Malwarebytes sperrt daheim über Wlan ständig verbindungen, über umts stick jedoch nicht

MrMeeToo · 25.07.2011, 22:06

So also zu meiner Frage,
ich hatte das Problem dass ich ständig wenn ich in google was gesucht hab und dann auf ein link geklickt hab immer auf andere seiten(meist pornoseiten) geschickt wurde. Malwarebytes hat ständig irgendeine russische IP geblockt. Ich hab mein Laptop neu aufgesetzt doch Malwarebytes blockiert weiterhin ständig iwelche IPs(meist russische). Das passiert auf jedem Rechner denn ich daheim habe. Grad bin ich auf der ARbeit und online über ein Umts stick und da blockiert Malwarebytes garnichts. Könnte es sein dass ich vllt ein Virus oder so in meine Router/Modem oder sonst was befindet? Gibts sowas? Hab schon mehrere Stunden in google verbracht und nach dem Problem gesucht aber nix gefunden

hoffentlich könnt ihr mir helfen =)

kira · 26.07.2011, 07:45

Hallo und Herzlich Willkommen!

Bevor wir unsere Zusammenarbeit beginnen, [Bitte Vollständig lesen]:

Zitat:

"Fernbehandlungen/Fernhilfe" und die damit verbundenen Haftungsrisken:
- da die Fehlerprüfung und Handlung werden über große Entfernungen durchgeführt, besteht keine Haftung unsererseits für die daraus entstehenden Folgen.
- also, jede Haftung für die daraus entstandene Schäden wird ausgeschlossen, ANWEISUNGEN UND DEREN BEFOLGUNG, ERFOLGT AUF DEINE EIGENE VERANTWORTUNG!
Charakteristische Merkmale/Profilinformationen:
- aus der verwendeten Loglisten oder Logdateien - wie z.B. deinen Realnamen, Seriennummer in Programm etc)- kannst Du herauslöschen oder durch [X] ersetzen
Die Systemprüfung und Bereinigung:
- kann einige Zeit in Anspruch nehmen (je nach Art der Infektion), kann aber sogar so stark kompromittiert sein, so dass eine wirkungsvolle technische Säuberung ist nicht mehr möglich bzw Du es neu installieren musst
Ich empfehle Dir die Anweisungen erst einmal komplett durchzulesen, bevor du es anwendest, weil wenn du etwas falsch machst, kann es wirklich gefährlich werden. Wenn du meinen Anweisungen Schritt für Schritt folgst, kann eigentlich nichts schief gehen.
Innerhalb der Betreuungszeit:
- ohne Abspräche bitte nicht auf eigene Faust handeln!- bei Problemen nachfragen.
Die Reihenfolge:
- genau so wie beschrieben bitte einhalten, nicht selbst die Reihenfolge wählen!
GECRACKTE SOFTWARE werden hier nicht geduldet!!!!
Ansonsten unsere Forumsregeln:
- Bitte erst lesen, dann posten!-> Für alle Hilfesuchenden! Was muss ich vor der Eröffnung eines Themas beachten?

Alle Logfile mit einem vBCode Tag eingefügen, das bietet hier eine gute Übersicht, erleichtert mir die Arbeit! Falls das Logfile zu groß, teile es in mehrere Teile auf.

Sobald Du diesen Einführungstext gelesen hast, kannst Du beginnen

- Wieviele Rechner stehen bei Dir zu Hause?
- Hast Du nur einen PC formatiert, oder alle "gleichzeitig"?
- Router Passwort geschützt?
- Neustart des Routers gemacht (Reset des Routers auf die Ausgangseinstellungen)?

gruß
kira

MrMeeToo · 26.07.2011, 12:02

Hi, 3 Win Rechner. Zwei sind formatiert, im abstand von paar tagen, beide Router hab ich resetted und sind mit Passwort geschützt

kira · 26.07.2011, 15:37

wenn Du möchtest (mit ein bisschen Aufwand zu verbunden), könnten wir alle 3 untersuchen?
Mein Vorschlag lautet:
hier beginnend mit "PC1"
für "PC2" und "PC3" (also separat voneinander) einen neuen Thema eröffnen

also für "PC1":

Für Vista und Win7:
Wichtig: Alle Befehle bitte als Administrator ausführen! rechte Maustaste auf die Eingabeaufforderung und "als Administrator ausführen" auswählen
Auf der angewählten Anwendung einen Rechtsklick (rechte Maustaste) und "Als Administrator ausführen" wählen!

1.
** Update Malwarebytes Anti-Malware, lass es nochmal anhand der folgenden Anleitung laufen:

per Doppelklick starten.
gleich mal die Datenbanken zu aktualisieren - online updaten
Vollständiger Suchlauf wählen (überall Haken setzen)
wenn der Scanvorgang beendet ist, klicke auf "Zeige Resultate"
alle Funde bis auf - falls MBAM meldet in C:\System Volume Information - den Haken bitte entfernen - markieren und auf "Löschen" - "Ausgewähltes entfernen") klicken.
Poste das Ergebnis hier in den Thread - den Bericht findest Du unter "Scan-Berichte"

eine bebilderte Anleitung findest Du hier: Anleitung

2.
Systemscan mit OTL

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop

Doppelklick auf die OTL.exe
Vista User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen
Oben findest Du ein Kästchen mit Output. Wähle bitte Minimal Output
Unter Extra Registry, wähle bitte Use SafeList
Klicke nun auf Run Scan links oben
Wenn der Scan beendet wurde werden 2 Logfiles erstellt
Poste die Logfiles in Code-Tags hier in den Thread.

3.
→ Lade Dir HJTscanlist.zip herunter
→ entpacke die Datei auf deinem Desktop
→ Bei WindowsXP Home musst vor dem Scan zusätzlich tasklist.zip installieren
→ per Doppelklick starten
→ Wähle dein Betriebsystem aus - bei Win7 wähle Vista
→ Wenn Du gefragt wirst, die Option "Einstellung" (1) - scanlist" wählen
→ Nach kurzer Zeit sollte sich Dein Editor öffnen und die Datei hjtscanlist.txt präsentieren
→ Bitte kopiere den Inhalt hier in Deinen Thread.
** Falls es klappt auf einmal nicht, kannst den Text in mehrere Teile teilen und so posten

4.
Ich würde gerne noch all deine installierten Programme sehen:
Lade dir das Tool Ccleaner herunter
→ Download
installieren (Software-Lizenzvereinbarung lesen, falls angeboten wird "Füge CCleaner Yahoo! Toolbar hinzu" abwählen)→ starten→ falls nötig - unter Options settings-> "german" einstellen
dann klick auf "Extra (um die installierten Programme auch anzuzeigen)→ weiter auf "Als Textdatei speichern..."
wird eine Textdatei (*.txt) erstellt, kopiere dazu den Inhalt und füge ihn da ein

Zitat:

Damit dein Thread übersichtlicher und schön lesbar bleibt, am besten nutze den Code-Tags für deinen Post:
→ vor dein Log schreibst Du (also am Anfang des Logfiles):[code]
hier kommt dein Logfile rein - z.B hjtsanlist o. sonstiges
→ dahinter - also am Ende der Logdatei: [/code]

** Möglichst nicht ins internet gehen, kein Online-Banking, File-sharing, Chatprogramme usw

gruß
kira

MrMeeToo · 26.07.2011, 17:24

Also fangen wir mal an =)
Malwarebytes:

Code:

ATTFilter

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Datenbank Version: 7283

Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514

26.07.2011 17:51:29
mbam-log-2011-07-26 (17-51-29).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|F:\|H:\|)
Durchsuchte Objekte: 285346
Laufzeit: 39 Minute(n), 50 Sekunde(n)

Infizierte Speicherprozesse: 0
Infizierte Speichermodule: 0
Infizierte Registrierungsschlüssel: 0
Infizierte Registrierungswerte: 0
Infizierte Dateiobjekte der Registrierung: 0
Infizierte Verzeichnisse: 0
Infizierte Dateien: 0

Infizierte Speicherprozesse:
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel:
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte:
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung:
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse:
(Keine bösartigen Objekte gefunden)

Infizierte Dateien:
(Keine bösartigen Objekte gefunden)

MrMeeToo · 26.07.2011, 17:28

ich muss den otl code teilen auf zwei posts da er zu lang ist:
OTL:

Code:

ATTFilter

OTL logfile created on: 26.07.2011 18:08:04 - Run 1
OTL by OldTimer - Version 3.2.26.1     Folder = C:\Users\Milosh\Desktop
64bit- An unknown product Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,87 Gb Total Physical Memory | 1,92 Gb Available Physical Memory | 49,74% Memory free
7,73 Gb Paging File | 5,76 Gb Available in Paging File | 74,50% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 224,61 Gb Total Space | 191,91 Gb Free Space | 85,44% Space Free | Partition Type: NTFS
Drive D: | 13,00 Gb Total Space | 4,30 Gb Free Space | 33,04% Space Free | Partition Type: NTFS
Drive E: | 228,05 Gb Total Space | 7,78 Gb Free Space | 3,41% Space Free | Partition Type: NTFS
 
Computer Name: MILOSH-PC | User Name: Milosh | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\Milosh\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Sophos\AutoUpdate\ALMon.exe (Sophos Limited)
PRC - C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe (Sophos Limited)
PRC - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe (Sophos Limited)
PRC - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe (Sophos Limited)
PRC - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe (Sophos Limited)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\SRWare Iron\iron.exe (SRWare)
PRC - C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
PRC - C:\Program Files (x86)\Launch Manager\LMworker.exe (Dritek System Inc.)
PRC - C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe (Nero AG)
 
 
========== Modules (SafeList) ==========
 
MOD - C:\Users\Milosh\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL (Sophos Limited)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll (Microsoft Corporation)
 
