Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Nach Virus keine Berechtigung für externe Festplatte mehr (https://www.trojaner-board.de/138767-virus-keine-berechtigung-externe-festplatte-mehr.html)

sommerzeit24 25.07.2013 14:40
Nach Virus keine Berechtigung für externe Festplatte mehr
 
Die Vorgeschichte: Vor ca. einem Monat habe ich bemerkt, dass mein Computer immer langsamer geworden ist. Dann ist mein Browser, Google Chrome, auch immer lahmer geworden. Ich hatte zu der Zeit Windows 7 32-bit. Es hat nicht lang gedauert und nach einem Neustart bekam ich plötzlich von McAfee eine Virenmeldung (ich habe den Namen vergessen, da ich vor einem Monat gedacht habe, das Thema wäre erledigt). Daraus wurden 20 Meldungen und bald 100. Ich habe noch versucht auf Google den Namen zu suchen und hier im Trojaner-Board herausgefunden, dass adw cleaner helfen könnte, aber der Computer war bald unbenutzbar.
Da ich sowieso keine wichtigen Dateien darauf hatte, habe ich alle Festplatten formatiert und den Computer neu aufgesetzt (das erste Mal wieder Win 7 32-bit). Bis auf meine externe Festplatte, auf der ich Fotos, Musik und andere wichtige Dinge gespeichert habe. Es ist eine Western Digital, Dateisystem NTFS, Speicherplatz 1 TB, immer über USB mit dem Computer verbunden, falls das irgendwie helfen könnte.

Danach habe ich McAfee gegen den nächstbesten Virenscanner ausgetauscht, den ich finden konnte, Bitdefender. Der hat sogar nach dem Formatieren noch irgendwas gefunden (da das schon so lange her ist, habe ich vergessen was es war. Es war dem Anschein nach eine ganz normale Datei). Seitdem bekomme ich keine Meldungen mehr, auch der Computer ist schneller geworden. Ich habe diese Woche nochmal die Festplatten formatiert, dieses Mal ein neues Windows 7 64-bit installiert (um meine RAM vollständig nutzen zu können...) und nochmal alles neu installiert.

So viel zur komplizierten Vorgeschichte. Heute ist mir aufgefallen, dass auf meiner externen Festplatte der Ordner "Musik" mit allen meinen mp3s schreibgeschützt ist. Außerdem kann ich auf ein paar Unterordner des Ordners "Musik" nicht zugreifen - die Meldung lautet dann:

"Sie verfügen momentan nicht über die Berechtigung des Zugriffs auf diesen Ordner. Klicken Sie auf fortsetzen, um dauerhaft Zugriff auf diesen Ordner zu erhalten".

Nach Klick auf fortsetzen kommt: "Der Zugriff auf diesen Ordner wurde verweigert. Sie müssen die Registerkarte Sicherheit verwenden, um Zugriff auf diesen Ordner zu erhalten".

In den Eigenschaften unter Sicherheit sind dann als Benutzer aufgezählt: mein Benutzerkonto, Administratoren-Konto meines PCs und ein fremdes Konto mit einer langen Aufzählung von Zeichen. Nach genauerer Betrachtung sah ich dann, dass ich zwar zugreifen kann auf die meisten Ordner auf meiner Festplatte, aber dass dieses komische Konto öfter mit aufgezählt wird.

Ich habe also alle Punkte des "Für alle Hilfesuchenden..." Threads befolgt. Leider kommt bei meinem Computer ein blue screen, wenn gmer fertig ist, so dass ich den Scan nicht speichern kann.

Hier ist das File von OTL:

Code:
OTL logfile created on: 25.07.2013 09:55:00 - Run 2
OTL by OldTimer - Version 3.2.69.0    Folder = C:\Users\xxxx\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16635)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,99 Gb Total Physical Memory | 2,81 Gb Available Physical Memory | 70,33% Memory free
7,98 Gb Paging File | 6,44 Gb Available in Paging File | 80,74% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 910,41 Gb Total Space | 872,00 Gb Free Space | 95,78% Space Free | Partition Type: NTFS
Drive D: | 20,00 Gb Total Space | 15,47 Gb Free Space | 77,34% Space Free | Partition Type: NTFS
Drive F: | 614,91 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF
Drive J: | 930,86 Gb Total Space | 89,37 Gb Free Space | 9,60% Space Free | Partition Type: NTFS
 
Computer Name: xxxx-PC | User Name: xxxx | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2013.07.25 09:15:23 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\xxxx\Desktop\OTL.exe
PRC - [2013.07.23 11:28:11 | 000,217,992 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
PRC - [2013.06.08 14:11:48 | 000,048,200 | ---- | M] () -- C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
PRC - [2013.05.11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2007.09.04 15:14:04 | 000,974,848 | ---- | M] (Hama GmbH & Co KG) -- C:\Program Files (x86)\Hama\Common\RaUI.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2013.06.08 14:11:48 | 000,048,200 | ---- | M] () -- C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2013.07.08 12:22:19 | 000,064,224 | ---- | M] (Bitdefender) [Auto | Running] -- C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe -- (gzserv)
SRV:64bit: - [2013.03.29 03:34:18 | 000,241,152 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2013.07.24 12:57:32 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2013.07.23 11:21:57 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013.05.11 12:37:26 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2013.07.23 13:03:58 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013.05.28 12:12:19 | 000,382,536 | ---- | M] (BitDefender S.R.L.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\trufos.sys -- (trufos)
DRV:64bit: - [2013.04.22 13:21:00 | 000,148,696 | ---- | M] (BitDefender LLC) [File_System | System | Running] -- C:\Windows\SysNative\drivers\gzflt.sys -- (gzflt)
DRV:64bit: - [2013.04.17 14:59:58 | 000,593,144 | ---- | M] (BitDefender) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\avckf.sys -- (avckf)
DRV:64bit: - [2013.04.17 14:59:56 | 000,718,840 | ---- | M] (BitDefender) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\avc3.sys -- (avc3)
DRV:64bit: - [2013.03.29 04:35:02 | 011,658,752 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2013.03.29 03:09:44 | 000,581,120 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2013.02.14 13:41:10 | 000,096,768 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2010.11.21 05:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010.11.21 05:23:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010.11.21 05:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010.11.21 05:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010.11.21 05:23:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:35:42 | 000,187,392 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009.06.10 22:35:36 | 000,867,328 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2013.04.17 17:18:57 | 000,121,928 | ---- | M] (Bitdefender SRL) [Kernel | System | Running] -- C:\Programme\Bitdefender\Antivirus Free Edition\bdfwfpf.sys -- (bdfwfpf)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E1 97 9B D3 81 87 CE 01  [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
 
