ____D () C:\Program Files (x86)\QuickTime
2014-05-18 13:15 - 2014-05-18 13:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2014-05-18 13:15 - 2014-05-13 19:48 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-05-18 01:09 - 2014-05-17 02:19 - 00007607 _____ () D:\Users\Administrator\AppData\Local\Resmon.ResmonCfg
2014-05-18 00:24 - 2014-05-21 17:16 - 00035470 _____ () D:\Users\aR!\Downloads\nvrambak.bin
2014-05-17 15:10 - 2014-05-21 17:15 - 3268147200 _____ () D:\Users\aR!\Downloads\de_windows_7_professional_with_sp1_x64_dvd_u_676919.iso
2014-05-17 15:09 - 2014-05-21 17:16 - 192937984 _____ () D:\Users\aR!\Downloads\gparted-live-0.18.0-2-amd64.iso
2014-05-17 12:31 - 2014-05-17 12:31 - 00000000 ____D () C:\Program Files (x86)\OpenAL
2014-05-17 12:31 - 2014-05-13 19:42 - 00466520 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2014-05-17 12:31 - 2014-05-13 19:42 - 00445016 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2014-05-17 12:31 - 2014-05-13 19:42 - 00123480 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2014-05-17 12:31 - 2014-05-13 19:42 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2014-05-17 12:30 - 2014-05-13 22:16 - 00027598 _____ () C:\Windows\DirectX.log
2014-05-17 12:18 - 2010-11-21 05:47 - 00363814 _____ () C:\Windows\PFRO.log
2014-05-17 03:21 - 2014-05-21 17:15 - 252545024 _____ () D:\Users\aR!\Downloads\WINTV7HD-V3.2.iso
2014-05-17 03:21 - 2014-05-21 17:15 - 146945880 _____ () D:\Users\aR!\Downloads\wintv7_cd_3.3.exe
2014-05-17 03:16 - 2014-05-13 22:27 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-05-17 02:17 - 2014-05-21 17:16 - 925892608 _____ () D:\Users\aR!\Downloads\ubuntu-13.10-desktop-amd64.iso
2014-05-17 02:16 - 2014-05-21 17:17 - 01095461 _____ (pendrivelinux.com) D:\Users\aR!\Downloads\Universal-USB-Installer-1.9.5.2.exe
2014-05-17 01:47 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\.purple
2014-05-17 01:43 - 2014-05-17 01:43 - 00109936 _____ () D:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-05-17 01:43 - 2014-05-17 01:43 - 00001289 _____ () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-17 01:43 - 2014-05-17 01:43 - 00000020 ___SH () D:\Users\Administrator\ntuser.ini
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Vorlagen
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Startmenü
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Netzwerkumgebung
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Lokale Einstellungen
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Eigene Dateien
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Druckumgebung
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Documents\Eigene Musik
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Documents\Eigene Bilder
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\AppData\Local\Verlauf
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 _SHDL () D:\Users\Administrator\Anwendungsdaten
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ___RD () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ___RD () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\FNET
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\Canon
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\ATI
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\Adobe
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Local\Razer
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Local\ATI
2014-05-17 01:43 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Local\AMD
2014-05-17 01:43 - 2009-07-14 06:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-05-16 23:49 - 2014-05-16 23:49 - 00000000 ____D () C:\Mozilla
2014-05-16 23:30 - 2014-05-16 23:30 - 00262144 _____ () C:\Windows\SysWOW64\Ͷ
2014-05-16 23:19 - 2014-05-16 23:19 - 00000000 ____D () C:\Windows\SysWOW64\tmp000002ab
2014-05-16 23:16 - 2014-05-16 23:16 - 00000000 ____D () C:\Windows\SysWOW64\tmp00000080
2014-05-16 23:13 - 2014-05-16 23:13 - 00109936 _____ () C:\GDIPFONTCACHEV1.DAT
2014-05-16 23:13 - 2014-05-16 23:13 - 00000000 ____D () C:\ATI
