download protect 2.2.1 - auch ich wurde nicht verschont :-(

A-Man · 27.06.2014, 21:04

Hallo zusammen,

ich habe gelesen, hier sind Profis am Werk

Deshalb hoffe ich sehr, dass mir hier geholfen werden kann.

Ich meine, von mir behaupten zu können, dass ich sehr sorgfältig darauf achte, was ich so installiere, bzw. alles ungewollte beim Installieren auch brav abwähle, aber irgendwie hat es dieses DoPro auf meinen (vor kurzem erst mit W7 64 Bit neu aufgesetzten) Rechner geschafft, sehr ärgerlich...

Da ich es in einem anderen Beitrag, wo dem User schon geholfen wurde, gelesen habe, hier mein Logfile von Malwarebytes:

Suchlauf Datum: 27.06.2014
Suchlauf-Zeit: 19:07:12
Logdatei: MB_Log.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.06.27.07
Rootkit Datenbank: v2014.06.23.02
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer:

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 297181
Verstrichene Zeit: 13 Min, 2 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)

(end)

Allerdings kann hier eigentlich was nicht stimmen, denn MB hatte u.a. genau diesen DoPro Trojaner entdeckt und ich habe ihn in Quarantäne verschoben. Vlllt habe ich dummerweise eine falsche Datei gespeichert

Ich hatte schon gehofft, dass das Problem (so einfach?) damit erledigt wäre, aber nach einem Neustart war (und ist) DoPro immer noch da. Und wenn ich jetzt erneut mit MB scanne, wird keine Bedrohung mehr erkannt.

Ich hoffe sehr, dass mir jemand aus der Patsche helfen und mir ein komplettes Neuaufsetzen des Systems ersparen kann ...

Danke im voraus für jede Hilfe!

M-K-D-B · 27.06.2014, 21:09

Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.

Bitte beachte folgende Hinweise:

Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo.
Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort zu starten!

Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

A-Man · 27.06.2014, 21:56

Ich musste die Dateien zippen, die Texte sind wohl jeweils zu lang...

Ich hoffe ja mal, dass du hier nix illegales findest, denn das habe ich ganz sicher nicht installiert. Ich muss allerdings dazu sagen, dass ich den Rechner gebraucht bei ebay gekauft habe und hoffe, dass da jetzt nicht irgendwelche Reste von meinem Vorbesitzer zu sehen sind??

Danke für die schnelle Antwort!

M-K-D-B · 28.06.2014, 08:30

Servus,

wir beginnen erst mal so:

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

A-Man · 28.06.2014, 19:09

Grüß Gott :-)

Ich schreibe mal vom Handy...

Combofix läuft, Firewall und Antivir sind aus, aber seit einer
Viertelstunde passiert da leider nix mehr, Combofix ist quasi
stehen geblieben... Also nicht eingefroren, aber die Fortschrittsanzeige
bewegt sich nicht weiter... Was tun?

Noch eine Frage für den weiteren Vorgang: ist es dir lieber, wenn ich lange logfiles in mehrere Posts aufteile und dann als Code direkt hier schreibe oder lieber als gepackte Datei, so wie die erste?

Edit:

inzwischen sind es übrigens schon fast zwei Stunden, in denen nichts mehr passiert...

Edit:

inzwischen sind es übrigens schon fast zwei Stunden, in denen nichts mehr passiert...

M-K-D-B · 29.06.2014, 08:45

Servus,

Logdateien bitte in Code-Boxen posten, Anhang erschwert mir das Auswerten.

ok, dann machen wir so weiter:

Schritt 1
Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 2
Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 3
Bitte deaktiviere dein Anti-Viren-Programm, da es das Ergebnis beeinflussen oder ggf. die Bereinigung stören kann.
Bitte lade dir zoek.exe von hier: http://hijackthis.nl/smeenk/ und speichere die Datei auf deinem Desktop.

Starte Zoek.exe mit einem Doppelklick.
Achtung: Das folgende Skript wurde nur für diesen speziellen Fall geschrieben und könnte andere Computer beschädigen.
Kopiere den Text der folgenden Box in das Skriptfenster von zoek:
Code:
ATTFilter
```
iedefaults;
resetIEproxy;
FFdefaults;
CHRdefaults;
emptyclsid;
autoclean;
         
```
Nun klicke auf "Run script" und sei geduldig bis das Skript durchgelaufen ist.
Wenn das Tool fertig ist, wird sich Notepad mit der Logdatei öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter c:\ .
Bitte poste mir das ZOEK-Log (möglichst in CODE-Tags - #-Symbol im Antwortfenster klicken).

Schritt 4

Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Scan.
FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
Poste mir beide Logdateien mit deiner nächsten Antwort.

Bitte poste mit deiner nächsten Antwort

die Logdatei von AdwCleaner,
die Logdatei von MBAM,
die Logdatei von Zoek,
die beiden neuen Logdateien von FRST.

A-Man · 29.06.2014, 09:49

Moin

Bei Schritt 3 habe ich leider das Problem, dass ich die exe nicht ausführen (obwohl ich Admin angemeldet bin, bzw.als Admin ausführe). Antivir und Firewall sind deaktiviert.

Was nun...?

Hier schon mal die beidem ersten Logfiles:

Code:

ATTFilter

# AdwCleaner v3.213 - Bericht erstellt am 29/06/2014 um 10:05:33
# Aktualisiert 23/06/2014 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : xxxx
# Gestartet von : C:\Users\xxxx\Desktop\adwcleaner_3.213.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17126


-\\ Mozilla Firefox v30.0 (de)

[ Datei : C:\Users\xxxxi\AppData\Roaming\Mozilla\Firefox\Profiles\wgq79svx.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [3363 octets] - [27/06/2014 14:28:57]
AdwCleaner[R1].txt - [3492 octets] - [27/06/2014 14:30:00]
AdwCleaner[R2].txt - [1057 octets] - [27/06/2014 17:23:05]
AdwCleaner[R3].txt - [1168 octets] - [29/06/2014 10:05:08]
AdwCleaner[S0].txt - [319 octets] - [27/06/2014 14:29:36]
AdwCleaner[S1].txt - [3430 octets] - [27/06/2014 14:30:46]
AdwCleaner[S2].txt - [1119 octets] - [27/06/2014 17:25:15]
AdwCleaner[S3].txt - [1090 octets] - [29/06/2014 10:05:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1150 octets] ##########

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 29.06.2014
Suchlauf-Zeit: 10:08:56
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.06.29.02
Rootkit Datenbank: v2014.06.23.02
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: xxxx

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 297551
Verstrichene Zeit: 8 Min, 26 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)

So, jetzt funktioniert es doch, irgendwie war wohl doch noch Antivir an...Ich warte mal auf die Logdatei.

M-K-D-B · 29.06.2014, 10:00

Zitat:

Zitat von A-Man

So, jetzt funktioniert es doch, irgendwie war wohl doch noch Antivir an...Ich warte mal auf die Logdatei.

Ok.

A-Man · 29.06.2014, 11:31

FRST.txt_Teil 1

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-06-2014
Ran by xxxx (administrator) on xxxx on 29-06-2014 12:00:55
Running from C:\Users\xxxx\Desktop
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\System32\docpropd.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(COMODO) C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2320752 2009-11-11] (Microsoft Corporation)
HKLM-x32\...\Run: [PSDrvCheck] => C:\Windows\SysWOW64\PSDrvCheck.exe [396800 2003-08-28] ()
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [3037296 2011-05-06] (VIA)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [737872 2014-05-09] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-56423891-2218517238-3243758105-1001\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-56423891-2218517238-3243758105-1001\...\Policies\Explorer: [NoRecentDocsMenu] 1
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\xxxx\AppData\Roaming\Mozilla\Firefox\Profiles\wgq79svx.default
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: PDF Architect 2 - C:\Program Files (x86)\PDF Architect 2\np-previewer.dll (pdfforge GmbH)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: InFormEnter - C:\Users\xxxx\AppData\Roaming\Mozilla\Firefox\Profiles\wgq79svx.default\Extensions\{5546F97E-11A5-46b0-9082-32AD74AAA920} [2014-06-27]
FF Extension: DownloadHelper - C:\Users\xxxx\AppData\Roaming\Mozilla\Firefox\Profiles\wgq79svx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-06-27]
FF HKLM-x32\...\Firefox\Extensions: [{20C672B3-445E-4625-BD58-64A32C856D9C}] - C:\Windows\Installer\{DAB94953-8E4F-4C8A-BAE0-D1EAA1BD5FC6}\{20C672B3-445E-4625-BD58-64A32C856D9C}.xpi
FF Extension: Download Protect - C:\Windows\Installer\{DAB94953-8E4F-4C8A-BAE0-D1EAA1BD5FC6}\{20C672B3-445E-4625-BD58-64A32C856D9C}.xpi [2014-06-29]

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-05-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-05-09] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [123984 2014-05-14] (Avira Operations GmbH & Co. KG)
R2 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S3 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21007192 2014-04-30] (NVIDIA Corporation)
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1716264 2014-04-30] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-04-30] (pdfforge GmbH)
R2 regini64; C:\Windows\system32\docpropd.exe [119296 2014-06-23] () [File not signed]
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2081752 2014-04-25] (Safer-Networking Ltd.)
S4 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-03-29] (VIA Technologies, Inc.)
S2 LckFldService; C:\Windows\system32\LckFldService.exe [X]

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [112080 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [738472 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2014-04-16] (COMODO)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105552 2014-04-16] (COMODO)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18776 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 SMIGrabber3C; C:\Windows\System32\Drivers\SmiUsbGrabber3C.sys [828152 2011-04-07] (Windows (R) Win 7 DDK provider)
R1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [199752 2011-11-21] (1&1 Internet AG)
S1 {16d667ee-6782-4b21-81df-8ded8ebc3868}w64; system32\drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys [X]

A-Man · 29.06.2014, 11:33

FRST.txt_Teil 2

Code:

ATTFilter

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-29 12:00 - 2014-06-29 12:01 - 00011595 _____ () C:\Users\xxxx\Desktop\FRST.txt
2014-06-29 11:59 - 2014-06-29 11:59 - 00008095 _____ () C:\Users\xxxx\Desktop\zoek-results.txt
2014-06-29 11:54 - 2014-06-29 10:43 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-29 10:44 - 2014-06-29 10:38 - 00000419 _____ () C:\zoek-results2014-06-29-083820.log
2014-06-29 10:42 - 2014-06-29 10:42 - 00000078 _____ () C:\Users\xxxx\Desktop\script.txt
2014-06-29 10:38 - 2014-06-29 11:56 - 00008094 _____ () C:\zoek-results.log
2014-06-29 10:36 - 2014-06-29 11:21 - 00000000 ____D () C:\zoek_backup
2014-06-29 10:25 - 2014-06-29 10:25 - 00001157 _____ () C:\Users\xxxx\Desktop\mbam.txt
2014-06-29 10:07 - 2014-06-29 10:07 - 00001218 _____ () C:\Users\xxxx\Desktop\AdwCleaner[S3].txt
2014-06-29 10:02 - 2014-06-29 10:02 - 01285120 _____ () C:\Users\xxxx\Desktop\zoek.exe
2014-06-28 18:15 - 2014-06-28 18:15 - 00000000 ___SD () C:\32788R22FWJFW
2014-06-27 22:17 - 2014-06-29 12:00 - 00000000 ____D () C:\FRST
2014-06-27 22:15 - 2014-06-27 22:15 - 02083328 _____ (Farbar) C:\Users\xxxx\Desktop\FRST64.exe
2014-06-27 21:36 - 2014-06-27 21:36 - 00000000 ____D () C:\Windows\ERUNT
2014-06-27 19:12 - 2014-06-27 19:12 - 05126408 _____ (JAM Software ) C:\Users\xxxx\Desktop\UltraSearch-x64-Setup.exe
2014-06-27 19:04 - 2014-06-29 10:24 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-27 19:04 - 2014-06-27 19:04 - 00001102 _____ () C:\Users\xxxx\Desktop\Malwarebytes.lnk
2014-06-27 19:04 - 2014-06-27 19:04 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-27 19:04 - 2014-06-27 19:04 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-27 19:04 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-27 19:04 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-27 19:04 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-27 17:40 - 2009-06-10 23:00 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20140627-174016.backup
2014-06-27 14:28 - 2014-06-29 10:08 - 00000000 ____D () C:\AdwCleaner
2014-06-27 14:28 - 2014-06-29 10:01 - 01342659 _____ () C:\Users\xxxx\Desktop\adwcleaner_3.213.exe
2014-06-27 13:08 - 2014-06-27 13:08 - 00001214 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2014-06-27 13:07 - 2014-06-27 13:08 - 00000000 ____D () C:\Program Files (x86)\VIA
2014-06-27 13:07 - 2014-06-27 13:07 - 00001769 _____ () C:\Windows\Language_trs.ini
2014-06-27 13:07 - 2007-04-11 15:35 - 00414632 ____N (Microsoft Corporation) C:\Windows\difxapi.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 02157680 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viahduaa.sys
2014-06-27 13:06 - 2011-03-29 10:04 - 01161328 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaKaraokeApo.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00994416 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIAPropPageExt.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00556144 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIASysFx.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00248944 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Dts2APO.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00202864 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaMicArrayAPO.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00116848 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaKaraokePropPageExt.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00091760 _____ (VIA Technologies, Inc.) C:\Windows\system32\Dts2PropPageExt.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00087152 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaMicArrayPropPageExt.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00027760 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViakaraokeSrv.exe
2014-06-27 13:06 - 2007-12-04 11:28 - 00086016 _____ (QSound Labs, Inc.) C:\Windows\system32\nQPropPageExt.dll
2014-06-27 13:06 - 2007-12-04 11:28 - 00082432 _____ (QSound Labs, Inc.) C:\Windows\system32\nQAPO.dll
2014-06-27 12:59 - 2014-06-27 12:59 - 00001102 _____ () C:\Users\Administrator\Desktop\EVEREST Home Edition.lnk
2014-06-27 12:59 - 2014-06-27 12:59 - 00000000 ____D () C:\Program Files (x86)\Lavalys
2014-06-27 09:40 - 2014-06-27 09:40 - 00260940 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2014-06-27 09:37 - 2014-06-29 10:21 - 00000728 __RSH () C:\ProgramData\ntuser.pol
2014-06-26 13:40 - 2014-06-26 13:40 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:40 - 2014-06-26 13:40 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Windows\system32\Macromed
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Macromedia
2014-06-26 13:24 - 2014-06-26 13:24 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-26 13:24 - 2014-06-26 13:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Mozilla
2014-06-26 13:24 - 2014-06-26 13:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-26 13:23 - 2014-06-26 13:23 - 00284288 _____ (Mozilla) C:\Users\xxxx\Downloads\Firefox Setup Stub 30.0.exe
2014-06-26 13:22 - 2014-06-26 13:22 - 00000000 __SHD () C:\Users\xxxx\AppData\Local\EmieUserList
2014-06-26 13:22 - 2014-06-26 13:22 - 00000000 __SHD () C:\Users\xxxx\AppData\Local\EmieSiteList
2014-06-26 11:27 - 2014-06-26 11:27 - 00000000 ___HD () C:\ProgramData\CanonIJScan
2014-06-26 09:01 - 2009-12-19 11:18 - 02395648 _____ (AD © 2009) C:\Windows\SysWOW64\SYNSOEMU.DLL
2014-06-25 23:09 - 2014-06-25 23:09 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\NVIDIA
2014-06-25 23:02 - 2014-06-25 23:02 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Publish Providers
2014-06-25 12:46 - 2014-06-25 12:46 - 00000000 ____D () C:\Users\xxxx\Documents\MAGIX
2014-06-25 12:45 - 2014-06-25 12:45 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-06-25 12:01 - 2014-06-25 12:46 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MAGIX
2014-06-25 12:01 - 2014-06-25 12:02 - 00000240 _____ () C:\Windows\DirectX.log
2014-06-25 12:00 - 2014-06-25 13:01 - 00000000 ____D () C:\ProgramData\MAGIX
2014-06-25 12:00 - 2014-06-25 12:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2014-06-25 12:00 - 2005-04-09 22:05 - 00027807 _____ () C:\Windows\SysWOW64\mgxcdr.txt
2014-06-25 12:00 - 2003-04-18 16:29 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll
2014-06-25 11:59 - 2014-06-25 12:58 - 00000000 ____D () C:\Program Files (x86)\MAGIX
2014-06-25 11:59 - 2007-04-27 10:43 - 00120200 _____ () C:\Windows\SysWOW64\DLLDEV32i.dll
2014-06-25 11:54 - 2014-06-25 11:54 - 00003168 _____ () C:\Windows\System32\Tasks\{3D28321F-66C2-4348-AE67-FCC9F4612ED5}
2014-06-25 11:29 - 2014-06-25 11:29 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\Users\xxxx\Documents\PDF Architect 2
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\Program Files (x86)\PDF Architect 2
2014-06-24 17:44 - 2014-04-25 17:44 - 00662288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCT2.OCX
2014-06-24 17:44 - 2014-04-25 17:44 - 00137000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMAPI32.OCX
2014-06-24 17:44 - 2014-04-25 17:44 - 00110264 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2014-06-24 17:44 - 2014-04-25 17:44 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPIDE.DLL
2014-06-24 17:44 - 1998-07-06 18:55 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCMCDE.DLL
2014-06-24 17:44 - 1998-07-06 18:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCC2DE.DLL
2014-06-24 16:04 - 2014-06-24 17:46 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-06-24 16:04 - 2005-03-12 00:07 - 00087040 _____ () C:\Windows\system32\pdfcmnnt.dll
2014-06-24 16:04 - 1998-07-06 17:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB6DE.DLL
2014-06-24 15:17 - 2014-06-24 15:17 - 00072184 _____ () C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-24 15:17 - 2014-06-24 15:17 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-06-24 15:17 - 2014-06-24 15:17 - 00001417 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-24 15:17 - 2014-06-24 15:17 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Adobe
2014-06-24 15:16 - 2014-06-24 15:18 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2014-06-24 15:16 - 2014-06-24 15:17 - 00000000 ____D () C:\Users\Administrator
2014-06-24 15:16 - 2014-06-24 15:16 - 00000020 ___SH () C:\Users\Administrator\ntuser.ini
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Vorlagen
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Startmenü
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Netzwerkumgebung
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Lokale Einstellungen
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Eigene Dateien
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Druckumgebung
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Documents\Eigene Musik
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Documents\Eigene Bilder
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Verlauf
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Anwendungsdaten
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA
2014-06-24 15:16 - 2014-06-16 20:02 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Macromedia
2014-06-24 15:16 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-24 15:16 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-24 13:17 - 2014-06-24 13:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5300 series
2014-06-24 13:17 - 2014-06-24 13:17 - 00000000 ____D () C:\ProgramData\Canon IJ Network Tool
2014-06-24 13:17 - 2011-03-31 10:07 - 00114688 _____ (CANON INC.) C:\Windows\SysWOW64\CNC_ATU.dll
2014-06-24 13:17 - 2011-03-30 12:54 - 00323584 _____ (CANON INC.) C:\Windows\SysWOW64\CNC_ATL.dll
2014-06-24 13:17 - 2010-11-12 11:13 - 00068096 _____ () C:\Windows\SysWOW64\CNC1754D.TBL
2014-06-24 13:17 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\Windows\SysWOW64\CNHMCA.dll
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ___HD () C:\Program Files\CanonBJ
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ____D () C:\Windows\SysWOW64\STRING
2014-06-24 13:16 - 2011-03-31 10:07 - 00302080 _____ (CANON INC.) C:\Windows\system32\CNC_ATC.dll
2014-06-24 13:16 - 2011-03-31 10:06 - 00112128 _____ (CANON INC.) C:\Windows\system32\CNC_ATI.dll
2014-06-24 13:16 - 2011-03-30 12:55 - 00373248 _____ (CANON INC.) C:\Windows\system32\CNC_ATL.dll
2014-06-24 13:16 - 2010-11-18 15:15 - 00098304 _____ (Canon Inc.) C:\Windows\system32\CNC_ATO.dll
2014-06-24 13:02 - 2014-06-24 13:02 - 00000000 ____D () C:\Windows\system32\STRING
2014-06-24 13:02 - 2012-06-14 17:18 - 00366592 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL
2014-06-24 13:02 - 2012-06-14 17:18 - 00359936 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL
2014-06-24 13:02 - 2012-06-14 17:18 - 00039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL
2014-06-23 17:42 - 2014-06-25 11:04 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Mp3tag
2014-06-23 16:33 - 2014-06-23 16:33 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\VirtualSafe
2014-06-23 16:32 - 2014-06-23 16:32 - 00119296 _____ () C:\Windows\system32\docpropd.exe
2014-06-23 15:00 - 2014-06-25 10:25 - 00000676 _____ () C:\Windows\Clean! presets.set
2014-06-23 14:50 - 2014-06-23 14:50 - 00000000 ____D () C:\Users\xxxx\Documents\Clean
2014-06-23 14:44 - 2014-06-23 14:44 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pinnacle Clean 5
2014-06-23 14:44 - 2014-06-23 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Clean 5
2014-06-23 14:43 - 2003-08-28 11:47 - 00396800 _____ () C:\Windows\SysWOW64\PSDrvCheck.exe
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.NLD
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.NL
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.ITA
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.IT
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.FRA
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.FR
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.DEU
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.DE
2014-06-23 14:43 - 2003-08-28 11:47 - 00026112 _____ () C:\Windows\SysWOW64\PSDrvCheck.CHT
2014-06-23 14:43 - 2003-08-28 11:47 - 00016896 _____ () C:\Windows\SysWOW64\PSDrvCheck.KOR
2014-06-23 14:43 - 2003-08-28 11:47 - 00016896 _____ () C:\Windows\SysWOW64\PSDrvCheck.ESP
2014-06-23 14:43 - 2003-08-28 11:47 - 00016896 _____ () C:\Windows\SysWOW64\PSDrvCheck.ES
2014-06-23 14:43 - 2003-08-28 11:47 - 00016384 _____ () C:\Windows\SysWOW64\PSDrvCheck.CHS
2014-06-23 14:43 - 2000-09-07 15:06 - 01441792 _____ (Intel Corp.) C:\Windows\SysWOW64\nspw7.dll
2014-06-23 14:43 - 2000-09-07 15:06 - 01429504 _____ (Intel Corp.) C:\Windows\SysWOW64\nspa6.dll
2014-06-23 14:43 - 2000-09-07 15:06 - 01404928 _____ (Intel Corp.) C:\Windows\SysWOW64\nspm6.dll
2014-06-23 14:43 - 2000-09-07 15:06 - 01335296 _____ (Intel Corp.) C:\Windows\SysWOW64\nspm5.dll
2014-06-23 14:43 - 2000-09-07 15:06 - 01318912 _____ (Intel Corp.) C:\Windows\SysWOW64\nspp6.dll
2014-06-23 14:43 - 2000-09-07 15:05 - 01306624 _____ (Intel Corp.) C:\Windows\SysWOW64\nsppx.dll
2014-06-23 14:43 - 2000-09-07 15:04 - 00114688 _____ (Intel Corp.) C:\Windows\SysWOW64\nsp.dll
2014-06-23 14:42 - 2014-06-23 14:43 - 00000000 ____D () C:\Program Files (x86)\Pinnacle
2014-06-23 14:42 - 1999-03-17 00:00 - 00019968 _____ () C:\Windows\SysWOW64\Cpuinf32.dll
2014-06-23 14:11 - 2014-06-23 14:11 - 00000000 ____D () C:\Program Files (x86)\lame3.99.5
2014-06-23 14:00 - 2014-06-27 17:16 - 00000000 ____D () C:\temp
2014-06-23 13:57 - 2014-06-23 13:57 - 00002892 _____ () C:\Windows\SysWOW64\audcon.sys
2014-06-23 13:57 - 2014-06-23 13:57 - 00000000 ____D () C:\ProgramData\Syncrosoft
2014-06-23 13:56 - 2014-06-23 13:57 - 00004906 _____ () C:\Windows\DPINST.LOG
2014-06-23 13:56 - 2014-06-23 13:56 - 00000051 _____ () C:\Windows\SysWOW64\SYNSOPOS.exe.cfg
2014-06-23 13:56 - 2014-06-23 13:56 - 00000000 ____D () C:\Program Files (x86)\Syncrosoft
2014-06-23 13:56 - 2010-09-17 13:27 - 00147425 _____ () C:\Windows\SysWOW64\SYNSOACC-Aide.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00147425 _____ () C:\Windows\system32\SYNSOACC-Aide.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00120468 _____ () C:\Windows\SysWOW64\SYNSOACC-Hilfe.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00120468 _____ () C:\Windows\system32\SYNSOACC-Hilfe.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00114279 _____ () C:\Windows\SysWOW64\SYNSOACC-Help.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00114279 _____ () C:\Windows\system32\SYNSOACC-Help.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00086016 _____ () C:\Windows\SysWOW64\SYNSOPOS.exe
2014-06-23 13:04 - 2014-06-23 13:04 - 00002972 _____ () C:\Windows\System32\Tasks\{E7CF0C0C-9716-4B21-A345-A171BC26BB67}
2014-06-23 13:04 - 2014-06-23 13:04 - 00002972 _____ () C:\Windows\System32\Tasks\{638CBEF3-639D-49C6-A906-84DACD14C3AF}
2014-06-23 13:03 - 2014-06-23 13:03 - 00002972 _____ () C:\Windows\System32\Tasks\{D2B06B89-8163-48A4-8A66-0A8712E5C08E}
2014-06-23 13:02 - 2014-06-23 13:02 - 00002972 _____ () C:\Windows\System32\Tasks\{98E87D83-260C-4ADD-8C61-756470853393}
2014-06-19 19:35 - 2014-06-19 23:28 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Audacity
2014-06-19 19:34 - 2014-06-19 19:34 - 00001019 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-06-19 19:34 - 2014-06-19 19:34 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-06-19 12:59 - 2014-06-19 12:59 - 00001174 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-06-19 12:59 - 2014-06-19 12:59 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-19 01:00 - 2010-11-12 11:13 - 00068096 _____ () C:\Windows\system32\CNC1754D.TBL
2014-06-19 01:00 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.dll
2014-06-19 00:46 - 2014-06-19 00:46 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Canon Easy-PhotoPrint EX
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ___HD () C:\ProgramData\CanonIJEPPEX2
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ___HD () C:\ProgramData\CanonEPP
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ____D () C:\Program Files\Canon
2014-06-19 00:36 - 2014-06-24 13:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2014-06-19 00:36 - 2014-06-24 13:51 - 00000000 ____D () C:\Program Files (x86)\Canon
2014-06-19 00:00 - 2014-06-19 00:00 - 00000000 ____D () C:\Windows\pss
2014-06-18 16:18 - 2014-06-19 13:30 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\TeamViewer
2014-06-18 15:24 - 2014-06-18 15:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\Users\xxxx\AppData\Local\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\ProgramData\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\Program Files (x86)\1&1
2014-06-18 14:32 - 2011-11-21 12:52 - 00199752 _____ (1&1 Internet AG) C:\Windows\system32\Drivers\ui11rdr.SYS
2014-06-18 14:32 - 2011-11-21 12:52 - 00011776 _____ (1&1 Internet AG) C:\Windows\system32\ui11np.dll
2014-06-18 14:32 - 2011-11-21 12:52 - 00007680 _____ (1&1 Internet AG) C:\Windows\SysWOW64\ui11np.dll
2014-06-18 13:15 - 2014-06-18 13:15 - 00000000 ____D () C:\ProgramData\Pinnacle
2014-06-18 09:58 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-18 09:58 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-18 09:57 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-18 09:57 - 2013-12-25 01:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-06-18 09:57 - 2013-12-25 00:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-06-18 09:57 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-06-18 09:57 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-06-17 23:42 - 2014-06-17 23:42 - 00005255 _____ () C:\Windows\LDPINST.LOG
2014-06-17 13:43 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-06-17 13:43 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-06-17 13:43 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-06-17 13:43 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-06-17 13:43 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-06-17 13:43 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-06-17 13:42 - 2014-06-18 13:44 - 00000000 ____D () C:\Users\xxxx\AppData\Local\NVIDIA Corporation
2014-06-17 13:42 - 2014-06-17 13:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-06-17 13:42 - 2014-04-30 20:27 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-06-17 13:42 - 2014-04-30 20:26 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-06-17 13:41 - 2014-05-20 01:10 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-06-17 13:41 - 2014-05-15 01:49 - 03774821 _____ () C:\Windows\system32\nvcoproc.bin
2014-06-17 13:39 - 2014-05-20 04:44 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-06-17 13:39 - 2014-05-20 04:44 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-06-17 13:39 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-06-17 13:39 - 2014-03-31 18:42 - 00037320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-06-17 13:39 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-06-17 13:37 - 2014-06-17 13:37 - 00000000 ____D () C:\NVIDIA
2014-06-17 13:32 - 2014-06-17 13:32 - 00000403 _____ () C:\Windows\ODBC.INI
2014-06-17 13:31 - 2014-06-17 13:31 - 00002715 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Excel.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00002703 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00002675 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Word.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Windows\ShellNew
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Windows\Msagent
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft Web Folders
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-06-17 13:21 - 2014-06-26 13:15 - 00000000 ____D () C:\Users\xxxx\AppData\Local\NVIDIA
2014-06-17 12:56 - 2014-06-17 12:58 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-17 12:56 - 2014-06-01 17:17 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-17 12:54 - 2013-05-10 07:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-06-17 12:54 - 2013-05-10 07:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-06-17 12:54 - 2013-05-10 06:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-06-17 12:54 - 2013-05-10 06:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-06-17 12:42 - 2014-06-19 11:38 - 01591896 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-06-17 12:29 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-06-17 12:21 - 2014-06-17 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-17 12:21 - 2014-06-17 12:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-17 12:21 - 2014-06-17 12:21 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-17 12:21 - 2014-06-17 12:21 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-17 12:21 - 2014-06-17 12:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-06-17 12:21 - 2014-06-17 12:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-06-17 12:21 - 2014-06-17 12:21 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-06-17 12:21 - 2014-06-17 12:21 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-06-17 12:21 - 2014-06-17 12:21 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00266456 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00240856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-06-17 12:21 - 2014-06-17 12:21 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-06-17 12:21 - 2014-06-17 12:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-17 12:16 - 2014-06-17 12:29 - 00015304 _____ () C:\Windows\IE11_main.log
2014-06-17 12:11 - 2014-06-29 11:55 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-17 12:11 - 2014-06-17 13:42 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-06-17 12:11 - 2014-05-20 04:44 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-06-17 12:11 - 2014-05-20 04:44 - 00052056 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-06-17 12:11 - 2014-05-20 03:25 - 06769096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-06-17 12:11 - 2014-05-20 03:25 - 03514144 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-06-17 12:11 - 2014-05-20 03:25 - 02560968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-06-17 12:11 - 2014-05-20 03:25 - 00927520 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-06-17 12:11 - 2014-05-20 03:25 - 00387528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-06-17 12:11 - 2014-05-20 03:25 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-06-17 12:10 - 2014-06-18 13:44 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-06-17 12:10 - 2014-06-17 13:42 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-06-17 12:05 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-06-17 12:05 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-06-17 12:05 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-06-17 12:05 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-06-17 12:05 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-06-17 12:05 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-06-17 12:05 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-06-17 12:05 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-06-17 12:05 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-06-17 12:05 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-06-17 12:05 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-06-17 12:05 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-06-17 12:05 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-06-17 12:05 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-06-17 12:05 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-06-17 12:05 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-06-17 12:05 - 2013-10-01 22:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-06-17 12:05 - 2013-10-01 22:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-06-17 11:32 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-06-17 11:32 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-06-17 11:32 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-06-17 11:32 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-06-17 11:32 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-06-17 11:27 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2014-06-17 11:04 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-06-17 11:04 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-06-17 11:04 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-06-17 11:04 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-06-17 11:04 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-06-17 11:04 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-06-17 11:04 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-06-17 11:04 - 2012-06-02 16:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-06-17 10:57 - 2013-01-13 23:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-06-17 10:57 - 2013-01-13 22:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-06-17 10:57 - 2013-01-13 22:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-06-17 10:57 - 2013-01-13 21:59 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-06-17 10:57 - 2013-01-13 21:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-06-17 10:57 - 2013-01-13 21:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-06-17 10:57 - 2013-01-13 21:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-06-17 10:57 - 2013-01-13 21:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-06-17 10:57 - 2013-01-13 21:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-06-17 10:57 - 2013-01-13 21:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-06-17 10:57 - 2013-01-13 21:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-06-17 10:57 - 2013-01-13 21:43 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-06-17 10:57 - 2013-01-13 21:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-06-17 10:57 - 2013-01-13 21:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-06-17 10:57 - 2013-01-13 21:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-06-17 10:57 - 2013-01-13 21:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-06-17 10:57 - 2013-01-13 21:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-06-17 10:57 - 2013-01-13 21:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-06-17 10:57 - 2013-01-13 21:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-06-17 10:57 - 2013-01-13 21:15 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-06-17 10:57 - 2013-01-13 21:02 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-06-17 10:57 - 2013-01-13 20:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-06-17 10:57 - 2013-01-13 20:32 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-06-17 10:57 - 2013-01-13 20:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-06-17 10:57 - 2013-01-13 19:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-06-17 10:57 - 2013-01-13 19:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-06-17 10:57 - 2013-01-04 08:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-06-17 10:57 - 2013-01-04 08:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-06-17 10:53 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-06-17 10:53 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-06-17 10:53 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-06-17 10:46 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-06-17 10:46 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-06-17 10:46 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-06-17 10:46 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-06-17 10:46 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2014-06-17 10:45 - 2014-01-01 01:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-06-17 10:45 - 2014-01-01 01:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-06-17 10:45 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-06-17 10:45 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-06-17 10:45 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-06-17 10:45 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-06-17 10:45 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-06-17 10:45 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-06-17 10:45 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-06-17 10:45 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-06-17 10:45 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-06-17 10:45 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-06-17 10:45 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-06-17 10:45 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-06-17 10:45 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-06-17 10:45 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-06-17 10:45 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-06-17 10:45 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-06-17 10:45 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-06-17 10:45 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-06-17 10:45 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-06-17 10:45 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-06-17 10:45 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-06-17 10:45 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-06-17 10:45 - 2013-10-04 04:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-06-17 10:45 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-06-17 10:45 - 2013-10-04 03:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-06-17 10:45 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-06-17 10:45 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-06-17 10:45 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-06-17 10:45 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-06-17 10:45 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-06-17 10:45 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-06-17 10:45 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-06-17 10:45 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-06-17 10:45 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-06-17 10:45 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-06-17 10:45 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-06-17 10:45 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-06-17 10:45 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-06-17 10:45 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-06-17 10:45 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-06-17 10:45 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-06-17 10:45 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-06-17 10:45 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-06-17 10:45 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-06-17 10:45 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-06-17 10:45 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-06-17 10:45 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-06-17 10:45 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-06-17 10:45 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-06-17 10:45 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-06-17 10:45 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-06-17 10:45 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-06-17 10:45 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-06-17 10:45 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-06-17 10:45 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-06-17 10:45 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-06-17 10:45 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-06-17 10:45 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-06-17 10:45 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-06-17 10:45 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-06-17 10:45 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-06-17 10:45 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-06-17 10:45 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-06-17 10:45 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-06-17 10:45 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-06-17 10:45 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-06-17 10:45 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-06-17 10:45 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-06-17 10:45 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-06-17 10:45 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-06-17 10:45 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-06-17 10:45 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-06-17 10:45 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-06-17 10:45 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-06-17 10:45 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-06-17 10:45 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-06-17 10:45 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-06-17 10:45 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-06-17 10:45 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-06-17 10:45 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-06-17 10:44 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-06-17 10:44 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-06-17 10:44 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-06-17 10:44 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-06-17 10:44 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-06-17 10:44 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-06-17 10:44 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-06-17 10:44 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-06-17 10:44 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-06-17 10:44 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-06-17 10:44 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-06-17 10:44 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-06-17 10:44 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-06-17 10:44 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-06-17 10:44 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-06-17 10:44 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-06-17 10:44 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-06-17 10:44 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-06-17 10:44 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-06-17 10:44 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-06-17 10:44 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-06-17 10:44 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-06-17 10:44 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-06-17 10:44 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-06-17 10:44 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-06-17 10:44 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-06-17 10:40 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-06-17 10:13 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-06-17 10:13 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-06-17 10:13 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-06-17 10:13 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-06-17 10:13 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-06-17 10:13 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-06-17 10:13 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-06-17 10:13 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-06-17 10:13 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-06-17 10:13 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-06-17 10:13 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-06-17 10:13 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-06-17 10:13 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-06-17 10:12 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-17 10:12 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-17 10:12 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-06-17 10:12 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-06-17 10:12 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-06-17 10:12 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-06-17 10:12 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-06-17 10:12 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-06-17 10:12 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-06-17 10:12 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-06-17 10:12 - 2011-10-26 07:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-06-17 10:12 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-06-17 10:12 - 2011-07-09 04:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-06-17 10:12 - 2011-04-27 04:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-06-17 10:12 - 2011-04-27 04:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-06-17 10:12 - 2010-12-23 12:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-06-17 10:12 - 2010-12-23 12:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-06-17 10:12 - 2010-12-23 12:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-06-17 10:12 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-06-17 10:12 - 2010-12-23 07:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-06-17 10:12 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-06-17 10:11 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-17 10:11 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-17 10:11 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-17 10:11 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-17 10:11 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-17 10:11 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-17 10:11 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-17 10:11 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-17 10:11 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-17 10:11 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-17 10:11 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-06-17 10:11 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-06-17 10:11 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-06-17 10:11 - 2013-11-12 04:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-06-17 10:11 - 2013-11-12 04:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-06-17 10:11 - 2013-10-19 04:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-06-17 10:11 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-06-17 10:11 - 2013-10-05 22:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-06-17 10:11 - 2013-10-05 21:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-06-17 10:11 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-06-17 10:11 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-06-17 10:11 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-06-17 10:11 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-06-17 10:10 - 2014-02-07 03:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-06-17 10:10 - 2013-10-04 04:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-06-17 10:10 - 2013-10-04 03:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-06-17 10:10 - 2013-09-28 03:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-06-17 10:09 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-06-17 10:09 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-06-17 10:09 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-06-17 10:09 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-06-17 10:09 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-06-17 10:09 - 2013-07-03 06:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2014-06-17 10:09 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-06-17 10:09 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-06-17 10:09 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-06-17 10:09 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-06-17 10:09 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-06-17 10:09 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-06-17 10:09 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-06-17 10:09 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-06-17 10:09 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-06-17 10:09 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-06-17 10:09 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-06-17 10:09 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-06-17 10:09 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-06-17 10:09 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-06-17 10:09 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-06-17 10:09 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-06-17 10:09 - 2012-11-29 00:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-06-17 10:09 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-06-17 10:09 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-06-17 10:09 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-06-17 10:09 - 2011-03-11 08:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-06-17 10:09 - 2011-03-11 08:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-06-17 10:09 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-06-17 10:09 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-06-17 10:09 - 2011-03-03 08:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-06-17 10:09 - 2011-03-03 08:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-06-17 10:09 - 2011-03-03 08:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-06-17 10:09 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-06-17 10:09 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-06-17 10:08 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-06-17 10:08 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-06-17 10:08 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-06-17 10:08 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-06-17 10:08 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-06-17 10:08 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-06-17 10:08 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-06-17 10:08 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-06-17 10:08 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-06-17 10:08 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-06-17 10:08 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-06-17 10:08 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-06-17 10:08 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-06-17 10:08 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-06-17 10:08 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-06-17 10:08 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-06-17 10:08 - 2013-09-25 04:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-06-17 10:08 - 2013-09-25 03:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-06-17 10:08 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-06-17 10:08 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-06-17 10:08 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-06-17 10:08 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-06-17 10:08 - 2013-07-04 14:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-06-17 10:08 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-06-17 10:08 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-06-17 10:07 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-06-17 10:07 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-06-17 10:07 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-06-17 10:07 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-06-17 10:07 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-06-17 10:07 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-06-17 10:07 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-06-17 10:07 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-06-17 10:07 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-06-17 10:07 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-06-17 10:06 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-06-17 10:06 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-06-17 10:06 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-06-17 10:06 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-06-17 10:06 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-06-17 10:06 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-06-17 10:06 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-06-17 10:06 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-06-17 10:06 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-06-17 10:06 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-06-17 10:06 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-06-17 10:06 - 2014-02-04 04:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-06-17 10:06 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-06-17 10:06 - 2013-10-03 04:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-17 10:06 - 2013-10-03 04:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-06-17 10:06 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-06-17 10:06 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-06-17 10:06 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-06-17 10:06 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-06-17 10:06 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-17 10:06 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-06-17 10:06 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-06-17 10:06 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-06-17 10:06 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-06-17 10:06 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-06-17 10:06 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-06-17 10:06 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-06-17 10:06 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-06-17 10:06 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-06-17 10:06 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-06-17 10:06 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-06-17 10:06 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-06-17 10:06 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-06-17 10:06 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-06-17 10:06 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-06-17 10:06 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-06-17 10:06 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-06-17 10:06 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-06-17 10:06 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-06-17 10:06 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-06-17 10:06 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-06-17 10:06 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-06-17 10:06 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-06-17 10:06 - 2011-02-05 19:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-06-17 10:06 - 2011-02-05 19:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-06-17 10:06 - 2011-02-05 19:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-06-17 10:06 - 2011-02-05 19:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-06-17 10:06 - 2011-02-05 19:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-06-17 10:06 - 2011-02-05 19:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-06-17 10:06 - 2011-02-05 19:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-06-17 10:05 - 2013-10-12 04:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-06-17 10:05 - 2013-10-12 04:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-06-17 10:05 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-06-17 10:05 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-06-17 10:05 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-06-17 10:05 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-06-17 10:05 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-06-17 10:05 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-06-17 10:05 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-06-17 10:05 - 2013-10-12 03:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-06-17 10:05 - 2013-10-12 03:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-06-17 10:05 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-06-17 10:05 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-06-17 10:05 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-06-17 10:05 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-06-17 10:05 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-06-17 10:05 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-06-17 10:05 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-06-17 10:05 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-06-17 10:05 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-06-17 10:05 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-06-17 10:05 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-06-17 10:05 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-06-17 10:05 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-06-17 10:05 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-06-17 10:05 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-06-17 10:05 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-06-17 10:05 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-06-17 10:05 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-06-17 10:05 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-06-17 02:05 - 2014-06-17 02:06 - 00002108 _____ () C:\Users\xxxx\Desktop\restart.lnk
2014-06-17 01:57 - 2014-06-29 11:55 - 00013153 _____ () C:\Windows\setupact.log
2014-06-17 01:57 - 2014-06-29 11:54 - 00121658 _____ () C:\Windows\PFRO.log
2014-06-17 01:57 - 2014-06-17 01:57 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-17 01:53 - 2014-06-17 02:06 - 00002108 _____ () C:\Users\xxxx\Desktop\down.lnk
2014-06-17 01:06 - 2014-06-17 01:06 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-17 01:06 - 2014-06-17 01:06 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-17 00:53 - 2014-06-17 00:53 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-06-17 00:31 - 2014-06-26 11:27 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Canon
2014-06-17 00:31 - 2014-06-19 00:47 - 00000000 ____D () C:\ProgramData\CanonIJWSpt
2014-06-17 00:24 - 2014-06-17 00:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-06-17 00:23 - 2014-06-17 00:23 - 00000000 ____D () C:\Program Files (x86)\FreeTime
2014-06-17 00:14 - 2014-06-17 00:18 - 00000000 ____D () C:\Program Files\Registry System Wizard.NET
2014-06-17 00:14 - 2014-06-17 00:14 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\WinFAQ
2014-06-17 00:14 - 2006-07-11 21:45 - 00001767 _____ () C:\Windows\system32\RSWIcon.icl
2014-06-17 00:11 - 2014-06-17 00:11 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\COWON
2014-06-17 00:10 - 2014-06-27 13:08 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-17 00:10 - 2014-06-17 00:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jetAudio
2014-06-17 00:10 - 2014-06-17 00:10 - 00000000 ____D () C:\Program Files (x86)\JetAudio
2014-06-17 00:00 - 2014-06-17 00:00 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Collectorz.com
2014-06-16 23:59 - 2014-06-24 19:30 - 00000000 ____D () C:\Users\xxxx\Documents\Music Collector
2014-06-16 23:59 - 2014-06-16 23:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Collectorz.com
2014-06-16 23:59 - 2014-06-16 23:59 - 00000000 ____D () C:\Program Files (x86)\Collectorz.com
2014-06-16 23:53 - 2014-06-16 23:55 - 00000000 ____D () C:\Program Files (x86)\IZArc
2014-06-16 23:37 - 1998-10-29 16:45 - 00306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2014-06-16 23:35 - 2014-06-26 09:05 - 00000000 ____D () C:\Program Files (x86)\Steinberg
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\Windows\System32\Tasks\COMODO
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\Program Files\COMODO
2014-06-16 23:19 - 2014-06-16 23:19 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-06-16 23:17 - 2014-06-16 23:20 - 00000000 ____D () C:\ProgramData\Comodo
2014-06-16 20:39 - 2014-06-17 13:19 - 00000000 ____D () C:\Windows\Panther
2014-06-16 20:38 - 2014-06-16 20:38 - 00000000 ____D () C:\Hotfix
2014-06-16 20:38 - 2011-02-16 04:16 - 00000029 ___RH () C:\Windows\version
2014-06-16 20:38 - 2011-02-16 04:16 - 00000013 ____R () C:\Windows\csup.txt
2014-06-16 20:37 - 2014-06-29 10:42 - 00698810 _____ () C:\Windows\system32\perfh007.dat
2014-06-16 20:37 - 2014-06-29 10:42 - 00148950 _____ () C:\Windows\system32\perfc007.dat
2014-06-16 20:37 - 2014-06-16 20:37 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-06-16 20:37 - 2014-06-16 20:37 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\de
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\0407
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\system32\de
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\system32\0407
2014-06-16 20:14 - 2014-06-16 20:22 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MyPhoneExplorer
2014-06-16 20:13 - 2014-06-16 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2014-06-16 20:13 - 2014-06-16 20:13 - 00000000 ____D () C:\Program Files (x86)\MyPhoneExplorer
2014-06-16 20:10 - 2014-06-16 20:10 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MPC-HC
2014-06-16 20:10 - 2014-06-16 20:10 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-16 20:10 - 2013-12-01 14:10 - 00257624 _____ () C:\Windows\system32\unrar64.dll
2014-06-16 20:10 - 2013-12-01 14:10 - 00218200 _____ () C:\Windows\SysWOW64\unrar.dll
2014-06-16 20:04 - 2014-06-16 20:04 - 00000000 ____D () C:\Users\Public\Documents\{F0489EF2-D393-4114-85BA-A94D71D89543}
2014-06-16 20:03 - 2014-06-16 20:03 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\com.Rhapsody.Napster5
2014-06-16 20:02 - 2014-06-16 20:02 - 00000893 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Napster 5.lnk
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\ProgramData\Adobe
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Program Files (x86)\Napster 5
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Macromedia
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Adobe
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Adobe
2014-06-16 19:52 - 2014-06-16 19:52 - 00000355 _____ () C:\Users\xxxx\Desktop\Netzwerk.lnk
2014-06-16 19:45 - 2014-06-16 19:45 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\xp-AntiSpy
2014-06-16 19:45 - 2014-06-16 19:45 - 00000000 ____D () C:\Program Files (x86)\xp-AntiSpy
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Thunderbird
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Thunderbird
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-06-16 18:48 - 2009-06-10 23:00 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20140616-184858.backup
2014-06-16 18:38 - 2014-06-18 17:20 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-16 18:38 - 2014-06-16 18:42 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-06-16 18:38 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-06-16 17:39 - 2014-06-16 17:39 - 00000000 ____D () C:\Users\Public\Documents\Logishrd
2014-06-16 17:38 - 2014-06-17 23:43 - 00000000 ____D () C:\ProgramData\Logishrd
2014-06-16 17:38 - 2014-06-16 17:39 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Logitech
2014-06-16 17:38 - 2014-06-16 17:38 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Logishrd
2014-06-16 17:27 - 2014-06-16 17:27 - 00003134 _____ () C:\Windows\System32\Tasks\{2C090209-A6BE-44FA-9EB4-83AE253D29C7}
2014-06-16 16:09 - 2014-06-19 16:40 - 00000000 _____ () C:\Windows\SysWOW64\mslck.dat
2014-06-16 16:09 - 2014-06-16 16:09 - 00000032 _____ () C:\Windows\SysWOW64\Mlkf.dll
2014-06-16 16:07 - 2014-06-16 16:07 - 00006225 _____ () C:\Windows\SysWOW64\FldLckINSTALL.LOG
2014-06-16 16:07 - 2014-06-16 16:07 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Folder Access
2014-06-16 16:07 - 2014-06-16 16:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Access
2014-06-16 16:07 - 2004-02-01 22:54 - 00569368 _____ () C:\Windows\SysWOW64\olelib.tlb
2014-06-16 16:07 - 2003-05-14 21:07 - 00389120 _____ () C:\Windows\SysWOW64\actskn43.ocx
2014-06-16 16:07 - 2002-07-26 17:02 - 00153088 _____ () C:\Windows\SysWOW64\fldlckun.exe
2014-06-16 16:07 - 2001-03-13 14:49 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.OCX
2014-06-16 16:07 - 1998-04-24 00:00 - 00368912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbar332.dll
2014-06-16 16:07 - 1997-05-21 09:51 - 00034304 _____ (Microsoft) C:\Windows\SysWOW64\ntsvc.ocx
2014-06-16 15:25 - 2014-06-16 15:25 - 00000000 ____D () C:\Program Files (x86)\Mp3tag
2014-06-16 15:07 - 2014-06-16 15:07 - 00001495 _____ () C:\gmx.js
2014-06-16 14:46 - 2014-06-27 09:36 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-16 14:39 - 2014-06-16 14:39 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Mozilla
2014-06-16 14:39 - 2014-06-16 14:39 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-16 14:38 - 2014-06-29 10:02 - 00000000 ____D () C:\Users\xxxx\Desktop\Programme
2014-06-16 14:37 - 2014-06-20 16:32 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\PDF Architect 2
2014-06-16 14:36 - 2014-06-16 14:36 - 00000000 ____D () C:\ProgramData\PDF Architect 2
2014-06-16 14:36 - 2014-04-25 17:44 - 01070152 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2014-06-16 14:25 - 2014-06-16 14:25 - 00003040 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_point64k_01009.Wdf
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft-Maus
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____D () C:\Program Files\Microsoft IntelliPoint
2014-06-16 14:24 - 2014-06-16 14:24 - 00000000 ____D () C:\Windows\PCHEALTH
2014-06-16 14:17 - 2014-06-16 14:17 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Foxit Software
2014-06-16 14:17 - 2014-06-16 14:17 - 00000000 ____D () C:\Program Files (x86)\Foxit Software
2014-06-16 13:44 - 2012-03-14 05:00 - 00385024 _____ (CANON INC.) C:\Windows\system32\CNMLMAT.DLL
2014-06-16 13:26 - 2014-06-16 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Home Edition 8.1.1
2014-06-16 13:26 - 2014-06-16 13:26 - 00000000 ____D () C:\Program Files (x86)\MiniTool Partition Wizard Home Edition 8.1.1
2014-06-16 13:26 - 2013-09-30 16:26 - 03050808 _____ () C:\Windows\system32\pwNative.exe
2014-06-16 13:26 - 2013-09-30 16:26 - 00019152 ____N () C:\Windows\system32\pwdrvio.sys
2014-06-16 13:26 - 2013-09-30 16:26 - 00012504 ____N () C:\Windows\system32\pwdspio.sys
2014-06-16 11:31 - 2014-06-16 11:31 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-06-16 11:31 - 2014-06-16 11:31 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Avira
2014-06-16 11:30 - 2014-05-09 11:16 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-06-16 11:30 - 2014-05-09 11:16 - 00112080 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-06-16 11:30 - 2014-05-09 11:16 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-06-16 11:29 - 2014-06-25 23:02 - 00111824 _____ () C:\Users\xxxx\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-16 11:29 - 2014-06-16 11:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-06-16 11:29 - 2014-06-16 11:30 - 00000000 ____D () C:\ProgramData\Avira
2014-06-16 11:29 - 2014-06-16 11:30 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-06-16 10:57 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-06-16 10:57 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-06-16 10:57 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-06-16 10:53 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-06-16 10:53 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-06-16 10:53 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-06-16 10:53 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-06-16 10:52 - 2014-06-17 13:36 - 00000000 ____D () C:\Users\xxxx\AppData\Local\VirtualStore
2014-06-16 10:52 - 2014-06-17 13:21 - 00001421 _____ () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-16 10:52 - 2014-06-16 10:52 - 00000020 ___SH () C:\Users\xxxx\ntuser.ini
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Vorlagen
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Startmenü
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Netzwerkumgebung
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Lokale Einstellungen
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Eigene Dateien
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Druckumgebung
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Documents\Eigene Musik
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Documents\Eigene Bilder
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Local\Verlauf
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Local\Anwendungsdaten
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Anwendungsdaten
2014-06-16 10:52 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-06-16 10:52 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-06-16 10:52 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-06-16 10:52 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-06-16 10:52 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-06-16 10:52 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-16 10:52 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-16 10:51 - 2014-06-29 11:59 - 01633385 _____ () C:\Windows\WindowsUpdate.log
2014-06-16 10:51 - 2014-06-29 11:21 - 00000000 ____D () C:\Users\xxxx
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 __SHD () C:\Recovery
2014-06-16 10:42 - 2014-06-16 10:42 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-06-16 10:41 - 2014-06-16 10:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