 
========== Win32 Services (SafeList) ==========
 
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV - (Sophos AutoUpdate Service) -- C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe (Sophos Limited)
SRV - (SAVService) -- C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe (Sophos Limited)
SRV - (SAVAdminService) -- C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe (Sophos Limited)
SRV - (swi_service) -- C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe (Sophos Limited)
SRV - (MBAMService) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (DsiWMIService) -- C:\Program Files (x86)\Launch Manager\dsiwmis.exe (Dritek System Inc.)
SRV - (ePowerSvc) -- C:\Programme\Acer\Acer ePower Management\ePowerSvc.exe (Acer Incorporated)
SRV - (IAStorDataMgrSvc) Intel(R) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (SAVOnAccess) -- C:\Windows\SysNative\drivers\savonaccess.sys (Sophos Limited)
DRV:64bit: - (sdcfilter) -- C:\Windows\SysNative\drivers\sdcfilter.sys (Sophos Plc)
DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (MBAMProtector) -- C:\Windows\SysNative\drivers\mbam.sys (Malwarebytes Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (hwdatacard) -- C:\Windows\SysNative\drivers\ewusbmdm.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (ewusbnet) -- C:\Windows\SysNative\drivers\ewusbnet.sys (Huawei Technologies Co., Ltd.)
DRV:64bit: - (ElbyCDIO) -- C:\Windows\SysNative\drivers\ElbyCDIO.sys (Elaborate Bytes AG)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (VClone) -- C:\Windows\SysNative\drivers\VClone.sys (Elaborate Bytes AG)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof ()
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (SophosBootDriver) -- C:\Windows\SysNative\drivers\SophosBootDriver.sys (Sophos Plc)
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
 
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2011.07.23 19:04:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2011.07.25 19:22:25 | 000,000,000 | ---D | M]
 
[2011.07.23 19:29:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Milosh\AppData\Roaming\mozilla\Extensions
[2011.07.23 19:29:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Milosh\AppData\Roaming\mozilla\Firefox\Profiles\7oxyhp48.default\extensions
[2011.07.23 19:04:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2010.12.03 20:14:08 | 000,001,392 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
[2010.12.03 20:14:08 | 000,002,344 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
[2010.12.03 20:14:08 | 000,006,805 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
[2010.12.03 20:14:08 | 000,001,178 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-de.xml
[2010.12.03 20:14:08 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
 
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Sophos Web Content Scanner) - {39EA7695-B3F2-4C44-A4BC-297ADA8FD235} - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SophosBHOX64.dll (Sophos Limited)
O2 - BHO: (Sophos Web Content Scanner) - {39EA7695-B3F2-4C44-A4BC-297ADA8FD235} - C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SophosBHO.dll (Sophos Limited)
O4:64bit: - HKLM..\Run: [Acer ePower Management] C:\Programme\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Sophos AutoUpdate Monitor] C:\Program Files (x86)\Sophos\AutoUpdate\almon.exe (Sophos Limited)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe (Nero AG)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 82.212.62.62 192.168.0.1
O20:64bit: - AppInit_DLLs: (C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~2.DLL) - C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~2.DLL (Sophos Limited)
O20 - AppInit_DLLs: (C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL) - C:\PROGRA~2\Sophos\SOPHOS~1\SOPHOS~1.DLL (Sophos Limited)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{3ae0d4ef-b6ae-11e0-8772-9abdf88782d6}\Shell - "" = AutoRun
O33 - MountPoints2\{3ae0d4ef-b6ae-11e0-8772-9abdf88782d6}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{3ae0d4f2-b6ae-11e0-8772-9abdf88782d6}\Shell - "" = AutoRun
O33 - MountPoints2\{3ae0d4f2-b6ae-11e0-8772-9abdf88782d6}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{ed1ab98e-b54c-11e0-ae87-ac901c8700d4}\Shell - "" = AutoRun
O33 - MountPoints2\{ed1ab98e-b54c-11e0-ae87-ac901c8700d4}\Shell\AutoRun\command - "" = H:\SETUP.EXE
O33 - MountPoints2\{ed1ab98e-b54c-11e0-ae87-ac901c8700d4}\Shell\configure\command - "" = H:\SETUP.EXE
O33 - MountPoints2\{ed1ab98e-b54c-11e0-ae87-ac901c8700d4}\Shell\install\command - "" = H:\SETUP.EXE
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
========== Files/Folders - Created Within 30 Days ==========
 