========== FireFox ==========
 
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
 
 
========== Chrome  ==========
 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter},
CHR - homepage:
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
CHR - Extension: Google Docs = C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google-Suche = C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Pinterest button = C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbfjhllmkehmdajjlkolhdjjlfcmmlpl\6.4_0\
CHR - Extension: AdBlock = C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0\
CHR - Extension: Evernote Web = C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol\1.0.7_0\
CHR - Extension: Evernote Web Clipper = C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\5.9.19_0\
CHR - Extension: Google Mail = C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Programme\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programme\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - Startup: C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\xxxx\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 212.186.211.21 195.34.133.21
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{80C728CC-B826-4B28-8D4A-1CF42CB2DAD4}: DhcpNameServer = 212.186.211.21 195.34.133.21
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009.06.18 23:12:18 | 000,000,088 | ---- | M] () - F:\autorun.inf -- [ UDF ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013.07.25 09:37:47 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013.07.25 09:15:23 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\xxxx\Desktop\OTL.exe
[2013.07.25 08:33:02 | 000,000,000 | ---D | C] -- C:\Users\xxxx\Desktop\Programme
[2013.07.25 08:27:18 | 000,000,000 | ---D | C] -- C:\ProgramData\GZ
[2013.07.25 08:13:19 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013.07.25 07:44:38 | 000,000,000 | ---D | C] -- C:\FRST
[2013.07.25 07:05:40 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Wat
[2013.07.25 07:05:40 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Wat
[2013.07.24 12:57:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rosetta Stone
[2013.07.24 12:56:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Rosetta Stone
[2013.07.24 12:56:32 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Rosetta Stone
[2013.07.24 12:39:50 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\GPLGS
[2013.07.24 12:39:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
[2013.07.24 12:39:18 | 000,000,000 | ---D | C] -- C:\ProgramData\APN
[2013.07.24 12:39:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Acro Software
[2013.07.24 12:39:00 | 000,489,392 | ---- | C] (Ask Partner Network) -- C:\Users\xxxx\Documents\APNSetup.exe
[2013.07.23 17:46:02 | 000,000,000 | ---D | C] -- C:\ProgramData\FLEXnet
[2013.07.23 17:45:56 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Local\Adobe
[2013.07.23 17:32:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2013.07.23 17:28:25 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\spool
[2013.07.23 17:23:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2013.07.23 17:23:24 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Macrovision Shared
[2013.07.23 17:22:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2013.07.23 17:09:09 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hama Wireless LAN
[2013.07.23 17:09:08 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2013.07.23 17:09:08 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Hama
[2013.07.23 16:40:02 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\ATI
[2013.07.23 16:40:02 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Local\ATI
[2013.07.23 16:40:02 | 000,000,000 | ---D | C] -- C:\ProgramData\ATI
[2013.07.23 14:09:04 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET
[2013.07.23 13:42:41 | 000,000,000 | ---D | C] -- C:\ProgramData\AMD
[2013.07.23 13:42:40 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AMD AVT
[2013.07.23 13:42:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ATI Technologies
[2013.07.23 13:42:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ATI Technologies
[2013.07.23 13:42:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center
[2013.07.23 13:41:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\ATI Technologies
[2013.07.23 13:41:01 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies
[2013.07.23 13:40:58 | 000,000,000 | ---D | C] -- C:\Program Files\ATI
[2013.07.23 13:39:53 | 000,000,000 | ---D | C] -- C:\AMD
[2013.07.23 13:34:02 | 000,000,000 | ---D | C] -- C:\Medion
[2013.07.23 13:22:27 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2013.07.23 13:21:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun
[2013.07.23 13:21:46 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013.07.23 13:21:23 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Java
[2013.07.23 13:11:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\NVIDIA Corporation
[2013.07.23 13:11:11 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2013.07.23 13:05:52 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2013.07.23 13:04:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2013.07.23 13:03:58 | 000,283,200 | ---- | C] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013.07.23 13:03:55 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\DAEMON Tools Lite
[2013.07.23 13:03:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\DAEMON Tools Lite
[2013.07.23 13:02:54 | 000,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2013.07.23 13:02:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
[2013.07.23 13:02:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\7-Zip
[2013.07.23 12:40:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows 7 - Codec Pack
[2013.07.23 12:40:26 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\C2MP
[2013.07.23 12:33:55 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\vlc
[2013.07.23 12:17:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2013.07.23 12:13:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[2013.07.23 12:13:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\VideoLAN
[2013.07.23 12:11:37 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\uTorrent
[2013.07.23 11:36:40 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2013.07.23 11:32:48 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\OpenOffice.org
[2013.07.23 11:30:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2013.07.23 11:29:28 | 000,000,000 | --SD | C] -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
[2013.07.23 11:28:35 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\OpenOffice.org 3
[2013.07.23 11:28:11 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Google
[2013.07.23 11:28:07 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Local\Google
[2013.07.23 11:27:57 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Local\Deployment
[2013.07.23 11:27:57 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Local\Apps
[2013.07.23 11:25:15 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2013.07.23 11:22:14 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Dropbox
[2013.07.23 11:22:03 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\Macromedia
[2013.07.23 11:22:03 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\Adobe
[2013.07.23 11:21:56 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2013.07.23 11:21:55 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2013.07.23 11:03:11 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2013.07.23 11:00:15 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\Dropbox
[2013.07.23 10:54:54 | 000,261,056 | ---- | C] (BitDefender) -- C:\Windows\SysNative\drivers\avchv.sys
[2013.07.23 10:53:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Antivirus Free Edition
[2013.07.23 10:53:47 | 000,718,840 | ---- | C] (BitDefender) -- C:\Windows\SysNative\drivers\avc3.sys
[2013.07.23 10:53:47 | 000,593,144 | ---- | C] (BitDefender) -- C:\Windows\SysNative\drivers\avckf.sys
[2013.07.23 10:52:43 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\QuickScan
[2013.07.23 10:52:34 | 000,000,000 | ---D | C] -- C:\Program Files\Bitdefender
[2013.07.23 10:52:30 | 000,148,696 | ---- | C] (BitDefender LLC) -- C:\Windows\SysNative\drivers\gzflt.sys
[2013.07.23 10:52:29 | 000,382,536 | ---- | C] (BitDefender S.R.L.) -- C:\Windows\SysNative\drivers\trufos.sys
[2013.07.23 10:48:12 | 000,000,000 | R--D | C] -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2013.07.23 10:48:12 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Searches
[2013.07.23 10:48:12 | 000,000,000 | R--D | C] -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2013.07.23 10:47:48 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\Identities
[2013.07.23 10:47:41 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Contacts
[2013.07.23 10:47:39 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Local\VirtualStore
[2013.07.23 10:47:33 | 000,000,000 | --SD | C] -- C:\Users\xxxx\AppData\Roaming\Microsoft
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Videos
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Saved Games
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Pictures
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Music
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Links
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Favorites
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Downloads
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Documents
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\Desktop
[2013.07.23 10:47:33 | 000,000,000 | R--D | C] -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Vorlagen
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\AppData\Local\Verlauf
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\AppData\Local\Temporary Internet Files
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Startmenü
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\SendTo
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Recent
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Netzwerkumgebung
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Lokale Einstellungen
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Documents\Eigene Videos
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Documents\Eigene Musik
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Eigene Dateien
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Documents\Eigene Bilder
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Druckumgebung
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Cookies
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\AppData\Local\Anwendungsdaten
[2013.07.23 10:47:33 | 000,000,000 | -HSD | C] -- C:\Users\xxxx\Anwendungsdaten
[2013.07.23 10:47:33 | 000,000,000 | -H-D | C] -- C:\Users\xxxx\AppData
[2013.07.23 10:47:33 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Local\Temp
[2013.07.23 10:47:33 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Local\Microsoft
[2013.07.23 10:47:33 | 000,000,000 | ---D | C] -- C:\Users\xxxx\AppData\Roaming\Media Center Programs
[2013.07.23 10:47:23 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2013.07.23 10:47:23 | 000,000,000 | -HSD | C] -- C:\Recovery
[2013.07.23 10:47:23 | 000,000,000 | -HSD | C] -- C:\Programme
[2013.07.23 10:47:23 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien
[2013.07.23 10:47:23 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2013.07.23 10:47:23 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2013.07.23 10:47:23 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2013.07.23 10:47:22 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2013.07.23 10:47:22 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2013.07.23 10:47:22 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2013.07.23 10:47:22 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2013.07.23 10:47:22 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2013.07.23 10:42:05 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2013.07.23 10:37:57 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2013.07.23 10:37:14 | 000,000,000 | -HSD | C] -- C:\System Volume Information
 
========== Files - Modified Within 30 Days ==========
 
[2013.07.25 09:50:51 | 000,020,656 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.07.25 09:50:51 | 000,020,656 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.07.25 09:49:16 | 000,001,104 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.07.25 09:48:33 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.07.25 09:48:20 | 3214,233,600 | -HS- | M] () -- C:\hiberfil.sys
[2013.07.25 09:46:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.07.25 09:35:44 | 000,377,856 | ---- | M] () -- C:\Users\xxxx\Desktop\gmer_2.1.19163.exe
[2013.07.25 09:33:00 | 000,001,108 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.07.25 09:15:23 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\xxxx\Desktop\OTL.exe
[2013.07.25 09:14:43 | 000,000,168 | ---- | M] () -- C:\Users\xxxx\defogger_reenable
[2013.07.25 09:13:41 | 000,050,477 | ---- | M] () -- C:\Users\xxxx\Desktop\Defogger.exe
[2013.07.25 07:56:09 | 000,000,512 | ---- | M] () -- C:\Users\xxxx\Documents\MBR.dat
[2013.07.25 07:14:31 | 001,612,484 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.07.25 07:14:31 | 000,696,620 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2013.07.25 07:14:31 | 000,651,938 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.07.25 07:14:31 | 000,147,916 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2013.07.25 07:14:31 | 000,120,870 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.07.25 07:08:49 | 002,222,528 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013.07.24 20:38:34 | 001,588,762 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.07.24 19:58:25 | 000,025,185 | ---- | M] () -- C:\Windows\SysWow64\ieuinit.inf
[2013.07.24 19:58:25 | 000,025,185 | ---- | M] () -- C:\Windows\SysNative\ieuinit.inf
[2013.07.23 17:09:09 | 000,001,966 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hama Wireless LAN Utility.lnk
[2013.07.23 13:58:30 | 000,000,000 | ---- | M] () -- C:\Windows\ativpsrm.bin
[2013.07.23 13:03:58 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2013.07.23 12:40:50 | 000,001,873 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk
[2013.07.23 11:32:58 | 000,001,235 | ---- | M] () -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
[2013.07.23 11:03:39 | 000,001,049 | ---- | M] () -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2013.07.23 10:54:54 | 000,261,056 | ---- | M] (BitDefender) -- C:\Windows\SysNative\drivers\avchv.sys
[2013.07.23 10:54:11 | 000,006,188 | ---- | M] () -- C:\ProgramData\1374569535.3584.bin
[2013.07.23 10:53:59 | 000,083,593 | ---- | M] () -- C:\ProgramData\1374569535.3880.bin
[2013.07.23 10:53:59 | 000,034,634 | ---- | M] () -- C:\ProgramData\1374569535.4012.bin
[2013.07.23 10:53:59 | 000,018,238 | ---- | M] () -- C:\ProgramData\1374569535.3916.bin
[2013.07.23 10:53:59 | 000,013,051 | ---- | M] () -- C:\ProgramData\1374569535.404.bin
[2013.07.23 10:53:49 | 000,012,247 | ---- | M] () -- C:\ProgramData\1374569535.3876.bin
[2013.07.23 10:53:49 | 000,001,420 | ---- | M] () -- C:\ProgramData\1374569535.3644.bin
[2013.07.23 10:52:54 | 000,004,420 | ---- | M] () -- C:\ProgramData\1374569535.3920.bin
[2013.07.23 10:42:56 | 000,159,772 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2013.07.23 10:42:56 | 000,159,772 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2013.07.23 10:39:49 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
 