A-Man · 29.06.2014, 11:35

FRST.txt_Teil 3

Code:

ATTFilter

==================== One Month Modified Files and Folders =======

2014-06-29 12:01 - 2014-06-29 12:00 - 00011595 _____ () C:\Users\xxxx\Desktop\FRST.txt
2014-06-29 12:00 - 2014-06-27 22:17 - 00000000 ____D () C:\FRST
2014-06-29 11:59 - 2014-06-29 11:59 - 00008095 _____ () C:\Users\xxxx\Desktop\zoek-results.txt
2014-06-29 11:59 - 2014-06-16 10:51 - 01633385 _____ () C:\Windows\WindowsUpdate.log
2014-06-29 11:56 - 2014-06-29 10:38 - 00008094 _____ () C:\zoek-results.log
2014-06-29 11:55 - 2014-06-17 12:11 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-29 11:55 - 2014-06-17 01:57 - 00013153 _____ () C:\Windows\setupact.log
2014-06-29 11:55 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-29 11:54 - 2014-06-17 01:57 - 00121658 _____ () C:\Windows\PFRO.log
2014-06-29 11:21 - 2014-06-29 10:36 - 00000000 ____D () C:\zoek_backup
2014-06-29 11:21 - 2014-06-16 10:51 - 00000000 ____D () C:\Users\xxxx
2014-06-29 10:43 - 2014-06-29 11:54 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-29 10:42 - 2014-06-29 10:42 - 00000078 _____ () C:\Users\xxxx\Desktop\script.txt
2014-06-29 10:42 - 2014-06-16 20:37 - 00698810 _____ () C:\Windows\system32\perfh007.dat
2014-06-29 10:42 - 2014-06-16 20:37 - 00148950 _____ () C:\Windows\system32\perfc007.dat
2014-06-29 10:42 - 2009-07-14 07:13 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-29 10:42 - 2009-07-14 06:45 - 00025872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-29 10:42 - 2009-07-14 06:45 - 00025872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-29 10:38 - 2014-06-29 10:44 - 00000419 _____ () C:\zoek-results2014-06-29-083820.log
2014-06-29 10:25 - 2014-06-29 10:25 - 00001157 _____ () C:\Users\xxxx\Desktop\mbam.txt
2014-06-29 10:24 - 2014-06-27 19:04 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-29 10:21 - 2014-06-27 09:37 - 00000728 __RSH () C:\ProgramData\ntuser.pol
2014-06-29 10:08 - 2014-06-27 14:28 - 00000000 ____D () C:\AdwCleaner
2014-06-29 10:07 - 2014-06-29 10:07 - 00001218 _____ () C:\Users\xxxx\Desktop\AdwCleaner[S3].txt
2014-06-29 10:02 - 2014-06-29 10:02 - 01285120 _____ () C:\Users\xxxx\Desktop\zoek.exe
2014-06-29 10:02 - 2014-06-16 14:38 - 00000000 ____D () C:\Users\xxxx\Desktop\Programme
2014-06-29 10:01 - 2014-06-27 14:28 - 01342659 _____ () C:\Users\xxxx\Desktop\adwcleaner_3.213.exe
2014-06-28 18:15 - 2014-06-28 18:15 - 00000000 ___SD () C:\32788R22FWJFW
2014-06-27 22:15 - 2014-06-27 22:15 - 02083328 _____ (Farbar) C:\Users\xxxx\Desktop\FRST64.exe
2014-06-27 21:36 - 2014-06-27 21:36 - 00000000 ____D () C:\Windows\ERUNT
2014-06-27 19:12 - 2014-06-27 19:12 - 05126408 _____ (JAM Software ) C:\Users\xxxx\Desktop\UltraSearch-x64-Setup.exe
2014-06-27 19:04 - 2014-06-27 19:04 - 00001102 _____ () C:\Users\xxxx\Desktop\Malwarebytes.lnk
2014-06-27 19:04 - 2014-06-27 19:04 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-27 19:04 - 2014-06-27 19:04 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-27 17:16 - 2014-06-23 14:00 - 00000000 ____D () C:\temp
2014-06-27 13:08 - 2014-06-27 13:08 - 00001214 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2014-06-27 13:08 - 2014-06-27 13:07 - 00000000 ____D () C:\Program Files (x86)\VIA
2014-06-27 13:08 - 2014-06-17 00:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-27 13:07 - 2014-06-27 13:07 - 00001769 _____ () C:\Windows\Language_trs.ini
2014-06-27 12:59 - 2014-06-27 12:59 - 00001102 _____ () C:\Users\Administrator\Desktop\EVEREST Home Edition.lnk
2014-06-27 12:59 - 2014-06-27 12:59 - 00000000 ____D () C:\Program Files (x86)\Lavalys
2014-06-27 09:40 - 2014-06-27 09:40 - 00260940 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2014-06-27 09:37 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-06-27 09:36 - 2014-06-16 14:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-26 13:40 - 2014-06-26 13:40 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:40 - 2014-06-26 13:40 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Windows\system32\Macromed
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Macromedia
2014-06-26 13:24 - 2014-06-26 13:24 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-26 13:24 - 2014-06-26 13:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Mozilla
2014-06-26 13:24 - 2014-06-26 13:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-26 13:23 - 2014-06-26 13:23 - 00284288 _____ (Mozilla) C:\Users\xxxx\Downloads\Firefox Setup Stub 30.0.exe
2014-06-26 13:22 - 2014-06-26 13:22 - 00000000 __SHD () C:\Users\xxxx\AppData\Local\EmieUserList
2014-06-26 13:22 - 2014-06-26 13:22 - 00000000 __SHD () C:\Users\xxxxx\AppData\Local\EmieSiteList
2014-06-26 13:15 - 2014-06-17 13:21 - 00000000 ____D () C:\Users\xxxx\AppData\Local\NVIDIA
2014-06-26 11:27 - 2014-06-26 11:27 - 00000000 ___HD () C:\ProgramData\CanonIJScan
2014-06-26 11:27 - 2014-06-17 00:31 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Canon
2014-06-26 09:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-26 08:36 - 2009-07-14 06:45 - 00381648 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-25 23:09 - 2014-06-25 23:09 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\NVIDIA
2014-06-25 23:02 - 2014-06-25 23:02 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Publish Providers
2014-06-25 23:02 - 2014-06-16 11:29 - 00111824 _____ () C:\Users\xxxx\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-25 13:01 - 2014-06-25 12:00 - 00000000 ____D () C:\ProgramData\MAGIX
2014-06-25 12:58 - 2014-06-25 12:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2014-06-25 12:58 - 2014-06-25 11:59 - 00000000 ____D () C:\Program Files (x86)\MAGIX
2014-06-25 12:46 - 2014-06-25 12:46 - 00000000 ____D () C:\Users\xxxx\Documents\MAGIX
2014-06-25 12:46 - 2014-06-25 12:01 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MAGIX
2014-06-25 12:45 - 2014-06-25 12:45 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-06-25 12:02 - 2014-06-25 12:01 - 00000240 _____ () C:\Windows\DirectX.log
2014-06-25 11:54 - 2014-06-25 11:54 - 00003168 _____ () C:\Windows\System32\Tasks\{3D28321F-66C2-4348-AE67-FCC9F4612ED5}
2014-06-25 11:29 - 2014-06-25 11:29 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-06-25 11:04 - 2014-06-23 17:42 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Mp3tag
2014-06-25 10:25 - 2014-06-23 15:00 - 00000676 _____ () C:\Windows\Clean! presets.set
2014-06-24 19:30 - 2014-06-16 23:59 - 00000000 ____D () C:\Users\xxxx\Documents\Music Collector
2014-06-24 17:46 - 2014-06-24 16:04 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\Users\xxxx\Documents\PDF Architect 2
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\Program Files (x86)\PDF Architect 2
2014-06-24 15:18 - 2014-06-24 15:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2014-06-24 15:17 - 2014-06-24 15:17 - 00072184 _____ () C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-24 15:17 - 2014-06-24 15:17 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-06-24 15:17 - 2014-06-24 15:17 - 00001417 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-24 15:17 - 2014-06-24 15:17 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Adobe
2014-06-24 15:17 - 2014-06-24 15:16 - 00000000 ____D () C:\Users\Administrator
2014-06-24 15:16 - 2014-06-24 15:16 - 00000020 ___SH () C:\Users\Administrator\ntuser.ini
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Vorlagen
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Startmenü
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Netzwerkumgebung
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Lokale Einstellungen
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Eigene Dateien
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Druckumgebung
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Documents\Eigene Musik
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Documents\Eigene Bilder
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Verlauf
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Anwendungsdaten
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA
2014-06-24 13:51 - 2014-06-19 00:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2014-06-24 13:51 - 2014-06-19 00:36 - 00000000 ____D () C:\Program Files (x86)\Canon
2014-06-24 13:17 - 2014-06-24 13:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5300 series
2014-06-24 13:17 - 2014-06-24 13:17 - 00000000 ____D () C:\ProgramData\Canon IJ Network Tool
2014-06-24 13:17 - 2009-07-14 05:20 - 00000000 __RSD () C:\Windows\Media
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ___HD () C:\Program Files\CanonBJ
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ____D () C:\Windows\SysWOW64\STRING
2014-06-24 13:02 - 2014-06-24 13:02 - 00000000 ____D () C:\Windows\system32\STRING
2014-06-23 16:33 - 2014-06-23 16:33 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\VirtualSafe
2014-06-23 16:32 - 2014-06-23 16:32 - 00119296 _____ () C:\Windows\system32\docpropd.exe
2014-06-23 14:50 - 2014-06-23 14:50 - 00000000 ____D () C:\Users\xxxx\Documents\Clean
2014-06-23 14:50 - 2014-06-23 13:58 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Steinberg
2014-06-23 14:44 - 2014-06-23 14:44 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pinnacle Clean 5
2014-06-23 14:44 - 2014-06-23 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Clean 5
2014-06-23 14:43 - 2014-06-23 14:42 - 00000000 ____D () C:\Program Files (x86)\Pinnacle
2014-06-23 14:11 - 2014-06-23 14:11 - 00000000 ____D () C:\Program Files (x86)\lame3.99.5
2014-06-23 13:57 - 2014-06-23 13:57 - 00002892 _____ () C:\Windows\SysWOW64\audcon.sys
2014-06-23 13:57 - 2014-06-23 13:57 - 00000000 ____D () C:\ProgramData\Syncrosoft
2014-06-23 13:57 - 2014-06-23 13:56 - 00004906 _____ () C:\Windows\DPINST.LOG
2014-06-23 13:56 - 2014-06-23 13:56 - 00000051 _____ () C:\Windows\SysWOW64\SYNSOPOS.exe.cfg
2014-06-23 13:56 - 2014-06-23 13:56 - 00000000 ____D () C:\Program Files (x86)\Syncrosoft
2014-06-23 13:04 - 2014-06-23 13:04 - 00002972 _____ () C:\Windows\System32\Tasks\{E7CF0C0C-9716-4B21-A345-A171BC26BB67}
2014-06-23 13:04 - 2014-06-23 13:04 - 00002972 _____ () C:\Windows\System32\Tasks\{638CBEF3-639D-49C6-A906-84DACD14C3AF}
2014-06-23 13:03 - 2014-06-23 13:03 - 00002972 _____ () C:\Windows\System32\Tasks\{D2B06B89-8163-48A4-8A66-0A8712E5C08E}
2014-06-23 13:02 - 2014-06-23 13:02 - 00002972 _____ () C:\Windows\System32\Tasks\{98E87D83-260C-4ADD-8C61-756470853393}
2014-06-20 16:32 - 2014-06-16 14:37 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\PDF Architect 2
2014-06-20 12:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-06-19 23:34 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-19 23:28 - 2014-06-19 19:35 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Audacity
2014-06-19 19:34 - 2014-06-19 19:34 - 00001019 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-06-19 19:34 - 2014-06-19 19:34 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-06-19 16:40 - 2014-06-16 16:09 - 00000000 _____ () C:\Windows\SysWOW64\mslck.dat
2014-06-19 13:30 - 2014-06-18 16:18 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\TeamViewer
2014-06-19 12:59 - 2014-06-19 12:59 - 00001174 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-06-19 12:59 - 2014-06-19 12:59 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-19 11:38 - 2014-06-17 12:42 - 01591896 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-06-19 01:24 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-06-19 00:47 - 2014-06-17 00:31 - 00000000 ____D () C:\ProgramData\CanonIJWSpt
2014-06-19 00:46 - 2014-06-19 00:46 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Canon Easy-PhotoPrint EX
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ___HD () C:\ProgramData\CanonIJEPPEX2
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ___HD () C:\ProgramData\CanonEPP
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ____D () C:\Program Files\Canon
2014-06-19 00:00 - 2014-06-19 00:00 - 00000000 ____D () C:\Windows\pss
2014-06-18 17:20 - 2014-06-16 18:38 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-18 15:24 - 2014-06-18 15:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\Users\xxxx\AppData\Local\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\ProgramData\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\Program Files (x86)\1&1
2014-06-18 13:44 - 2014-06-17 13:42 - 00000000 ____D () C:\Users\xxxx\AppData\Local\NVIDIA Corporation
2014-06-18 13:44 - 2014-06-17 12:10 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-06-18 13:15 - 2014-06-18 13:15 - 00000000 ____D () C:\ProgramData\Pinnacle
2014-06-17 23:43 - 2014-06-16 17:38 - 00000000 ____D () C:\ProgramData\Logishrd
2014-06-17 23:42 - 2014-06-17 23:42 - 00005255 _____ () C:\Windows\LDPINST.LOG
2014-06-17 13:42 - 2014-06-17 13:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-06-17 13:42 - 2014-06-17 12:11 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-06-17 13:42 - 2014-06-17 12:10 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-06-17 13:37 - 2014-06-17 13:37 - 00000000 ____D () C:\NVIDIA
2014-06-17 13:36 - 2014-06-16 10:52 - 00000000 ____D () C:\Users\xxxx\AppData\Local\VirtualStore
2014-06-17 13:32 - 2014-06-17 13:32 - 00000403 _____ () C:\Windows\ODBC.INI
2014-06-17 13:31 - 2014-06-17 13:31 - 00002715 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Excel.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00002703 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00002675 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Word.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Windows\ShellNew
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Windows\Msagent
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft Web Folders
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-06-17 13:31 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-06-17 13:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system
2014-06-17 13:21 - 2014-06-16 10:52 - 00001421 _____ () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-17 13:19 - 2014-06-16 20:39 - 00000000 ____D () C:\Windows\Panther
2014-06-17 13:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-06-17 13:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-06-17 13:06 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-06-17 13:06 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-06-17 13:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
2014-06-17 13:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-06-17 13:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-06-17 13:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-06-17 12:58 - 2014-06-17 12:56 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-17 12:29 - 2014-06-17 12:16 - 00015304 _____ () C:\Windows\IE11_main.log
2014-06-17 12:21 - 2014-06-17 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-17 12:21 - 2014-06-17 12:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-17 12:21 - 2014-06-17 12:21 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-17 12:21 - 2014-06-17 12:21 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-17 12:21 - 2014-06-17 12:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-06-17 12:21 - 2014-06-17 12:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-06-17 12:21 - 2014-06-17 12:21 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-06-17 12:21 - 2014-06-17 12:21 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-06-17 12:21 - 2014-06-17 12:21 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00266456 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00240856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-06-17 12:21 - 2014-06-17 12:21 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-06-17 12:21 - 2014-06-17 12:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-17 02:06 - 2014-06-17 02:05 - 00002108 _____ () C:\Users\xxxx\Desktop\restart.lnk
2014-06-17 02:06 - 2014-06-17 01:53 - 00002108 _____ () C:\Users\xxxx\Desktop\down.lnk
2014-06-17 01:57 - 2014-06-17 01:57 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-17 01:06 - 2014-06-17 01:06 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-17 01:06 - 2014-06-17 01:06 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-17 00:53 - 2014-06-17 00:53 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-06-17 00:24 - 2014-06-17 00:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-06-17 00:23 - 2014-06-17 00:23 - 00000000 ____D () C:\Program Files (x86)\FreeTime
2014-06-17 00:18 - 2014-06-17 00:14 - 00000000 ____D () C:\Program Files\Registry System Wizard.NET
2014-06-17 00:14 - 2014-06-17 00:14 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\WinFAQ
2014-06-17 00:11 - 2014-06-17 00:11 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\COWON
2014-06-17 00:10 - 2014-06-17 00:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jetAudio
2014-06-17 00:10 - 2014-06-17 00:10 - 00000000 ____D () C:\Program Files (x86)\JetAudio
2014-06-17 00:00 - 2014-06-17 00:00 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Collectorz.com
2014-06-16 23:59 - 2014-06-16 23:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Collectorz.com
2014-06-16 23:59 - 2014-06-16 23:59 - 00000000 ____D () C:\Program Files (x86)\Collectorz.com
2014-06-16 23:55 - 2014-06-16 23:53 - 00000000 ____D () C:\Program Files (x86)\IZArc
2014-06-16 23:47 - 2009-07-14 04:34 - 00000505 _____ () C:\Windows\win.ini
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\Windows\System32\Tasks\COMODO
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\Program Files\COMODO
2014-06-16 23:20 - 2014-06-16 23:17 - 00000000 ____D () C:\ProgramData\Comodo
2014-06-16 23:19 - 2014-06-16 23:19 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-06-16 20:39 - 2009-07-14 07:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-06-16 20:39 - 2009-07-14 07:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-06-16 20:38 - 2014-06-16 20:38 - 00000000 ____D () C:\Hotfix
2014-06-16 20:38 - 2009-07-14 06:45 - 00000000 ____D () C:\Windows\Setup
2014-06-16 20:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-06-16 20:37 - 2014-06-16 20:37 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-06-16 20:37 - 2014-06-16 20:37 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\de
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\0407
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\system32\de
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\system32\0407
2014-06-16 20:37 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-06-16 20:22 - 2014-06-16 20:14 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MyPhoneExplorer
2014-06-16 20:13 - 2014-06-16 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2014-06-16 20:13 - 2014-06-16 20:13 - 00000000 ____D () C:\Program Files (x86)\MyPhoneExplorer
2014-06-16 20:10 - 2014-06-16 20:10 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MPC-HC
2014-06-16 20:10 - 2014-06-16 20:10 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-16 20:04 - 2014-06-16 20:04 - 00000000 ____D () C:\Users\Public\Documents\{F0489EF2-D393-4114-85BA-A94D71D89543}
2014-06-16 20:03 - 2014-06-16 20:03 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\com.Rhapsody.Napster5
2014-06-16 20:02 - 2014-06-24 15:16 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Macromedia
2014-06-16 20:02 - 2014-06-16 20:02 - 00000893 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Napster 5.lnk
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\ProgramData\Adobe
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Program Files (x86)\Napster 5
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Macromedia
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Adobe
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Adobe
2014-06-16 19:52 - 2014-06-16 19:52 - 00000355 _____ () C:\Users\xxxx\Desktop\Netzwerk.lnk
2014-06-16 19:45 - 2014-06-16 19:45 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\xp-AntiSpy
2014-06-16 19:45 - 2014-06-16 19:45 - 00000000 ____D () C:\Program Files (x86)\xp-AntiSpy
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Thunderbird
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Thunderbird
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-06-16 18:42 - 2014-06-16 18:38 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-06-16 17:39 - 2014-06-16 17:39 - 00000000 ____D () C:\Users\Public\Documents\Logishrd
2014-06-16 17:39 - 2014-06-16 17:38 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Logitech
2014-06-16 17:38 - 2014-06-16 17:38 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Logishrd
2014-06-16 17:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-06-16 17:27 - 2014-06-16 17:27 - 00003134 _____ () C:\Windows\System32\Tasks\{2C090209-A6BE-44FA-9EB4-83AE253D29C7}
2014-06-16 16:09 - 2014-06-16 16:09 - 00000032 _____ () C:\Windows\SysWOW64\Mlkf.dll
2014-06-16 16:07 - 2014-06-16 16:07 - 00006225 _____ () C:\Windows\SysWOW64\FldLckINSTALL.LOG
2014-06-16 16:07 - 2014-06-16 16:07 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Folder Access
2014-06-16 16:07 - 2014-06-16 16:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Access
2014-06-16 15:25 - 2014-06-16 15:25 - 00000000 ____D () C:\Program Files (x86)\Mp3tag
2014-06-16 15:07 - 2014-06-16 15:07 - 00001495 _____ () C:\gmx.js
2014-06-16 14:39 - 2014-06-16 14:39 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Mozilla
2014-06-16 14:39 - 2014-06-16 14:39 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-16 14:36 - 2014-06-16 14:36 - 00000000 ____D () C:\ProgramData\PDF Architect 2
2014-06-16 14:25 - 2014-06-16 14:25 - 00003040 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_point64k_01009.Wdf
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft-Maus
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____D () C:\Program Files\Microsoft IntelliPoint
2014-06-16 14:24 - 2014-06-16 14:24 - 00000000 ____D () C:\Windows\PCHEALTH
2014-06-16 14:17 - 2014-06-16 14:17 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Foxit Software
2014-06-16 14:17 - 2014-06-16 14:17 - 00000000 ____D () C:\Program Files (x86)\Foxit Software
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\winrm
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\WCN
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\slmgr
2014-06-16 13:33 - 2009-07-14 07:37 - 00000000 ____D () C:\Windows\DigitalLocker
2014-06-16 13:33 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-06-16 13:33 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-06-16 13:33 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-06-16 13:33 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-06-16 13:33 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\IME
2014-06-16 13:32 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-06-16 13:32 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\com
2014-06-16 13:26 - 2014-06-16 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Home Edition 8.1.1
2014-06-16 13:26 - 2014-06-16 13:26 - 00000000 ____D () C:\Program Files (x86)\MiniTool Partition Wizard Home Edition 8.1.1
2014-06-16 11:31 - 2014-06-16 11:31 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2014-06-16 11:31 - 2014-06-16 11:31 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Avira
2014-06-16 11:30 - 2014-06-16 11:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-06-16 11:30 - 2014-06-16 11:29 - 00000000 ____D () C:\ProgramData\Avira
2014-06-16 11:30 - 2014-06-16 11:29 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-06-16 10:52 - 2014-06-16 10:52 - 00000020 ___SH () C:\Users\xxxx\ntuser.ini
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Vorlagen
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Startmenü
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Netzwerkumgebung
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Lokale Einstellungen
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Eigene Dateien
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Druckumgebung
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Documents\Eigene Musik
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Documents\Eigene Bilder
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Local\Verlauf
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Local\Anwendungsdaten
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Anwendungsdaten
2014-06-16 10:52 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\restore
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 __SHD () C:\Recovery
2014-06-16 10:51 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-06-16 10:51 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-06-16 10:51 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-06-16 10:42 - 2014-06-16 10:42 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-06-16 10:41 - 2014-06-16 10:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-06-16 10:40 - 2010-11-21 09:17 - 00000000 ____D () C:\Windows\CSC
2014-06-01 17:17 - 2014-06-17 12:56 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-30 11:11 - 2014-06-18 09:57 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