2014-05-16 23:12 - 2014-05-16 23:12 - 00000000 ____D () C:\Windows\SysWOW64\tmp00007d46
2014-05-15 15:12 - 2014-05-15 15:12 - 00262144 _____ () C:\Windows\SysWOW64\�DžDž崁誈罀[
2014-05-15 15:12 - 2014-05-15 15:12 - 00262144 _____ () C:\Windows\SysWOW64\�Dž18
2014-05-15 15:06 - 2014-05-14 00:14 - 00032320 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETTBOH_305.SYS
2014-05-14 22:54 - 2014-05-14 22:54 - 00000000 ___HD () C:\ProgramData\CanonIJQuickMenu
2014-05-14 22:53 - 2014-05-13 22:33 - 00000841 _____ () D:\Users\Public\Desktop\µTorrent.lnk
2014-05-14 22:53 - 2014-05-13 22:20 - 00000949 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-05-14 22:53 - 2014-05-13 22:20 - 00000000 ____D () C:\Program Files (x86)\uTorrent
2014-05-14 21:57 - 2014-05-14 21:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2014-05-14 21:57 - 2014-05-14 21:49 - 00000000 ____D () C:\Program Files (x86)\Canon
2014-05-14 21:56 - 2014-05-14 21:56 - 00000000 ____D () C:\Windows\system32\STRING
2014-05-14 21:56 - 2014-05-14 21:56 - 00000000 ____D () C:\ProgramData\Canon IJ Network Tool
2014-05-14 21:56 - 2009-07-14 05:20 - 00000000 __RSD () C:\Windows\Media
2014-05-14 21:55 - 2014-05-14 21:55 - 00001903 _____ () D:\Users\Public\Desktop\Canon Quick Menu.lnk
2014-05-14 21:55 - 2014-05-14 21:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5500 series Benutzerregistrierung
2014-05-14 21:55 - 2014-05-14 21:55 - 00000000 ____D () C:\ProgramData\CanonIJWSpt
2014-05-14 21:54 - 2014-05-14 21:54 - 00106272 _____ (G Data Software) C:\Windows\system32\Drivers\GRD.sys
2014-05-14 21:54 - 2014-05-14 21:54 - 00018160 _____ (G Data Software) C:\Windows\system32\Drivers\GdPhyMem.sys
2014-05-14 21:51 - 2014-05-14 21:51 - 00002356 _____ () D:\Users\Public\Desktop\Canon MG5500 series On-Screen-Handbuch.lnk
2014-05-14 21:51 - 2014-05-14 21:51 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-05-14 21:51 - 2014-05-14 21:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5500 series Manual
2014-05-14 21:51 - 2014-05-14 21:51 - 00000000 ____D () C:\Program Files\Canon
2014-05-14 21:50 - 2014-05-14 21:50 - 00000000 ___HD () C:\Program Files\CanonBJ
2014-05-14 20:36 - 2014-05-14 20:36 - 00000000 _____ () C:\Windows\topsecret.INI
2014-05-14 20:36 - 2014-05-14 20:36 - 00000000 _____ () C:\Windows\GDDevCtrl.INI
2014-05-14 20:35 - 2014-05-14 20:35 - 00262144 _____ () C:\Windows\SysWOW64\5-18
2014-05-14 20:35 - 2014-05-14 20:35 - 00000000 __SHD () C:\#GDATA.Trash.Store#
2014-05-14 20:35 - 2014-05-13 19:40 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-05-14 20:32 - 2014-05-13 23:09 - 00000000 ____D () C:\ProgramData\G Data
2014-05-14 20:24 - 2014-05-14 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G Data TotalProtection
2014-05-14 20:24 - 2014-05-14 19:50 - 00001841 _____ () D:\Users\Public\Desktop\G Data TotalProtection.lnk
2014-05-14 20:24 - 2014-05-14 19:49 - 00098760 _____ (G Data Software) C:\Windows\system32\Drivers\TS4nt.sys
2014-05-14 20:24 - 2014-05-14 19:49 - 00064000 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys
2014-05-14 20:24 - 2014-05-14 19:49 - 00022016 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBFlt64.sys
2014-05-14 19:50 - 2014-05-14 19:50 - 00068608 _____ (G Data Software AG) C:\Windows\system32\Drivers\PktIcpt.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00135168 _____ (G Data Software AG) C:\Windows\system32\Drivers\MiniIcpt.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00078848 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcd64.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00065024 _____ (G Data Software AG) C:\Windows\system32\Drivers\HookCentre.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00058880 _____ (G Data Software AG) C:\Windows\system32\Drivers\gddcv64.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00057344 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDBehave.sys
2014-05-14 19:49 - 2014-05-14 19:49 - 00000000 ____D () C:\ProgramData\G DATA Software
2014-05-14 19:46 - 2014-05-13 23:09 - 00000000 ____D () C:\Program Files (x86)\G Data