========== Files Created - No Company Name ==========
 
[2013.07.25 09:35:44 | 000,377,856 | ---- | C] () -- C:\Users\xxxx\Desktop\gmer_2.1.19163.exe
[2013.07.25 09:14:43 | 000,000,168 | ---- | C] () -- C:\Users\xxxx\defogger_reenable
[2013.07.25 09:13:41 | 000,050,477 | ---- | C] () -- C:\Users\xxxx\Desktop\Defogger.exe
[2013.07.25 07:56:09 | 000,000,512 | ---- | C] () -- C:\Users\xxxx\Documents\MBR.dat
[2013.07.24 20:06:25 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2013.07.24 19:58:25 | 000,025,185 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2013.07.24 19:58:25 | 000,025,185 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2013.07.24 19:27:46 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2013.07.24 12:39:19 | 000,087,152 | ---- | C] () -- C:\Windows\SysNative\cpwmon64.dll
[2013.07.24 12:34:23 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[2013.07.23 17:09:09 | 000,001,966 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hama Wireless LAN Utility.lnk
[2013.07.23 14:12:00 | 001,588,762 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.07.23 13:58:30 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013.07.23 12:40:50 | 000,001,873 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk
[2013.07.23 11:32:58 | 000,001,235 | ---- | C] () -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
[2013.07.23 11:28:16 | 000,001,108 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.07.23 11:28:14 | 000,001,104 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.07.23 11:21:58 | 000,000,884 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013.07.23 11:03:39 | 000,001,049 | ---- | C] () -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2013.07.23 10:53:47 | 000,001,420 | ---- | C] () -- C:\ProgramData\1374569535.3644.bin
[2013.07.23 10:52:34 | 000,083,593 | ---- | C] () -- C:\ProgramData\1374569535.3880.bin
[2013.07.23 10:52:34 | 000,012,247 | ---- | C] () -- C:\ProgramData\1374569535.3876.bin
[2013.07.23 10:52:34 | 000,004,420 | ---- | C] () -- C:\ProgramData\1374569535.3920.bin
[2013.07.23 10:52:29 | 000,018,238 | ---- | C] () -- C:\ProgramData\1374569535.3916.bin
[2013.07.23 10:52:18 | 000,013,051 | ---- | C] () -- C:\ProgramData\1374569535.404.bin
[2013.07.23 10:52:18 | 000,006,188 | ---- | C] () -- C:\ProgramData\1374569535.3584.bin
[2013.07.23 10:52:15 | 000,034,634 | ---- | C] () -- C:\ProgramData\1374569535.4012.bin
[2013.07.23 10:49:52 | 000,001,421 | ---- | C] () -- C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
[2013.07.23 10:42:46 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2013.07.23 10:42:45 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2013.07.23 10:39:49 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2013.07.23 10:37:14 | 3214,233,600 | -HS- | C] () -- C:\hiberfil.sys
[2013.06.08 14:11:48 | 000,039,896 | ---- | C] () -- C:\Windows\SysWow64\DiscHandler.exe
[2013.06.08 13:54:10 | 003,915,776 | ---- | C] () -- C:\Windows\SysWow64\ffmpeg.dll
[2013.06.08 13:53:06 | 000,112,640 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
[2013.06.08 13:52:30 | 000,271,360 | ---- | C] () -- C:\Windows\SysWow64\TomsMoComp_ff.dll
[2013.06.08 13:52:12 | 000,157,184 | ---- | C] () -- C:\Windows\SysWow64\ff_unrar.dll
[2013.06.08 13:52:10 | 000,147,456 | ---- | C] () -- C:\Windows\SysWow64\ff_libmad.dll
[2013.06.08 13:52:10 | 000,099,840 | ---- | C] () -- C:\Windows\SysWow64\ff_wmv9.dll
[2013.06.08 13:52:08 | 001,525,760 | ---- | C] () -- C:\Windows\SysWow64\ff_samplerate.dll
[2013.06.08 13:52:08 | 000,211,968 | ---- | C] () -- C:\Windows\SysWow64\ff_libdts.dll
[2013.06.08 13:52:08 | 000,114,688 | ---- | C] () -- C:\Windows\SysWow64\ff_liba52.dll
[2013.06.08 13:52:06 | 000,136,704 | ---- | C] () -- C:\Windows\SysWow64\libmpeg2_ff.dll
[2013.05.20 17:43:32 | 000,446,128 | ---- | C] () -- C:\Windows\SysWow64\swscale-lav-2.dll
[2013.05.20 17:43:32 | 000,280,624 | ---- | C] () -- C:\Windows\SysWow64\avutil-lav-52.dll
[2013.05.20 17:43:32 | 000,190,640 | ---- | C] () -- C:\Windows\SysWow64\libbluray.dll
[2013.05.20 17:43:32 | 000,172,216 | ---- | C] () -- C:\Windows\SysWow64\avresample-lav-1.dll
[2013.05.20 17:43:30 | 007,856,976 | ---- | C] () -- C:\Windows\SysWow64\avcodec-lav-55.dll
[2013.05.20 17:43:30 | 001,315,240 | ---- | C] () -- C:\Windows\SysWow64\avformat-lav-55.dll
[2013.05.20 17:43:30 | 000,202,344 | ---- | C] () -- C:\Windows\SysWow64\avfilter-lav-3.dll
[2013.03.29 04:13:14 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013.03.29 04:13:12 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2013.03.29 03:38:08 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2013.03.29 03:38:08 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012.11.27 01:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012.09.30 00:47:28 | 000,000,178 | ---- | C] () -- C:\Windows\SysWow64\Formats.ini
[2011.12.07 21:32:24 | 000,216,064 | ---- | C] ( ) -- C:\Windows\SysWow64\Lagarith.dll
[2011.09.13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011.09.08 16:00:52 | 000,150,528 | ---- | C] () -- C:\Windows\SysWow64\mkx.dll
[2011.09.08 16:00:48 | 000,142,336 | ---- | C] () -- C:\Windows\SysWow64\mp4.dll
[2011.09.08 16:00:42 | 000,123,392 | ---- | C] () -- C:\Windows\SysWow64\ogm.dll
[2011.09.08 16:00:38 | 000,249,856 | ---- | C] () -- C:\Windows\SysWow64\dxr.dll
[2011.09.08 16:00:34 | 000,113,152 | ---- | C] () -- C:\Windows\SysWow64\dsmux.exe
[2011.09.08 16:00:24 | 000,154,624 | ---- | C] () -- C:\Windows\SysWow64\ts.dll
[2011.09.08 16:00:10 | 000,137,728 | ---- | C] () -- C:\Windows\SysWow64\mkv2vfr.exe
[2011.09.08 16:00:06 | 000,358,400 | ---- | C] () -- C:\Windows\SysWow64\gdsmux.exe
[2011.09.08 15:59:54 | 000,080,384 | ---- | C] () -- C:\Windows\SysWow64\mkzlib.dll
[2011.09.08 15:59:52 | 000,024,576 | ---- | C] () -- C:\Windows\SysWow64\mkunicode.dll
 
========== ZeroAccess Check ==========
 
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.02.27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2013.07.25 08:15:24 | 000,000,000 | ---D | M] -- C:\Users\xxxx\AppData\Roaming\DAEMON Tools Lite
[2013.07.25 09:49:49 | 000,000,000 | ---D | M] -- C:\Users\xxxx\AppData\Roaming\Dropbox
[2013.07.23 11:32:48 | 000,000,000 | ---D | M] -- C:\Users\xxxx\AppData\Roaming\OpenOffice.org
[2013.07.23 10:52:43 | 000,000,000 | ---D | M] -- C:\Users\xxxx\AppData\Roaming\QuickScan
[2013.07.25 08:15:24 | 000,000,000 | ---D | M] -- C:\Users\xxxx\AppData\Roaming\uTorrent
 
========== Purity Check ==========
 
 

< End of report >
Es war natürlich blöd, dass ich den Namen des Virus oder was es war nicht aufgeschrieben habe, aber der Fehler ist passiert. Ich bedanke mich schon einmal im Vorhinein für jegliche Hilfe!

Ich werde erst am Samstag Nachmittag bis Abend Zugang zu meinem Computer haben, antworten kann ich inzwischen auch von anderen Computern.

schrauber 25.07.2013 16:07
hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


sommerzeit24 28.07.2013 18:18
erster Scan mit FRST:


FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-07-2013
Ran by xxxx (administrator) on 28-07-2013 19:26:58
Running from C:\Users\xxxx\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Bitdefender) C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe
() C:\Windows\SysWOW64\C2MP\UpdateChecker.exe
(Hama GmbH & Co KG) C:\Program Files (x86)\Hama\Common\RaUI.exe
(Dropbox, Inc.) C:\Users\xxxx\AppData\Roaming\Dropbox\bin\Dropbox.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(OpenOffice.org) C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\msiexec.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\wbengine.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe

==================== Registry (Whitelisted) ==================

HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk
ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\SysWOW64\C2MP\UpdateChecker.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Hama Wireless LAN Utility.lnk
ShortcutTarget: Hama Wireless LAN Utility.lnk -> C:\Program Files (x86)\Hama\Common\RaUI.exe (Hama GmbH & Co KG)
Startup: C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\xxxx\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.4.1.lnk
ShortcutTarget: OpenOffice.org 3.4.1.lnk -> C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe ()

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 212.186.211.21 195.34.133.21

Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.google.at/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
CHR Extension: (Google Docs) - C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Google Search) - C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Pinterest button) - C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbfjhllmkehmdajjlkolhdjjlfcmmlpl\6.4_0
CHR Extension: (AdBlock) - C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.2_0
CHR Extension: (Evernote Web) - C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbfehkoinhhcknnbdgnnmjhiladcgbol\1.0.7_0
CHR Extension: (Evernote Web Clipper) - C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\pioclpoplcdbaefihamjohnefbikjilc\5.9.19_0
CHR Extension: (Gmail) - C:\Users\xxxx\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 gzserv; C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe [64224 2013-07-08] (Bitdefender)