Some content of TEMP:
====================
C:\Users\xxxx\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-28 18:33

==================== End Of Log ============================

Addition.txt

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-06-2014
Ran by xxxx at 2014-06-29 12:01:50
Running from C:\Users\xxxx\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

1&1 Upload-Manager (HKLM-x32\...\1&1 Upload-Manager) (Version: 2.0.676 - 1&1 Internet AG)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Avira (HKLM-x32\...\{68e29fba-92b1-4f6f-a604-1d8679da3a9f}) (Version: 1.1.13.24161 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.13.24161 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.4.672 - Avira)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.1.6 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version:  - Canon Inc.)
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Clean 5 (HKLM-x32\...\Clean 5) (Version: Clean 5 - Pinnacle Systems GmbH / Steinberg Media Technologies GmbH)
COMODO Firewall (HKLM\...\{D32EF4F9-1506-434E-A813-3D4C0AA50300}) (Version: 7.0.53315.4132 - COMODO Security Solutions Inc.)
Download Protect (HKCU\...\{132401a7-2006-4342-b43c-ccf5f02c2b01}) (Version:  - Download Protect)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Grabster AV 300 V1.0.8.30 (HKLM-x32\...\Grabster AV 300) (Version: 1.0.8.30 - )
IZArc 4.1.8 (HKLM-x32\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 4.1.8 - Ivan Zahariev)
jetAudio Basic (HKLM-x32\...\{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}) (Version: 8.1.0 - COWON)
K-Lite Codec Pack 10.5.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.5.5 - )
MAGIX Video easy TERRATEC Edition (HKLM-x32\...\MAGIX_{2FA06473-23F0-4372-8DD5-1EAE42503D93}) (Version: 3.0.1.50 - MAGIX AG)
MAGIX Video easy TERRATEC Edition (Version: 3.0.1.50 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft IntelliPoint 7.1 (HKLM\...\{5EBE0F1F-45DF-4298-AC6B-E8E54EAEC834}) (Version: 7.10.344.0 - Microsoft)
Microsoft Office 2000 Premium (HKLM-x32\...\{00000407-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2816 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
MiniTool Partition Wizard Home Edition 8.1.1 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Solution Ltd.)
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Mozilla Thunderbird 24.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 de)) (Version: 24.6.0 - Mozilla)
Mp3tag v2.59a (HKLM-x32\...\Mp3tag) (Version: v2.59a - Florian Heidenreich)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Music Collector (HKLM-x32\...\{8CDFF5D2-89BF-4391-9D20-7D95C88DC98C}_is1) (Version:  - Collectorz.com)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.5 - F.J. Wechselberger)
Napster 5 Beta (HKLM-x32\...\com.Rhapsody.Napster5) (Version: 1.0.65 - Rhapsody International, Inc)
Napster 5 Beta (x32 Version: 1.0.65 - Rhapsody International, Inc) Hidden
NVIDIA 3D Vision Controller-Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 337.88 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 337.88 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.151.1095 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.24.16092 - pdfforge GmbH)
PDF Architect 2 View Module (HKLM-x32\...\{46889070-D447-4936-A5D3-246DB972FA2E}) (Version: 2.0.6.16537 - pdfforge GmbH)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
Platform (x32 Version: 1.36 - VIA Technologies, Inc.) Hidden
Registry System Wizard.NET (HKLM\...\{110ED870-1DF3-4574-A679-E2C4A8163211}_is1) (Version: 0.13.731.51 - WinFAQ)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.3.39 - Safer-Networking Ltd.)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29480 - TeamViewer)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.36 - VIA Technologies, Inc.)
xp-AntiSpy 3.98-2 (HKLM-x32\...\xp-AntiSpy) (Version:  - Christian Taubenheim)

==================== Restore Points  =========================

27-06-2014 07:39:58 Windows Update
27-06-2014 11:07:18 Installed Platform
29-06-2014 08:38:05 zoek.exe restore point

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1B39432C-398E-4A24-BE63-B9B3E4AE892C} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {686399FC-3BBE-45C1-B5AC-FCED38C12E2C} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {A4705B4D-642D-4450-9CC1-90A33814D8BB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {F63FF7E8-377F-4CF3-B84F-A39B82FCA86E} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2009-11-11] (Microsoft Corporation)

==================== Loaded Modules (whitelisted) =============

2014-06-17 12:11 - 2014-05-20 03:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-06-23 16:32 - 2014-06-23 16:32 - 00119296 _____ () C:\Windows\system32\docpropd.exe
2014-06-27 13:08 - 2011-05-06 14:12 - 00078448 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2014-06-27 13:08 - 2011-05-06 14:12 - 00386160 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2014-06-27 13:08 - 2011-05-06 14:12 - 00621168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-06-16 18:38 - 2014-04-25 14:11 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-06-16 18:38 - 2014-04-25 14:11 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-06-16 18:38 - 2014-04-25 14:11 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-06-16 18:38 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-06-16 18:38 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-05-14 14:27 - 2014-05-14 14:27 - 00137296 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.NativeCore.dll
2014-05-14 14:27 - 2014-05-14 14:27 - 00065616 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.AvConnectorNative.dll
2014-06-29 11:56 - 2014-05-14 14:27 - 00049744 _____ () C:\Users\xxxx\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\Services: VIAKaraokeService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\Windows\pss\Microsoft Office.lnk.CommonStartup
MSCONFIG\startupreg: 1&1_1&1 Upload-Manager => "C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE" /hide
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: Avira Systray => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
MSCONFIG\startupreg: COMODO Internet Security => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart

==================== Faulty Device Manager Devices =============

Name: {16d667ee-6782-4b21-81df-8ded8ebc3868}w64
Description: {16d667ee-6782-4b21-81df-8ded8ebc3868}w64
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: {16d667ee-6782-4b21-81df-8ded8ebc3868}w64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft-Teredo-Tunneling-Adapter
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/29/2014 11:56:44 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 10:36:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 10:21:08 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 10:08:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 10:01:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/28/2014 06:33:56 PM) (Source: SideBySide) (EventID: 81) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "hxxp://schemas.microsoft.com/SMI/2005/WindowsSettings^antispywareProductDisplayName1".
Die Einstellung "hxxp://schemas.microsoft.com/SMI/2005/WindowsSettings^antispywareProductDisplayName" ist nicht registriert.

Error: (06/28/2014 06:33:56 PM) (Source: SideBySide) (EventID: 81) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "hxxp://schemas.microsoft.com/SMI/2005/WindowsSettings^antispywareProductDisplayName1".
Die Einstellung "hxxp://schemas.microsoft.com/SMI/2005/WindowsSettings^antispywareProductDisplayName" ist nicht registriert.

Error: (06/28/2014 06:07:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/27/2014 08:40:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/27/2014 07:33:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (06/29/2014 11:58:40 AM) (Source: WMPNetworkSvc) (EventID: 14319) (User: )
Description: WMPNetworkSvc

Error: (06/29/2014 11:56:46 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (06/29/2014 11:56:37 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
{16d667ee-6782-4b21-81df-8ded8ebc3868}w64

Error: (06/29/2014 11:56:12 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (06/29/2014 11:21:31 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (06/29/2014 11:21:30 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (06/29/2014 11:21:28 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (06/29/2014 11:21:27 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (06/29/2014 11:21:25 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.

Error: (06/29/2014 10:37:34 AM) (Source: WMPNetworkSvc) (EventID: 14319) (User: )
Description: WMPNetworkSvc


Microsoft Office Sessions:
=========================
Error: (06/29/2014 11:56:44 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 10:36:43 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 10:21:08 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 10:08:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 10:01:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/28/2014 06:33:56 PM) (Source: SideBySide) (EventID: 81) (User: )
Description: hxxp://schemas.microsoft.com/SMI/2005/WindowsSettings^antispywareProductDisplayNamec:\program files (x86)\spybot - search & destroy 2\Updates\Extracts\SDWSCSvc.exe

Error: (06/28/2014 06:33:56 PM) (Source: SideBySide) (EventID: 81) (User: )
Description: hxxp://schemas.microsoft.com/SMI/2005/WindowsSettings^antispywareProductDisplayNamec:\program files (x86)\spybot - search & destroy 2\SDWSCSvc.exe

Error: (06/28/2014 06:07:43 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/27/2014 08:40:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/27/2014 07:33:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
  Date: 2014-06-27 12:59:45.405
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\xxxx\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-27 12:59:45.350
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\xxxx\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-27 12:59:45.105
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-27 12:59:45.055
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 44%
Total physical RAM: 4094.18 MB
Available physical RAM: 2287.46 MB
Total Pagefile: 8186.53 MB
Available Pagefile: 6215.14 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:121.25 GB) (Free:83.64 GB) NTFS
Drive i: (Elements) (Fixed) (Total:232.88 GB) (Free:77 GB) NTFS
Drive j: (MEDIA) (Fixed) (Total:810.16 GB) (Free:595.04 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: D2C45F08)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=121 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=810 GB) - (Type=07 NTFS)

========================================================
Disk: 5 (MBR Code: Windows XP) (Size: 233 GB) (Disk ID: 00059C04)
Partition 1: (Not Active) - (Size=233 GB) - (Type=07 NTFS)

==================== End Of Log ============================

M-K-D-B · 29.06.2014, 12:26

Wir entfernen die letzten Reste und kontrollieren nochmal alles. ESET kann länger (> 3 h) dauern.
Im Anschluss entfernen wir alle verwendeten Tools und ich gebe dir noch ein paar Tipps mit auf den Weg.

Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

start
() C:\Windows\System32\docpropd.exe
FF HKLM-x32\...\Firefox\Extensions: [{20C672B3-445E-4625-BD58-64A32C856D9C}] - C:\Windows\Installer\{DAB94953-8E4F-4C8A-BAE0-D1EAA1BD5FC6}\{20C672B3-445E-4625-BD58-64A32C856D9C}.xpi
FF Extension: Download Protect - C:\Windows\Installer\{DAB94953-8E4F-4C8A-BAE0-D1EAA1BD5FC6}\{20C672B3-445E-4625-BD58-64A32C856D9C}.xpi [2014-06-29]
C:\Windows\Installer\{DAB94953-8E4F-4C8A-BAE0-D1EAA1BD5FC6}
R2 regini64; C:\Windows\system32\docpropd.exe [119296 2014-06-23] () [File not signed]
C:\Windows\system32\docpropd.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
S1 {16d667ee-6782-4b21-81df-8ded8ebc3868}w64; system32\drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys [X]
C:\Windows\system32\drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys
Reboot:
end

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Schritt 2

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Schritt 3
Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

Schritt 4

Starte die FRST.exe erneut. Setze einen Haken vor Addition und drücke auf Scan.
FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
Poste mir beide Logdateien mit deiner nächsten Antwort.

Bitte poste mit deiner nächsten Antwort

die Logdatei des FRST-Fix
die Logdatei von ESET,
die Logdatei von SecurityCheck,
die beiden neuen Logdateien von FRST.

A-Man · 29.06.2014, 15:24

fixlog.txt

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 27-06-2014
Ran by xxx at 2014-06-29 13:40:16 Run:1
Running from C:\Users\xxxxi\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
() C:\Windows\System32\docpropd.exe
FF HKLM-x32\...\Firefox\Extensions: [{20C672B3-445E-4625-BD58-64A32C856D9C}] - C:\Windows\Installer\{DAB94953-8E4F-4C8A-BAE0-D1EAA1BD5FC6}\{20C672B3-445E-4625-BD58-64A32C856D9C}.xpi
FF Extension: Download Protect - C:\Windows\Installer\{DAB94953-8E4F-4C8A-BAE0-D1EAA1BD5FC6}\{20C672B3-445E-4625-BD58-64A32C856D9C}.xpi [2014-06-29]
C:\Windows\Installer\{DAB94953-8E4F-4C8A-BAE0-D1EAA1BD5FC6}
R2 regini64; C:\Windows\system32\docpropd.exe [119296 2014-06-23] () [File not signed]
C:\Windows\system32\docpropd.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
S1 {16d667ee-6782-4b21-81df-8ded8ebc3868}w64; system32\drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys [X]
C:\Windows\system32\drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys
Reboot:
end
*****************

[1964] C:\Windows\System32\docpropd.exe => Process closed successfully.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\{20C672B3-445E-4625-BD58-64A32C856D9C} => value deleted successfully.
C:\Windows\Installer\{DAB94953-8E4F-4C8A-BAE0-D1EAA1BD5FC6}\{20C672B3-445E-4625-BD58-64A32C856D9C}.xpi => Moved successfully.
C:\Windows\Installer\{DAB94953-8E4F-4C8A-BAE0-D1EAA1BD5FC6} => Moved successfully.
regini64 => Service deleted successfully.
C:\Windows\system32\docpropd.exe => Moved successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
{16d667ee-6782-4b21-81df-8ded8ebc3868}w64 => Service deleted successfully.
"C:\Windows\system32\drivers\{16d667ee-6782-4b21-81df-8ded8ebc3868}w64.sys" => File/Directory not found.


The system needed a reboot. 