2014-05-14 19:45 - 2014-05-14 19:45 - 00096771 _____ () C:\ProgramData\1400089497.bdinstall.bin
2014-05-14 19:44 - 2014-05-14 19:44 - 00037824 _____ () C:\ProgramData\1400089495.bdinstall.bin
2014-05-14 03:02 - 2014-05-14 03:02 - 00000000 _____ () C:\Windows\setuperr.log
2014-05-14 01:15 - 2014-05-14 00:44 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-14 01:14 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-05-14 01:12 - 2009-07-14 04:34 - 00000478 _____ () C:\Windows\win.ini
2014-05-14 01:08 - 2014-05-21 13:21 - 00000000 ____D () D:\Users\aR!\AppData\Local\Microsoft Help
2014-05-14 01:08 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Local\Microsoft Help
2014-05-14 01:08 - 2014-05-14 01:08 - 00000000 ____D () D:\Users\Default\AppData\Local\Microsoft Help
2014-05-14 00:56 - 2009-07-14 06:45 - 00434704 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-05-14 00:48 - 2014-05-14 00:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2014-05-14 00:48 - 2014-05-14 00:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-05-14 00:47 - 2014-05-14 00:47 - 00000000 ____D () C:\Windows\PCHEALTH
2014-05-14 00:47 - 2014-05-14 00:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-05-14 00:47 - 2014-05-14 00:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft Sync Framework
2014-05-14 00:47 - 2014-05-14 00:47 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-05-14 00:47 - 2014-05-14 00:44 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-05-14 00:47 - 2011-04-12 09:55 - 00000000 ____D () C:\Windows\ShellNew
2014-05-14 00:47 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-05-14 00:46 - 2014-05-14 00:46 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-05-14 00:45 - 2014-05-14 00:45 - 00000000 ____D () C:\Program Files (x86)\Microsoft Visual Studio 8
2014-05-14 00:44 - 2014-05-14 00:44 - 00000000 __RHD () C:\MSOCache
2014-05-14 00:44 - 2014-05-14 00:44 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-05-14 00:44 - 2014-05-14 00:44 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-05-14 00:14 - 2014-05-14 00:14 - 00069344 _____ (FNet Co., Ltd.) C:\Windows\system32\TurboShell_105.dll
2014-05-14 00:14 - 2014-05-14 00:14 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-05-13 23:53 - 2014-05-13 23:53 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-05-13 23:51 - 2014-05-13 23:51 - 00197602 _____ () C:\ProgramData\1400017829.bdinstall.bin
2014-05-13 23:51 - 2014-05-13 23:51 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-05-13 23:50 - 2014-05-13 23:50 - 00096044 _____ () C:\ProgramData\1400017811.bdinstall.bin
2014-05-13 23:29 - 2014-05-13 23:29 - 00202710 _____ () C:\ProgramData\1400016475.bdinstall.bin
2014-05-13 23:23 - 2014-05-13 23:23 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_gddcd64_01007.Wdf
2014-05-13 23:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-05-13 23:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-05-13 23:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-05-13 23:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-05-13 23:09 - 2014-05-13 23:09 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_GDKBFlt64_01007.Wdf
2014-05-13 23:08 - 2014-05-13 19:44 - 00000000 ____D () C:\ProgramData\Package Cache
2014-05-13 23:00 - 2014-05-13 19:52 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-05-13 22:33 - 2014-05-21 13:21 - 00000000 ___RD () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-13 22:33 - 2014-05-21 13:21 - 00000000 ___RD () D:\Users\aR!\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-13 22:33 - 2014-05-21 13:21 - 00000000 ____D () D:\Users\aR!\AppData\Roaming\Macromedia
2014-05-13 22:33 - 2014-05-17 01:43 - 00000000 ___RD () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-13 22:33 - 2014-05-17 01:43 - 00000000 ___RD () D:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-13 22:33 - 2014-05-17 01:43 - 00000000 ____D () D:\Users\Administrator\AppData\Roaming\Macromedia
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 __RHD () D:\Users\Public\Libraries