==================== Drivers (Whitelisted) ====================

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [718840 2013-04-17] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [593144 2013-04-17] (BitDefender)
R1 bdfwfpf; C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [121928 2013-04-17] (Bitdefender SRL)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-07-23] (DT Soft Ltd)
R1 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [148696 2013-04-22] (BitDefender LLC)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [382536 2013-05-28] (BitDefender S.R.L.)
S3 AIDA64Driver; \??\C:\Program Files (x86)\FinalWire\AIDA64 Extreme Edition\kerneld.x64 [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-28 19:12 - 2013-07-28 19:12 - 01780547 _____ (Farbar) C:\Users\xxxx\Desktop\FRST64.exe
2013-07-25 14:00 - 2013-07-25 14:00 - 00000000 ____D C:\Users\xxxx\Downloads\Ludovico Einaudi - In a Time Lapse
2013-07-25 14:00 - 2013-07-25 14:00 - 00000000 ____D C:\Users\xxxx\Downloads\LUDOVICO EINAUDI - Divenire
2013-07-25 11:16 - 2013-07-25 11:16 - 00586352 _____ C:\Windows\Minidump\072513-21824-01.dmp
2013-07-25 10:31 - 2013-07-25 11:16 - 937757241 _____ C:\Windows\MEMORY.DMP
2013-07-25 10:31 - 2013-07-25 11:16 - 00000000 ____D C:\Windows\Minidump
2013-07-25 10:31 - 2013-07-25 10:31 - 00278392 _____ C:\Windows\Minidump\072513-22994-01.dmp
2013-07-25 10:02 - 2013-07-25 10:02 - 00085320 _____ C:\Users\xxxx\Desktop\OTL.Txt
2013-07-25 09:54 - 2013-07-25 09:54 - 00000472 _____ C:\Users\xxxx\Desktop\defogger_disable.log
2013-07-25 09:35 - 2013-07-25 09:35 - 00377856 _____ C:\Users\xxxx\Desktop\gmer_2.1.19163.exe
2013-07-25 09:15 - 2013-07-25 09:15 - 00602112 _____ (OldTimer Tools) C:\Users\xxxx\Desktop\OTL.exe
2013-07-25 09:14 - 2013-07-25 09:14 - 00000168 _____ C:\Users\xxxx\defogger_reenable
2013-07-25 09:13 - 2013-07-25 09:13 - 00050477 _____ C:\Users\xxxx\Desktop\Defogger.exe
2013-07-25 08:33 - 2013-07-25 08:33 - 00000000 ____D C:\Users\xxxx\Desktop\Programme
2013-07-25 08:28 - 2013-07-28 19:09 - 00000504 _____ C:\Windows\setupact.log
2013-07-25 08:28 - 2013-07-25 08:28 - 00000000 _____ C:\Windows\setuperr.log
2013-07-25 08:27 - 2013-07-25 08:27 - 00000000 ____D C:\ProgramData\GZ
2013-07-25 08:16 - 2013-07-25 08:20 - 781443488 _____ (Microsoft Corporation) C:\Users\xxxx\Downloads\Windows6.0-KB948465-X64.exe
2013-07-25 08:13 - 2013-07-25 08:13 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-07-25 08:13 - 2013-07-25 08:13 - 00000000 ____D C:\Program Files\CCleaner
2013-07-25 08:12 - 2013-07-25 08:12 - 04396440 _____ (Piriform Ltd) C:\Users\xxxx\Downloads\ccsetup403.exe
2013-07-25 08:12 - 2013-07-25 08:12 - 00000000 ____D C:\Users\xxxx\Downloads\Anti-Virus
2013-07-25 07:56 - 2013-07-25 07:56 - 00002209 _____ C:\Users\xxxx\Documents\aswMBR.txt
2013-07-25 07:56 - 2013-07-25 07:56 - 00000512 _____ C:\Users\xxxx\Documents\MBR.dat
2013-07-25 07:44 - 2013-07-25 07:44 - 00000000 ____D C:\FRST
2013-07-25 07:18 - 2011-03-25 05:29 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-07-25 07:18 - 2011-03-25 05:29 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-07-25 07:18 - 2011-03-25 05:29 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-07-25 07:18 - 2011-03-25 05:29 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-07-25 07:18 - 2011-03-25 05:29 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-07-25 07:18 - 2011-03-25 05:29 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-07-25 07:18 - 2011-03-25 05:28 - 00007936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-07-25 07:18 - 2011-03-11 08:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2013-07-25 07:18 - 2011-03-11 08:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-07-25 07:18 - 2011-03-11 08:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2013-07-25 07:18 - 2011-03-11 08:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2013-07-25 07:18 - 2011-03-11 08:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2013-07-25 07:18 - 2011-03-11 08:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2013-07-25 07:18 - 2011-03-11 08:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-07-25 07:18 - 2011-03-11 08:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2013-07-25 07:18 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-07-25 07:18 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2013-07-25 07:18 - 2011-03-11 06:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-07-25 07:17 - 2013-04-17 09:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-07-25 07:17 - 2013-04-17 08:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-07-25 07:16 - 2013-04-10 01:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-25 07:16 - 2013-04-03 00:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-24 20:06 - 2012-07-26 06:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-07-24 20:06 - 2012-07-26 06:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-07-24 20:06 - 2012-07-26 04:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-07-24 20:06 - 2012-06-02 16:35 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-07-24 19:58 - 2013-07-24 19:58 - 19238912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-24 19:58 - 2013-07-24 19:58 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-24 19:58 - 2013-07-24 19:58 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-24 19:58 - 2013-07-24 19:58 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-24 19:58 - 2013-07-24 19:58 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-24 19:58 - 2013-07-24 19:58 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-24 19:58 - 2013-07-24 19:58 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-24 19:58 - 2013-07-24 19:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-24 19:58 - 2013-07-24 19:58 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-24 19:58 - 2013-07-24 19:58 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-24 19:58 - 2013-07-24 19:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-24 19:53 - 2013-07-24 19:53 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-24 19:45 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-07-24 19:28 - 2012-12-16 19:11 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-07-24 19:28 - 2012-12-16 16:45 - 00367616 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-07-24 19:28 - 2012-12-16 16:13 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-07-24 19:28 - 2012-12-16 16:13 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-07-24 19:28 - 2010-09-30 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-07-24 19:28 - 2010-09-30 08:47 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-07-24 19:27 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-07-24 19:27 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-07-24 19:27 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-07-24 19:27 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-07-24 19:27 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-07-24 19:27 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-07-24 19:27 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-07-24 19:27 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-07-24 19:14 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-07-24 19:14 - 2012-03-01 08:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-07-24 19:14 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-07-24 19:14 - 2012-03-01 07:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-07-24 19:14 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-07-24 12:56 - 2013-07-28 19:26 - 00000000 ____D C:\ProgramData\Rosetta Stone
2013-07-24 12:39 - 2013-07-24 12:39 - 00000000 ____D C:\ProgramData\APN
2013-07-24 12:39 - 2013-07-24 12:39 - 00000000 ____D C:\Program Files (x86)\GPLGS
2013-07-24 12:39 - 2013-07-24 12:39 - 00000000 ____D C:\Program Files (x86)\Acro Software
2013-07-24 12:39 - 2013-06-06 22:41 - 00489392 _____ (Ask Partner Network) C:\Users\xxxx\Documents\APNSetup.exe
2013-07-24 12:39 - 2012-10-04 19:49 - 00087152 _____ C:\Windows\system32\cpwmon64.dll
2013-07-24 12:16 - 2013-07-24 12:16 - 00000868 _____ C:\Users\xxxx\Downloads\1 neue Downloads.lnk
2013-07-24 07:01 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-07-24 07:01 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2013-07-24 07:00 - 2013-04-10 08:01 - 00983400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-07-24 07:00 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-07-24 07:00 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-07-24 07:00 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-07-24 07:00 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-07-24 07:00 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-07-24 07:00 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-07-24 07:00 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-07-24 07:00 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-07-24 07:00 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-07-24 07:00 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-07-24 07:00 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-07-24 06:59 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-07-24 06:59 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-07-24 06:59 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-07-24 06:59 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-07-24 06:59 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-07-24 06:59 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-07-24 06:59 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-07-24 06:59 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-07-24 06:59 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-07-24 06:59 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-07-24 06:59 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-07-24 06:59 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-07-24 06:58 - 2013-05-08 08:39 - 01910632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-07-24 06:58 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-07-24 06:58 - 2012-11-09 07:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-07-24 06:58 - 2012-11-09 06:42 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-07-24 06:58 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2013-07-24 06:58 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2013-07-24 06:58 - 2011-10-26 07:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-07-24 06:58 - 2011-10-26 07:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-07-24 06:58 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-07-24 06:58 - 2011-10-26 06:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-07-24 06:58 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-07-24 06:58 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-07-24 06:58 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-07-24 06:58 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-07-24 06:58 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-07-24 06:58 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-07-24 06:58 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-07-24 06:58 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-07-24 06:58 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-07-24 06:58 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-07-24 06:58 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-07-24 06:58 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-07-24 06:58 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-07-24 06:58 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-07-24 06:58 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-07-24 06:58 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-07-24 06:58 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-07-24 06:58 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-07-24 06:58 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-07-24 06:58 - 2011-02-25 07:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-07-24 06:58 - 2010-12-23 12:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-07-24 06:58 - 2010-12-23 12:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-07-24 06:58 - 2010-12-23 12:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-07-24 06:58 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-07-24 06:58 - 2010-12-23 07:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-07-24 06:58 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-07-24 06:57 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-07-24 06:57 - 2013-03-19 07:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-07-24 06:57 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-07-24 06:57 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-07-24 06:57 - 2013-02-27 07:52 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-07-24 06:57 - 2013-02-27 07:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-07-24 06:57 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-07-24 06:57 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-07-24 06:57 - 2013-02-27 06:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-07-24 06:57 - 2013-02-27 06:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-07-24 06:57 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-07-24 06:57 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-07-24 06:57 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-07-24 06:57 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-07-24 06:57 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2013-07-24 06:57 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-07-24 06:57 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-07-24 06:57 - 2011-07-09 04:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-07-24 06:57 - 2011-04-27 04:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-07-24 06:57 - 2011-04-27 04:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-07-24 06:56 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-07-24 06:56 - 2012-06-02 07:50 - 00458704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-07-24 06:56 - 2012-06-02 07:48 - 00151920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-07-24 06:56 - 2012-06-02 07:48 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-07-24 06:56 - 2012-06-02 07:45 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-07-24 06:56 - 2012-06-02 06:40 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-07-24 06:56 - 2012-06-02 06:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-07-24 06:56 - 2012-06-02 06:34 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-07-24 06:56 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-07-24 06:56 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-07-24 06:56 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-07-24 06:56 - 2011-11-17 08:35 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-07-24 06:56 - 2011-11-17 08:35 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-07-24 06:56 - 2011-11-17 08:35 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-07-24 06:56 - 2011-11-17 08:35 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-07-24 06:56 - 2011-11-17 08:33 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-07-24 06:56 - 2011-03-11 08:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-07-24 06:56 - 2011-03-11 08:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-07-24 06:56 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-07-24 06:56 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-07-24 06:55 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-07-24 06:55 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-07-24 06:55 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-07-24 06:55 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-07-24 06:55 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-07-24 06:55 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-07-24 06:55 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-07-24 06:55 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-07-24 06:55 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-07-24 06:55 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-07-24 06:55 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-07-24 06:55 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-07-24 06:55 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-07-24 06:55 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-07-24 06:55 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-07-24 06:55 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-07-24 06:55 - 2011-04-23 00:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-07-24 06:55 - 2010-06-26 05:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-07-24 06:55 - 2010-06-26 05:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-07-24 06:54 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-24 06:54 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-24 06:54 - 2013-05-06 08:03 - 01887744 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-24 06:54 - 2013-05-06 06:56 - 01620480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-24 06:54 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-07-24 06:54 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-07-24 06:54 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-07-24 06:54 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-07-24 06:54 - 2012-08-24 20:05 - 00220160 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-07-24 06:54 - 2012-08-24 18:57 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-07-24 06:54 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-07-24 06:54 - 2011-03-03 08:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-07-24 06:54 - 2011-03-03 08:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-07-24 06:54 - 2011-03-03 08:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-07-24 06:54 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-07-24 06:54 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-07-24 06:53 - 2013-01-04 07:46 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-07-24 06:53 - 2013-01-04 06:51 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-07-24 06:53 - 2013-01-04 04:47 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-07-24 06:53 - 2013-01-04 04:47 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-07-24 06:53 - 2013-01-04 04:47 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-07-24 06:53 - 2013-01-04 04:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-07-24 06:53 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2013-07-24 06:53 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2013-07-24 06:53 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2013-07-24 06:53 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2013-07-24 