[2011.07.26 17:13:48 | 003,216,552 | ---- | C] (Piriform Ltd) -- C:\Users\Milosh\Desktop\ccsetup308.exe
[2011.07.26 17:11:52 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Users\Milosh\Desktop\OTL.exe
[2011.07.26 03:02:19 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2011.07.25 22:45:17 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Media Player Classic
[2011.07.25 22:31:44 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\Adobe
[2011.07.25 22:12:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobile Partner
[2011.07.25 22:12:02 | 001,001,472 | ---- | C] (DiBcom SA) -- C:\Windows\SysNative\drivers\mod7700.sys
[2011.07.25 22:12:02 | 000,249,856 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbnet.sys
[2011.07.25 22:12:02 | 000,120,704 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbmdm.sys
[2011.07.25 22:12:02 | 000,114,560 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ewusbdev.sys
[2011.07.25 22:12:02 | 000,032,768 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\Windows\SysNative\drivers\ewdcsc.sys
[2011.07.25 22:12:02 | 000,013,952 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\SysNative\drivers\ew_usbenumfilter.sys
[2011.07.25 22:11:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mobile Partner
[2011.07.25 19:22:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2011.07.25 19:22:17 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Adobe
[2011.07.25 19:21:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2011.07.25 19:19:36 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011.07.25 18:22:38 | 000,000,000 | ---D | C] -- C:\Users\Milosh\WELT_DER_WUNDER
[2011.07.25 17:34:24 | 000,000,000 | ---D | C] -- C:\Users\Milosh\Desktop\Neuer Ordner
[2011.07.25 13:18:44 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2011.07.25 13:18:44 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2011.07.25 13:18:41 | 000,961,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CPFilters.dll
[2011.07.25 13:18:41 | 000,723,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EncDec.dll
[2011.07.25 13:18:40 | 001,118,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sbe.dll
[2011.07.25 13:18:40 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sbe.dll
[2011.07.25 13:18:40 | 000,642,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CPFilters.dll
[2011.07.25 13:18:40 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EncDec.dll
[2011.07.25 13:18:40 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mpg2splt.ax
[2011.07.25 13:18:40 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mpg2splt.ax
[2011.07.25 13:18:37 | 005,562,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2011.07.25 13:18:35 | 003,967,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2011.07.25 13:18:35 | 003,912,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2011.07.25 13:18:23 | 000,702,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
[2011.07.25 13:18:23 | 000,599,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeeds.dll
[2011.07.25 13:18:23 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011.07.25 13:18:23 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011.07.25 13:18:21 | 000,919,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2011.07.25 13:18:21 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2011.07.25 13:18:21 | 000,613,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
[2011.07.25 13:18:17 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2011.07.25 13:18:17 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2011.07.25 13:18:17 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2011.07.25 13:18:17 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2011.07.25 13:18:16 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2011.07.25 13:18:16 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2011.07.25 13:18:16 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontsub.dll
[2011.07.25 13:18:16 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontsub.dll
[2011.07.25 13:18:16 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2011.07.25 13:18:16 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2011.07.25 13:18:15 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2011.07.25 13:18:15 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2011.07.25 13:18:15 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2011.07.25 13:18:05 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2011.07.25 13:18:05 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2011.07.25 13:18:04 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2011.07.25 13:18:04 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2011.07.25 13:18:04 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2011.07.25 13:18:04 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2011.07.25 13:18:04 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2011.07.25 13:18:03 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2011.07.25 13:18:03 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2011.07.25 13:18:03 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2011.07.25 13:18:03 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2011.07.25 13:18:03 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2011.07.25 13:18:03 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2011.07.25 13:18:03 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2011.07.25 13:18:03 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.25 13:18:03 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2011.07.25 13:18:02 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2011.07.25 13:18:02 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2011.07.25 13:18:02 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2011.07.25 13:18:02 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2011.07.25 13:18:02 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2011.07.25 13:18:02 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2011.07.25 13:18:02 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2011.07.25 13:17:59 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2011.07.25 13:17:59 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2011.07.25 13:17:59 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2011.07.25 13:17:59 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2011.07.25 13:17:59 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2011.07.25 13:17:59 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2011.07.25 13:17:59 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2011.07.25 13:17:58 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2011.07.25 13:17:57 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2011.07.25 13:17:57 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2011.07.25 13:17:55 | 000,267,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSCOVER.exe
[2011.07.23 19:29:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Sophos Web Intelligence
[2011.07.23 19:29:24 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Mozilla
[2011.07.23 19:29:24 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\Mozilla
[2011.07.23 19:29:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
[2011.07.23 19:29:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Cisco Systems
[2011.07.23 19:29:19 | 000,037,400 | ---- | C] (Sophos Limited) -- C:\Windows\SysNative\SophosBootTasks.exe
[2011.07.23 19:27:27 | 000,144,160 | ---- | C] (Sophos Limited) -- C:\Windows\SysNative\drivers\savonaccess.sys
[2011.07.23 19:27:25 | 000,026,104 | ---- | C] (Sophos Plc) -- C:\Windows\SysNative\drivers\sdcfilter.sys
[2011.07.23 19:27:13 | 000,183,024 | ---- | C] (Sophos Plc) -- C:\Windows\SysNative\sdccoinstaller.dll
[2011.07.23 19:25:06 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Macromedia
[2011.07.23 19:25:06 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Adobe
[2011.07.23 19:12:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elaborate Bytes
[2011.07.23 19:12:55 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Elaborate Bytes
[2011.07.23 19:12:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron
[2011.07.23 19:12:37 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\Chromium
[2011.07.23 19:12:33 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SRWare Iron
[2011.07.23 19:11:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Combined Community Codec Pack
[2011.07.23 19:11:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Combined Community Codec Pack
[2011.07.23 19:11:35 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.07.23 19:11:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2011.07.23 19:11:33 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2011.07.23 19:10:21 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\Ahead
[2011.07.23 19:10:17 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero 8
[2011.07.23 19:08:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2011.07.23 19:08:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Nero
[2011.07.23 19:08:27 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Nero
[2011.07.23 19:07:11 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_30.dll
[2011.07.23 19:07:10 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3dx9_28.dll
[2011.07.23 19:05:33 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\Sophos
[2011.07.23 19:04:48 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\Macromed
[2011.07.23 19:04:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
[2011.07.23 19:04:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2011.07.23 19:03:12 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Malwarebytes
[2011.07.23 19:03:06 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011.07.23 19:03:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011.07.23 19:03:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011.07.23 19:03:02 | 000,025,912 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2011.07.23 19:03:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2011.07.23 18:51:16 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\SPReview
[2011.07.23 18:33:37 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2011.07.23 18:26:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Cisco
[2011.07.23 18:25:46 | 004,171,328 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\BCMWL664.SYS
[2011.07.23 18:25:46 | 003,896,632 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvsrv64.dll
[2011.07.23 18:25:46 | 003,561,272 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvui64.dll
[2011.07.23 18:25:46 | 000,095,544 | ---- | C] (Broadcom Corporation) -- C:\Windows\SysNative\bcmwlcoi.dll
[2011.07.23 18:25:46 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom
[2011.07.23 18:24:53 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2011.07.23 18:14:09 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSAC3ENC.DLL
[2011.07.23 18:14:09 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MMDevAPI.dll
[2011.07.23 18:14:09 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprddm.dll
[2011.07.23 18:14:09 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mobsync.exe
[2011.07.23 18:14:09 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mobsync.exe
[2011.07.23 18:14:08 | 001,808,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pnidui.dll
[2011.07.23 18:14:08 | 001,115,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RacEngn.dll
[2011.07.23 18:14:08 | 001,050,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\printui.dll
[2011.07.23 18:14:08 | 000,762,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdcpl.dll
[2011.07.23 18:14:08 | 000,552,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdri.dll
[2011.07.23 18:14:08 | 000,509,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qedit.dll
[2011.07.23 18:14:08 | 000,322,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate.exe
[2011.07.23 18:14:08 | 000,318,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\raschap.dll
[2011.07.23 18:14:08 | 000,266,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MediaMetadataHandler.dll
[2011.07.23 18:14:08 | 000,241,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Ribbons.scr
[2011.07.23 18:14:08 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iTVData.dll
[2011.07.23 18:14:08 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstask.dll
[2011.07.23 18:14:08 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\itircl.dll
[2011.07.23 18:14:08 | 000,171,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\scsiport.sys
[2011.07.23 18:14:08 | 000,125,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inseng.dll
[2011.07.23 18:14:08 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kstvtune.ax
[2011.07.23 18:14:08 | 000,098,816 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\Robocopy.exe
[2011.07.23 18:14:08 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logagent.exe
[2011.07.23 18:14:08 | 000,080,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscories.dll
[2011.07.23 18:14:08 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksxbar.ax
[2011.07.23 18:14:08 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetmib1.dll
[2011.07.23 18:14:08 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\licmgr10.dll
[2011.07.23 18:14:08 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pifmgr.dll
[2011.07.23 18:14:08 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\lsmproxy.dll
[2011.07.23 18:14:08 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msfeedssync.exe
[2011.07.23 18:14:08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDCZ1.DLL
[2011.07.23 18:14:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBLR.DLL
[2011.07.23 18:14:08 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDLT1.DLL
[2011.07.23 18:14:08 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTEL.DLL
[2011.07.23 18:14:07 | 003,391,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbgeng.dll
[2011.07.23 18:14:07 | 002,652,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netshell.dll
[2011.07.23 18:14:07 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certmgr.dll
[2011.07.23 18:14:07 | 001,731,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2011.07.23 18:14:07 | 001,340,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diagperf.dll
[2011.07.23 18:14:07 | 001,003,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cryptui.dll
[2011.07.23 18:14:07 | 000,898,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OobeFldr.dll
[2011.07.23 18:14:07 | 000,805,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cdosys.dll
[2011.07.23 18:14:07 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netlogon.dll
[2011.07.23 18:14:07 | 000,573,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10level9.dll
[2011.07.23 18:14:07 | 000,489,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10level9.dll
[2011.07.23 18:14:07 | 000,460,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\certcli.dll
[2011.07.23 18:14:07 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcfgx.dll
[2011.07.23 18:14:07 | 000,321,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10_1core.dll
[2011.07.23 18:14:07 | 000,302,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmd.exe
[2011.07.23 18:14:07 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgent.dll
[2011.07.23 18:14:07 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2011.07.23 18:14:07 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpclip.exe
[2011.07.23 18:14:07 | 000,210,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncsi.dll
[2011.07.23 18:14:07 | 000,188,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netjoin.dll