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 __RHD () D:\Users\Default
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 ___RD () D:\Users\Public\Recorded TV
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 ___RD () D:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 ___RD () D:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-13 22:33 - 2014-05-13 22:33 - 00000000 ____D () D:\Users\Default\AppData\Roaming\Macromedia
2014-05-13 22:28 - 2014-05-13 22:33 - 00001954 _____ () D:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2014-05-13 22:28 - 2014-05-13 22:28 - 00386680 _____ (Duplex Secure Ltd.) C:\Windows\system32\Drivers\sptd.sys
2014-05-13 22:28 - 2014-05-13 22:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-05-13 22:27 - 2014-05-13 22:27 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-05-13 22:21 - 2014-05-13 22:33 - 00001070 _____ () D:\Users\Public\Desktop\VLC media player.lnk
2014-05-13 22:21 - 2014-05-13 22:21 - 00001073 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Secunia PSI.lnk
2014-05-13 22:21 - 2014-05-13 22:21 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-05-13 22:21 - 2014-05-13 22:21 - 00000000 ____D () C:\Program Files (x86)\Secunia
2014-05-13 22:20 - 2014-05-13 22:33 - 00002019 _____ () D:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-05-13 22:20 - 2014-05-13 22:33 - 00001166 _____ () D:\Users\Public\Desktop\TeamViewer 9.lnk
2014-05-13 22:20 - 2014-05-13 22:20 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-13 22:20 - 2014-05-13 22:20 - 00001178 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-05-13 22:20 - 2014-05-13 22:20 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-05-13 22:20 - 2014-05-13 22:11 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-05-13 22:19 - 2014-05-13 22:33 - 00000967 _____ () D:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
2014-05-13 22:19 - 2014-05-13 22:33 - 00000967 _____ () D:\Users\Public\Desktop\Steam.lnk
2014-05-13 22:19 - 2014-05-13 22:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-05-13 22:19 - 2014-05-13 22:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-05-13 22:19 - 2014-05-13 22:19 - 00000000 ____D () C:\Program Files\TeamSpeak 3 Client
2014-05-13 22:18 - 2014-05-13 22:18 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-05-13 22:18 - 2014-05-13 22:18 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-05-13 22:18 - 2014-05-13 22:18 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-05-13 22:18 - 2014-05-13 22:18 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-05-13 22:18 - 2014-05-13 22:18 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-05-13 22:18 - 2014-05-13 22:18 - 00000995 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pidgin.lnk
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\ProgramData\Sun
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\ProgramData\Oracle
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\Program Files (x86)\Pidgin
2014-05-13 22:18 - 2014-05-13 22:18 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-13 22:15 - 2014-05-13 22:15 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-13 22:15 - 2014-05-13 22:15 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-13 22:15 - 2014-05-13 22:15 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-13 22:15 - 2014-05-13 22:15 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-05-13 22:15 - 2014-05-13 22:15 - 00000000 ____D () C:\Windows\system32\Macromed
2014-05-13 22:15 - 2014-05-13 22:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GeoGebra 4.4
2014-05-13 22:15 - 2014-05-13 22:15 - 00000000 ____D () C:\Program Files (x86)\GeoGebra 4.4
2014-05-13 22:14 - 2014-05-13 22:33 - 00001151 _____ () D:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-13 22:14 - 2014-05-13 22:14 - 00001163 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-13 22:14 - 2014-05-13 22:14 - 00000000 ____D () C:\ProgramData\Mozilla