06:53 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2013-07-24 06:53 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2013-07-24 06:53 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2013-07-24 06:53 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2013-07-24 06:53 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2013-07-24 06:53 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2013-07-24 06:53 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2013-07-24 06:53 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2013-07-24 06:53 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2013-07-24 06:53 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2013-07-24 06:53 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2013-07-24 06:53 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2013-07-24 06:53 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2013-07-24 06:53 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2013-07-24 06:53 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2013-07-24 06:53 - 2012-11-22 07:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-07-24 06:53 - 2012-11-22 06:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2013-07-24 06:53 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-07-24 06:53 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-07-24 06:53 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-07-24 06:53 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-07-24 06:53 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-07-24 06:53 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-07-24 06:53 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-07-24 06:53 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-07-24 06:53 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-07-24 06:52 - 2011-12-28 05:59 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-07-24 06:51 - 2012-11-30 07:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-07-24 06:51 - 2012-11-30 07:45 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-07-24 06:51 - 2012-11-30 07:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-07-24 06:51 - 2012-11-30 07:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-07-24 06:51 - 2012-11-30 07:41 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-07-24 06:51 - 2012-11-30 07:41 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 07:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:53 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-07-24 06:51 - 2012-11-30 06:53 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 06:45 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 05:23 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-07-24 06:51 - 2012-11-30 04:38 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 04:38 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 04:38 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 04:38 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-07-24 06:51 - 2012-11-30 01:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2013-07-24 06:51 - 2012-11-30 01:15 - 00420064 _____ C:\Windows\system32\locale.nls
2013-07-24 06:51 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-07-24 06:51 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-07-24 06:51 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-07-24 06:51 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2013-07-24 06:51 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-07-24 06:50 - 2013-06-05 05:34 - 03153920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-24 06:50 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-07-24 06:50 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-07-24 06:50 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-07-24 06:50 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-07-24 06:50 - 2011-02-05 19:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-07-24 06:50 - 2011-02-05 19:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-07-24 06:50 - 2011-02-05 19:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-07-24 06:50 - 2011-02-05 19:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-07-24 06:50 - 2011-02-05 19:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-07-24 06:50 - 2011-02-05 19:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-07-24 06:50 - 2011-02-05 19:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-07-24 06:49 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-07-24 06:49 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-07-24 06:49 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-07-24 06:49 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-07-24 06:49 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-07-24 06:49 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-07-24 06:49 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-07-24 06:49 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-07-24 06:49 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-07-24 06:49 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-07-24 06:49 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2013-07-24 06:49 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-07-24 06:49 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-07-24 06:49 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-07-24 06:49 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-07-24 06:49 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-07-24 06:49 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-07-24 06:49 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-07-24 06:49 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2013-07-24 06:49 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2013-07-24 06:49 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-07-24 06:48 - 2013-05-13 07:51 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-07-24 06:48 - 2013-05-13 07:51 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-07-24 06:48 - 2013-05-13 07:51 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-07-24 06:48 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-07-24 06:48 - 2013-05-13 06:45 - 01160192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-07-24 06:48 - 2013-05-13 06:45 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-07-24 06:48 - 2013-05-13 06:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-07-24 06:48 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-07-24 06:48 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-07-24 06:48 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-07-24 06:48 - 2013-03-19 08:04 - 05550424 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-07-24 06:48 - 2013-03-19 07:46 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-07-24 06:48 - 2013-03-19 07:04 - 03968856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-07-24 06:48 - 2013-03-19 07:04 - 03913560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-07-24 06:48 - 2013-03-19 06:47 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-07-24 06:48 - 2013-03-19 05:06 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-07-24 06:48 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-07-24 06:48 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-07-24 06:48 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-07-24 06:48 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-07-24 06:48 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-07-24 06:48 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-07-24 06:48 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-07-24 06:48 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-07-24 06:48 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-07-24 06:48 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-07-24 06:47 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-07-24 06:47 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-07-24 06:47 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-07-24 06:47 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2013-07-24 06:47 - 2012-02-11 08:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-07-24 06:47 - 2012-02-11 08:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2013-07-24 06:47 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-07-24 06:47 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-07-24 06:47 - 2011-11-17 08:41 - 01731920 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-07-24 06:47 - 2011-11-17 07:38 - 01292080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-07-23 17:46 - 2013-07-23 17:46 - 00000000 ____D C:\ProgramData\FLEXnet
2013-07-23 17:45 - 2013-07-24 12:55 - 00000000 ____D C:\Users\xxxx\AppData\Local\Adobe
2013-07-23 17:32 - 2013-07-25 09:37 - 00000000 ____D C:\ProgramData\Adobe
2013-07-23 17:28 - 2013-07-23 17:28 - 00000000 ____D C:\Windows\SysWOW64\spool
2013-07-23 17:23 - 2013-07-25 09:40 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-07-23 17:09 - 2013-07-23 17:09 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-07-23 17:09 - 2013-07-23 17:09 - 00000000 ____D C:\Program Files (x86)\Hama
2013-07-23 16:48 - 2013-07-23 16:48 - 00030759 _____ C:\Users\xxxx\Downloads\The_Birth_of_Israel_(2008)_[_DVBC___MVGroup_].4180559.TPB.torrent
2013-07-23 16:40 - 2013-07-23 16:40 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\ATI
2013-07-23 16:40 - 2013-07-23 16:40 - 00000000 ____D C:\Users\xxxx\AppData\Local\ATI
2013-07-23 16:40 - 2013-07-23 16:40 - 00000000 ____D C:\ProgramData\ATI
2013-07-23 14:12 - 2013-07-24 20:38 - 01588762 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-07-23 13:58 - 2013-07-23 13:58 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-07-23 13:42 - 2013-07-23 13:42 - 00000000 ____D C:\ProgramData\AMD
2013-07-23 13:42 - 2013-07-23 13:42 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-07-23 13:42 - 2013-07-23 13:42 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-07-23 13:41 - 2013-07-23 13:42 - 00000000 ____D C:\Program Files\ATI Technologies
2013-07-23 13:41 - 2013-07-23 13:41 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2013-07-23 13:40 - 2013-07-23 13:40 - 00000000 ____D C:\Program Files\ATI
2013-07-23 13:39 - 2013-07-23 13:39 - 00000000 ____D C:\AMD
2013-07-23 13:34 - 2013-07-23 13:34 - 00000000 ____D C:\Medion
2013-07-23 13:25 - 2008-04-30 17:27 - 00489984 _____ (NVIDIA Corporation) C:\Windows\system32\NVUNINST.EXE
2013-07-23 13:22 - 2013-07-23 13:22 - 00000000 ____D C:\ProgramData\NVIDIA
2013-07-23 13:21 - 2013-07-23 13:21 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-07-23 13:21 - 2013-07-23 13:21 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-07-23 13:21 - 2013-07-23 13:21 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-07-23 13:21 - 2013-07-23 13:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-07-23 13:21 - 2013-07-23 13:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-07-23 13:21 - 2013-07-23 13:21 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-07-23 13:21 - 2013-07-23 13:21 - 00000000 ____D C:\ProgramData\Sun
2013-07-23 13:21 - 2013-07-23 13:21 - 00000000 ____D C:\Program Files (x86)\Java
2013-07-23 13:12 - 2013-07-23 13:12 - 00003156 _____ C:\Windows\System32\Tasks\{BB3B5E9C-101C-402A-8A59-F4D279E69FF1}
2013-07-23 13:11 - 2013-07-23 13:25 - 00000000 ____D C:\NVIDIA
2013-07-23 13:11 - 2013-07-23 13:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-07-23 13:06 - 2013-07-23 13:05 - 01093032 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-07-23 13:06 - 2013-07-23 13:05 - 00972712 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-07-23 13:06 - 2013-07-23 13:05 - 00312232 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-07-23 13:05 - 2013-07-23 13:05 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-07-23 13:05 - 2013-07-23 13:05 - 00188840 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-07-23 13:05 - 2013-07-23 13:05 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-07-23 13:05 - 2013-07-23 13:05 - 00000000 ____D C:\Program Files\Java
2013-07-23 13:03 - 2013-07-25 08:15 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\DAEMON Tools Lite
2013-07-23 13:03 - 2013-07-23 13:03 - 00283200 _____ (DT Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-07-23 13:03 - 2013-07-23 13:03 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-07-23 13:02 - 2013-07-24 12:25 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-07-23 13:02 - 2013-07-23 13:02 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-07-23 12:40 - 2013-07-23 12:40 - 00000000 ____D C:\Windows\SysWOW64\C2MP
2013-07-23 12:33 - 2013-07-25 14:53 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\vlc
2013-07-23 12:13 - 2013-07-23 12:13 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-07-23 12:11 - 2013-07-25 15:45 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\uTorrent
2013-07-23 11:36 - 2013-07-25 08:15 - 00000000 ____D C:\Windows\Panther
2013-07-23 11:32 - 2013-07-23 11:32 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\OpenOffice.org
2013-07-23 11:29 - 2013-07-23 11:29 - 00000000 ___SD C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2013-07-23 11:28 - 2013-07-28 19:09 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-23 11:28 - 2013-07-26 06:33 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-23 11:28 - 2013-07-23 12:17 - 00000000 ____D C:\Users\xxxx\AppData\Local\Google
2013-07-23 11:28 - 2013-07-23 12:17 - 00000000 ____D C:\Program Files (x86)\Google
2013-07-23 11:28 - 2013-07-23 11:28 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-07-23 11:28 - 2013-07-23 11:28 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-07-23 11:28 - 2013-07-23 11:28 - 00000000 ____D C:\Program Files (x86)\OpenOffice.org 3
2013-07-23 11:27 - 2013-07-23 11:28 - 00000000 ____D C:\Users\xxxx\AppData\Local\Deployment
2013-07-23 11:27 - 2013-07-23 11:27 - 00000000 ____D C:\Users\xxxx\AppData\Local\Apps\2.0
2013-07-23 11:22 - 2013-07-28 19:10 - 00000000 ___RD C:\Users\xxxx\Dropbox
2013-07-23 11:22 - 2013-07-25 09:37 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\Adobe
2013-07-23 11:22 - 2013-07-23 11:22 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\Macromedia
2013-07-23 11:21 - 2013-07-26 06:46 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-23 11:21 - 2013-07-23 11:22 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-07-23 11:21 - 2013-07-23 11:21 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-07-23 11:21 - 2013-07-23 11:21 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-07-23 11:21 - 2013-07-23 11:21 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-07-23 11:21 - 2013-07-23 11:21 - 00000000 ____D C:\Windows\system32\Macromed
2013-07-23 11:03 - 2013-07-23 11:03 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-07-23 11:00 - 2013-07-28 19:10 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\Dropbox
2013-07-23 10:54 - 2013-07-25 07:12 - 00064024 _____ C:\Users\xxxx\AppData\Local\GDIPFONTCACHEV1.DAT
2013-07-23 10:54 - 2013-07-23 10:54 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2013-07-23 10:53 - 2013-07-23 10:53 - 00001420 _____ C:\ProgramData\1374569535.3644.bin
2013-07-23 10:53 - 2013-04-17 14:59 - 00718840 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2013-07-23 10:53 - 2013-04-17 14:59 - 00593144 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys
2013-07-23 10:52 - 2013-07-23 10:54 - 00006188 _____ C:\ProgramData\1374569535.3584.bin
2013-07-23 10:52 - 2013-07-23 10:53 - 00083593 _____ C:\ProgramData\1374569535.3880.bin
2013-07-23 10:52 - 2013-07-23 10:53 - 00034634 _____ C:\ProgramData\1374569535.4012.bin
2013-07-23 10:52 - 2013-07-23 10:53 - 00018238 _____ C:\ProgramData\1374569535.3916.bin
2013-07-23 10:52 - 2013-07-23 10:53 - 00013051 _____ C:\ProgramData\1374569535.404.bin
2013-07-23 10:52 - 2013-07-23 10:53 - 00012247 _____ C:\ProgramData\1374569535.3876.bin
2013-07-23 10:52 - 2013-07-23 10:53 - 00000000 ____D C:\Program Files\Bitdefender
2013-07-23 10:52 - 2013-07-23 10:52 - 00004420 _____ C:\ProgramData\1374569535.3920.bin
2013-07-23 10:52 - 2013-07-23 10:52 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\QuickScan
2013-07-23 10:52 - 2013-05-28 12:12 - 00382536 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2013-07-23 10:52 - 2013-04-22 13:21 - 00148696 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2013-07-23 10:52 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-07-23 10:52 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-07-23 10:52 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2013-07-23 10:49 - 2013-07-25 07:10 - 00001421 _____ C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-07-23 10:48 - 2013-07-25 07:11 - 00000000 ___RD C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-23 10:48 - 2013-07-25 07:11 - 00000000 ___RD C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-07-23 10:48 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-07-23 10:48 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-07-23 10:48 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-07-23 10:48 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-07-23 10:48 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-07-23 10:48 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-07-23 10:48 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-07-23 10:47 - 2013-07-25 09:14 - 00000000 ____D C:\Users\xxxx
2013-07-23 10:47 - 2013-07-24 12:58 - 00000000 ____D C:\Users\xxxx\AppData\Local\VirtualStore
2013-07-23 10:47 - 2013-07-23 10:47 - 00000020 ___SH C:\Users\xxxx\ntuser.ini
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Vorlagen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Startmenü
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Netzwerkumgebung
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Lokale Einstellungen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Eigene Dateien
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Druckumgebung
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Documents\Eigene Musik
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Documents\Eigene Bilder
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\AppData\Local\Verlauf
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\AppData\Local\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Programme
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 __SHD C:\Recovery
2013-07-23 10:47 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-07-23 10:47 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-07-23 10:47 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-07-23 10:47 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-07-23 10:42 - 2013-07-28 19:13 - 02045678 _____ C:\Windows\WindowsUpdate.log
2013-07-23 10:39 - 2013-07-23 10:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