[2011.07.23 18:14:07 | 000,179,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schtasks.exe
[2011.07.23 18:14:07 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiohlp.dll
[2011.07.23 18:14:07 | 000,157,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfmon.exe
[2011.07.23 18:14:07 | 000,147,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RDPENCDD.dll
[2011.07.23 18:14:07 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdd.dll
[2011.07.23 18:14:07 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nslookup.exe
[2011.07.23 18:14:07 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertPolEng.dll
[2011.07.23 18:14:07 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntlanman.dll
[2011.07.23 18:14:07 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nlsbres.dll
[2011.07.23 18:14:07 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncryptui.dll
[2011.07.23 18:14:07 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MultiDigiMon.exe
[2011.07.23 18:14:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdhui.dll
[2011.07.23 18:14:07 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2011.07.23 18:14:07 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netiougc.exe
[2011.07.23 18:14:07 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdprefdrvapi.dll
[2011.07.23 18:14:07 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\C_ISCII.DLL
[2011.07.23 18:14:06 | 002,067,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d9.dll
[2011.07.23 18:14:06 | 001,927,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\authui.dll
[2011.07.23 18:14:06 | 001,792,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\authui.dll
[2011.07.23 18:14:06 | 001,244,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2fs.dll
[2011.07.23 18:14:06 | 001,087,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dbghelp.dll
[2011.07.23 18:14:06 | 001,066,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Display.dll
[2011.07.23 18:14:06 | 000,665,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuxiliaryDisplayCpl.dll
[2011.07.23 18:14:06 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comdlg32.dll
[2011.07.23 18:14:06 | 000,577,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AdmTmpl.dll
[2011.07.23 18:14:06 | 000,508,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxgi.dll
[2011.07.23 18:14:06 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\evr.dll
[2011.07.23 18:14:06 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imkr80.ime
[2011.07.23 18:14:06 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aeinv.dll
[2011.07.23 18:14:06 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aepdu.dll
[2011.07.23 18:14:06 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2.dll
[2011.07.23 18:14:06 | 000,386,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\html.iec
[2011.07.23 18:14:06 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdedit.exe
[2011.07.23 18:14:06 | 000,258,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\dxgmms1.sys
[2011.07.23 18:14:06 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iepeers.dll
[2011.07.23 18:14:06 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\activeds.dll
[2011.07.23 18:14:06 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dskquoui.dll
[2011.07.23 18:14:06 | 000,195,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AudioSes.dll
[2011.07.23 18:14:06 | 000,168,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdsrv.dll
[2011.07.23 18:14:06 | 000,135,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayServices.dll
[2011.07.23 18:14:06 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskpart.exe
[2011.07.23 18:14:06 | 000,112,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\consent.exe
[2011.07.23 18:14:06 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2011.07.23 18:14:06 | 000,078,720 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\SysNative\drivers\HpSAMD.sys
[2011.07.23 18:14:06 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\acppage.dll
[2011.07.23 18:14:06 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ftp.exe
[2011.07.23 18:14:06 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\g711codc.ax
[2011.07.23 18:14:06 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2011.07.23 18:14:06 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\elsTrans.dll
[2011.07.23 18:14:05 | 001,866,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ExplorerFrame.dll
[2011.07.23 18:14:05 | 001,493,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ExplorerFrame.dll
[2011.07.23 18:14:05 | 000,867,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SearchFolder.dll
[2011.07.23 18:14:05 | 000,410,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\systemcpl.dll
[2011.07.23 18:14:05 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sysmon.ocx
[2011.07.23 18:14:05 | 000,355,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Faultrep.dll
[2011.07.23 18:14:05 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tscfgwmi.dll
[2011.07.23 18:14:03 | 002,157,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themecpl.dll
[2011.07.23 18:14:03 | 001,888,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVDECOD.DLL
[2011.07.23 18:14:03 | 001,232,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMADMOD.DLL
[2011.07.23 18:14:03 | 001,197,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskschd.dll
[2011.07.23 18:14:03 | 000,978,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMSPDMOD.DLL
[2011.07.23 18:14:03 | 000,738,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpmde.dll
[2011.07.23 18:14:03 | 000,684,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TabletPC.cpl
[2011.07.23 18:14:03 | 000,636,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmdev.dll
[2011.07.23 18:14:03 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpeffects.dll
[2011.07.23 18:14:03 | 000,527,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmnet.dll
[2011.07.23 18:14:03 | 000,451,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shwebsvc.dll
[2011.07.23 18:14:03 | 000,340,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srchadmin.dll
[2011.07.23 18:14:03 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqmapi.dll
[2011.07.23 18:14:03 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spp.dll
[2011.07.23 18:14:03 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysclass.dll
[2011.07.23 18:14:03 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2011.07.23 18:14:03 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpsrcwp.dll
[2011.07.23 18:14:03 | 000,181,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpipcfg.dll
[2011.07.23 18:14:03 | 000,112,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\thumbcache.dll
[2011.07.23 18:14:03 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shsetup.dll
[2011.07.23 18:14:03 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppinst.dll
[2011.07.23 18:14:03 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tabcal.exe
[2011.07.23 18:14:03 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spbcd.dll
[2011.07.23 18:14:02 | 002,621,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2011.07.23 18:14:02 | 001,753,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vssapi.dll
[2011.07.23 18:14:02 | 001,227,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdc.dll
[2011.07.23 18:14:02 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpd_ci.dll
[2011.07.23 18:14:02 | 000,444,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wvc.dll
[2011.07.23 18:14:02 | 000,416,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiadefui.dll
[2011.07.23 18:14:02 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2011.07.23 18:14:02 | 000,350,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WPDSp.dll
[2011.07.23 18:14:02 | 000,346,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\untfs.dll
[2011.07.23 18:14:02 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2011.07.23 18:14:02 | 000,297,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ws2_32.dll
[2011.07.23 18:14:02 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsqmcons.exe
[2011.07.23 18:14:02 | 000,222,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanconn.dll
[2011.07.23 18:14:02 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wavemsp.dll
[2011.07.23 18:14:02 | 000,215,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdwcn.dll
[2011.07.23 18:14:02 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuwebv.dll
[2011.07.23 18:14:02 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsRasterService.dll
[2011.07.23 18:14:02 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shacct.dll
[2011.07.23 18:14:02 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vss_ps.dll
[2011.07.23 18:14:02 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\umb.dll
[2011.07.23 18:14:02 | 000,051,200 | ---- | C] (Twain Working Group) -- C:\Windows\twain_32.dll
[2011.07.23 18:14:02 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tzutil.exe
[2011.07.23 18:14:02 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbisurf.ax
[2011.07.23 18:14:02 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wtsapi32.dll
[2011.07.23 18:14:02 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unlodctr.exe
[2011.07.23 18:14:02 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapp.exe
[2011.07.23 18:14:02 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsdchngr.dll
[2011.07.23 18:14:02 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WerFaultSecure.exe
[2011.07.23 18:14:01 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc.dll
[2011.07.23 18:14:01 | 000,113,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupugc.exe
[2011.07.23 18:14:00 | 004,120,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mf.dll
[2011.07.23 18:14:00 | 000,957,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mblctr.exe
[2011.07.23 18:14:00 | 000,954,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40u.dll
[2011.07.23 18:14:00 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfds.dll
[2011.07.23 18:14:00 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSAC3ENC.DLL
[2011.07.23 18:14:00 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ksproxy.ax
[2011.07.23 18:14:00 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MFPlay.dll
[2011.07.23 18:14:00 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfps.dll
[2011.07.23 18:14:00 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprapi.dll
[2011.07.23 18:14:00 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\itircl.dll
[2011.07.23 18:14:00 | 000,155,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscorier.dll
[2011.07.23 18:14:00 | 000,154,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscorier.dll
[2011.07.23 18:14:00 | 000,127,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logoncli.dll
[2011.07.23 18:14:00 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\logman.exe
[2011.07.23 18:14:00 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\luainstall.dll
[2011.07.23 18:14:00 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mimefilt.dll
[2011.07.23 18:14:00 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\LogonUI.exe
[2011.07.23 18:14:00 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logoff.exe
[2011.07.23 18:14:00 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUF.DLL
[2011.07.23 18:14:00 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGKL.DLL
[2011.07.23 18:14:00 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINBEN.DLL
[2011.07.23 18:14:00 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUS.DLL
[2011.07.23 18:14:00 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSF.DLL
[2011.07.23 18:13:59 | 002,086,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ole32.dll
[2011.07.23 18:13:59 | 001,911,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OpcServices.dll
[2011.07.23 18:13:59 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshipsec.dll
[2011.07.23 18:13:59 | 000,303,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msinfo32.exe
[2011.07.23 18:13:59 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\OnLineIDCpl.dll
[2011.07.23 18:13:59 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OnLineIDCpl.dll
[2011.07.23 18:13:59 | 000,197,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetup.exe
[2011.07.23 18:13:59 | 000,174,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ocsetapi.dll
[2011.07.23 18:13:59 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netutils.dll
[2011.07.23 18:13:58 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssrch.dll
[2011.07.23 18:13:58 | 001,049,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstsc.exe
[2011.07.23 18:13:58 | 000,902,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d2d1.dll
[2011.07.23 18:13:58 | 000,787,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d11.dll
[2011.07.23 18:13:58 | 000,668,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autochk.exe
[2011.07.23 18:13:58 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssvp.dll
[2011.07.23 18:13:58 | 000,571,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mspbda.dll
[2011.07.23 18:13:58 | 000,457,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdrm.dll
[2011.07.23 18:13:58 | 000,363,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskraid.exe
[2011.07.23 18:13:58 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msihnd.dll
[2011.07.23 18:13:58 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3ui.dll
[2011.07.23 18:13:58 | 000,323,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvstore.dll
[2011.07.23 18:13:58 | 000,219,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10_1core.dll
[2011.07.23 18:13:58 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mssphtb.dll
[2011.07.23 18:13:58 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\credui.dll
[2011.07.23 18:13:58 | 000,137,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CscMig.dll
[2011.07.23 18:13:58 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3cfg.dll
[2011.07.23 18:13:58 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netapi32.dll
[2011.07.23 18:13:58 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MuiUnattend.exe
[2011.07.23 18:13:58 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3cfg.dll
[2011.07.23 18:13:58 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPCRYPT.DLL
[2011.07.23 18:13:58 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPCRYPT.DLL
[2011.07.23 18:13:58 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\choice.exe
[2011.07.23 18:13:58 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdmo.dll
[2011.07.23 18:13:58 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\chgusr.exe
[2011.07.23 18:13:58 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\muifontsetup.dll
[2011.07.23 18:13:58 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeedssync.exe
[2011.07.23 18:13:57 | 003,727,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\accessibilitycpl.dll
[2011.07.23 18:13:57 | 001,400,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DxpTaskSync.dll
[2011.07.23 18:13:57 | 001,334,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertEnroll.dll
[2011.07.23 18:13:57 | 001,148,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IMJP10.IME
[2011.07.23 18:13:57 | 001,027,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IMJP10.IME
[2011.07.23 18:13:57 | 000,899,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Bubbles.scr
[2011.07.23 18:13:57 | 000,878,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Bubbles.scr
[2011.07.23 18:13:57 | 000,675,328 | ---- | C] (Microsoft Corporation) --