2014-05-13 22:14 - 2014-05-13 22:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-13 22:14 - 2014-05-13 22:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-13 22:12 - 2014-05-13 22:12 - 00000000 ____D () C:\ProgramData\Creative
2014-05-13 22:12 - 2014-05-13 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2014-05-13 22:12 - 2014-05-13 19:39 - 00000000 ____D () C:\Program Files (x86)\Creative
2014-05-13 22:12 - 2014-05-13 19:38 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-05-13 22:10 - 2014-05-13 22:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2014-05-13 22:10 - 2014-05-13 22:10 - 00000000 ____D () C:\Program Files\7-Zip
2014-05-13 20:10 - 2014-05-13 20:10 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2014-05-13 19:49 - 2014-05-13 18:00 - 00001912 _____ () C:\Windows\epplauncher.mif
2014-05-13 19:48 - 2014-05-13 19:48 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-05-13 19:48 - 2014-05-13 19:48 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-05-13 19:48 - 2014-05-13 19:48 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-05-13 19:48 - 2014-05-13 19:48 - 00000000 ____D () C:\Program Files\Bonjour
2014-05-13 19:48 - 2014-05-13 19:48 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-05-13 19:48 - 2014-05-13 19:48 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-05-13 19:48 - 2014-05-13 19:47 - 00000000 ____D () C:\ProgramData\Apple
2014-05-13 19:47 - 2014-05-13 19:47 - 00000000 ____D () C:\ProgramData\ATI
2014-05-13 19:47 - 2014-05-13 19:47 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-05-13 19:46 - 2014-05-13 19:46 - 00000000 ____D () C:\Program Files (x86)\Etron Technology
2014-05-13 19:45 - 2014-05-13 19:45 - 00066765 _____ () C:\Windows\SysWOW64\CCCInstall_201405131945498730.log
2014-05-13 19:45 - 2014-05-13 19:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-05-13 19:45 - 2014-05-13 19:45 - 00000000 ____D () C:\ProgramData\AMD
2014-05-13 19:45 - 2014-05-13 19:45 - 00000000 ____D () C:\Program Files\AMD
2014-05-13 19:45 - 2014-05-13 19:45 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-05-13 19:45 - 2014-05-13 19:37 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-05-13 19:45 - 2014-05-13 19:37 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-05-13 19:44 - 2014-05-13 19:44 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_rzudd_01009.Wdf
2014-05-13 19:44 - 2014-05-13 19:44 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-05-13 19:44 - 2014-05-13 19:44 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-05-13 19:43 - 2014-05-13 19:43 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_rzp1endpt_01009.Wdf
2014-05-13 19:43 - 2014-05-13 19:43 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-05-13 19:43 - 2014-05-13 19:43 - 00000000 ____D () C:\Program Files\Realtek
2014-05-13 19:43 - 2014-05-13 19:43 - 00000000 ____D () C:\AMD
2014-05-13 19:43 - 2014-05-13 19:41 - 00000000 ____D () C:\Program Files (x86)\Razer
2014-05-13 19:42 - 2014-05-13 22:33 - 00001889 _____ () D:\Users\Public\Desktop\XFast USB.LNK
2014-05-13 19:42 - 2014-05-13 19:42 - 00016648 _____ (FNet Co., Ltd.) C:\Windows\system32\Drivers\FNETURPX.SYS
2014-05-13 19:42 - 2014-05-13 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XFast USB
2014-05-13 19:42 - 2014-05-13 19:42 - 00000000 ____D () C:\ProgramData\FNET
2014-05-13 19:42 - 2014-05-13 19:42 - 00000000 ____D () C:\Program Files (x86)\XFastUSB
2014-05-13 19:42 - 2014-05-13 19:42 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-05-13 19:41 - 2014-05-13 19:41 - 00000000 ____D () C:\ProgramData\Razer
2014-05-13 19:41 - 2014-05-13 19:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2014-05-13 19:41 - 2014-05-13 19:39 - 00000314 ___RH () C:\Windows\ctfile.rfc
2014-05-13 19:41 - 2014-05-13 19:39 - 00000000 ____D () C:\Program Files\Creative
2014-05-13 19:40 - 2014-05-13 19:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD
2014-05-13 19:38 - 2014-05-13 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-05-13 19:38 - 2014-05-13 19:38 - 00000000 ____D () C:\Program Files\Logitech