==================== One Month Modified Files and Folders =======

2013-07-28 19:26 - 2013-07-24 12:56 - 00000000 ____D C:\ProgramData\Rosetta Stone
2013-07-28 19:13 - 2013-07-23 10:42 - 02045678 _____ C:\Windows\WindowsUpdate.log
2013-07-28 19:12 - 2013-07-28 19:12 - 01780547 _____ (Farbar) C:\Users\xxxx\Desktop\FRST64.exe
2013-07-28 19:10 - 2013-07-23 11:22 - 00000000 ___RD C:\Users\xxxx\Dropbox
2013-07-28 19:10 - 2013-07-23 11:00 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\Dropbox
2013-07-28 19:09 - 2013-07-25 08:28 - 00000504 _____ C:\Windows\setupact.log
2013-07-28 19:09 - 2013-07-23 11:28 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-28 19:09 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-26 07:01 - 2009-07-14 06:45 - 00020656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-26 07:01 - 2009-07-14 06:45 - 00020656 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-26 06:46 - 2013-07-23 11:21 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-26 06:33 - 2013-07-23 11:28 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-25 20:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-07-25 20:06 - 2011-04-12 09:43 - 00696620 _____ C:\Windows\system32\perfh007.dat
2013-07-25 20:06 - 2011-04-12 09:43 - 00147916 _____ C:\Windows\system32\perfc007.dat
2013-07-25 20:06 - 2009-07-14 07:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-25 15:45 - 2013-07-23 12:11 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\uTorrent
2013-07-25 14:53 - 2013-07-23 12:33 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\vlc
2013-07-25 14:00 - 2013-07-25 14:00 - 00000000 ____D C:\Users\xxxx\Downloads\Ludovico Einaudi - In a Time Lapse
2013-07-25 14:00 - 2013-07-25 14:00 - 00000000 ____D C:\Users\xxxx\Downloads\LUDOVICO EINAUDI - Divenire
2013-07-25 11:16 - 2013-07-25 11:16 - 00586352 _____ C:\Windows\Minidump\072513-21824-01.dmp
2013-07-25 11:16 - 2013-07-25 10:31 - 937757241 _____ C:\Windows\MEMORY.DMP
2013-07-25 11:16 - 2013-07-25 10:31 - 00000000 ____D C:\Windows\Minidump
2013-07-25 10:31 - 2013-07-25 10:31 - 00278392 _____ C:\Windows\Minidump\072513-22994-01.dmp
2013-07-25 10:02 - 2013-07-25 10:02 - 00085320 _____ C:\Users\xxxx\Desktop\OTL.Txt
2013-07-25 09:54 - 2013-07-25 09:54 - 00000472 _____ C:\Users\xxxx\Desktop\defogger_disable.log
2013-07-25 09:40 - 2013-07-23 17:23 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-07-25 09:37 - 2013-07-23 17:32 - 00000000 ____D C:\ProgramData\Adobe
2013-07-25 09:37 - 2013-07-23 11:22 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\Adobe
2013-07-25 09:35 - 2013-07-25 09:35 - 00377856 _____ C:\Users\xxxx\Desktop\gmer_2.1.19163.exe
2013-07-25 09:15 - 2013-07-25 09:15 - 00602112 _____ (OldTimer Tools) C:\Users\xxxx\Desktop\OTL.exe
2013-07-25 09:14 - 2013-07-25 09:14 - 00000168 _____ C:\Users\xxxx\defogger_reenable
2013-07-25 09:14 - 2013-07-23 10:47 - 00000000 ____D C:\Users\xxxx
2013-07-25 09:13 - 2013-07-25 09:13 - 00050477 _____ C:\Users\xxxx\Desktop\Defogger.exe
2013-07-25 08:33 - 2013-07-25 08:33 - 00000000 ____D C:\Users\xxxx\Desktop\Programme
2013-07-25 08:28 - 2013-07-25 08:28 - 00000000 _____ C:\Windows\setuperr.log
2013-07-25 08:27 - 2013-07-25 08:27 - 00000000 ____D C:\ProgramData\GZ
2013-07-25 08:20 - 2013-07-25 08:16 - 781443488 _____ (Microsoft Corporation) C:\Users\xxxx\Downloads\Windows6.0-KB948465-X64.exe
2013-07-25 08:15 - 2013-07-23 13:03 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\DAEMON Tools Lite
2013-07-25 08:15 - 2013-07-23 11:36 - 00000000 ____D C:\Windows\Panther
2013-07-25 08:13 - 2013-07-25 08:13 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-07-25 08:13 - 2013-07-25 08:13 - 00000000 ____D C:\Program Files\CCleaner
2013-07-25 08:12 - 2013-07-25 08:12 - 04396440 _____ (Piriform Ltd) C:\Users\xxxx\Downloads\ccsetup403.exe
2013-07-25 08:12 - 2013-07-25 08:12 - 00000000 ____D C:\Users\xxxx\Downloads\Anti-Virus
2013-07-25 07:56 - 2013-07-25 07:56 - 00002209 _____ C:\Users\xxxx\Documents\aswMBR.txt
2013-07-25 07:56 - 2013-07-25 07:56 - 00000512 _____ C:\Users\xxxx\Documents\MBR.dat
2013-07-25 07:44 - 2013-07-25 07:44 - 00000000 ____D C:\FRST
2013-07-25 07:12 - 2013-07-23 10:54 - 00064024 _____ C:\Users\xxxx\AppData\Local\GDIPFONTCACHEV1.DAT
2013-07-25 07:11 - 2013-07-23 10:48 - 00000000 ___RD C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-07-25 07:11 - 2013-07-23 10:48 - 00000000 ___RD C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-07-25 07:10 - 2013-07-23 10:49 - 00001421 _____ C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-07-25 07:08 - 2009-07-14 06:45 - 02222528 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-25 07:05 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-25 07:05 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-25 07:05 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-07-25 07:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-07-25 07:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-07-25 07:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-07-25 07:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-07-25 07:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-07-25 07:05 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-07-24 20:38 - 2013-07-23 14:12 - 01588762 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-07-24 19:58 - 2013-07-24 19:58 - 19238912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-24 19:58 - 2013-07-24 19:58 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-24 19:58 - 2013-07-24 19:58 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-24 19:58 - 2013-07-24 19:58 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-24 19:58 - 2013-07-24 19:58 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-24 19:58 - 2013-07-24 19:58 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-24 19:58 - 2013-07-24 19:58 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-24 19:58 - 2013-07-24 19:58 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-24 19:58 - 2013-07-24 19:58 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-24 19:58 - 2013-07-24 19:58 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-24 19:58 - 2013-07-24 19:58 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-24 19:58 - 2013-07-24 19:58 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-24 19:58 - 2013-07-24 19:58 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-24 19:53 - 2013-07-24 19:53 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-24 19:53 - 2013-07-24 19:53 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-07-24 12:58 - 2013-07-23 10:47 - 00000000 ____D C:\Users\xxxx\AppData\Local\VirtualStore
2013-07-24 12:55 - 2013-07-23 17:45 - 00000000 ____D C:\Users\xxxx\AppData\Local\Adobe
2013-07-24 12:39 - 2013-07-24 12:39 - 00000000 ____D C:\ProgramData\APN
2013-07-24 12:39 - 2013-07-24 12:39 - 00000000 ____D C:\Program Files (x86)\GPLGS
2013-07-24 12:39 - 2013-07-24 12:39 - 00000000 ____D C:\Program Files (x86)\Acro Software
2013-07-24 12:25 - 2013-07-23 13:02 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-07-24 12:16 - 2013-07-24 12:16 - 00000868 _____ C:\Users\xxxx\Downloads\1 neue Downloads.lnk
2013-07-23 17:46 - 2013-07-23 17:46 - 00000000 ____D C:\ProgramData\FLEXnet
2013-07-23 17:28 - 2013-07-23 17:28 - 00000000 ____D C:\Windows\SysWOW64\spool
2013-07-23 17:09 - 2013-07-23 17:09 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-07-23 17:09 - 2013-07-23 17:09 - 00000000 ____D C:\Program Files (x86)\Hama
2013-07-23 16:48 - 2013-07-23 16:48 - 00030759 _____ C:\Users\xxxx\Downloads\The_Birth_of_Israel_(2008)_[_DVBC___MVGroup_].4180559.TPB.torrent
2013-07-23 16:40 - 2013-07-23 16:40 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\ATI
2013-07-23 16:40 - 2013-07-23 16:40 - 00000000 ____D C:\Users\xxxx\AppData\Local\ATI
2013-07-23 16:40 - 2013-07-23 16:40 - 00000000 ____D C:\ProgramData\ATI
2013-07-23 13:58 - 2013-07-23 13:58 - 00000000 _____ C:\Windows\ativpsrm.bin
2013-07-23 13:42 - 2013-07-23 13:42 - 00000000 ____D C:\ProgramData\AMD
2013-07-23 13:42 - 2013-07-23 13:42 - 00000000 ____D C:\Program Files\Common Files\ATI Technologies
2013-07-23 13:42 - 2013-07-23 13:42 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2013-07-23 13:42 - 2013-07-23 13:41 - 00000000 ____D C:\Program Files\ATI Technologies
2013-07-23 13:41 - 2013-07-23 13:41 - 00000000 ____D C:\Program Files (x86)\ATI Technologies
2013-07-23 13:40 - 2013-07-23 13:40 - 00000000 ____D C:\Program Files\ATI
2013-07-23 13:39 - 2013-07-23 13:39 - 00000000 ____D C:\AMD
2013-07-23 13:34 - 2013-07-23 13:34 - 00000000 ____D C:\Medion
2013-07-23 13:25 - 2013-07-23 13:11 - 00000000 ____D C:\NVIDIA
2013-07-23 13:22 - 2013-07-23 13:22 - 00000000 ____D C:\ProgramData\NVIDIA