==== End of Fixlog ====

ESET log.txt

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7587
# api_version=3.0.2
# EOSSerial=566476fc1b63014abc05dfef9b65fb9f
# engine=18938
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-06-29 01:39:48
# local_time=2014-06-29 03:39:48 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Avira Desktop'
# compatibility_mode=1810 16777214 100 99 7101 414043 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 1045971 155679038 0 0
# scanned=202980
# found=17
# cleaned=0
# scan_time=4750
sh=2714DB0A06F74A4282CDDC307EA1599670422E09 ft=1 fh=dbe7f66a91f8fadc vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\xxxx\AppData\Local\Temp\OCS\ocs_v71b.exe.vir"
sh=5AF17C8C508514518362D890658E366ED37EF98F ft=1 fh=757c80b16141ae2a vn="Variante von Win64/Agent.BR Trojaner" ac=I fn="C:\AdwCleaner\Quarantine\C\Windows\System32\DlProtectSvc.exe.vir"
sh=50F23D7FCB85F863314EEA89FF3C930EAE3DE4CA ft=1 fh=c1378d07850f9ccb vn="Variante von Win64/Agent.BL Trojaner" ac=I fn="C:\FRST\Quarantine\C\Windows\system32\docpropd.exe.xBAD"
sh=C4420C6E94B8CAACCB3811384280D8A93CB0A37D ft=1 fh=25f111c507a31a21 vn="Win32/Toolbar.Conduit.R evtl. unerwünschte Anwendung" ac=I fn="C:\ProgramData\Comodo\Cis\Quarantine\data\{5864A07A-91A8-46EA-BE7B-8D13B5867959}"
sh=C4420C6E94B8CAACCB3811384280D8A93CB0A37D ft=1 fh=25f111c507a31a21 vn="Win32/Toolbar.Conduit.R evtl. unerwünschte Anwendung" ac=I fn="C:\Users\All Users\Comodo\Cis\Quarantine\data\{5864A07A-91A8-46EA-BE7B-8D13B5867959}"
sh=E88D89F2EA182D1C9A7248B178B0A4E487E0BC21 ft=1 fh=28e98c7539f090b7 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="I:\backup\Tools\MediaPack\Setup.exe"
sh=B25DFC38B84D9E21F4ECE88E942AAF3CC22EAB8E ft=1 fh=cda1cbd4b2e6ebee vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="I:\kathi\Downloads\FreeYouTubeToMP333Converter.exe"
sh=48FD60E5A677BD39B13E0188075E83137005259E ft=1 fh=ff79543ffacc5f95 vn="Win32/Toolbar.Widgi evtl. unerwünschte Anwendung" ac=I fn="I:\kathi\Downloads\PDFCreator-1_2_1_setup.exe"
sh=4C544CC739735E92E8709D0335AF80EFB904E722 ft=1 fh=91016bc30a33fef3 vn="Win32/SoftonicDownloader.A evtl. unerwünschte Anwendung" ac=I fn="I:\kathi\Downloads\SoftonicDownloader_fuer_jetaudio.exe"
sh=C025FA68F0465546AC0425FB391CA68BAB170C1A ft=1 fh=915d0887d2abee6c vn="Win32/Adware.ADON evtl. unerwünschte Anwendung" ac=I fn="I:\xp daten\Treiber_Exen_XP_Neu\RSW_188.exe"
sh=19BDD343C80B768CA1E18121721EFA3967E2CB13 ft=1 fh=c34c2b9d19308ce9 vn="Variante von Win32/OpenInstall evtl. unerwünschte Anwendung" ac=I fn="I:\xp daten\Treiber_Exen_XP_Neu\dvd\dvdshrink32setup1zip.exe"
sh=FA0BEA7B4FB9E531ABBE427205FF0033F1543DF9 ft=0 fh=0000000000000000 vn="Variante von Win32/OpenInstall evtl. unerwünschte Anwendung" ac=I fn="I:\xp daten\Treiber_Exen_XP_Neu\dvd\dvdshrink32setup1zip.zip"
sh=72E15E9F3F202546825547F56022935E08E75761 ft=1 fh=1c63307771324f25 vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung" ac=I fn="J:\Exen & Treiber\Everest Home Edition - CHIP-Installer.exe"
sh=9F78A63DE63DD957EF14BA44B15CB78447FDBDAB ft=1 fh=51d532c3525e9aea vn="Win32/DownWare.L evtl. unerwünschte Anwendung" ac=I fn="J:\Exen & Treiber\IZ418ArcInstall.exe"
sh=3CF86EC496022C8EBFFA30464C7F308C482D6010 ft=0 fh=0000000000000000 vn="Variante von Win32/Packed.VMProtect.ABD Trojaner" ac=I fn="J:\Exen & Treiber\Magix..MultiKeygen.v1.1.rar"
sh=E2C028A886AA7352539DEE32CBB38770C529A76E ft=1 fh=d2aeb2930bcba9f7 vn="Win32/InstallMonetizer.AQ evtl. unerwünschte Anwendung" ac=I fn="J:\Exen & Treiber\PDFCreator-1_7_3_setup.exe"
sh=4122CB67A34FB6D5A2A123C10DF5B048B3433317 ft=0 fh=0000000000000000 vn="Variante von Android/AdDisplay.Startapp.A evtl. unerwünschte Anwendung" ac=I fn="J:\Music\Galaxy S4\TitaniumBackup\net.rgruet.android.g3watchdog-b405f1600de22a9075cd30895c4b3810.apk.gz"

checkup.txt

Code:

ATTFilter

 Results of screen317's Security Check version 0.99.83  
 Windows 7 Service Pack 1 x64 (UAC is disabled!)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Security Center service is not running! This report may not be accurate! 
Avira Desktop   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 xp-AntiSpy 3.98-2    
 Spybot - Search & Destroy 
 Adobe Flash Player 14.0.0.125  
 Mozilla Firefox (30.0) 
 Mozilla Thunderbird (24.6.0) 
````````Process Check: objlist.exe by Laurent````````  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````

FRST.txt_Teil 1

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 27-06-2014
Ran by xxxx (administrator) on xxxx on 29-06-2014 15:55:52
Running from C:\Users\xxxx\Desktop
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2320752 2009-11-11] (Microsoft Corporation)
HKLM-x32\...\Run: [PSDrvCheck] => C:\Windows\SysWOW64\PSDrvCheck.exe [396800 2003-08-28] ()
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452016 2011-01-15] (CANON INC.)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [3037296 2011-05-06] (VIA)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-56423891-2218517238-3243758105-1001\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-56423891-2218517238-3243758105-1001\...\Policies\Explorer: [NoRecentDocsMenu] 1
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.dell.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.google.de/search?q={searchTerms}&hl=de&gl=de&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\xxxx\AppData\Roaming\Mozilla\Firefox\Profiles\wgq79svx.default
FF NewTab: hxxp://www.google.com/
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: PDF Architect 2 - C:\Program Files (x86)\PDF Architect 2\np-previewer.dll (pdfforge GmbH)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: InFormEnter - C:\Users\xxxx\AppData\Roaming\Mozilla\Firefox\Profiles\wgq79svx.default\Extensions\{5546F97E-11A5-46b0-9082-32AD74AAA920} [2014-06-27]
FF Extension: DownloadHelper - C:\Users\xxxx\AppData\Roaming\Mozilla\Firefox\Profiles\wgq79svx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-06-27]

==================== Services (Whitelisted) =================

S4 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-06-24] (Avira Operations GmbH & Co. KG)
S4 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-06-24] (Avira Operations GmbH & Co. KG)
S4 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [123984 2014-05-14] (Avira Operations GmbH & Co. KG)
S4 CmdAgent; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [6817544 2014-04-16] (COMODO)
S4 cmdvirth; C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2264280 2014-03-25] (COMODO)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1617696 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21007192 2014-04-30] (NVIDIA Corporation)
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1716264 2014-04-30] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-04-30] (pdfforge GmbH)
S4 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738200 2014-04-25] (Safer-Networking Ltd.)
S4 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2081752 2014-04-25] (Safer-Networking Ltd.)
S4 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-03-29] (VIA Technologies, Inc.)
S2 LckFldService; C:\Windows\system32\LckFldService.exe [X]

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 cmderd; C:\Windows\System32\DRIVERS\cmderd.sys [23168 2014-04-16] (COMODO)
R1 cmdGuard; C:\Windows\System32\DRIVERS\cmdguard.sys [738472 2014-04-16] (COMODO)
R1 cmdHlp; C:\Windows\System32\DRIVERS\cmdhlp.sys [48360 2014-04-16] (COMODO)
R1 inspect; C:\Windows\System32\DRIVERS\inspect.sys [105552 2014-04-16] (COMODO)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18776 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 SMIGrabber3C; C:\Windows\System32\Drivers\SmiUsbGrabber3C.sys [828152 2011-04-07] (Windows (R) Win 7 DDK provider)
R1 ui11rdr; C:\Windows\System32\DRIVERS\ui11rdr.sys [199752 2011-11-21] (1&1 Internet AG)

==================== NetSvcs (Whitelisted) ===================

FRST.txt_Teil 2

Code:

ATTFilter

==================== One Month Created Files and Folders ========

2014-06-29 15:55 - 2014-06-29 15:56 - 00009950 _____ () C:\Users\xxxx\Desktop\FRST.txt
2014-06-29 15:54 - 2014-06-29 15:54 - 00000847 _____ () C:\Users\xxxx\Desktop\checkup.txt
2014-06-29 15:54 - 2014-06-29 15:54 - 00000000 ____D () C:\Users\xxxx\Desktop\Neuer Ordner
2014-06-29 15:49 - 2014-06-29 15:49 - 00854367 _____ () C:\Users\xxxx\Desktop\SecurityCheck.exe
2014-06-29 13:57 - 2014-06-29 13:57 - 02347384 _____ (ESET) C:\Users\xxxx\Desktop\esetsmartinstaller_deu.exe
2014-06-29 13:36 - 2014-06-29 13:36 - 00000826 _____ () C:\Users\xxxx\Documents\Fixlist.txt
2014-06-29 13:12 - 2014-06-29 13:12 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Avira
2014-06-29 13:10 - 2014-06-24 20:39 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-06-29 13:10 - 2014-06-24 20:39 - 00117712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-06-29 13:10 - 2014-06-24 20:39 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-06-29 13:08 - 2014-06-29 13:08 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-29 11:54 - 2014-06-29 10:43 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-29 10:44 - 2014-06-29 10:38 - 00000419 _____ () C:\zoek-results2014-06-29-083820.log
2014-06-29 10:38 - 2014-06-29 11:56 - 00008094 _____ () C:\zoek-results.log
2014-06-29 10:36 - 2014-06-29 11:21 - 00000000 ____D () C:\zoek_backup
2014-06-29 10:02 - 2014-06-29 10:02 - 01285120 _____ () C:\Users\xxxx\Desktop\zoek.exe
2014-06-28 18:15 - 2014-06-28 18:15 - 00000000 ___SD () C:\32788R22FWJFW
2014-06-27 22:17 - 2014-06-29 15:55 - 00000000 ____D () C:\FRST
2014-06-27 22:15 - 2014-06-27 22:15 - 02083328 _____ (Farbar) C:\Users\xxxx\Desktop\FRST64.exe
2014-06-27 21:36 - 2014-06-27 21:36 - 00000000 ____D () C:\Windows\ERUNT
2014-06-27 19:12 - 2014-06-27 19:12 - 05126408 _____ (JAM Software ) C:\Users\xxxx\Desktop\UltraSearch-x64-Setup.exe
2014-06-27 19:04 - 2014-06-29 10:24 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-27 19:04 - 2014-06-27 19:04 - 00001102 _____ () C:\Users\xxxx\Desktop\Malwarebytes.lnk
2014-06-27 19:04 - 2014-06-27 19:04 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-27 19:04 - 2014-06-27 19:04 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-27 19:04 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-27 19:04 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-27 19:04 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-06-27 17:40 - 2009-06-10 23:00 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20140627-174016.backup
2014-06-27 14:28 - 2014-06-29 10:08 - 00000000 ____D () C:\AdwCleaner
2014-06-27 14:28 - 2014-06-29 10:01 - 01342659 _____ () C:\Users\xxxx\Desktop\adwcleaner_3.213.exe
2014-06-27 13:08 - 2014-06-27 13:08 - 00001214 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2014-06-27 13:07 - 2014-06-27 13:08 - 00000000 ____D () C:\Program Files (x86)\VIA
2014-06-27 13:07 - 2014-06-27 13:07 - 00001769 _____ () C:\Windows\Language_trs.ini
2014-06-27 13:07 - 2007-04-11 15:35 - 00414632 ____N (Microsoft Corporation) C:\Windows\difxapi.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 02157680 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viahduaa.sys
2014-06-27 13:06 - 2011-03-29 10:04 - 01161328 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaKaraokeApo.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00994416 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIAPropPageExt.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00556144 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIASysFx.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00248944 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Dts2APO.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00202864 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaMicArrayAPO.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00116848 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaKaraokePropPageExt.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00091760 _____ (VIA Technologies, Inc.) C:\Windows\system32\Dts2PropPageExt.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00087152 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaMicArrayPropPageExt.dll
2014-06-27 13:06 - 2011-03-29 10:04 - 00027760 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViakaraokeSrv.exe
2014-06-27 13:06 - 2007-12-04 11:28 - 00086016 _____ (QSound Labs, Inc.) C:\Windows\system32\nQPropPageExt.dll
2014-06-27 13:06 - 2007-12-04 11:28 - 00082432 _____ (QSound Labs, Inc.) C:\Windows\system32\nQAPO.dll
2014-06-27 12:59 - 2014-06-27 12:59 - 00001102 _____ () C:\Users\Administrator\Desktop\EVEREST Home Edition.lnk
2014-06-27 12:59 - 2014-06-27 12:59 - 00000000 ____D () C:\Program Files (x86)\Lavalys
2014-06-27 09:40 - 2014-06-27 09:40 - 00260940 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2014-06-27 09:37 - 2014-06-29 13:41 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-06-26 13:40 - 2014-06-26 13:40 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:40 - 2014-06-26 13:40 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Windows\system32\Macromed
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Macromedia
2014-06-26 13:24 - 2014-06-26 13:24 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-26 13:24 - 2014-06-26 13:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Mozilla
2014-06-26 13:24 - 2014-06-26 13:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-26 13:23 - 2014-06-26 13:23 - 00284288 _____ (Mozilla) C:\Users\xxxx\Downloads\Firefox Setup Stub 30.0.exe
2014-06-26 13:22 - 2014-06-26 13:22 - 00000000 __SHD () C:\Users\xxxx\AppData\Local\EmieUserList
2014-06-26 13:22 - 2014-06-26 13:22 - 00000000 __SHD () C:\Users\xxxx\AppData\Local\EmieSiteList
2014-06-26 11:27 - 2014-06-26 11:27 - 00000000 ___HD () C:\ProgramData\CanonIJScan
2014-06-26 09:01 - 2009-12-19 11:18 - 02395648 _____ (AD © 2009) C:\Windows\SysWOW64\SYNSOEMU.DLL
2014-06-25 23:09 - 2014-06-25 23:09 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\NVIDIA
2014-06-25 23:02 - 2014-06-25 23:02 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Publish Providers
2014-06-25 12:46 - 2014-06-25 12:46 - 00000000 ____D () C:\Users\xxxx\Documents\MAGIX
2014-06-25 12:45 - 2014-06-25 12:45 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-06-25 12:01 - 2014-06-25 12:46 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MAGIX
2014-06-25 12:01 - 2014-06-25 12:02 - 00000240 _____ () C:\Windows\DirectX.log
2014-06-25 12:00 - 2014-06-25 13:01 - 00000000 ____D () C:\ProgramData\MAGIX
2014-06-25 12:00 - 2014-06-25 12:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2014-06-25 12:00 - 2005-04-09 22:05 - 00027807 _____ () C:\Windows\SysWOW64\mgxcdr.txt
2014-06-25 12:00 - 2003-04-18 16:29 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml4a.dll
2014-06-25 11:59 - 2014-06-25 12:58 - 00000000 ____D () C:\Program Files (x86)\MAGIX
2014-06-25 11:59 - 2007-04-27 10:43 - 00120200 _____ () C:\Windows\SysWOW64\DLLDEV32i.dll
2014-06-25 11:54 - 2014-06-25 11:54 - 00003168 _____ () C:\Windows\System32\Tasks\{3D28321F-66C2-4348-AE67-FCC9F4612ED5}
2014-06-25 11:29 - 2014-06-25 11:29 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\Users\xxxx\Documents\PDF Architect 2
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\Program Files (x86)\PDF Architect 2
2014-06-24 17:44 - 2014-04-25 17:44 - 00662288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCT2.OCX
2014-06-24 17:44 - 2014-04-25 17:44 - 00137000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMAPI32.OCX
2014-06-24 17:44 - 2014-04-25 17:44 - 00110264 _____ (pdfforge GmbH) C:\Windows\system32\pdfcmon.dll
2014-06-24 17:44 - 2014-04-25 17:44 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPIDE.DLL
2014-06-24 17:44 - 1998-07-06 18:55 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCMCDE.DLL
2014-06-24 17:44 - 1998-07-06 18:55 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSCC2DE.DLL
2014-06-24 16:04 - 2014-06-24 17:46 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-06-24 16:04 - 2005-03-12 00:07 - 00087040 _____ () C:\Windows\system32\pdfcmnnt.dll
2014-06-24 16:04 - 1998-07-06 17:56 - 00125712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB6DE.DLL
2014-06-24 15:17 - 2014-06-24 15:17 - 00072184 _____ () C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-24 15:17 - 2014-06-24 15:17 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-06-24 15:17 - 2014-06-24 15:17 - 00001417 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-24 15:17 - 2014-06-24 15:17 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Adobe
2014-06-24 15:16 - 2014-06-24 15:18 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2014-06-24 15:16 - 2014-06-24 15:17 - 00000000 ____D () C:\Users\Administrator
2014-06-24 15:16 - 2014-06-24 15:16 - 00000020 ___SH () C:\Users\Administrator\ntuser.ini
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Vorlagen
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Startmenü
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Netzwerkumgebung
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Lokale Einstellungen
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Eigene Dateien
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Druckumgebung
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Documents\Eigene Musik
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Documents\Eigene Bilder
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Verlauf
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Anwendungsdaten
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA
2014-06-24 15:16 - 2014-06-16 20:02 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Macromedia
2014-06-24 15:16 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-24 15:16 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-24 13:17 - 2014-06-24 13:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5300 series
2014-06-24 13:17 - 2014-06-24 13:17 - 00000000 ____D () C:\ProgramData\Canon IJ Network Tool
2014-06-24 13:17 - 2011-03-31 10:07 - 00114688 _____ (CANON INC.) C:\Windows\SysWOW64\CNC_ATU.dll
2014-06-24 13:17 - 2011-03-30 12:54 - 00323584 _____ (CANON INC.) C:\Windows\SysWOW64\CNC_ATL.dll
2014-06-24 13:17 - 2010-11-12 11:13 - 00068096 _____ () C:\Windows\SysWOW64\CNC1754D.TBL
2014-06-24 13:17 - 2008-08-25 18:02 - 00015872 _____ (CANON INC.) C:\Windows\SysWOW64\CNHMCA.dll
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ___HD () C:\Program Files\CanonBJ
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ____D () C:\Windows\SysWOW64\STRING
2014-06-24 13:16 - 2011-03-31 10:07 - 00302080 _____ (CANON INC.) C:\Windows\system32\CNC_ATC.dll
2014-06-24 13:16 - 2011-03-31 10:06 - 00112128 _____ (CANON INC.) C:\Windows\system32\CNC_ATI.dll
2014-06-24 13:16 - 2011-03-30 12:55 - 00373248 _____ (CANON INC.) C:\Windows\system32\CNC_ATL.dll
2014-06-24 13:16 - 2010-11-18 15:15 - 00098304 _____ (Canon Inc.) C:\Windows\system32\CNC_ATO.dll
2014-06-24 13:02 - 2014-06-24 13:02 - 00000000 ____D () C:\Windows\system32\STRING
2014-06-24 13:02 - 2012-06-14 17:18 - 00366592 _____ (CANON INC.) C:\Windows\SysWOW64\CNMNPPM.DLL
2014-06-24 13:02 - 2012-06-14 17:18 - 00359936 _____ (CANON INC.) C:\Windows\system32\CNMN6PPM.DLL
2014-06-24 13:02 - 2012-06-14 17:18 - 00039424 _____ (CANON INC.) C:\Windows\system32\CNMN6UI.DLL
2014-06-23 17:42 - 2014-06-25 11:04 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Mp3tag
2014-06-23 16:33 - 2014-06-23 16:33 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\VirtualSafe
2014-06-23 15:00 - 2014-06-25 10:25 - 00000676 _____ () C:\Windows\Clean! presets.set
2014-06-23 14:50 - 2014-06-23 14:50 - 00000000 ____D () C:\Users\xxxx\Documents\Clean
2014-06-23 14:44 - 2014-06-23 14:44 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pinnacle Clean 5
2014-06-23 14:44 - 2014-06-23 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Clean 5
2014-06-23 14:43 - 2003-08-28 11:47 - 00396800 _____ () C:\Windows\SysWOW64\PSDrvCheck.exe
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.NLD
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.NL
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.ITA
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.IT
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.FRA
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.FR
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.DEU
2014-06-23 14:43 - 2003-08-28 11:47 - 00026624 _____ () C:\Windows\SysWOW64\PSDrvCheck.DE
2014-06-23 14:43 - 2003-08-28 11:47 - 00026112 _____ () C:\Windows\SysWOW64\PSDrvCheck.CHT
2014-06-23 14:43 - 2003-08-28 11:47 - 00016896 _____ () C:\Windows\SysWOW64\PSDrvCheck.KOR
2014-06-23 14:43 - 2003-08-28 11:47 - 00016896 _____ () C:\Windows\SysWOW64\PSDrvCheck.ESP
2014-06-23 14:43 - 2003-08-28 11:47 - 00016896 _____ () C:\Windows\SysWOW64\PSDrvCheck.ES
2014-06-23 14:43 - 2003-08-28 11:47 - 00016384 _____ () C:\Windows\SysWOW64\PSDrvCheck.CHS
2014-06-23 14:43 - 2000-09-07 15:06 - 01441792 _____ (Intel Corp.) C:\Windows\SysWOW64\nspw7.dll
2014-06-23 14:43 - 2000-09-07 15:06 - 01429504 _____ (Intel Corp.) C:\Windows\SysWOW64\nspa6.dll
2014-06-23 14:43 - 2000-09-07 15:06 - 01404928 _____ (Intel Corp.) C:\Windows\SysWOW64\nspm6.dll
2014-06-23 14:43 - 2000-09-07 15:06 - 01335296 _____ (Intel Corp.) C:\Windows\SysWOW64\nspm5.dll
2014-06-23 14:43 - 2000-09-07 15:06 - 01318912 _____ (Intel Corp.) C:\Windows\SysWOW64\nspp6.dll
2014-06-23 14:43 - 2000-09-07 15:05 - 01306624 _____ (Intel Corp.) C:\Windows\SysWOW64\nsppx.dll
2014-06-23 14:43 - 2000-09-07 15:04 - 00114688 _____ (Intel Corp.) C:\Windows\SysWOW64\nsp.dll
2014-06-23 14:42 - 2014-06-23 14:43 - 00000000 ____D () C:\Program Files (x86)\Pinnacle
2014-06-23 14:42 - 1999-03-17 00:00 - 00019968 _____ () C:\Windows\SysWOW64\Cpuinf32.dll
2014-06-23 14:11 - 2014-06-23 14:11 - 00000000 ____D () C:\Program Files (x86)\lame3.99.5
2014-06-23 14:00 - 2014-06-27 17:16 - 00000000 ____D () C:\temp
2014-06-23 13:57 - 2014-06-23 13:57 - 00002892 _____ () C:\Windows\SysWOW64\audcon.sys
2014-06-23 13:57 - 2014-06-23 13:57 - 00000000 ____D () C:\ProgramData\Syncrosoft
2014-06-23 13:56 - 2014-06-23 13:57 - 00004906 _____ () C:\Windows\DPINST.LOG
2014-06-23 13:56 - 2014-06-23 13:56 - 00000051 _____ () C:\Windows\SysWOW64\SYNSOPOS.exe.cfg
2014-06-23 13:56 - 2014-06-23 13:56 - 00000000 ____D () C:\Program Files (x86)\Syncrosoft
2014-06-23 13:56 - 2010-09-17 13:27 - 00147425 _____ () C:\Windows\SysWOW64\SYNSOACC-Aide.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00147425 _____ () C:\Windows\system32\SYNSOACC-Aide.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00120468 _____ () C:\Windows\SysWOW64\SYNSOACC-Hilfe.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00120468 _____ () C:\Windows\system32\SYNSOACC-Hilfe.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00114279 _____ () C:\Windows\SysWOW64\SYNSOACC-Help.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00114279 _____ () C:\Windows\system32\SYNSOACC-Help.chm
2014-06-23 13:56 - 2010-09-17 13:27 - 00086016 _____ () C:\Windows\SysWOW64\SYNSOPOS.exe
2014-06-23 13:04 - 2014-06-23 13:04 - 00002972 _____ () C:\Windows\System32\Tasks\{E7CF0C0C-9716-4B21-A345-A171BC26BB67}
2014-06-23 13:04 - 2014-06-23 13:04 - 00002972 _____ () C:\Windows\System32\Tasks\{638CBEF3-639D-49C6-A906-84DACD14C3AF}
2014-06-23 13:03 - 2014-06-23 13:03 - 00002972 _____ () C:\Windows\System32\Tasks\{D2B06B89-8163-48A4-8A66-0A8712E5C08E}
2014-06-23 13:02 - 2014-06-23 13:02 - 00002972 _____ () C:\Windows\System32\Tasks\{98E87D83-260C-4ADD-8C61-756470853393}
2014-06-19 19:35 - 2014-06-19 23:28 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Audacity
2014-06-19 19:34 - 2014-06-19 19:34 - 00001019 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-06-19 19:34 - 2014-06-19 19:34 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-06-19 12:59 - 2014-06-19 12:59 - 00001174 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-06-19 12:59 - 2014-06-19 12:59 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-19 01:00 - 2010-11-12 11:13 - 00068096 _____ () C:\Windows\system32\CNC1754D.TBL
2014-06-19 01:00 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.dll
2014-06-19 00:46 - 2014-06-19 00:46 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Canon Easy-PhotoPrint EX
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ___HD () C:\ProgramData\CanonIJEPPEX2
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ___HD () C:\ProgramData\CanonEPP
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ____D () C:\Program Files\Canon
2014-06-19 00:36 - 2014-06-24 13:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2014-06-19 00:36 - 2014-06-24 13:51 - 00000000 ____D () C:\Program Files (x86)\Canon
2014-06-19 00:00 - 2014-06-19 00:00 - 00000000 ____D () C:\Windows\pss
2014-06-18 16:18 - 2014-06-19 13:30 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\TeamViewer
2014-06-18 15:24 - 2014-06-18 15:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\Users\xxxx\AppData\Local\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\ProgramData\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\Program Files (x86)\1&1
2014-06-18 14:32 - 2011-11-21 12:52 - 00199752 _____ (1&1 Internet AG) C:\Windows\system32\Drivers\ui11rdr.SYS
2014-06-18 14:32 - 2011-11-21 12:52 - 00011776 _____ (1&1 Internet AG) C:\Windows\system32\ui11np.dll
2014-06-18 14:32 - 2011-11-21 12:52 - 00007680 _____ (1&1 Internet AG) C:\Windows\SysWOW64\ui11np.dll
2014-06-18 13:15 - 2014-06-18 13:15 - 00000000 ____D () C:\ProgramData\Pinnacle
2014-06-18 09:58 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-18 09:58 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-18 09:57 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-18 09:57 - 2013-12-25 01:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-06-18 09:57 - 2013-12-25 00:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-06-18 09:57 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-06-18 09:57 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-06-17 23:42 - 2014-06-17 23:42 - 00005255 _____ () C:\Windows\LDPINST.LOG
2014-06-17 13:43 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-06-17 13:43 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-06-17 13:43 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-06-17 13:43 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-06-17 13:43 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-06-17 13:43 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-06-17 13:42 - 2014-06-18 13:44 - 00000000 ____D () C:\Users\xxxx\AppData\Local\NVIDIA Corporation
2014-06-17 13:42 - 2014-06-17 13:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-06-17 13:42 - 2014-04-30 20:27 - 01081112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-06-17 13:42 - 2014-04-30 20:26 - 01225920 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-06-17 13:41 - 2014-05-20 01:10 - 00601432 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-06-17 13:41 - 2014-05-15 01:49 - 03774821 _____ () C:\Windows\system32\nvcoproc.bin
2014-06-17 13:39 - 2014-05-20 04:44 - 31387936 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 25256224 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 24025376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 17561544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 17480432 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 12688328 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-06-17 13:39 - 2014-05-20 04:44 - 11644928 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 11599072 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 09735256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 09697640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 03141976 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 02953672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 02785568 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 02412376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 01889112 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433788.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 01541576 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433788.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 00895776 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 00892704 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 00867784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-06-17 13:39 - 2014-05-20 04:44 - 00861128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-06-17 13:39 - 2014-03-31 18:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-06-17 13:39 - 2014-03-31 18:42 - 00037320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-06-17 13:39 - 2014-03-31 18:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-06-17 13:37 - 2014-06-17 13:37 - 00000000 ____D () C:\NVIDIA
2014-06-17 13:32 - 2014-06-17 13:32 - 00000403 _____ () C:\Windows\ODBC.INI
2014-06-17 13:31 - 2014-06-17 13:31 - 00002715 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Excel.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00002703 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00002675 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Word.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Windows\ShellNew
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Windows\Msagent
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft Web Folders
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-06-17 13:21 - 2014-06-26 13:15 - 00000000 ____D () C:\Users\xxxx\AppData\Local\NVIDIA
2014-06-17 12:56 - 2014-06-17 12:58 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-17 12:56 - 2014-06-01 17:17 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-17 12:54 - 2013-05-10 07:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-06-17 12:54 - 2013-05-10 07:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-06-17 12:54 - 2013-05-10 06:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-06-17 12:54 - 2013-05-10 06:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-06-17 12:42 - 2014-06-19 11:38 - 01591896 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-06-17 12:29 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-06-17 12:21 - 2014-06-17 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-17 12:21 - 2014-06-17 12:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-17 12:21 - 2014-06-17 12:21 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-17 12:21 - 2014-06-17 12:21 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-17 12:21 - 2014-06-17 12:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-06-17 12:21 - 2014-06-17 12:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-06-17 12:21 - 2014-06-17 12:21 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-06-17 12:21 - 2014-06-17 12:21 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-06-17 12:21 - 2014-06-17 12:21 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00266456 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00240856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-06-17 12:21 - 2014-06-17 12:21 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-06-17 12:21 - 2014-06-17 12:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-17 12:16 - 2014-06-17 12:29 - 00015304 _____ () C:\Windows\IE11_main.log
2014-06-17 12:11 - 2014-06-29 15:52 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-17 12:11 - 2014-06-17 13:42 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-06-17 12:11 - 2014-05-20 04:44 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-06-17 12:11 - 2014-05-20 04:44 - 00052056 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-06-17 12:11 - 2014-05-20 03:25 - 06769096 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-06-17 12:11 - 2014-05-20 03:25 - 03514144 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-06-17 12:11 - 2014-05-20 03:25 - 02560968 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-06-17 12:11 - 2014-05-20 03:25 - 00927520 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-06-17 12:11 - 2014-05-20 03:25 - 00387528 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-06-17 12:11 - 2014-05-20 03:25 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-06-17 12:10 - 2014-06-18 13:44 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-06-17 12:10 - 2014-06-17 13:42 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-06-17 12:05 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-06-17 12:05 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-06-17 12:05 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-06-17 12:05 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-06-17 12:05 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-06-17 12:05 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-06-17 12:05 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-06-17 12:05 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-06-17 12:05 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-06-17 12:05 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-06-17 12:05 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-06-17 12:05 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-06-17 12:05 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-06-17 12:05 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-06-17 12:05 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-06-17 12:05 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-06-17 12:05 - 2013-10-01 22:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-06-17 12:05 - 2013-10-01 22:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-06-17 11:32 - 2012-08-23 16:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-06-17 11:32 - 2012-08-23 16:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-06-17 11:32 - 2012-08-23 16:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-06-17 11:32 - 2012-08-23 13:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-06-17 11:32 - 2012-08-23 12:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-06-17 11:27 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2014-06-17 11:04 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2014-06-17 11:04 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2014-06-17 11:04 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2014-06-17 11:04 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2014-06-17 11:04 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2014-06-17 11:04 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2014-06-17 11:04 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2014-06-17 11:04 - 2012-06-02 16:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-06-17 10:57 - 2013-01-13 23:17 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:17 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:16 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:11 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 23:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:31 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-17 10:57 - 2013-01-13 22:20 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2014-06-17 10:57 - 2013-01-13 22:09 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2014-06-17 10:57 - 2013-01-13 22:08 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2014-06-17 10:57 - 2013-01-13 21:59 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-06-17 10:57 - 2013-01-13 21:58 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-06-17 10:57 - 2013-01-13 21:54 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2014-06-17 10:57 - 2013-01-13 21:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2014-06-17 10:57 - 2013-01-13 21:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2014-06-17 10:57 - 2013-01-13 21:49 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2014-06-17 10:57 - 2013-01-13 21:48 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2014-06-17 10:57 - 2013-01-13 21:46 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2014-06-17 10:57 - 2013-01-13 21:43 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-06-17 10:57 - 2013-01-13 21:38 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2014-06-17 10:57 - 2013-01-13 21:38 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2014-06-17 10:57 - 2013-01-13 21:25 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2014-06-17 10:57 - 2013-01-13 21:24 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2014-06-17 10:57 - 2013-01-13 21:24 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2014-06-17 10:57 - 2013-01-13 21:20 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2014-06-17 10:57 - 2013-01-13 21:20 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2014-06-17 10:57 - 2013-01-13 21:15 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-06-17 10:57 - 2013-01-13 21:02 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-06-17 10:57 - 2013-01-13 20:34 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-06-17 10:57 - 2013-01-13 20:32 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-06-17 10:57 - 2013-01-13 20:09 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-06-17 10:57 - 2013-01-13 19:26 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2014-06-17 10:57 - 2013-01-13 19:05 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2014-06-17 10:57 - 2013-01-04 08:11 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-06-17 10:57 - 2013-01-04 08:11 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-06-17 10:53 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-06-17 10:53 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-06-17 10:53 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-06-17 10:46 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2014-06-17 10:46 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2014-06-17 10:46 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2014-06-17 10:46 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2014-06-17 10:46 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2014-06-17 10:46 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2014-06-17 10:46 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2014-06-17 10:46 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2014-06-17 10:45 - 2014-01-01 01:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-06-17 10:45 - 2014-01-01 01:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-06-17 10:45 - 2013-12-04 04:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-06-17 10:45 - 2013-12-04 04:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-06-17 10:45 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-06-17 10:45 - 2013-12-04 04:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-06-17 10:45 - 2013-12-04 04:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-06-17 10:45 - 2013-12-04 04:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-06-17 10:45 - 2013-12-04 04:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-06-17 10:45 - 2013-12-04 04:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-06-17 10:45 - 2013-12-04 04:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-06-17 10:45 - 2013-12-04 04:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-06-17 10:45 - 2013-12-04 04:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-06-17 10:45 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-06-17 10:45 - 2013-12-04 04:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-06-17 10:45 - 2013-12-04 04:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-06-17 10:45 - 2013-12-04 03:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-06-17 10:45 - 2013-12-04 03:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-06-17 10:45 - 2013-12-04 03:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-06-17 10:45 - 2013-12-04 03:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-06-17 10:45 - 2013-10-30 04:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-06-17 