MrMeeToo · 26.07.2011, 17:31

teil2 des otl codes:

Code:

ATTFilter

C:\Windows\SysNative\DXPTaskRingtone.dll
[2011.07.23 18:13:57 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gpprefcl.dll
[2011.07.23 18:13:57 | 000,549,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenterCPL.dll
[2011.07.23 18:13:57 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imapi2.dll
[2011.07.23 18:13:57 | 000,438,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AdmTmpl.dll
[2011.07.23 18:13:57 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fveapi.dll
[2011.07.23 18:13:57 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\apphelp.dll
[2011.07.23 18:13:57 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapp3hst.dll
[2011.07.23 18:13:57 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eapphost.dll
[2011.07.23 18:13:57 | 000,210,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxdiagn.dll
[2011.07.23 18:13:57 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2011.07.23 18:13:57 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabview.dll
[2011.07.23 18:13:57 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IcCoinstall.dll
[2011.07.23 18:13:57 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cca.dll
[2011.07.23 18:13:57 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eappgnui.dll
[2011.07.23 18:13:57 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\browcli.dll
[2011.07.23 18:13:57 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imgutil.dll
[2011.07.23 18:13:57 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\HotStartUserAgent.dll
[2011.07.23 18:13:57 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\chgport.exe
[2011.07.23 18:13:57 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\chglogon.exe
[2011.07.23 18:13:57 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\change.exe
[2011.07.23 18:13:56 | 003,860,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbon.dll
[2011.07.23 18:13:56 | 002,983,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbon.dll
[2011.07.23 18:13:56 | 002,755,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\themeui.dll
[2011.07.23 18:13:56 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2011.07.23 18:13:56 | 001,698,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2011.07.23 18:13:56 | 001,548,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tquery.dll
[2011.07.23 18:13:56 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UIRibbonRes.dll
[2011.07.23 18:13:56 | 001,164,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UIRibbonRes.dll
[2011.07.23 18:13:56 | 000,861,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fontext.dll
[2011.07.23 18:13:56 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsmf.dll
[2011.07.23 18:13:56 | 000,281,600 | ---- | C] (Microsoft) -- C:\Windows\SysNative\DShowRdpFilter.dll
[2011.07.23 18:13:56 | 000,205,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\efscore.dll
[2011.07.23 18:13:56 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fde.dll
[2011.07.23 18:13:56 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tskill.exe
[2011.07.23 18:13:56 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tscon.exe
[2011.07.23 18:13:56 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\elsTrans.dll
[2011.07.23 18:13:56 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsdiscon.exe
[2011.07.23 18:13:56 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TRAPI.dll
[2011.07.23 18:13:56 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TRAPI.dll
[2011.07.23 18:13:56 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyExtension.dll
[2011.07.23 18:13:56 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbRedirectionGroupPolicyControl.exe
[2011.07.23 18:13:55 | 003,957,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSAT.exe
[2011.07.23 18:13:55 | 002,543,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpdshext.dll
[2011.07.23 18:13:55 | 002,504,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVCORE.DLL
[2011.07.23 18:13:55 | 002,146,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SyncCenter.dll
[2011.07.23 18:13:55 | 001,624,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPEncEn.dll
[2011.07.23 18:13:55 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVDECOD.DLL
[2011.07.23 18:13:55 | 001,363,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdc.dll
[2011.07.23 18:13:55 | 001,243,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMNetMgr.dll
[2011.07.23 18:13:55 | 000,800,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usp10.dll
[2011.07.23 18:13:55 | 000,739,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMSPDMOD.DLL
[2011.07.23 18:13:55 | 000,666,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVSDECD.DLL
[2011.07.23 18:13:55 | 000,600,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\usercpl.dll
[2011.07.23 18:13:55 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wvc.dll
[2011.07.23 18:13:55 | 000,505,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskschd.dll
[2011.07.23 18:13:55 | 000,474,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sysmon.ocx
[2011.07.23 18:13:55 | 000,470,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2011.07.23 18:13:55 | 000,410,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanui.dll
[2011.07.23 18:13:55 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\zipfldr.dll
[2011.07.23 18:13:55 | 000,307,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wusa.exe
[2011.07.23 18:13:55 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskmgr.exe
[2011.07.23 18:13:55 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskbarcpl.dll
[2011.07.23 18:13:55 | 000,229,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsRasterService.dll
[2011.07.23 18:13:55 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\upnp.dll
[2011.07.23 18:13:55 | 000,196,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VBICodec.ax
[2011.07.23 18:13:55 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wdscore.dll
[2011.07.23 18:13:55 | 000,178,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2011.07.23 18:13:55 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\t2embed.dll
[2011.07.23 18:13:55 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDShServiceObj.dll
[2011.07.23 18:13:55 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\t2embed.dll
[2011.07.23 18:13:55 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WSTPager.ax
[2011.07.23 18:13:55 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\UserAccountControlSettings.dll
[2011.07.23 18:13:55 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wsnmp32.dll
[2011.07.23 18:13:55 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\takeown.exe
[2011.07.23 18:13:55 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TsUsbGDCoInstaller.dll
[2011.07.23 18:13:55 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2011.07.23 18:13:55 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syssetup.dll
[2011.07.23 18:13:54 | 002,262,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SyncCenter.dll
[2011.07.23 18:13:54 | 000,751,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\win32spl.dll
[2011.07.23 18:13:54 | 000,633,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched20.dll
[2011.07.23 18:13:54 | 000,600,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PerfCenterCPL.dll
[2011.07.23 18:13:54 | 000,492,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\win32spl.dll
[2011.07.23 18:13:54 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercpl.dll
[2011.07.23 18:13:54 | 000,406,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scesrv.dll
[2011.07.23 18:13:54 | 000,372,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastls.dll
[2011.07.23 18:13:54 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scansetting.dll
[2011.07.23 18:13:54 | 000,274,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpdd.dll
[2011.07.23 18:13:54 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmicsvc.exe
[2011.07.23 18:13:54 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pdh.dll
[2011.07.23 18:13:54 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Ribbons.scr
[2011.07.23 18:13:54 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qcap.dll
[2011.07.23 18:13:54 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceSyncProvider.dll
[2011.07.23 18:13:54 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perfmon.exe
[2011.07.23 18:13:54 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\powercfg.cpl
[2011.07.23 18:13:54 | 000,128,000 | ---- | C] (Microsoft) -- C:\Windows\SysNative\Robocopy.exe
[2011.07.23 18:13:54 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\regapi.dll
[2011.07.23 18:13:54 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rastapi.dll
[2011.07.23 18:13:54 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\runonce.exe
[2011.07.23 18:13:54 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmicres.dll
[2011.07.23 18:13:54 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rtutils.dll
[2011.07.23 18:13:54 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmictimeprovider.dll
[2011.07.23 18:13:54 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\relog.exe
[2011.07.23 18:13:54 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rwinsta.exe
[2011.07.23 18:13:54 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\schedcli.dll
[2011.07.23 18:13:54 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\reset.exe
[2011.07.23 18:13:54 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\riched32.dll
[2011.07.23 18:13:53 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2011.07.23 18:13:53 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmiEngine.dll
[2011.07.23 18:13:53 | 000,755,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sud.dll
[2011.07.23 18:13:53 | 000,598,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spinstall.exe
[2011.07.23 18:13:53 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2011.07.23 18:13:53 | 000,483,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\StructuredQuery.dll
[2011.07.23 18:13:53 | 000,418,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppwinob.dll
[2011.07.23 18:13:53 | 000,349,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slui.exe
[2011.07.23 18:13:53 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spreview.exe
[2011.07.23 18:13:53 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srrstr.dll
[2011.07.23 18:13:53 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizui.dll
[2011.07.23 18:13:53 | 000,250,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdv.dll
[2011.07.23 18:13:53 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppcomapi.dll
[2011.07.23 18:13:53 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppcomapi.dll
[2011.07.23 18:13:53 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\splwow64.exe
[2011.07.23 18:13:53 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PushPrinterConnections.exe
[2011.07.23 18:13:53 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qprocess.exe
[2011.07.23 18:13:53 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qappsrv.exe
[2011.07.23 18:13:53 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\query.exe
[2011.07.23 18:13:53 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\slwga.dll
[2011.07.23 18:13:53 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shunimpl.dll
[2011.07.23 18:13:52 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sharemediacpl.dll
[2011.07.23 18:13:52 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setupcln.dll
[2011.07.23 18:13:52 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shadow.exe
[2011.07.23 18:13:51 | 001,447,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2011.07.23 18:13:51 | 000,955,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localspl.dll
[2011.07.23 18:13:51 | 000,732,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imapi2fs.dll
[2011.07.23 18:13:51 | 000,653,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lpksetup.exe
[2011.07.23 18:13:51 | 000,345,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MediaMetadataHandler.dll
[2011.07.23 18:13:51 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcbuilder.exe
[2011.07.23 18:13:51 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\IPHLPAPI.DLL
[2011.07.23 18:13:51 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Kswdmcap.ax
[2011.07.23 18:13:51 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logman.exe
[2011.07.23 18:13:51 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\migisol.dll
[2011.07.23 18:13:51 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inseng.dll
[2011.07.23 18:13:51 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\manage-bde.exe
[2011.07.23 18:13:51 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mpeg2Data.ax
[2011.07.23 18:13:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSG.DLL
[2011.07.23 18:13:51 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kbdlk41a.dll
[2011.07.23 18:13:51 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUF.DLL
[2011.07.23 18:13:51 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDSG.DLL
[2011.07.23 18:13:51 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDNEPR.DLL
[2011.07.23 18:13:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDUGHR1.DLL
[2011.07.23 18:13:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTAJIK.DLL
[2011.07.23 18:13:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDPO.DLL
[2011.07.23 18:13:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINORI.DLL
[2011.07.23 18:13:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINKAN.DLL
[2011.07.23 18:13:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINKAN.DLL
[2011.07.23 18:13:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINHIN.DLL
[2011.07.23 18:13:51 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBULG.DLL
[2011.07.23 18:13:51 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUGHR1.DLL
[2011.07.23 18:13:51 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMAORI.DLL
[2011.07.23 18:13:51 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBLR.DLL
[2011.07.23 18:13:50 | 002,494,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netshell.dll
[2011.07.23 18:13:50 | 002,130,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\networkmap.dll
[2011.07.23 18:13:50 | 001,750,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pnidui.dll
[2011.07.23 18:13:50 | 000,758,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceApi.dll
[2011.07.23 18:13:50 | 000,720,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbc32.dll
[2011.07.23 18:13:50 | 000,658,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PerfCenterCPL.dll
[2011.07.23 18:13:50 | 000,656,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nshwfp.dll
[2011.07.23 18:13:50 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mscms.dll
[2011.07.23 18:13:50 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceStatus.dll
[2011.07.23 18:13:50 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ipsmsnap.dll
[2011.07.23 18:13:50 | 000,341,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdrm.dll