2013-07-23 13:21 - 2013-07-23 13:21 - 00867240 _____ (Oracle Corporation) C:\Windows\SysWOW64\npDeployJava1.dll
2013-07-23 13:21 - 2013-07-23 13:21 - 00789416 _____ (Oracle Corporation) C:\Windows\SysWOW64\deployJava1.dll
2013-07-23 13:21 - 2013-07-23 13:21 - 00263592 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-07-23 13:21 - 2013-07-23 13:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-07-23 13:21 - 2013-07-23 13:21 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-07-23 13:21 - 2013-07-23 13:21 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-07-23 13:21 - 2013-07-23 13:21 - 00000000 ____D C:\ProgramData\Sun
2013-07-23 13:21 - 2013-07-23 13:21 - 00000000 ____D C:\Program Files (x86)\Java
2013-07-23 13:12 - 2013-07-23 13:12 - 00003156 _____ C:\Windows\System32\Tasks\{BB3B5E9C-101C-402A-8A59-F4D279E69FF1}
2013-07-23 13:11 - 2013-07-23 13:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-07-23 13:05 - 2013-07-23 13:06 - 01093032 _____ (Oracle Corporation) C:\Windows\system32\npDeployJava1.dll
2013-07-23 13:05 - 2013-07-23 13:06 - 00972712 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-07-23 13:05 - 2013-07-23 13:06 - 00312232 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-07-23 13:05 - 2013-07-23 13:05 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-07-23 13:05 - 2013-07-23 13:05 - 00188840 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-07-23 13:05 - 2013-07-23 13:05 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-07-23 13:05 - 2013-07-23 13:05 - 00000000 ____D C:\Program Files\Java
2013-07-23 13:03 - 2013-07-23 13:03 - 00283200 _____ (DT Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-07-23 13:03 - 2013-07-23 13:03 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-07-23 13:02 - 2013-07-23 13:02 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-07-23 12:40 - 2013-07-23 12:40 - 00000000 ____D C:\Windows\SysWOW64\C2MP
2013-07-23 12:17 - 2013-07-23 11:28 - 00000000 ____D C:\Users\xxxx\AppData\Local\Google
2013-07-23 12:17 - 2013-07-23 11:28 - 00000000 ____D C:\Program Files (x86)\Google
2013-07-23 12:13 - 2013-07-23 12:13 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-07-23 11:36 - 2009-07-14 07:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2013-07-23 11:36 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2013-07-23 11:32 - 2013-07-23 11:32 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\OpenOffice.org
2013-07-23 11:29 - 2013-07-23 11:29 - 00000000 ___SD C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4.1
2013-07-23 11:28 - 2013-07-23 11:28 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-07-23 11:28 - 2013-07-23 11:28 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-07-23 11:28 - 2013-07-23 11:28 - 00000000 ____D C:\Program Files (x86)\OpenOffice.org 3
2013-07-23 11:28 - 2013-07-23 11:27 - 00000000 ____D C:\Users\xxxx\AppData\Local\Deployment
2013-07-23 11:27 - 2013-07-23 11:27 - 00000000 ____D C:\Users\xxxx\AppData\Local\Apps\2.0
2013-07-23 11:25 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-07-23 11:22 - 2013-07-23 11:22 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\Macromedia
2013-07-23 11:22 - 2013-07-23 11:21 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-07-23 11:21 - 2013-07-23 11:21 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-07-23 11:21 - 2013-07-23 11:21 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-07-23 11:21 - 2013-07-23 11:21 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-07-23 11:21 - 2013-07-23 11:21 - 00000000 ____D C:\Windows\system32\Macromed
2013-07-23 11:03 - 2013-07-23 11:03 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-07-23 10:54 - 2013-07-23 10:54 - 00261056 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys
2013-07-23 10:54 - 2013-07-23 10:52 - 00006188 _____ C:\ProgramData\1374569535.3584.bin
2013-07-23 10:53 - 2013-07-23 10:53 - 00001420 _____ C:\ProgramData\1374569535.3644.bin
2013-07-23 10:53 - 2013-07-23 10:52 - 00083593 _____ C:\ProgramData\1374569535.3880.bin
2013-07-23 10:53 - 2013-07-23 10:52 - 00034634 _____ C:\ProgramData\1374569535.4012.bin
2013-07-23 10:53 - 2013-07-23 10:52 - 00018238 _____ C:\ProgramData\1374569535.3916.bin
2013-07-23 10:53 - 2013-07-23 10:52 - 00013051 _____ C:\ProgramData\1374569535.404.bin
2013-07-23 10:53 - 2013-07-23 10:52 - 00012247 _____ C:\ProgramData\1374569535.3876.bin
2013-07-23 10:53 - 2013-07-23 10:52 - 00000000 ____D C:\Program Files\Bitdefender
2013-07-23 10:52 - 2013-07-23 10:52 - 00004420 _____ C:\ProgramData\1374569535.3920.bin
2013-07-23 10:52 - 2013-07-23 10:52 - 00000000 ____D C:\Users\xxxx\AppData\Roaming\QuickScan
2013-07-23 10:47 - 2013-07-23 10:47 - 00000020 ___SH C:\Users\xxxx\ntuser.ini
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Vorlagen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Startmenü
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Netzwerkumgebung
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Lokale Einstellungen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Eigene Dateien
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Druckumgebung
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Documents\Eigene Musik
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Documents\Eigene Bilder
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\AppData\Local\Verlauf
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\AppData\Local\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\xxxx\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Programme
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-07-23 10:47 - 2013-07-23 10:47 - 00000000 __SHD C:\Recovery
2013-07-23 10:47 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore
2013-07-23 10:47 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-07-23 10:47 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2013-07-23 10:47 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT
2013-07-23 10:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
2013-07-23 10:39 - 2013-07-23 10:39 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-07-24 14:00

==================== End Of Log ============================
--- --- ---

sommerzeit24 28.07.2013 18:31
Addition.txt:

Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-07-2013
Ran by xxxx at 2013-07-28 19:29:36
Running from C:\Users\xxxx\Desktop
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

 
µTorrent (x32 Version: 3.3.0.29677)
7-Zip 9.20 (x32)
Adobe Flash Player 11 ActiveX (x32 Version: 11.8.800.94)
Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03)
AMD Accelerated Video Transcoding (Version: 12.10.100.30328)
AMD Catalyst Install Manager (Version: 8.0.911.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.80328.2204)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225)
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225)
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225)
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225)
CCC Help Czech (x32 Version: 2013.0328.2217.38225)
CCC Help Danish (x32 Version: 2013.0328.2217.38225)
CCC Help Dutch (x32 Version: 2013.0328.2217.38225)
CCC Help English (x32 Version: 2013.0328.2217.38225)
CCC Help Finnish (x32 Version: 2013.0328.2217.38225)
CCC Help French (x32 Version: 2013.0328.2217.38225)
CCC Help German (x32 Version: 2013.0328.2217.38225)
CCC Help Greek (x32 Version: 2013.0328.2217.38225)
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225)
CCC Help Italian (x32 Version: 2013.0328.2217.38225)
CCC Help Japanese (x32 Version: 2013.0328.2217.38225)
CCC Help Korean (x32 Version: 2013.0328.2217.38225)
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225)
CCC Help Polish (x32 Version: 2013.0328.2217.38225)
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225)
CCC Help Russian (x32 Version: 2013.0328.2217.38225)
CCC Help Spanish (x32 Version: 2013.0328.2217.38225)
CCC Help Swedish (x32 Version: 2013.0328.2217.38225)
CCC Help Thai (x32 Version: 2013.0328.2217.38225)
CCC Help Turkish (x32 Version: 2013.0328.2217.38225)
ccc-utility64 (Version: 2013.0328.2218.38225)
CCleaner (Version: 4.03)
CutePDF Writer 3.0 (Version:  3.0)
DAEMON Tools Lite (x32 Version: 4.47.1.0333)
defender Antivirus Free Edition (Version: 1.0.18.1047)
Dropbox (HKCU Version: 2.2.3)
Google Chrome (x32 Version: 28.0.1500.72)
Google Earth (x32 Version: 7.1.1.1888)
Google Update Helper (x32 Version: 1.3.21.153)
Hama Wireless LAN Adapter (x32 Version: 1.00.0000)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
NVIDIA Drivers
OpenOffice.org 3.4.1 (x32 Version: 3.41.9593)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
VLC media player 2.0.7 (x32 Version: 2.0.7)
Windows 7 Codec Pack 4.0.7 (x32 Version: 4.0.7)