2014-05-13 19:38 - 2014-05-13 19:38 - 00000000 ____D () C:\Program Files\Common Files\Logitech
2014-05-13 19:37 - 2014-05-13 19:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASRock Utility
2014-05-13 19:37 - 2014-05-13 19:37 - 00000000 ____D () C:\Program Files\DIFX
2014-05-13 19:37 - 2014-05-13 19:37 - 00000000 ____D () C:\Program Files\ATI
2014-05-13 19:37 - 2014-05-13 19:37 - 00000000 ____D () C:\Program Files\ASRock Utility
2014-05-13 19:30 - 2014-05-13 19:30 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-13 19:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-13 19:21 - 2014-05-13 18:54 - 01591896 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-05-13 19:20 - 2014-05-13 18:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-13 19:19 - 2014-05-13 18:02 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-13 19:10 - 2014-05-13 22:33 - 00001754 _____ () D:\Users\Public\Desktop\Browserwahl.lnk
2014-05-13 19:10 - 2014-05-13 19:10 - 00003536 _____ () C:\Windows\System32\Tasks\CreateChoiceProcessTask
2014-05-13 19:10 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-05-13 19:06 - 2011-04-12 09:55 - 00000000 ____D () C:\Program Files\Windows Journal
2014-05-13 19:06 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-13 19:06 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-05-13 19:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
2014-05-13 19:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-05-13 19:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-05-13 19:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-05-13 19:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-05-13 18:50 - 2014-05-13 18:40 - 00015343 _____ () C:\Windows\IE11_main.log
2014-05-13 18:43 - 2014-05-13 18:43 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-13 18:43 - 2014-05-13 18:43 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-13 18:43 - 2014-05-13 18:43 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-05-13 18:43 - 2014-05-13 18:43 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-05-13 18:43 - 2014-05-13 18:43 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-05-13 18:43 - 2014-05-13 18:43 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-05-13 18:43 - 2014-05-13 18:43 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-05-13 18:43 - 2014-05-13 18:43 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-05-13 18:43 - 2014-05-13 18:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-05-13 18:43 - 2014-05-13 18:43 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-05-13 18:43 - 2014-05-13 18:43 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-13 18:27 - 2014-05-13 18:27 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-05-13 18:27 - 2009-07-14 07:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-05-13 18:27 - 2009-07-14 07:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-05-13 17:36 - 2014-05-13 17:36 - 00000000 ____D () C:\Program Files\Broadcom
2014-05-13 17:36 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\restore
2014-05-13 17:31 - 2014-05-13 18:27 - 00000000 ____D () C:\Windows\Panther
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\Programme
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-05-13 17:31 - 2014-05-13 17:31 - 00000000 __SHD () C:\Recovery
2014-05-13 17:31 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-05-13 17:30 - 2014-05-13 17:30 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-05-13 17:30 - 2014-05-13 17:30 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-05-13 17:30 - 2014-05-13 17:30 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-05-13 17:30 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-13 17:30 - 2009-07-14 06:46 - 00002790 _____ () C:\Windows\DtcInstall.log
2014-05-13 17:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-05-13 17:28 - 2011-04-12 09:55 - 00000000 ____D () C:\Windows\CSC