[2011.07.23 18:13:50 | 000,282,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iTVData.dll
[2011.07.23 18:13:50 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iprtrmgr.dll
[2011.07.23 18:13:50 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iprtrmgr.dll
[2011.07.23 18:13:50 | 000,224,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PortableDeviceSyncProvider.dll
[2011.07.23 18:13:50 | 000,165,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netid.dll
[2011.07.23 18:13:50 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2011.07.23 18:13:50 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsicli.exe
[2011.07.23 18:13:50 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\isoburn.exe
[2011.07.23 18:13:50 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\olethk32.dll
[2011.07.23 18:13:50 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nlsbres.dll
[2011.07.23 18:13:50 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PnPUnattend.exe
[2011.07.23 18:13:50 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSDvbNP.ax
[2011.07.23 18:13:50 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcconf.dll
[2011.07.23 18:13:50 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iscsium.dll
[2011.07.23 18:13:50 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netbtugc.exe
[2011.07.23 18:13:50 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nrpsrv.dll
[2011.07.23 18:13:49 | 001,975,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\CertEnroll.dll
[2011.07.23 18:13:49 | 001,065,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptui.dll
[2011.07.23 18:13:49 | 000,799,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msftedit.dll
[2011.07.23 18:13:49 | 000,776,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\calc.exe
[2011.07.23 18:13:49 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d2d1.dll
[2011.07.23 18:13:49 | 000,641,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msscp.dll
[2011.07.23 18:13:49 | 000,339,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appmgr.dll
[2011.07.23 18:13:49 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msnetobj.dll
[2011.07.23 18:13:49 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\clusapi.dll
[2011.07.23 18:13:49 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msieftp.dll
[2011.07.23 18:13:49 | 000,242,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mystify.scr
[2011.07.23 18:13:49 | 000,240,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscobj.dll
[2011.07.23 18:13:49 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstask.dll
[2011.07.23 18:13:49 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DevicePairingFolder.dll
[2011.07.23 18:13:49 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DevicePairingFolder.dll
[2011.07.23 18:13:49 | 000,204,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSNP.ax
[2011.07.23 18:13:49 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msorcl32.dll
[2011.07.23 18:13:49 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabview.dll
[2011.07.23 18:13:49 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NAPHLPR.DLL
[2011.07.23 18:13:49 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\desk.cpl
[2011.07.23 18:13:49 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nci.dll
[2011.07.23 18:13:49 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\napdsnap.dll
[2011.07.23 18:13:49 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\napdsnap.dll
[2011.07.23 18:13:49 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\CertPolEng.dll
[2011.07.23 18:13:49 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\acppage.dll
[2011.07.23 18:13:49 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\muifontsetup.dll
[2011.07.23 18:13:48 | 001,076,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DWrite.dll
[2011.07.23 18:13:48 | 000,934,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FirewallControlPanel.dll
[2011.07.23 18:13:48 | 000,856,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FirewallControlPanel.dll
[2011.07.23 18:13:48 | 000,840,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\blackbox.dll
[2011.07.23 18:13:48 | 000,777,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autochk.exe
[2011.07.23 18:13:48 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenter.dll
[2011.07.23 18:13:48 | 000,740,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\batmeter.dll
[2011.07.23 18:13:48 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuxiliaryDisplayCpl.dll
[2011.07.23 18:13:48 | 000,630,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DXPTaskRingtone.dll
[2011.07.23 18:13:48 | 000,537,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ActionCenterCPL.dll
[2011.07.23 18:13:48 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\biocpl.dll
[2011.07.23 18:13:48 | 000,495,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drmmgrtn.dll
[2011.07.23 18:13:48 | 000,459,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DXP.dll
[2011.07.23 18:13:48 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gdi32.dll
[2011.07.23 18:13:48 | 000,332,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgcpl.dll
[2011.07.23 18:13:48 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hgcpl.dll
[2011.07.23 18:13:48 | 000,298,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcryptprimitives.dll
[2011.07.23 18:13:48 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpx.dll
[2011.07.23 18:13:48 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hgprint.dll
[2011.07.23 18:13:48 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\FWPUCLNT.DLL
[2011.07.23 18:13:48 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iepeers.dll
[2011.07.23 18:13:48 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ie4uinit.exe
[2011.07.23 18:13:48 | 000,166,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\basecsp.dll
[2011.07.23 18:13:48 | 000,166,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\diskpart.exe
[2011.07.23 18:13:48 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fphc.dll
[2011.07.23 18:13:48 | 000,116,224 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysNative\fms.dll
[2011.07.23 18:13:48 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscmmc.dll
[2011.07.23 18:13:48 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\hidclass.sys
[2011.07.23 18:13:48 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\bfsvc.exe
[2011.07.23 18:13:48 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\findstr.exe
[2011.07.23 18:13:48 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\g711codc.ax
[2011.07.23 18:13:48 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BlbEvents.dll
[2011.07.23 18:13:48 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ftp.exe
[2011.07.23 18:13:48 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSMON.dll
[2011.07.23 18:13:48 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsauth.dll
[2011.07.23 18:13:48 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSUNATD.exe
[2011.07.23 18:13:48 | 000,002,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dpnaddr.dll
[2011.07.23 18:13:47 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2011.07.23 18:13:47 | 002,193,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themecpl.dll
[2011.07.23 18:13:47 | 001,457,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DxpTaskSync.dll
[2011.07.23 18:13:47 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2011.07.23 18:13:47 | 000,403,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\untfs.dll
[2011.07.23 18:13:47 | 000,359,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eudcedit.exe
[2011.07.23 18:13:47 | 000,313,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3ui.dll
[2011.07.23 18:13:47 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\eudcedit.exe
[2011.07.23 18:13:47 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tlscsp.dll
[2011.07.23 18:13:47 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tcpmonui.dll
[2011.07.23 18:13:47 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fdeploy.dll
[2011.07.23 18:13:47 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\takeown.exe
[2011.07.23 18:13:47 | 000,032,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\USBCAMD2.sys
[2011.07.23 18:13:46 | 001,190,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
[2011.07.23 18:13:46 | 000,781,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmdrmsdk.dll
[2011.07.23 18:13:46 | 000,475,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlangpui.dll
[2011.07.23 18:13:46 | 000,442,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winspool.drv
[2011.07.23 18:13:46 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanmsm.dll
[2011.07.23 18:13:46 | 000,414,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanmsm.dll
[2011.07.23 18:13:46 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPhoto.dll
[2011.07.23 18:13:46 | 000,390,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winlogon.exe
[2011.07.23 18:13:46 | 000,294,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsAnytimeUpgradeResults.exe
[2011.07.23 18:13:46 | 000,264,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\upnp.dll
[2011.07.23 18:13:46 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpsrcwp.dll
[2011.07.23 18:13:46 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2011.07.23 18:13:46 | 000,172,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\twext.dll
[2011.07.23 18:13:46 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\twext.dll
[2011.07.23 18:13:46 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2011.07.23 18:13:46 | 000,134,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSCard.dll
[2011.07.23 18:13:46 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wkscli.dll
[2011.07.23 18:13:46 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdmat.dll
[2011.07.23 18:13:46 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys
[2011.07.23 18:13:46 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tzutil.exe
[2011.07.23 18:13:46 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2011.07.23 18:13:45 | 002,311,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpdshext.dll
[2011.07.23 18:13:45 | 001,281,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\werconcpl.dll
[2011.07.23 18:13:45 | 001,158,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webservices.dll
[2011.07.23 18:13:45 | 000,933,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Vault.dll
[2011.07.23 18:13:45 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2011.07.23 18:13:45 | 000,782,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webservices.dll
[2011.07.23 18:13:45 | 000,695,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2011.07.23 18:13:45 | 000,691,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VAN.dll
[2011.07.23 18:13:45 | 000,541,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMVSDECD.DLL
[2011.07.23 18:13:45 | 000,462,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiadefui.dll
[2011.07.23 18:13:45 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WPDSp.dll
[2011.07.23 18:13:45 | 000,424,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rastls.dll
[2011.07.23 18:13:45 | 000,423,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_isv.dll
[2011.07.23 18:13:45 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimgapi.dll
[2011.07.23 18:13:45 | 000,381,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wer.dll
[2011.07.23 18:13:45 | 000,327,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wimserv.exe
[2011.07.23 18:13:45 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wusa.exe
[2011.07.23 18:13:45 | 000,255,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wavemsp.dll
[2011.07.23 18:13:45 | 000,185,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsutil.dll
[2011.07.23 18:13:45 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\remotepg.dll
[2011.07.23 18:13:45 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wiavideo.dll
[2011.07.23 18:13:45 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2011.07.23 18:13:45 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\w32tm.exe
[2011.07.23 18:13:45 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpd3d.dll
[2011.07.23 18:13:45 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsnmp32.dll
[2011.07.23 18:13:45 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wwanprotdim.dll
[2011.07.23 18:13:45 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\relog.exe
[2011.07.23 18:13:45 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2011.07.23 18:13:45 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ReAgentc.exe
[2011.07.23 18:13:44 | 002,055,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Query.dll
[2011.07.23 18:13:44 | 001,556,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RacEngn.dll
[2011.07.23 18:13:44 | 001,219,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpcrt4.dll
[2011.07.23 18:13:44 | 001,212,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\propsys.dll
[2011.07.23 18:13:44 | 000,503,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
[2011.07.23 18:13:44 | 000,446,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlcese30.dll
[2011.07.23 18:13:44 | 000,337,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\raschap.dll
[2011.07.23 18:13:44 | 000,327,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_isv.exe
[2011.07.23 18:13:44 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVol.exe
[2011.07.23 18:13:44 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp_isv.exe
[2011.07.23 18:13:44 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
[2011.07.23 18:13:44 | 000,266,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QAGENT.DLL
[2011.07.23 18:13:44 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scecli.dll
[2011.07.23 18:13:44 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SndVolSSO.dll
[2011.07.23 18:13:44 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scecli.dll
[2011.07.23 18:13:44 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QAGENT.DLL
[2011.07.23 18:13:44 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rpchttp.dll
[2011.07.23 18:13:44 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp_isv.dll
[2011.07.23 18:13:44 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prntvpt.dll
[2011.07.23 18:13:44 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QUTIL.DLL
[2011.07.23 18:13:44 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QCLIPROV.DLL
[2011.07.23 18:13:44 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\psisrndr.ax
[2011.07.23 18:13:44 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QCLIPROV.DLL
[2011.07.23 18:13:44 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\proquota.exe
[2011.07.23 18:13:44 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2011.07.23 18:13:44 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2011.07.23 18:13:43 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppnp.dll
[2011.07.23 18:13:43 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spopk.dll