10:45 - 2013-10-30 04:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-06-17 10:45 - 2013-10-04 04:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-06-17 10:45 - 2013-10-04 04:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-06-17 10:45 - 2013-10-04 04:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-06-17 10:45 - 2013-10-04 03:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-06-17 10:45 - 2013-10-04 03:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-06-17 10:45 - 2013-10-04 03:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-06-17 10:45 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-06-17 10:45 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-06-17 10:45 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-06-17 10:45 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-06-17 10:45 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-06-17 10:45 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-06-17 10:45 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-06-17 10:45 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-06-17 10:45 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-06-17 10:45 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-06-17 10:45 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-06-17 10:45 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-06-17 10:45 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2014-06-17 10:45 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2014-06-17 10:45 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2014-06-17 10:45 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2014-06-17 10:45 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2014-06-17 10:45 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2014-06-17 10:45 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2014-06-17 10:45 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2014-06-17 10:45 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2014-06-17 10:45 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2014-06-17 10:45 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2014-06-17 10:45 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2014-06-17 10:45 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2014-06-17 10:45 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2014-06-17 10:45 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2014-06-17 10:45 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2014-06-17 10:45 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2014-06-17 10:45 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-06-17 10:45 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-06-17 10:45 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2014-06-17 10:45 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-06-17 10:45 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-06-17 10:45 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-06-17 10:45 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-06-17 10:45 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2014-06-17 10:45 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2014-06-17 10:45 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2014-06-17 10:45 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2014-06-17 10:45 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2014-06-17 10:45 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2014-06-17 10:45 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2014-06-17 10:45 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2014-06-17 10:45 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2014-06-17 10:45 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2014-06-17 10:45 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2014-06-17 10:45 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2014-06-17 10:45 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2014-06-17 10:45 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2014-06-17 10:45 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2014-06-17 10:45 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2014-06-17 10:45 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2014-06-17 10:45 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2014-06-17 10:44 - 2014-02-04 04:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-06-17 10:44 - 2014-02-04 04:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-06-17 10:44 - 2014-02-04 04:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-06-17 10:44 - 2014-02-04 04:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-06-17 10:44 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2014-06-17 10:44 - 2014-01-28 04:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-06-17 10:44 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-06-17 10:44 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-06-17 10:44 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-06-17 10:44 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-06-17 10:44 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-06-17 10:44 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-06-17 10:44 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-06-17 10:44 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-06-17 10:44 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-06-17 10:44 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-06-17 10:44 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-06-17 10:44 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-06-17 10:44 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-06-17 10:44 - 2012-05-04 13:00 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-06-17 10:44 - 2012-05-04 11:59 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-06-17 10:44 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-06-17 10:44 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2014-06-17 10:44 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2014-06-17 10:44 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-06-17 10:44 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-06-17 10:40 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-06-17 10:13 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-06-17 10:13 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-06-17 10:13 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2014-06-17 10:13 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2014-06-17 10:13 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2014-06-17 10:13 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2014-06-17 10:13 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2014-06-17 10:13 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2014-06-17 10:13 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2014-06-17 10:13 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2014-06-17 10:13 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2014-06-17 10:13 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-06-17 10:13 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-06-17 10:12 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-17 10:12 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-17 10:12 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-06-17 10:12 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-06-17 10:12 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-06-17 10:12 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-06-17 10:12 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-06-17 10:12 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2014-06-17 10:12 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2014-06-17 10:12 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2014-06-17 10:12 - 2011-10-26 07:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-06-17 10:12 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-06-17 10:12 - 2011-07-09 04:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-06-17 10:12 - 2011-04-27 04:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-06-17 10:12 - 2011-04-27 04:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-06-17 10:12 - 2010-12-23 12:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2014-06-17 10:12 - 2010-12-23 12:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2014-06-17 10:12 - 2010-12-23 12:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2014-06-17 10:12 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2014-06-17 10:12 - 2010-12-23 07:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2014-06-17 10:12 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2014-06-17 10:11 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-17 10:11 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-17 10:11 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-17 10:11 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-17 10:11 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-17 10:11 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-17 10:11 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-17 10:11 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-17 10:11 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-17 10:11 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-17 10:11 - 2014-01-29 04:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-06-17 10:11 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-06-17 10:11 - 2013-11-26 13:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-06-17 10:11 - 2013-11-12 04:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-06-17 10:11 - 2013-11-12 04:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-06-17 10:11 - 2013-10-19 04:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-06-17 10:11 - 2013-10-19 03:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-06-17 10:11 - 2013-10-05 22:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-06-17 10:11 - 2013-10-05 21:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-06-17 10:11 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-06-17 10:11 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-06-17 10:11 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-06-17 10:11 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-06-17 10:10 - 2014-02-07 03:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-06-17 10:10 - 2013-10-04 04:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-06-17 10:10 - 2013-10-04 03:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-06-17 10:10 - 2013-09-28 03:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-06-17 10:09 - 2013-11-27 03:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-06-17 10:09 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-06-17 10:09 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-06-17 10:09 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-06-17 10:09 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-06-17 10:09 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-06-17 10:09 - 2013-07-03 06:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2014-06-17 10:09 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-06-17 10:09 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-06-17 10:09 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-06-17 10:09 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-06-17 10:09 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-06-17 10:09 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-06-17 10:09 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-06-17 10:09 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-06-17 10:09 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-06-17 10:09 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-06-17 10:09 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-06-17 10:09 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-06-17 10:09 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-06-17 10:09 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-06-17 10:09 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-06-17 10:09 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-06-17 10:09 - 2012-11-29 00:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-06-17 10:09 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-06-17 10:09 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-06-17 10:09 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-06-17 10:09 - 2011-03-11 08:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2014-06-17 10:09 - 2011-03-11 08:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2014-06-17 10:09 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2014-06-17 10:09 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2014-06-17 10:09 - 2011-03-03 08:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-06-17 10:09 - 2011-03-03 08:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-06-17 10:09 - 2011-03-03 08:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-06-17 10:09 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-06-17 10:09 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-06-17 10:08 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-06-17 10:08 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-06-17 10:08 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-06-17 10:08 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-06-17 10:08 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-06-17 10:08 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-06-17 10:08 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-06-17 10:08 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-06-17 10:08 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-06-17 10:08 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-06-17 10:08 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-06-17 10:08 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-06-17 10:08 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-06-17 10:08 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-06-17 10:08 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-06-17 10:08 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-06-17 10:08 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-06-17 10:08 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-06-17 10:08 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-06-17 10:08 - 2013-09-25 04:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-06-17 10:08 - 2013-09-25 03:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-06-17 10:08 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-06-17 10:08 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-06-17 10:08 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-06-17 10:08 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-06-17 10:08 - 2013-07-04 14:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-06-17 10:08 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-06-17 10:08 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-06-17 10:07 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-06-17 10:07 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-06-17 10:07 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-06-17 10:07 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2014-06-17 10:07 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2014-06-17 10:07 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2014-06-17 10:07 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2014-06-17 10:07 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-06-17 10:07 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-06-17 10:07 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-06-17 10:06 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-06-17 10:06 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-06-17 10:06 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-06-17 10:06 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-06-17 10:06 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-06-17 10:06 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-06-17 10:06 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-06-17 10:06 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-06-17 10:06 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-06-17 10:06 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-06-17 10:06 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-06-17 10:06 - 2014-02-04 04:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-06-17 10:06 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-06-17 10:06 - 2013-10-03 04:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-06-17 10:06 - 2013-10-03 04:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-06-17 10:06 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

A-Man · 29.06.2014, 16:18

FRST.txt_Teil 3

Code:

ATTFilter

2014-06-17 10:06 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-06-17 10:06 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-06-17 10:06 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-06-17 10:06 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-06-17 10:06 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-06-17 10:06 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-06-17 10:06 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-06-17 10:06 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-06-17 10:06 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-06-17 10:06 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-06-17 10:06 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-06-17 10:06 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-06-17 10:06 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-06-17 10:06 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-06-17 10:06 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-06-17 10:06 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-06-17 10:06 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-06-17 10:06 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-06-17 10:06 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-06-17 10:06 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-06-17 10:06 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-06-17 10:06 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-06-17 10:06 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-06-17 10:06 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-06-17 10:06 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-06-17 10:06 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-06-17 10:06 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-06-17 10:06 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-06-17 10:06 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-06-17 10:06 - 2011-02-05 19:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-06-17 10:06 - 2011-02-05 19:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-06-17 10:06 - 2011-02-05 19:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-06-17 10:06 - 2011-02-05 19:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-06-17 10:06 - 2011-02-05 19:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-06-17 10:06 - 2011-02-05 19:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-06-17 10:06 - 2011-02-05 19:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-06-17 10:05 - 2013-10-12 04:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-06-17 10:05 - 2013-10-12 04:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-06-17 10:05 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-06-17 10:05 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-06-17 10:05 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-06-17 10:05 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-06-17 10:05 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-06-17 10:05 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-06-17 10:05 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-06-17 10:05 - 2013-10-12 03:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-06-17 10:05 - 2013-10-12 03:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-06-17 10:05 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-06-17 10:05 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-06-17 10:05 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-06-17 10:05 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-06-17 10:05 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-06-17 10:05 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-06-17 10:05 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-06-17 10:05 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-06-17 10:05 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-06-17 10:05 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-06-17 10:05 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-06-17 10:05 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-06-17 10:05 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-06-17 10:05 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-06-17 10:05 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-06-17 10:05 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-06-17 10:05 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-06-17 10:05 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-06-17 10:05 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-06-17 02:05 - 2014-06-17 02:06 - 00002108 _____ () C:\Users\xxxx\Desktop\restart.lnk
2014-06-17 01:57 - 2014-06-29 15:52 - 00256172 _____ () C:\Windows\PFRO.log
2014-06-17 01:57 - 2014-06-29 15:52 - 00014833 _____ () C:\Windows\setupact.log
2014-06-17 01:57 - 2014-06-17 01:57 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-17 01:53 - 2014-06-17 02:06 - 00002108 _____ () C:\Users\xxxx\Desktop\down.lnk
2014-06-17 01:06 - 2014-06-17 01:06 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-17 01:06 - 2014-06-17 01:06 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-17 00:53 - 2014-06-17 00:53 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-06-17 00:31 - 2014-06-26 11:27 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Canon
2014-06-17 00:31 - 2014-06-19 00:47 - 00000000 ____D () C:\ProgramData\CanonIJWSpt
2014-06-17 00:24 - 2014-06-17 00:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-06-17 00:23 - 2014-06-17 00:23 - 00000000 ____D () C:\Program Files (x86)\FreeTime
2014-06-17 00:14 - 2014-06-17 00:18 - 00000000 ____D () C:\Program Files\Registry System Wizard.NET
2014-06-17 00:14 - 2014-06-17 00:14 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\WinFAQ
2014-06-17 00:14 - 2006-07-11 21:45 - 00001767 _____ () C:\Windows\system32\RSWIcon.icl
2014-06-17 00:11 - 2014-06-17 00:11 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\COWON
2014-06-17 00:10 - 2014-06-27 13:08 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-17 00:10 - 2014-06-17 00:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jetAudio
2014-06-17 00:10 - 2014-06-17 00:10 - 00000000 ____D () C:\Program Files (x86)\JetAudio
2014-06-17 00:00 - 2014-06-17 00:00 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Collectorz.com
2014-06-16 23:59 - 2014-06-24 19:30 - 00000000 ____D () C:\Users\xxxx\Documents\Music Collector
2014-06-16 23:59 - 2014-06-16 23:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Collectorz.com
2014-06-16 23:59 - 2014-06-16 23:59 - 00000000 ____D () C:\Program Files (x86)\Collectorz.com
2014-06-16 23:53 - 2014-06-16 23:55 - 00000000 ____D () C:\Program Files (x86)\IZArc
2014-06-16 23:37 - 1998-10-29 16:45 - 00306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\Windows\System32\Tasks\COMODO
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\Program Files\COMODO
2014-06-16 23:19 - 2014-06-16 23:19 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-06-16 23:17 - 2014-06-16 23:20 - 00000000 ____D () C:\ProgramData\Comodo
2014-06-16 20:39 - 2014-06-17 13:19 - 00000000 ____D () C:\Windows\Panther
2014-06-16 20:38 - 2014-06-16 20:38 - 00000000 ____D () C:\Hotfix
2014-06-16 20:38 - 2011-02-16 04:16 - 00000029 ___RH () C:\Windows\version
2014-06-16 20:38 - 2011-02-16 04:16 - 00000013 ____R () C:\Windows\csup.txt
2014-06-16 20:37 - 2014-06-29 14:01 - 00698810 _____ () C:\Windows\system32\perfh007.dat
2014-06-16 20:37 - 2014-06-29 14:01 - 00148950 _____ () C:\Windows\system32\perfc007.dat
2014-06-16 20:37 - 2014-06-16 20:37 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-06-16 20:37 - 2014-06-16 20:37 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\de
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\0407
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\system32\de
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\system32\0407
2014-06-16 20:14 - 2014-06-16 20:22 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MyPhoneExplorer
2014-06-16 20:13 - 2014-06-16 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2014-06-16 20:13 - 2014-06-16 20:13 - 00000000 ____D () C:\Program Files (x86)\MyPhoneExplorer
2014-06-16 20:10 - 2014-06-16 20:10 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MPC-HC
2014-06-16 20:10 - 2014-06-16 20:10 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-16 20:10 - 2013-12-01 14:10 - 00257624 _____ () C:\Windows\system32\unrar64.dll
2014-06-16 20:10 - 2013-12-01 14:10 - 00218200 _____ () C:\Windows\SysWOW64\unrar.dll
2014-06-16 20:04 - 2014-06-16 20:04 - 00000000 ____D () C:\Users\Public\Documents\{F0489EF2-D393-4114-85BA-A94D71D89543}
2014-06-16 20:03 - 2014-06-16 20:03 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\com.Rhapsody.Napster5
2014-06-16 20:02 - 2014-06-16 20:02 - 00000893 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Napster 5.lnk
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\ProgramData\Adobe
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Program Files (x86)\Napster 5
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Macromedia
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Adobe
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Adobe
2014-06-16 19:52 - 2014-06-16 19:52 - 00000355 _____ () C:\Users\xxxx\Desktop\Netzwerk.lnk
2014-06-16 19:45 - 2014-06-16 19:45 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\xp-AntiSpy
2014-06-16 19:45 - 2014-06-16 19:45 - 00000000 ____D () C:\Program Files (x86)\xp-AntiSpy
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Thunderbird
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Thunderbird
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-06-16 18:48 - 2009-06-10 23:00 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20140616-184858.backup
2014-06-16 18:38 - 2014-06-18 17:20 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-16 18:38 - 2014-06-16 18:42 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-06-16 18:38 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-06-16 17:39 - 2014-06-16 17:39 - 00000000 ____D () C:\Users\Public\Documents\Logishrd
2014-06-16 17:38 - 2014-06-17 23:43 - 00000000 ____D () C:\ProgramData\Logishrd
2014-06-16 17:38 - 2014-06-16 17:39 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Logitech
2014-06-16 17:38 - 2014-06-16 17:38 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Logishrd
2014-06-16 17:27 - 2014-06-16 17:27 - 00003134 _____ () C:\Windows\System32\Tasks\{2C090209-A6BE-44FA-9EB4-83AE253D29C7}
2014-06-16 16:09 - 2014-06-19 16:40 - 00000000 _____ () C:\Windows\SysWOW64\mslck.dat
2014-06-16 16:09 - 2014-06-16 16:09 - 00000032 _____ () C:\Windows\SysWOW64\Mlkf.dll
2014-06-16 16:07 - 2014-06-16 16:07 - 00006225 _____ () C:\Windows\SysWOW64\FldLckINSTALL.LOG
2014-06-16 16:07 - 2014-06-16 16:07 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Folder Access
2014-06-16 16:07 - 2014-06-16 16:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Access
2014-06-16 16:07 - 2004-02-01 22:54 - 00569368 _____ () C:\Windows\SysWOW64\olelib.tlb
2014-06-16 16:07 - 2003-05-14 21:07 - 00389120 _____ () C:\Windows\SysWOW64\actskn43.ocx
2014-06-16 16:07 - 2002-07-26 17:02 - 00153088 _____ () C:\Windows\SysWOW64\fldlckun.exe
2014-06-16 16:07 - 2001-03-13 14:49 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\COMDLG32.OCX
2014-06-16 16:07 - 1998-04-24 00:00 - 00368912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbar332.dll
2014-06-16 16:07 - 1997-05-21 09:51 - 00034304 _____ (Microsoft) C:\Windows\SysWOW64\ntsvc.ocx
2014-06-16 15:25 - 2014-06-16 15:25 - 00000000 ____D () C:\Program Files (x86)\Mp3tag
2014-06-16 15:07 - 2014-06-16 15:07 - 00001495 _____ () C:\gmx.js
2014-06-16 14:46 - 2014-06-27 09:36 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-16 14:39 - 2014-06-16 14:39 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Mozilla
2014-06-16 14:39 - 2014-06-16 14:39 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-16 14:38 - 2014-06-29 13:06 - 00000000 ____D () C:\Users\xxxx\Desktop\Programme
2014-06-16 14:37 - 2014-06-20 16:32 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\PDF Architect 2
2014-06-16 14:36 - 2014-06-16 14:36 - 00000000 ____D () C:\ProgramData\PDF Architect 2
2014-06-16 14:36 - 2014-04-25 17:44 - 01070152 ____N (Microsoft Corporation) C:\Windows\SysWOW64\MSCOMCTL.OCX
2014-06-16 14:25 - 2014-06-16 14:25 - 00003040 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_point64k_01009.Wdf
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft-Maus
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____D () C:\Program Files\Microsoft IntelliPoint
2014-06-16 14:24 - 2014-06-16 14:24 - 00000000 ____D () C:\Windows\PCHEALTH
2014-06-16 14:17 - 2014-06-16 14:17 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Foxit Software
2014-06-16 14:17 - 2014-06-16 14:17 - 00000000 ____D () C:\Program Files (x86)\Foxit Software
2014-06-16 13:44 - 2012-03-14 05:00 - 00385024 _____ (CANON INC.) C:\Windows\system32\CNMLMAT.DLL
2014-06-16 13:26 - 2014-06-16 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Home Edition 8.1.1
2014-06-16 13:26 - 2014-06-16 13:26 - 00000000 ____D () C:\Program Files (x86)\MiniTool Partition Wizard Home Edition 8.1.1
2014-06-16 13:26 - 2013-09-30 16:26 - 03050808 _____ () C:\Windows\system32\pwNative.exe
2014-06-16 13:26 - 2013-09-30 16:26 - 00019152 ____N () C:\Windows\system32\pwdrvio.sys
2014-06-16 13:26 - 2013-09-30 16:26 - 00012504 ____N () C:\Windows\system32\pwdspio.sys
2014-06-16 11:29 - 2014-06-29 13:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-06-16 11:29 - 2014-06-29 13:10 - 00000000 ____D () C:\ProgramData\Avira
2014-06-16 11:29 - 2014-06-29 13:10 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-06-16 11:29 - 2014-06-25 23:02 - 00111824 _____ () C:\Users\xxxx\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-16 10:57 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-06-16 10:57 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-06-16 10:57 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-06-16 10:53 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-06-16 10:53 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-06-16 10:53 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-06-16 10:53 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-06-16 10:52 - 2014-06-17 13:36 - 00000000 ____D () C:\Users\xxxx\AppData\Local\VirtualStore
2014-06-16 10:52 - 2014-06-17 13:21 - 00001421 _____ () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-16 10:52 - 2014-06-16 10:52 - 00000020 ___SH () C:\Users\xxxx\ntuser.ini
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Vorlagen
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Startmenü
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Netzwerkumgebung
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Lokale Einstellungen
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Eigene Dateien
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Druckumgebung
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Documents\Eigene Musik
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Documents\Eigene Bilder
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Local\Verlauf
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Local\Anwendungsdaten
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Anwendungsdaten
2014-06-16 10:52 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-06-16 10:52 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-06-16 10:52 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-06-16 10:52 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-06-16 10:52 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-06-16 10:52 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-16 10:52 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-06-16 10:51 - 2014-06-29 15:55 - 01673485 _____ () C:\Windows\WindowsUpdate.log
2014-06-16 10:51 - 2014-06-29 12:36 - 00000000 ____D () C:\Users\xxxx
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 __SHD () C:\Recovery
2014-06-16 10:42 - 2014-06-16 10:42 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-06-16 10:41 - 2014-06-16 10:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

==================== One Month Modified Files and Folders =======

2014-06-29 15:56 - 2014-06-29 15:55 - 00009950 _____ () C:\Users\xxxx\Desktop\FRST.txt
2014-06-29 15:55 - 2014-06-27 22:17 - 00000000 ____D () C:\FRST
2014-06-29 15:55 - 2014-06-16 10:51 - 01673485 _____ () C:\Windows\WindowsUpdate.log
2014-06-29 15:54 - 2014-06-29 15:54 - 00000847 _____ () C:\Users\xxxx\Desktop\checkup.txt
2014-06-29 15:54 - 2014-06-29 15:54 - 00000000 ____D () C:\Users\xxxx\Desktop\Neuer Ordner
2014-06-29 15:52 - 2014-06-17 12:11 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-06-29 15:52 - 2014-06-17 01:57 - 00256172 _____ () C:\Windows\PFRO.log
2014-06-29 15:52 - 2014-06-17 01:57 - 00014833 _____ () C:\Windows\setupact.log
2014-06-29 15:52 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-29 15:49 - 2014-06-29 15:49 - 00854367 _____ () C:\Users\xxxx\Desktop\SecurityCheck.exe
2014-06-29 15:46 - 2014-06-23 13:56 - 00000000 ____D () C:\Program Files (x86)\eLicenser
2014-06-29 14:02 - 2009-07-14 06:45 - 00025872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-29 14:02 - 2009-07-14 06:45 - 00025872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-29 14:01 - 2014-06-16 20:37 - 00698810 _____ () C:\Windows\system32\perfh007.dat
2014-06-29 14:01 - 2014-06-16 20:37 - 00148950 _____ () C:\Windows\system32\perfc007.dat
2014-06-29 14:01 - 2009-07-14 07:13 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-06-29 13:57 - 2014-06-29 13:57 - 02347384 _____ (ESET) C:\Users\xxxx\Desktop\esetsmartinstaller_deu.exe
2014-06-29 13:41 - 2014-06-27 09:37 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2014-06-29 13:40 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-06-29 13:36 - 2014-06-29 13:36 - 00000826 _____ () C:\Users\xxxx\Documents\Fixlist.txt
2014-06-29 13:12 - 2014-06-29 13:12 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Avira
2014-06-29 13:11 - 2014-06-16 11:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-06-29 13:10 - 2014-06-16 11:29 - 00000000 ____D () C:\ProgramData\Avira
2014-06-29 13:10 - 2014-06-16 11:29 - 00000000 ____D () C:\Program Files (x86)\Avira
2014-06-29 13:08 - 2014-06-29 13:08 - 00000000 ____D () C:\ProgramData\Package Cache
2014-06-29 13:06 - 2014-06-16 14:38 - 00000000 ____D () C:\Users\xxxx\Desktop\Programme
2014-06-29 12:36 - 2014-06-16 10:51 - 00000000 ____D () C:\Users\xxxx
2014-06-29 11:56 - 2014-06-29 10:38 - 00008094 _____ () C:\zoek-results.log
2014-06-29 11:21 - 2014-06-29 10:36 - 00000000 ____D () C:\zoek_backup
2014-06-29 10:43 - 2014-06-29 11:54 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-06-29 10:38 - 2014-06-29 10:44 - 00000419 _____ () C:\zoek-results2014-06-29-083820.log
2014-06-29 10:24 - 2014-06-27 19:04 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-29 10:08 - 2014-06-27 14:28 - 00000000 ____D () C:\AdwCleaner
2014-06-29 10:02 - 2014-06-29 10:02 - 01285120 _____ () C:\Users\xxxx\Desktop\zoek.exe
2014-06-29 10:01 - 2014-06-27 14:28 - 01342659 _____ () C:\Users\xxxx\Desktop\adwcleaner_3.213.exe