2014-05-09 08:14 - 2014-05-13 19:18 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-13 19:18 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-06 06:40 - 2014-05-13 19:22 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-13 19:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-13 19:22 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-13 19:22 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-13 19:22 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-13 19:22 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-03 14:39 - 2014-05-13 18:07 - 00267344 _____ (Advanced Micro Devices, Inc) C:\Windows\system32\Drivers\ahcix64.sys
Some content of TEMP:
====================
D:\Users\Administrator\AppData\Local\Temp\checkdb.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-05-20 00:57
==================== End Of Log ============================
G-Data Firewall hat kurz gemeldet, dass ich "abgetastet" werde (vermute nmap?). Und nach einigen Meldungen ging die CPU Auslastung ins unermessliche...ich weiß langsam nicht mehr weiter (bin auch schon wieder an der Neuinstallation meines Rechners). Jetzt besteht dieses Problem schon ziemlich lange, obwohl ich immer wieder die Festplatten mit Zufallsdaten überschrieben habe. Was mich auf die Idee gebracht hat, ob evtl. das BIOS, Firmware oder ähnliches bei mir manipuliert worden ist. Da ich gelesen hatte, dass der Mikrocode der CPU überschrieben werden kann. Mittlerweile halte ich für alles mögliche und wenn ich über meine alten Bekanntschaften nachdenke (Ausbildung etc.), wo ich viele linux-freaks, Programmierer und angebliche "nicht mehr"-Hacker (angeblich nicht gegen Privatpersonen vorgegangen sei)... Was ich noch machen werde ist: - Bei meinem Internetanbieter nachfragen, ob sie evtl. wissen warum diese 5 IP-Adressen (die zu ihrem Netzwerk ebenfalls gehören) mich andauernd attackieren (bzw. ich DROPs auf meiner Firewall/Router sehe). - Ich werde auf eine neue externe IP warten und mit meinem Handy beobachten, ob diese Drops kommen, wenn kein Rechner läuft. -- getestet habe ich sowas schon nur, werde ich das diesmal über einen längeren Zeitraum, denn ich habe es schon mal getestet: auf dem Handy war nix zu sehen (hab aber auch nur maximal 10min gewartet), leider kurz nach dem ich das Notebook an hatte kamen die Drops wieder... Router-Log: Code:
ATTFilter 10.119.0.1 UDP bootpc Dropped
95.181.2.81 UDP 28829 Dropped
10.119.0.1 UDP bootpc Dropped
78.42.43.37 UDP 15489 Dropped
10.119.0.1 UDP bootpc Dropped
189.154.25.76 UDP 28829 Dropped
10.119.0.1 UDP bootpc Dropped
Danke für die Unterstützung... PS: das mit dem CODE habe schon vorhin gewusst, nur nach dem posten stand, dass der Text zu lang ist und man das als zip anhängen sollte.. |
|
24.05.2014, 18:28
| #8 |
| /// the machine /// TB-Ausbilder | Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG Viel zuviel Text  Du bist also am Neuaufsetzen? Sprich um den Rechner brauchen wir uns nicht kümmern? Du wirst warscheinlich nur gespooft. Setz mal den Router auf WErkseinstellungen zurück.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
24.05.2014, 22:24
| #9 |
| | Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG Ja, ich werde gespooft, aber bei jedem windows-Start kam genau ein drop. Nun auch egal hab mir das Tutorial zum neu aufsetzen durch gelesen, was mir gezeigt hat welchen Fehler ich beim x-ten mal falsch gemacht. Denke bis spätestens Mitte nächste Woche kann ich Rückmeldung geben, dass alles sauber ist. Kann eine *.jpg Datei infiziert sein da ich viele Bilder zum sichern habe? Danke! |
|
25.05.2014, 18:36
| #10 |
| /// the machine /// TB-Ausbilder | Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG Wenn es wirklich ne jpg ist, also keine versteckte andere DAteiendung, dann nein. Denk an den ROuter.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Vermute Trojaner: netbios-ns zu verschiedenen IP-Adressen im Router-LOG |
| bildschirm, dokument, drucker, falsch, frage, hängen, infiziert, kaputt, links, netbios-ns, neustart, nicht mehr, panik, problem, probleme, prozesse, ram, svchost.exe, tan, taskmanager, treiber, trojaner, tv-karte, updates, verbindung, windows, wireshark |
Linear-Darstellung