[2011.07.23 18:13:42 | 003,207,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mf.dll
[2011.07.23 18:13:42 | 003,205,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmcndmgr.dll
[2011.07.23 18:13:42 | 002,151,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmcndmgr.dll
[2011.07.23 18:13:42 | 001,111,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onexui.dll
[2011.07.23 18:13:42 | 000,905,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mmsys.cpl
[2011.07.23 18:13:42 | 000,850,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mmsys.cpl
[2011.07.23 18:13:42 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbc32.dll
[2011.07.23 18:13:42 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2011.07.23 18:13:42 | 000,427,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceStatus.dll
[2011.07.23 18:13:42 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfds.dll
[2011.07.23 18:13:42 | 000,268,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mprddm.dll
[2011.07.23 18:13:42 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mcbuilder.exe
[2011.07.23 18:13:42 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netplwiz.dll
[2011.07.23 18:13:42 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\logoncli.dll
[2011.07.23 18:13:42 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetup.exe
[2011.07.23 18:13:42 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ocsetapi.dll
[2011.07.23 18:13:42 | 000,133,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Kswdmcap.ax
[2011.07.23 18:13:42 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntlanman.dll
[2011.07.23 18:13:42 | 000,117,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netid.dll
[2011.07.23 18:13:42 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\IPHLPAPI.DLL
[2011.07.23 18:13:42 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\nslookup.exe
[2011.07.23 18:13:42 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciavi32.dll
[2011.07.23 18:13:42 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mapistub.dll
[2011.07.23 18:13:42 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mapi32.dll
[2011.07.23 18:13:42 | 000,048,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netfxperf.dll
[2011.07.23 18:13:42 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pifmgr.dll
[2011.07.23 18:13:42 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTUQ.DLL
[2011.07.23 18:13:42 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDSF.DLL
[2011.07.23 18:13:42 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDPO.DLL
[2011.07.23 18:13:42 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGR1.DLL
[2011.07.23 18:13:42 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDNEPR.DLL
[2011.07.23 18:13:42 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMON.DLL
[2011.07.23 18:13:42 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINMAR.DLL
[2011.07.23 18:13:42 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTURME.DLL
[2011.07.23 18:13:42 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGEO.DLL
[2011.07.23 18:13:42 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGEO.DLL
[2011.07.23 18:13:41 | 002,223,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssrch.dll
[2011.07.23 18:13:41 | 001,116,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstsc.exe
[2011.07.23 18:13:41 | 000,778,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssvp.dll
[2011.07.23 18:13:41 | 000,335,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msieftp.dll
[2011.07.23 18:13:41 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2011.07.23 18:13:41 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mssphtb.dll
[2011.07.23 18:13:41 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Mystify.scr
[2011.07.23 18:13:41 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\onex.dll
[2011.07.23 18:13:41 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
[2011.07.23 18:13:41 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\occache.dll
[2011.07.23 18:13:41 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\net1.exe
[2011.07.23 18:13:41 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mydocs.dll
[2011.07.23 18:13:41 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msvfw32.dll
[2011.07.23 18:13:41 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncryptui.dll
[2011.07.23 18:13:41 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbcconf.dll
[2011.07.23 18:13:41 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msasn1.dll
[2011.07.23 18:13:40 | 003,745,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\accessibilitycpl.dll
[2011.07.23 18:13:40 | 001,838,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\d3d10warp.dll
[2011.07.23 18:13:40 | 001,828,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d9.dll
[2011.07.23 18:13:40 | 001,133,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cdosys.dll
[2011.07.23 18:13:40 | 001,130,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfshim.dll
[2011.07.23 18:13:40 | 000,958,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\actxprxy.dll
[2011.07.23 18:13:40 | 000,780,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionCenter.dll
[2011.07.23 18:13:40 | 000,763,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autofmt.exe
[2011.07.23 18:13:40 | 000,522,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d11.dll
[2011.07.23 18:13:40 | 000,508,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DeviceCenter.dll
[2011.07.23 18:13:40 | 000,342,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certcli.dll
[2011.07.23 18:13:40 | 000,213,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ActionQueue.dll
[2011.07.23 18:13:40 | 000,207,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cfgmgr32.dll
[2011.07.23 18:13:40 | 000,186,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adsldp.dll
[2011.07.23 18:13:40 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bcdboot.exe
[2011.07.23 18:13:40 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoplay.dll
[2011.07.23 18:13:40 | 000,144,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\basecsp.dll
[2011.07.23 18:13:40 | 000,100,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\davclnt.dll
[2011.07.23 18:13:40 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cabinet.dll
[2011.07.23 18:13:40 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmstp.exe
[2011.07.23 18:13:40 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\avifil32.dll
[2011.07.23 18:13:40 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\davclnt.dll
[2011.07.23 18:13:39 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AuthFWSnapin.dll
[2011.07.23 18:13:39 | 002,872,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2011.07.23 18:13:39 | 001,040,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Display.dll
[2011.07.23 18:13:39 | 000,828,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fontext.dll
[2011.07.23 18:13:39 | 000,630,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\evr.dll
[2011.07.23 18:13:39 | 000,482,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\html.iec
[2011.07.23 18:13:39 | 000,422,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drvstore.dll
[2011.07.23 18:13:39 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\intl.cpl
[2011.07.23 18:13:39 | 000,304,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\efscore.dll
[2011.07.23 18:13:39 | 000,295,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHost.exe
[2011.07.23 18:13:39 | 000,288,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\FWPKCLNT.SYS
[2011.07.23 18:13:39 | 000,263,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hal.dll
[2011.07.23 18:13:39 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tcpipcfg.dll
[2011.07.23 18:13:39 | 000,206,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedynos.dll
[2011.07.23 18:13:39 | 000,202,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\framedyn.dll
[2011.07.23 18:13:39 | 000,200,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\syncui.dll
[2011.07.23 18:13:39 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fde.dll
[2011.07.23 18:13:39 | 000,166,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetpp.dll
[2011.07.23 18:13:39 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imagehlp.dll
[2011.07.23 18:13:39 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmredir.dll
[2011.07.23 18:13:39 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3msm.dll
[2011.07.23 18:13:39 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dot3api.dll
[2011.07.23 18:13:39 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsauth.dll
[2011.07.23 18:13:39 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\httpapi.dll
[2011.07.23 18:13:38 | 002,314,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tquery.dll
[2011.07.23 18:13:38 | 000,778,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlsrv32.dll
[2011.07.23 18:13:38 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizeng.dll
[2011.07.23 18:13:38 | 000,318,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMPhoto.dll
[2011.07.23 18:13:38 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqlcese30.dll
[2011.07.23 18:13:38 | 000,301,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\srchadmin.dll
[2011.07.23 18:13:38 | 000,293,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ssText3d.scr
[2011.07.23 18:13:38 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVol.exe
[2011.07.23 18:13:38 | 000,225,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SndVolSSO.dll
[2011.07.23 18:13:38 | 000,217,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSCard.dll
[2011.07.23 18:13:38 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpps.dll
[2011.07.23 18:13:38 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srvcli.dll
[2011.07.23 18:13:38 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sppc.dll
[2011.07.23 18:13:38 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wdiasqmmodule.dll
[2011.07.23 18:13:38 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwizres.dll
[2011.07.23 18:13:37 | 001,098,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Vault.dll
[2011.07.23 18:13:37 | 000,902,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMADMOD.DLL
[2011.07.23 18:13:37 | 000,529,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wbemcomn.dll
[2011.07.23 18:13:37 | 000,507,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmdev.dll
[2011.07.23 18:13:37 | 000,436,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmnet.dll
[2011.07.23 18:13:37 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpdxm.dll
[2011.07.23 18:13:37 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdm.tsp
[2011.07.23 18:13:37 | 000,299,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpdxm.dll
[2011.07.23 18:13:37 | 000,285,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schtasks.exe
[2011.07.23 18:13:37 | 000,263,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnike.dll
[2011.07.23 18:13:37 | 000,129,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VmdCoinstall.dll
[2011.07.23 18:13:37 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_ssp.dll
[2011.07.23 18:13:37 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\uxlib.dll
[2011.07.23 18:13:37 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wscapi.dll
[2011.07.23 18:13:37 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vpnikeapi.dll
[2011.07.23 18:13:37 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmstorfltres.dll
[2011.07.23 18:13:37 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\utildll.dll
[2011.07.23 18:13:37 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\schedcli.dll
[2011.07.23 18:13:36 | 002,250,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SensorsCpl.dll
[2011.07.23 18:13:36 | 001,900,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupapi.dll
[2011.07.23 18:13:36 | 001,572,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2011.07.23 18:13:36 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2011.07.23 18:13:36 | 000,826,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2011.07.23 18:13:36 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\riched20.dll
[2011.07.23 18:13:36 | 000,448,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shlwapi.dll
[2011.07.23 18:13:36 | 000,395,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prnfldr.dll
[2011.07.23 18:13:36 | 000,306,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_ssp.exe
[2011.07.23 18:13:36 | 000,283,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdv.dll
[2011.07.23 18:13:36 | 000,206,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qasf.dll
[2011.07.23 18:13:36 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shdocvw.dll
[2011.07.23 18:13:36 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rpchttp.dll
[2011.07.23 18:13:36 | 000,183,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prncache.dll
[2011.07.23 18:13:36 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationSettings.exe
[2011.07.23 18:13:36 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSHVHOST.DLL
[2011.07.23 18:13:36 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recovery.dll
[2011.07.23 18:13:36 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shacct.dll
[2011.07.23 18:13:36 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QUTIL.DLL
[2011.07.23 18:13:36 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\QSVRMGMT.DLL
[2011.07.23 18:13:36 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setbcdlocale.dll
[2011.07.23 18:13:36 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shimgvw.dll
[2011.07.23 18:13:36 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\proquota.exe
[2011.07.23 18:13:36 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdprefdrvapi.dll
[2011.07.23 18:13:36 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\riched32.dll
[2011.07.23 18:13:35 | 001,538,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2011.07.23 18:13:35 | 001,326,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\NaturalLanguage6.dll
[2011.07.23 18:13:35 | 000,954,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc40.dll
[2011.07.23 18:13:35 | 000,519,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcfgx.dll
[2011.07.23 18:13:35 | 000,497,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\main.cpl
[2011.07.23 18:13:35 | 000,433,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MCEWMDRMNDBootstrap.dll
[2011.07.23 18:13:35 | 000,429,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\localsec.dll
[2011.07.23 18:13:35 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\intl.cpl
[2011.07.23 18:13:35 | 000,215,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netiohlp.dll
[2011.07.23 18:13:35 | 000,202,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\input.dll
[2011.07.23 18:13:35 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ncsi.dll
[2011.07.23 18:13:35 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsicli.exe
[2011.07.23 18:13:35 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MdSched.exe
[2011.07.23 18:13:35 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mydocs.dll