2014-06-28 18:15 - 2014-06-28 18:15 - 00000000 ___SD () C:\32788R22FWJFW
2014-06-27 22:15 - 2014-06-27 22:15 - 02083328 _____ (Farbar) C:\Users\xxxx\Desktop\FRST64.exe
2014-06-27 21:36 - 2014-06-27 21:36 - 00000000 ____D () C:\Windows\ERUNT
2014-06-27 19:12 - 2014-06-27 19:12 - 05126408 _____ (JAM Software ) C:\Users\xxxx\Desktop\UltraSearch-x64-Setup.exe
2014-06-27 19:04 - 2014-06-27 19:04 - 00001102 _____ () C:\Users\xxxx\Desktop\Malwarebytes.lnk
2014-06-27 19:04 - 2014-06-27 19:04 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-27 19:04 - 2014-06-27 19:04 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-27 17:16 - 2014-06-23 14:00 - 00000000 ____D () C:\temp
2014-06-27 13:08 - 2014-06-27 13:08 - 00001214 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HD VDeck.lnk
2014-06-27 13:08 - 2014-06-27 13:07 - 00000000 ____D () C:\Program Files (x86)\VIA
2014-06-27 13:08 - 2014-06-17 00:10 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-27 13:07 - 2014-06-27 13:07 - 00001769 _____ () C:\Windows\Language_trs.ini
2014-06-27 12:59 - 2014-06-27 12:59 - 00001102 _____ () C:\Users\Administrator\Desktop\EVEREST Home Edition.lnk
2014-06-27 12:59 - 2014-06-27 12:59 - 00000000 ____D () C:\Program Files (x86)\Lavalys
2014-06-27 09:40 - 2014-06-27 09:40 - 00260940 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2014-06-27 09:36 - 2014-06-16 14:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-26 13:40 - 2014-06-26 13:40 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-06-26 13:40 - 2014-06-26 13:40 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Windows\system32\Macromed
2014-06-26 13:40 - 2014-06-26 13:40 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Macromedia
2014-06-26 13:24 - 2014-06-26 13:24 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-26 13:24 - 2014-06-26 13:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Mozilla
2014-06-26 13:24 - 2014-06-26 13:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-26 13:23 - 2014-06-26 13:23 - 00284288 _____ (Mozilla) C:\Users\xxxx\Downloads\Firefox Setup Stub 30.0.exe
2014-06-26 13:22 - 2014-06-26 13:22 - 00000000 __SHD () C:\Users\xxxx\AppData\Local\EmieUserList
2014-06-26 13:22 - 2014-06-26 13:22 - 00000000 __SHD () C:\Users\xxxx\AppData\Local\EmieSiteList
2014-06-26 13:15 - 2014-06-17 13:21 - 00000000 ____D () C:\Users\xxxx\AppData\Local\NVIDIA
2014-06-26 11:27 - 2014-06-26 11:27 - 00000000 ___HD () C:\ProgramData\CanonIJScan
2014-06-26 11:27 - 2014-06-17 00:31 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Canon
2014-06-26 09:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-06-26 08:36 - 2009-07-14 06:45 - 00381648 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-06-25 23:09 - 2014-06-25 23:09 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\NVIDIA
2014-06-25 23:02 - 2014-06-25 23:02 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Publish Providers
2014-06-25 23:02 - 2014-06-16 11:29 - 00111824 _____ () C:\Users\xxxx\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-25 13:01 - 2014-06-25 12:00 - 00000000 ____D () C:\ProgramData\MAGIX
2014-06-25 12:58 - 2014-06-25 12:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX
2014-06-25 12:58 - 2014-06-25 11:59 - 00000000 ____D () C:\Program Files (x86)\MAGIX
2014-06-25 12:46 - 2014-06-25 12:46 - 00000000 ____D () C:\Users\xxxx\Documents\MAGIX
2014-06-25 12:46 - 2014-06-25 12:01 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MAGIX
2014-06-25 12:45 - 2014-06-25 12:45 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-06-25 12:02 - 2014-06-25 12:01 - 00000240 _____ () C:\Windows\DirectX.log
2014-06-25 11:54 - 2014-06-25 11:54 - 00003168 _____ () C:\Windows\System32\Tasks\{3D28321F-66C2-4348-AE67-FCC9F4612ED5}
2014-06-25 11:29 - 2014-06-25 11:29 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-06-25 11:04 - 2014-06-23 17:42 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Mp3tag
2014-06-25 10:25 - 2014-06-23 15:00 - 00000676 _____ () C:\Windows\Clean! presets.set
2014-06-24 20:39 - 2014-06-29 13:10 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-06-24 20:39 - 2014-06-29 13:10 - 00117712 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-06-24 20:39 - 2014-06-29 13:10 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2014-06-24 19:30 - 2014-06-16 23:59 - 00000000 ____D () C:\Users\xxxx\Documents\Music Collector
2014-06-24 17:46 - 2014-06-24 16:04 - 00000000 ____D () C:\Program Files (x86)\PDFCreator
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\Users\xxxx\Documents\PDF Architect 2
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF Architect 2
2014-06-24 17:45 - 2014-06-24 17:45 - 00000000 ____D () C:\Program Files (x86)\PDF Architect 2
2014-06-24 15:18 - 2014-06-24 15:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2014-06-24 15:17 - 2014-06-24 15:17 - 00072184 _____ () C:\Users\Administrator\AppData\Local\GDIPFONTCACHEV1.DAT
2014-06-24 15:17 - 2014-06-24 15:17 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-06-24 15:17 - 2014-06-24 15:17 - 00001417 _____ () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-24 15:17 - 2014-06-24 15:17 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Adobe
2014-06-24 15:17 - 2014-06-24 15:16 - 00000000 ____D () C:\Users\Administrator
2014-06-24 15:16 - 2014-06-24 15:16 - 00000020 ___SH () C:\Users\Administrator\ntuser.ini
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Vorlagen
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Startmenü
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Netzwerkumgebung
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Lokale Einstellungen
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Eigene Dateien
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Druckumgebung
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Documents\Eigene Musik
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Documents\Eigene Bilder
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Verlauf
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\AppData\Local\Anwendungsdaten
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 _SHDL () C:\Users\Administrator\Anwendungsdaten
2014-06-24 15:16 - 2014-06-24 15:16 - 00000000 ____D () C:\Users\Administrator\AppData\Local\NVIDIA
2014-06-24 13:51 - 2014-06-19 00:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2014-06-24 13:51 - 2014-06-19 00:36 - 00000000 ____D () C:\Program Files (x86)\Canon
2014-06-24 13:17 - 2014-06-24 13:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5300 series
2014-06-24 13:17 - 2014-06-24 13:17 - 00000000 ____D () C:\ProgramData\Canon IJ Network Tool
2014-06-24 13:17 - 2009-07-14 05:20 - 00000000 __RSD () C:\Windows\Media
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ___HD () C:\Program Files\CanonBJ
2014-06-24 13:16 - 2014-06-24 13:16 - 00000000 ____D () C:\Windows\SysWOW64\STRING
2014-06-24 13:02 - 2014-06-24 13:02 - 00000000 ____D () C:\Windows\system32\STRING
2014-06-23 16:33 - 2014-06-23 16:33 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\VirtualSafe
2014-06-23 14:50 - 2014-06-23 14:50 - 00000000 ____D () C:\Users\xxxx\Documents\Clean
2014-06-23 14:44 - 2014-06-23 14:44 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pinnacle Clean 5
2014-06-23 14:44 - 2014-06-23 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Clean 5
2014-06-23 14:43 - 2014-06-23 14:42 - 00000000 ____D () C:\Program Files (x86)\Pinnacle
2014-06-23 14:11 - 2014-06-23 14:11 - 00000000 ____D () C:\Program Files (x86)\lame3.99.5
2014-06-23 13:58 - 2014-06-23 13:56 - 00000000 ____D () C:\ProgramData\eLicenser
2014-06-23 13:57 - 2014-06-23 13:57 - 00002892 _____ () C:\Windows\SysWOW64\audcon.sys
2014-06-23 13:57 - 2014-06-23 13:57 - 00000000 ____D () C:\ProgramData\Syncrosoft
2014-06-23 13:57 - 2014-06-23 13:56 - 00004906 _____ () C:\Windows\DPINST.LOG
2014-06-23 13:57 - 2014-06-23 13:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eLicenser
2014-06-23 13:56 - 2014-06-23 13:56 - 00000051 _____ () C:\Windows\SysWOW64\SYNSOPOS.exe.cfg
2014-06-23 13:56 - 2014-06-23 13:56 - 00000000 ____D () C:\Program Files (x86)\Syncrosoft
2014-06-23 13:04 - 2014-06-23 13:04 - 00002972 _____ () C:\Windows\System32\Tasks\{E7CF0C0C-9716-4B21-A345-A171BC26BB67}
2014-06-23 13:04 - 2014-06-23 13:04 - 00002972 _____ () C:\Windows\System32\Tasks\{638CBEF3-639D-49C6-A906-84DACD14C3AF}
2014-06-23 13:03 - 2014-06-23 13:03 - 00002972 _____ () C:\Windows\System32\Tasks\{D2B06B89-8163-48A4-8A66-0A8712E5C08E}2014-06-23 13:02 - 2014-06-23 13:02 - 00002972 _____ () C:\Windows\System32\Tasks\{98E87D83-260C-4ADD-8C61-756470853393}

2014-06-20 16:32 - 2014-06-16 14:37 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\PDF Architect 2
2014-06-20 12:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-06-19 23:34 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-06-19 23:28 - 2014-06-19 19:35 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Audacity
2014-06-19 19:34 - 2014-06-19 19:34 - 00001019 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2014-06-19 19:34 - 2014-06-19 19:34 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-06-19 16:40 - 2014-06-16 16:09 - 00000000 _____ () C:\Windows\SysWOW64\mslck.dat
2014-06-19 13:30 - 2014-06-18 16:18 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\TeamViewer
2014-06-19 12:59 - 2014-06-19 12:59 - 00001174 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-06-19 12:59 - 2014-06-19 12:59 - 00000000 ____D () C:\Program Files (x86)\TeamViewer
2014-06-19 11:38 - 2014-06-17 12:42 - 01591896 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-06-19 01:24 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-06-19 00:47 - 2014-06-17 00:31 - 00000000 ____D () C:\ProgramData\CanonIJWSpt
2014-06-19 00:46 - 2014-06-19 00:46 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Canon Easy-PhotoPrint EX
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ___HD () C:\ProgramData\CanonIJEPPEX2
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ___HD () C:\ProgramData\CanonEPP
2014-06-19 00:39 - 2014-06-19 00:39 - 00000000 ____D () C:\Program Files\Canon
2014-06-19 00:00 - 2014-06-19 00:00 - 00000000 ____D () C:\Windows\pss
2014-06-18 17:20 - 2014-06-16 18:38 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-06-18 15:24 - 2014-06-18 15:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\Users\xxxx\AppData\Local\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\ProgramData\1&1
2014-06-18 14:32 - 2014-06-18 14:32 - 00000000 ____D () C:\Program Files (x86)\1&1
2014-06-18 13:44 - 2014-06-17 13:42 - 00000000 ____D () C:\Users\xxxx\AppData\Local\NVIDIA Corporation
2014-06-18 13:44 - 2014-06-17 12:10 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-06-18 13:15 - 2014-06-18 13:15 - 00000000 ____D () C:\ProgramData\Pinnacle
2014-06-17 23:43 - 2014-06-16 17:38 - 00000000 ____D () C:\ProgramData\Logishrd
2014-06-17 23:42 - 2014-06-17 23:42 - 00005255 _____ () C:\Windows\LDPINST.LOG
2014-06-17 13:42 - 2014-06-17 13:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-06-17 13:42 - 2014-06-17 12:11 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-06-17 13:42 - 2014-06-17 12:10 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-06-17 13:37 - 2014-06-17 13:37 - 00000000 ____D () C:\NVIDIA
2014-06-17 13:36 - 2014-06-16 10:52 - 00000000 ____D () C:\Users\xxxx\AppData\Local\VirtualStore
2014-06-17 13:32 - 2014-06-17 13:32 - 00000403 _____ () C:\Windows\ODBC.INI
2014-06-17 13:31 - 2014-06-17 13:31 - 00002715 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Excel.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00002703 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft PowerPoint.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00002675 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Word.lnk
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Windows\ShellNew
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Windows\Msagent
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft Web Folders
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2014-06-17 13:31 - 2014-06-17 13:31 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-06-17 13:31 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-06-17 13:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system
2014-06-17 13:21 - 2014-06-16 10:52 - 00001421 _____ () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-06-17 13:19 - 2014-06-16 20:39 - 00000000 ____D () C:\Windows\Panther
2014-06-17 13:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-06-17 13:07 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-06-17 13:06 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-06-17 13:06 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-06-17 13:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK
2014-06-17 13:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR
2014-06-17 13:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\zh-HK
2014-06-17 13:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\tr-TR
2014-06-17 12:58 - 2014-06-17 12:56 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-17 12:29 - 2014-06-17 12:16 - 00015304 _____ () C:\Windows\IE11_main.log
2014-06-17 12:21 - 2014-06-17 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-17 12:21 - 2014-06-17 12:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-17 12:21 - 2014-06-17 12:21 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-17 12:21 - 2014-06-17 12:21 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-17 12:21 - 2014-06-17 12:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-06-17 12:21 - 2014-06-17 12:21 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-06-17 12:21 - 2014-06-17 12:21 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-06-17 12:21 - 2014-06-17 12:21 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-06-17 12:21 - 2014-06-17 12:21 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00266456 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00240856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-06-17 12:21 - 2014-06-17 12:21 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-06-17 12:21 - 2014-06-17 12:21 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-06-17 12:21 - 2014-06-17 12:21 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-06-17 12:21 - 2014-06-17 12:21 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-17 02:06 - 2014-06-17 02:05 - 00002108 _____ () C:\Users\xxxx\Desktop\restart.lnk
2014-06-17 02:06 - 2014-06-17 01:53 - 00002108 _____ () C:\Users\xxxx\Desktop\down.lnk
2014-06-17 01:57 - 2014-06-17 01:57 - 00000000 _____ () C:\Windows\setuperr.log
2014-06-17 01:06 - 2014-06-17 01:06 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-06-17 01:06 - 2014-06-17 01:06 - 00000000 ____D () C:\Program Files\CCleaner
2014-06-17 00:53 - 2014-06-17 00:53 - 00000000 ___HD () C:\ProgramData\CanonBJ
2014-06-17 00:24 - 2014-06-17 00:24 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory
2014-06-17 00:23 - 2014-06-17 00:23 - 00000000 ____D () C:\Program Files (x86)\FreeTime
2014-06-17 00:18 - 2014-06-17 00:14 - 00000000 ____D () C:\Program Files\Registry System Wizard.NET
2014-06-17 00:14 - 2014-06-17 00:14 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\WinFAQ
2014-06-17 00:11 - 2014-06-17 00:11 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\COWON
2014-06-17 00:10 - 2014-06-17 00:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\jetAudio
2014-06-17 00:10 - 2014-06-17 00:10 - 00000000 ____D () C:\Program Files (x86)\JetAudio
2014-06-17 00:00 - 2014-06-17 00:00 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Collectorz.com
2014-06-16 23:59 - 2014-06-16 23:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Collectorz.com
2014-06-16 23:59 - 2014-06-16 23:59 - 00000000 ____D () C:\Program Files (x86)\Collectorz.com
2014-06-16 23:55 - 2014-06-16 23:53 - 00000000 ____D () C:\Program Files (x86)\IZArc
2014-06-16 23:47 - 2009-07-14 04:34 - 00000505 _____ () C:\Windows\win.ini
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ___SD () C:\ProgramData\Shared Space
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\Windows\System32\Tasks\COMODO
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\COMODO
2014-06-16 23:20 - 2014-06-16 23:20 - 00000000 ____D () C:\Program Files\COMODO
2014-06-16 23:20 - 2014-06-16 23:17 - 00000000 ____D () C:\ProgramData\Comodo
2014-06-16 23:19 - 2014-06-16 23:19 - 00000000 ____D () C:\ProgramData\Comodo Downloader
2014-06-16 20:39 - 2009-07-14 07:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-06-16 20:39 - 2009-07-14 07:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-06-16 20:38 - 2014-06-16 20:38 - 00000000 ____D () C:\Hotfix
2014-06-16 20:38 - 2009-07-14 06:45 - 00000000 ____D () C:\Windows\Setup
2014-06-16 20:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-06-16 20:37 - 2014-06-16 20:37 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-06-16 20:37 - 2014-06-16 20:37 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\de
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\SysWOW64\0407
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\system32\de
2014-06-16 20:37 - 2014-06-16 20:37 - 00000000 ____D () C:\Windows\system32\0407
2014-06-16 20:37 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-06-16 20:22 - 2014-06-16 20:14 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MyPhoneExplorer
2014-06-16 20:13 - 2014-06-16 20:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2014-06-16 20:13 - 2014-06-16 20:13 - 00000000 ____D () C:\Program Files (x86)\MyPhoneExplorer
2014-06-16 20:10 - 2014-06-16 20:10 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\MPC-HC
2014-06-16 20:10 - 2014-06-16 20:10 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-16 20:04 - 2014-06-16 20:04 - 00000000 ____D () C:\Users\Public\Documents\{F0489EF2-D393-4114-85BA-A94D71D89543}
2014-06-16 20:03 - 2014-06-16 20:03 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\com.Rhapsody.Napster5
2014-06-16 20:02 - 2014-06-24 15:16 - 00000000 ____D () C:\Users\Administrator\AppData\Roaming\Macromedia
2014-06-16 20:02 - 2014-06-16 20:02 - 00000893 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Napster 5.lnk
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\ProgramData\Adobe
2014-06-16 20:02 - 2014-06-16 20:02 - 00000000 ____D () C:\Program Files (x86)\Napster 5
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Macromedia
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Adobe
2014-06-16 20:01 - 2014-06-16 20:01 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Adobe
2014-06-16 19:52 - 2014-06-16 19:52 - 00000355 _____ () C:\Users\xxxx\Desktop\Netzwerk.lnk
2014-06-16 19:45 - 2014-06-16 19:45 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\xp-AntiSpy
2014-06-16 19:45 - 2014-06-16 19:45 - 00000000 ____D () C:\Program Files (x86)\xp-AntiSpy
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Thunderbird
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Thunderbird
2014-06-16 18:51 - 2014-06-16 18:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Thunderbird
2014-06-16 18:42 - 2014-06-16 18:38 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-06-16 17:39 - 2014-06-16 17:39 - 00000000 ____D () C:\Users\Public\Documents\Logishrd
2014-06-16 17:39 - 2014-06-16 17:38 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Logitech
2014-06-16 17:38 - 2014-06-16 17:38 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Logishrd
2014-06-16 17:38 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-06-16 17:27 - 2014-06-16 17:27 - 00003134 _____ () C:\Windows\System32\Tasks\{2C090209-A6BE-44FA-9EB4-83AE253D29C7}
2014-06-16 16:09 - 2014-06-16 16:09 - 00000032 _____ () C:\Windows\SysWOW64\Mlkf.dll
2014-06-16 16:07 - 2014-06-16 16:07 - 00006225 _____ () C:\Windows\SysWOW64\FldLckINSTALL.LOG
2014-06-16 16:07 - 2014-06-16 16:07 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Folder Access
2014-06-16 16:07 - 2014-06-16 16:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Folder Access
2014-06-16 15:25 - 2014-06-16 15:25 - 00000000 ____D () C:\Program Files (x86)\Mp3tag
2014-06-16 15:07 - 2014-06-16 15:07 - 00001495 _____ () C:\gmx.js
2014-06-16 14:39 - 2014-06-16 14:39 - 00000000 ____D () C:\Users\xxxx\AppData\Local\Mozilla
2014-06-16 14:39 - 2014-06-16 14:39 - 00000000 ____D () C:\ProgramData\Mozilla
2014-06-16 14:36 - 2014-06-16 14:36 - 00000000 ____D () C:\ProgramData\PDF Architect 2
2014-06-16 14:25 - 2014-06-16 14:25 - 00003040 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_point64k_01009.Wdf
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft-Maus
2014-06-16 14:25 - 2014-06-16 14:25 - 00000000 ____D () C:\Program Files\Microsoft IntelliPoint
2014-06-16 14:24 - 2014-06-16 14:24 - 00000000 ____D () C:\Windows\PCHEALTH
2014-06-16 14:17 - 2014-06-16 14:17 - 00000000 ____D () C:\Users\xxxx\AppData\Roaming\Foxit Software
2014-06-16 14:17 - 2014-06-16 14:17 - 00000000 ____D () C:\Program Files (x86)\Foxit Software
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\winrm
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\WCN
2014-06-16 13:33 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\slmgr
2014-06-16 13:33 - 2009-07-14 07:37 - 00000000 ____D () C:\Windows\DigitalLocker
2014-06-16 13:33 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-06-16 13:33 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-06-16 13:33 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-06-16 13:33 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-06-16 13:33 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-06-16 13:33 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\IME
2014-06-16 13:32 - 2010-11-21 09:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-06-16 13:32 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\com
2014-06-16 13:26 - 2014-06-16 13:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniTool Partition Wizard Home Edition 8.1.1
2014-06-16 13:26 - 2014-06-16 13:26 - 00000000 ____D () C:\Program Files (x86)\MiniTool Partition Wizard Home Edition 8.1.1
2014-06-16 10:52 - 2014-06-16 10:52 - 00000020 ___SH () C:\Users\xxxx\ntuser.ini
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Vorlagen
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Startmenü
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Netzwerkumgebung
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Lokale Einstellungen
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Eigene Dateien
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Druckumgebung
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Documents\Eigene Musik
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Documents\Eigene Bilder
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Local\Verlauf
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\AppData\Local\Anwendungsdaten
2014-06-16 10:52 - 2014-06-16 10:52 - 00000000 _SHDL () C:\Users\xxxx\Anwendungsdaten
2014-06-16 10:52 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\restore
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-06-16 10:51 - 2014-06-16 10:51 - 00000000 __SHD () C:\Recovery
2014-06-16 10:51 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-06-16 10:51 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-06-16 10:51 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-06-16 10:42 - 2014-06-16 10:42 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-06-16 10:41 - 2014-06-16 10:41 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-06-16 10:40 - 2010-11-21 09:17 - 00000000 ____D () C:\Windows\CSC
2014-06-01 17:17 - 2014-06-17 12:56 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-30 11:11 - 2014-06-18 09:57 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

Some content of TEMP:
====================
C:\Users\xxxx\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-28 18:33

==================== End Of Log ============================

Addition.txt

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-06-2014
Ran by xxxx at 2014-06-29 15:56:55
Running from C:\Users\xxxx\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

1&1 Upload-Manager (HKLM-x32\...\1&1 Upload-Manager) (Version: 2.0.676 - 1&1 Internet AG)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Avira (HKLM-x32\...\{68e29fba-92b1-4f6f-a604-1d8679da3a9f}) (Version: 1.1.13.24161 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.13.24161 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.5.450 - Avira)
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.1.6 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - )
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.1 - Canon Inc.)
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version:  - Canon Inc.)
Canon MP Navigator EX 5.0 (HKLM-x32\...\MP Navigator EX 5.0) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
Clean 5 (HKLM-x32\...\Clean 5) (Version: Clean 5 - Pinnacle Systems GmbH / Steinberg Media Technologies GmbH)
COMODO Firewall (HKLM\...\{D32EF4F9-1506-434E-A813-3D4C0AA50300}) (Version: 7.0.53315.4132 - COMODO Security Solutions Inc.)
Download Protect (HKCU\...\{132401a7-2006-4342-b43c-ccf5f02c2b01}) (Version:  - Download Protect)
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
FormatFactory 3.3.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.5.0 - Format Factory)
Grabster AV 300 V1.0.8.30 (HKLM-x32\...\Grabster AV 300) (Version: 1.0.8.30 - )
IZArc 4.1.8 (HKLM-x32\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 4.1.8 - Ivan Zahariev)
jetAudio Basic (HKLM-x32\...\{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}) (Version: 8.1.0 - COWON)
K-Lite Codec Pack 10.5.5 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.5.5 - )
MAGIX Video easy TERRATEC Edition (HKLM-x32\...\MAGIX_{2FA06473-23F0-4372-8DD5-1EAE42503D93}) (Version: 3.0.1.50 - MAGIX AG)
MAGIX Video easy TERRATEC Edition (Version: 3.0.1.50 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft IntelliPoint 7.1 (HKLM\...\{5EBE0F1F-45DF-4298-AC6B-E8E54EAEC834}) (Version: 7.10.344.0 - Microsoft)
Microsoft Office 2000 Premium (HKLM-x32\...\{00000407-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2816 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
MiniTool Partition Wizard Home Edition 8.1.1 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Solution Ltd.)
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Mozilla Thunderbird 24.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 de)) (Version: 24.6.0 - Mozilla)
Mp3tag v2.59a (HKLM-x32\...\Mp3tag) (Version: v2.59a - Florian Heidenreich)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Music Collector (HKLM-x32\...\{8CDFF5D2-89BF-4391-9D20-7D95C88DC98C}_is1) (Version:  - Collectorz.com)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.5 - F.J. Wechselberger)
Napster 5 Beta (HKLM-x32\...\com.Rhapsody.Napster5) (Version: 1.0.65 - Rhapsody International, Inc)
Napster 5 Beta (x32 Version: 1.0.65 - Rhapsody International, Inc) Hidden
NVIDIA 3D Vision Controller-Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 337.88 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 337.88 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.0.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.0.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.151.1095 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA ShadowPlay 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
NVIDIA Update 12.4.67 (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 12.4.67 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
PDF Architect 2 (HKLM-x32\...\PDF Architect 2) (Version: 2.0.24.16092 - pdfforge GmbH)
PDF Architect 2 View Module (HKLM-x32\...\{46889070-D447-4936-A5D3-246DB972FA2E}) (Version: 2.0.6.16537 - pdfforge GmbH)
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge)
Platform (x32 Version: 1.36 - VIA Technologies, Inc.) Hidden
Registry System Wizard.NET (HKLM\...\{110ED870-1DF3-4574-A679-E2C4A8163211}_is1) (Version: 0.13.731.51 - WinFAQ)
SHIELD Streaming (Version: 2.1.108 - NVIDIA Corporation) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.3.39 - Safer-Networking Ltd.)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.29480 - TeamViewer)
VIA Plattform-Geräte-Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.36 - VIA Technologies, Inc.)
xp-AntiSpy 3.98-2 (HKLM-x32\...\xp-AntiSpy) (Version:  - Christian Taubenheim)

==================== Restore Points  =========================

27-06-2014 07:39:58 Windows Update
27-06-2014 11:07:18 Installed Platform
29-06-2014 08:38:05 zoek.exe restore point

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1B39432C-398E-4A24-BE63-B9B3E4AE892C} - System32\Tasks\COMODO\COMODO Update {A6D52E4F-569B-4756-B3D8-DF217313DA85} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {686399FC-3BBE-45C1-B5AC-FCED38C12E2C} - System32\Tasks\COMODO\COMODO Signature Update {B9D5C6F9-17D2-4917-8BD0-614BAA1C6A59} => C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe [2014-04-16] (COMODO)
Task: {A4705B4D-642D-4450-9CC1-90A33814D8BB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-05-20] (Piriform Ltd)
Task: {F63FF7E8-377F-4CF3-B84F-A39B82FCA86E} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2009-11-11] (Microsoft Corporation)

==================== Loaded Modules (whitelisted) =============

2014-06-17 12:11 - 2014-05-20 03:25 - 00116568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-06-16 23:53 - 2012-07-20 14:39 - 02469888 _____ () C:\Program Files (x86)\IZArc\IZArcCM64.dll
2014-06-27 13:08 - 2011-05-06 14:12 - 00078448 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2014-06-27 13:08 - 2011-05-06 14:12 - 00386160 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2014-06-27 13:08 - 2011-05-06 14:12 - 00621168 _____ () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\Services: AntiVirSchedulerService => 2
MSCONFIG\Services: AntiVirService => 2
MSCONFIG\Services: Avira.OE.ServiceHost => 2
MSCONFIG\Services: CmdAgent => 2
MSCONFIG\Services: cmdvirth => 3
MSCONFIG\Services: SDScannerService => 2
MSCONFIG\Services: SDUpdateService => 2
MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\Services: VIAKaraokeService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Microsoft Office.lnk => C:\Windows\pss\Microsoft Office.lnk.CommonStartup
MSCONFIG\startupreg: 1&1_1&1 Upload-Manager => "C:\Program Files (x86)\1&1\1&1 Upload-Manager\DAVSRV.EXE" /hide
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: Avira Systray => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
MSCONFIG\startupreg: COMODO Internet Security => C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: SDTray => "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart

==================== Faulty Device Manager Devices =============

Name: Microsoft-Teredo-Tunneling-Adapter
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/29/2014 03:54:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 03:45:42 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/29/2014 01:57:35 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/29/2014 01:57:33 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/29/2014 01:57:23 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/29/2014 01:56:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 01:53:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 01:49:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 01:46:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 01:43:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (06/29/2014 03:54:25 PM) (Source: WMPNetworkSvc) (EventID: 14319) (User: )
Description: WMPNetworkSvc

Error: (06/29/2014 03:53:27 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (06/29/2014 03:52:35 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (06/29/2014 01:57:18 PM) (Source: WMPNetworkSvc) (EventID: 14319) (User: )
Description: WMPNetworkSvc

Error: (06/29/2014 01:56:18 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (06/29/2014 01:55:27 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (06/29/2014 01:54:18 PM) (Source: WMPNetworkSvc) (EventID: 14319) (User: )
Description: WMPNetworkSvc

Error: (06/29/2014 01:53:21 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (06/29/2014 01:52:29 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143.

Error: (06/29/2014 01:49:55 PM) (Source: WMPNetworkSvc) (EventID: 14319) (User: )
Description: WMPNetworkSvc


Microsoft Office Sessions:
=========================
Error: (06/29/2014 03:54:02 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 03:45:42 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (06/29/2014 01:57:35 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\xxxx\Desktop\esetsmartinstaller_deu.exe

Error: (06/29/2014 01:57:33 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\xxxx\Desktop\esetsmartinstaller_deu.exe

Error: (06/29/2014 01:57:23 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\xxxx\Desktop\esetsmartinstaller_deu.exe

Error: (06/29/2014 01:56:53 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 01:53:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 01:49:29 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 01:46:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2014 01:43:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
  Date: 2014-06-29 13:07:07.641
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\xxxx\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-29 13:07:07.594
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\xxxx\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-29 13:07:07.142
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-29 13:07:07.095
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-27 12:59:45.405
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\xxxx\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-27 12:59:45.350
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Users\xxxx\AppData\Local\Temp\EverestDriver.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-27 12:59:45.105
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-06-27 12:59:45.055
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Memory info =========================== 

Percentage of memory in use: 40%
Total physical RAM: 4094.18 MB
Available physical RAM: 2444.04 MB
Total Pagefile: 8186.53 MB
Available Pagefile: 6622.33 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:121.25 GB) (Free:82.55 GB) NTFS
Drive i: (Elements) (Fixed) (Total:232.88 GB) (Free:77 GB) NTFS
Drive j: (MEDIA) (Fixed) (Total:810.16 GB) (Free:595.04 GB) NTFS
Drive k: () (Removable) (Total:14.93 GB) (Free:4.33 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: D2C45F08)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=121 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=810 GB) - (Type=07 NTFS)

========================================================
Disk: 5 (MBR Code: Windows XP) (Size: 233 GB) (Disk ID: 00059C04)
Partition 1: (Not Active) - (Size=233 GB) - (Type=07 NTFS)

========================================================
Disk: 6 (Size: 15 GB) (Disk ID: D4372938)
Partition 1: (Not Active) - (Size=15 GB) - (Type=0C)

==================== End Of Log ============================

Also wie es aussieht, ist er verschwunden

Gibt es auch einen Button, mit dem man sich gleich 1000mal bedanken kann?

Du wolltest dich ja nochmal wegen Tipps und Tools entfernen melden, dafür wäre ich auch dankbar. BTW: macht es nicht durchaus Sinn, Malwarebytes und adwarecleaner zu behalten...?
Oder kommen die sich mit spybot, antivir etc. die Quere?

M-K-D-B · 30.06.2014, 15:30

Dein Windows-Sicherheitscenter läuft womöglich nicht, das müssen wir uns noch ansehen, bevor ich dir Tipps mit auf den Weg gebe.

Downloade dir bitte

Farbar Service Scanner

Starte das Tool mit Doppelklick auf die FSS.exe
Gehe sicher, dass folgende Optionen angehakt sind.
- Internet Services
- Windows Firewall
- System Restore
- Security Center/Action Center
- Windows Update
- Windows Defender
- Other Services
Klicke auf Scan.
Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.