==================== Restore Points  =========================

24-07-2013 10:24:44 Windows-Sicherung
24-07-2013 10:56:21 Installed Rosetta Stone Version 3
24-07-2013 17:07:06 Windows Update
25-07-2013 14:19:25 Windows Update
28-07-2013 17:19:59 Windows-Sicherung
28-07-2013 17:24:41 Removed Rosetta Stone Version 3

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0B36BA16-18F3-4D67-A363-C76A0B370813} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-23] (Adobe Systems Incorporated)
Task: {7477B189-EC3C-427B-A224-585176F98358} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-06-19] (Piriform Ltd)
Task: {B8E48E03-F7D2-42E5-B9EE-08F8425626AC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-23] (Google Inc.)
Task: {CD1B8921-7EE0-4A52-BDF1-8F427124276C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-07-23] (Google Inc.)
Task: {DA291088-57D2-4E4D-9A53-C625555141AC} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation)
Task: {F49C9BBA-1948-4A04-AD99-2369F95D2451} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2010-11-21] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Faulty Device Manager Devices =============

Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/28/2013 07:26:37 PM) (Source: Windows Backup) (User: )
Description: Die Sicherung war nicht erfolgreich. Fehler: "Am Sicherungsspeicherort ist nicht genügend freier Speicherplatz verfügbar, um die Daten zu sichern. (0x80780048)"

Error: (07/28/2013 07:10:11 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/26/2013 05:58:37 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/25/2013 08:05:03 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/25/2013 03:48:30 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/25/2013 11:17:57 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/25/2013 10:31:54 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/25/2013 10:27:03 AM) (Source: Software Protection Platform Service) (User: )
Description: Fehler bei der Erfassung des authentischen Tickets (hr=0x80072EE7) für die Vorlagen-ID 66c92734-d682-4d71-983e-d6ec3f16059f.

Error: (07/25/2013 10:27:03 AM) (Source: Software Protection Platform Service) (User: )
Description: Lizenzerwerb-Fehlerdetails.
hr=0x80072EE7

Error: (07/25/2013 09:49:18 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (07/25/2013 11:16:27 AM) (Source: BugCheck) (User: )
Description: 0x0000009f (0x0000000000000004, 0x0000000000000258, 0xfffffa8003d05040, 0xfffff80000b9c510)C:\Windows\MEMORY.DMP072513-21824-01

Error: (07/25/2013 11:16:19 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎25.‎07.‎2013 um 11:14:41 unerwartet heruntergefahren.

Error: (07/25/2013 10:31:34 AM) (Source: BugCheck) (User: )
Description: 0x00000109 (0xa3a039d8b580c54a, 0xb3b7465f07ff02dc, 0xfffff880009bc6c0, 0x0000000000000002)C:\Windows\MEMORY.DMP072513-22994-01

Error: (07/25/2013 10:31:25 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎25.‎07.‎2013 um 10:30:04 unerwartet heruntergefahren.

Error: (07/25/2013 08:30:46 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/25/2013 08:30:46 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde mit folgendem dienstspezifischem Fehler beendet: %%-1073473535.

Error: (07/25/2013 07:13:33 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80242016 fehlgeschlagen: Update für die Kompatibilitätsansichtsliste für Internet Explorer*8 für Windows 7 für x64-basierte Systeme (KB2598845)

Error: (07/25/2013 07:10:41 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%16405

Error: (07/25/2013 07:07:16 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Microsoft .NET Framework NGEN v4.0.30319_X86" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (07/25/2013 07:07:11 AM) (Source: Service Control Manager) (User: )
Description: Dienst "##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Microsoft Office Sessions:
=========================
Error: (07/28/2013 07:26:37 PM) (Source: Windows Backup)(User: )
Description: Am Sicherungsspeicherort ist nicht genügend freier Speicherplatz verfügbar, um die Daten zu sichern. (0x80780048)

Error: (07/28/2013 07:10:11 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/26/2013 05:58:37 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/25/2013 08:05:03 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/25/2013 03:48:30 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/25/2013 11:17:57 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/25/2013 10:31:54 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/25/2013 10:27:03 AM) (Source: Software Protection Platform Service)(User: )
Description: hr=0x80072EE766c92734-d682-4d71-983e-d6ec3f16059f

Error: (07/25/2013 10:27:03 AM) (Source: Software Protection Platform Service)(User: )
Description: hr=0x80072EE700010001(0x00000000, 10:27:03:715 - hxxp://go.microsoft.com/fwlink/?LinkId=151642)
00020001(0x00000000, 10:27:03:731)
00030001(0x00000000, 10:27:03:731 - hxxp://go.microsoft.com)
00030002(0x00000000, 10:27:03:731 - 0)
00040001(0x00000000, 10:27:03:731 - hxxp://go.microsoft.com)
00040002(0x00000000, 10:27:03:731 - 1, <NULL>, <NULL>, <NULL>)
00040004(0x80072F94, 10:27:03:747 - <NULL>)
00040006(0x00000000, 10:27:03:747 - 1, hxxp://go.microsoft.com, <NULL>, <local>)
00020005(0x00000000, 10:27:03:747 - 0)
00020007(0x80072EE7, 10:27:03:747)
00010002(0x80072EE7, 10:27:03:747 - <NULL>)
00010003(0x80072EE7, 10:27:03:747)

Error: (07/25/2013 09:49:18 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info ===========================

Percentage of memory in use: 46%
Total physical RAM: 4087.11 MB
Available physical RAM: 2198.91 MB
Total Pagefile: 8172.41 MB
Available Pagefile: 5636.45 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:910.41 GB) (Free:871.93 GB) NTFS (Disk=0 Partition=2)
Drive d: () (Fixed) (Total:20 GB) (Free:13.78 GB) NTFS (Disk=0 Partition=3)
Drive f: (WD SmartWare) (CDROM) (Total:0.6 GB) (Free:0 GB) UDF
Drive j: (Große Externe) (Fixed) (Total:930.86 GB) (Free:89.24 GB) NTFS (Disk=4 Partition=1)

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 5E921C1A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=910 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1 GB) - (Type=12)

========================================================
Disk: 4 (MBR Code: Windows XP) (Size: 931 GB) (Disk ID: 0002AE3F)
Partition 1: (Not Active) - (Size=931 GB) - (Type=07 NTFS)

==================== End Of Log ============================
Falls das irgendwie helfen sollte: am 25.7. habe ich eben versucht mit gmer einen Scan zu machen, dabei habe ich zwei Mal einen blue screen bekommen.

schrauber 29.07.2013 07:46
Mach mal bitte nen Screenshot von den Konten in der Berechtigung.

sommerzeit24 30.07.2013 09:40
Wenn ich bei einem der Ordner in meinem Musik-Ordner Eigenschaften anklicke, Registerkarte "Sicherheit", dann kommt eben dieses Bild mit dem ich den "Besitzer" ändern kann. Ich weiß nicht, wer überhaupt der "Besitzer" sein soll, das habe ich noch nie gebraucht.

http://img20.imageshack.us/img20/369/pgz7.jpg

Ich habe im Bild meinen Namen übermalt.
Wenn ich mein Konto also als neuen Besitzer festlege und dann nochmal zu den Eigenschaften gehe, zu Sicherheit, kann man dieses Konto (S-1-5-21...) sehen:

http://img18.imageshack.us/img18/1553/hzs5.jpg

Nachdem ich den Besitzer geändert habe, kann ich zwar auf den Ordner zugreifen, ihn aber nicht löschen oder verschieben.

schrauber 30.07.2013 13:05
Gibt es noch weitere Benutzerkonten auf dem System? Diese Zahlenkombi zeigt einfach nur ein anderes, derzeit aber nicht angemeldetes Benutzerkonto.

sommerzeit24 31.07.2013 08:42
Es gibt zwei Benutzerkonten: Meines mit Administratorrechten und ein eingeschränktes Benutzerkonto.

Mir ist das Konto mit den Zahlen aufgefallen, da es nur bei meinem betroffenen Musikordner vorkommt und bei anderen Ordnern auf dem Computer nicht vorkommt. Deswegen habe ich gedacht, dass da ein Zusammenhang besteht.

schrauber 31.07.2013 10:00
Und wenn Du dich in dem anderen Konto anmeldest? Auch kein Zugriff?

sommerzeit24 31.07.2013 15:20
Beim anderen Konto ist es alles gleich.

schrauber 31.07.2013 19:31
Sehr merkwürdig.

Downloade dir bitte Windows Repair (All In One) von hier.

sommerzeit24 03.08.2013 10:19
Ja, es ist wirklich merkwürdig. Normalerweise versuche ich selber Probleme am Computer zu lösen, aber hier habe ich gewusst, dass ich Hilfe brauche.

Ich habe alles so gemacht wie beschrieben. Das Programm hat sich nach einiger Zeit aufgehängt, aber auf jeden Fall kann ich jetzt wieder ganz normal auf meinen Musik-Ordner zugreifen! Auch löschen und einfügen funktioniert problemlos. Das eigenartige Konto scheint noch auf, aber ich denke mal das sollte kein Problem sein.

Danke, danke, danke! Alleine hätte ich wahrscheinlich meine Festplatte formatiert und den ganzen Musikordner verloren. Sehr schön, dass es solche Foren gibt wo einem wirklich geholfen wird.

schrauber 04.08.2013 09:17
Bitte :)


Alle Zeitangaben in WEZ +1. Es ist jetzt 04:30 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131