[2011.07.23 18:13:35 | 000,107,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\NAPHLPR.DLL
[2011.07.23 18:13:35 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\isoburn.exe
[2011.07.23 18:13:35 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kstvtune.ax
[2011.07.23 18:13:35 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2011.07.23 18:13:35 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\licmgr10.dll
[2011.07.23 18:13:35 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsmproxy.dll
[2011.07.23 18:13:35 | 000,049,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netfxperf.dll
[2011.07.23 18:13:35 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksxbar.ax
[2011.07.23 18:13:35 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\httpapi.dll
[2011.07.23 18:13:35 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mimefilt.dll
[2011.07.23 18:13:35 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mciqtz32.dll
[2011.07.23 18:13:35 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iscsium.dll
[2011.07.23 18:13:35 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mciqtz32.dll
[2011.07.23 18:13:35 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDCZ1.DLL
[2011.07.23 18:13:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\kbdlk41a.dll
[2011.07.23 18:13:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTAM.DLL
[2011.07.23 18:13:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDGR1.DLL
[2011.07.23 18:13:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDGKL.DLL
[2011.07.23 18:13:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTURME.DLL
[2011.07.23 18:13:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDMAORI.DLL
[2011.07.23 18:13:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINBEN.DLL
[2011.07.23 18:13:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBULG.DLL
[2011.07.23 18:13:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDBASH.DLL
[2011.07.23 18:13:34 | 003,215,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mstscax.dll
[2011.07.23 18:13:34 | 003,211,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2011.07.23 18:13:34 | 002,522,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbgeng.dll
[2011.07.23 18:13:34 | 002,341,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msi.dll
[2011.07.23 18:13:34 | 002,217,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bootres.dll
[2011.07.23 18:13:34 | 001,689,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netcenter.dll
[2011.07.23 18:13:34 | 001,555,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\certmgr.dll
[2011.07.23 18:13:34 | 001,509,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdtctm.dll
[2011.07.23 18:13:34 | 001,456,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2011.07.23 18:13:34 | 001,171,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\d3d10warp.dll
[2011.07.23 18:13:34 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSMPEG2ENC.DLL
[2011.07.23 18:13:34 | 000,854,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dbghelp.dll
[2011.07.23 18:13:34 | 000,721,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bthprops.cpl
[2011.07.23 18:13:34 | 000,504,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msscp.dll
[2011.07.23 18:13:34 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nltest.exe
[2011.07.23 18:13:34 | 000,372,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mtxclu.dll
[2011.07.23 18:13:34 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cmd.exe
[2011.07.23 18:13:34 | 000,344,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntprint.dll
[2011.07.23 18:13:34 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mtxclu.dll
[2011.07.23 18:13:34 | 000,297,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntprint.dll
[2011.07.23 18:13:34 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSNP.ax
[2011.07.23 18:13:34 | 000,265,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msnetobj.dll
[2011.07.23 18:13:34 | 000,233,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\defaultlocationcpl.dll
[2011.07.23 18:13:34 | 000,230,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\clusapi.dll
[2011.07.23 18:13:34 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mprapi.dll
[2011.07.23 18:13:34 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\credui.dll
[2011.07.23 18:13:34 | 000,179,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Classpnp.sys
[2011.07.23 18:13:34 | 000,175,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netplwiz.dll
[2011.07.23 18:13:34 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netjoin.dll
[2011.07.23 18:13:34 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cscobj.dll
[2011.07.23 18:13:34 | 000,104,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Mpeg2Data.ax
[2011.07.23 18:13:34 | 000,084,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cmstp.exe
[2011.07.23 18:13:34 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MSDvbNP.ax
[2011.07.23 18:13:34 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\BWUnpairElevated.dll
[2011.07.23 18:13:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msdxm.ocx
[2011.07.23 18:13:34 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-ums-l1-1-0.dll
[2011.07.23 18:13:33 | 002,746,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gameux.dll
[2011.07.23 18:13:33 | 001,544,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2011.07.23 18:13:33 | 000,897,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroles.dll
[2011.07.23 18:13:33 | 000,793,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\autoconv.exe
[2011.07.23 18:13:33 | 000,762,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroles.dll
[2011.07.23 18:13:33 | 000,749,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\batmeter.dll
[2011.07.23 18:13:33 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\blackbox.dll
[2011.07.23 18:13:33 | 000,685,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dsuiext.dll
[2011.07.23 18:13:33 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxgi.dll
[2011.07.23 18:13:33 | 000,658,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autofmt.exe
[2011.07.23 18:13:33 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapp3hst.dll
[2011.07.23 18:13:33 | 000,320,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Faultrep.dll
[2011.07.23 18:13:33 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eapphost.dll
[2011.07.23 18:13:33 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AudioSes.dll
[2011.07.23 18:13:33 | 000,279,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxdiagn.dll
[2011.07.23 18:13:33 | 000,243,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\audiodev.dll
[2011.07.23 18:13:33 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsadmin.exe
[2011.07.23 18:13:33 | 000,155,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\ataport.sys
[2011.07.23 18:13:33 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoplay.dll
[2011.07.23 18:13:33 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\aaclient.dll
[2011.07.23 18:13:33 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\audiodg.exe
[2011.07.23 18:13:33 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aitagent.exe
[2011.07.23 18:13:33 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\eappgnui.dll
[2011.07.23 18:13:33 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\amstream.dll
[2011.07.23 18:13:33 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\hbaapi.dll
[2011.07.23 18:13:33 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdProxy.dll
[2011.07.23 18:13:33 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\amstream.dll
[2011.07.23 18:13:33 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AzSqlExt.dll
[2011.07.23 18:13:33 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\AzSqlExt.dll
[2011.07.23 18:13:33 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsperf.dll
[2011.07.23 18:13:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxmasf.dll
[2011.07.23 18:13:32 | 001,942,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfshim.dll
[2011.07.23 18:13:32 | 000,586,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dfrgui.exe
[2011.07.23 18:13:32 | 000,484,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DeviceCenter.dll
[2011.07.23 18:13:32 | 000,402,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drmmgrtn.dll
[2011.07.23 18:13:32 | 000,399,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpx.dll
[2011.07.23 18:13:32 | 000,295,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedynos.dll
[2011.07.23 18:13:32 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\framedyn.dll
[2011.07.23 18:13:32 | 000,276,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\diskraid.exe
[2011.07.23 18:13:32 | 000,252,928 | ---- | C] (Microsoft) -- C:\Windows\SysWow64\DShowRdpFilter.dll
[2011.07.23 18:13:32 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3msm.dll
[2011.07.23 18:13:32 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fphc.dll
[2011.07.23 18:13:32 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dot3api.dll
[2011.07.23 18:13:32 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\djoin.exe
[2011.07.23 18:13:31 | 014,633,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmp.dll
[2011.07.23 18:13:31 | 003,027,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMVCORE.DLL
[2011.07.23 18:13:31 | 001,082,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppobjs.dll
[2011.07.23 18:13:31 | 001,008,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\user32.dll
[2011.07.23 18:13:31 | 000,769,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sud.dll
[2011.07.23 18:13:31 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\TSWorkspace.dll
[2011.07.23 18:13:31 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2011.07.23 18:13:31 | 000,473,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskcomp.dll
[2011.07.23 18:13:31 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskeng.exe
[2011.07.23 18:13:31 | 000,333,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ssText3d.scr
[2011.07.23 18:13:31 | 000,281,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\unimdm.tsp
[2011.07.23 18:13:31 | 000,270,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsmf.dll
[2011.07.23 18:13:31 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2011.07.23 18:13:31 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syncui.dll
[2011.07.23 18:13:31 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\unimdmat.dll
[2011.07.23 18:13:31 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tlscsp.dll
[2011.07.23 18:13:31 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\taskhost.exe
[2011.07.23 18:13:31 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\tsgqec.dll
[2011.07.23 18:13:31 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbrpm.sys
[2011.07.23 18:13:31 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spopk.dll
[2011.07.23 18:13:31 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\syssetup.dll
[2011.07.23 18:13:31 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sscore.dll
[2011.07.23 18:13:31 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwmp.dll
[2011.07.23 18:13:30 | 012,625,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmploc.DLL
[2011.07.23 18:13:30 | 003,008,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xpsservices.dll
[2011.07.23 18:13:30 | 001,712,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\xpsservices.dll
[2011.07.23 18:13:30 | 001,441,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanpref.dll
[2011.07.23 18:13:30 | 001,326,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlanpref.dll
[2011.07.23 18:13:30 | 001,024,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpmde.dll
[2011.07.23 18:13:30 | 000,974,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WFS.exe
[2011.07.23 18:13:30 | 000,932,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\printui.dll
[2011.07.23 18:13:30 | 000,859,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OobeFldr.dll
[2011.07.23 18:13:30 | 000,681,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFx.dll
[2011.07.23 18:13:30 | 000,616,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmdrmsdk.dll
[2011.07.23 18:13:30 | 000,547,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PortableDeviceApi.dll
[2011.07.23 18:13:30 | 000,501,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WinSATAPI.dll
[2011.07.23 18:13:30 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercpl.dll
[2011.07.23 18:13:30 | 000,429,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\puiobj.dll
[2011.07.23 18:13:30 | 000,416,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prnfldr.dll
[2011.07.23 18:13:30 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wlanui.dll
[2011.07.23 18:13:30 | 000,411,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wlangpui.dll
[2011.07.23 18:13:30 | 000,409,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\photowiz.dll
[2011.07.23 18:13:30 | 000,405,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wisptis.exe
[2011.07.23 18:13:30 | 000,320,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHost.exe
[2011.07.23 18:13:30 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ReAgent.dll
[2011.07.23 18:13:30 | 000,312,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Wldap32.dll
[2011.07.23 18:13:30 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\pdh.dll
[2011.07.23 18:13:30 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2011.07.23 18:13:30 | 000,254,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qasf.dll
[2011.07.23 18:13:30 | 000,235,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsta.dll
[2011.07.23 18:13:30 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFHost.exe
[2011.07.23 18:13:30 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSHVHOST.DLL
[2011.07.23 18:13:30 | 000,211,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rasppp.dll
[2011.07.23 18:13:30 | 000,209,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PkgMgr.exe
[2011.07.23 18:13:30 | 000,199,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PkgMgr.exe
[2011.07.23 18:13:30 | 000,198,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wpdwcn.dll
[2011.07.23 18:13:30 | 000,190,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vdsbas.dll
[2011.07.23 18:13:30 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpencom.dll
[2011.07.23 18:13:30 | 000,182,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFPlatform.dll
[2011.07.23 18:13:30 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rasppp.dll
[2011.07.23 18:13:30 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpendp.dll
[2011.07.23 18:13:30 | 000,153,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\remotepg.dll
[2011.07.23 18:13:30 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2011.07.23 18:13:30 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpendp.dll
[2011.07.23 18:13:30 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\VmbusCoinstaller.dll
[2011.07.23 18:13:30 | 000,124,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\QSVRMGMT.DLL
[2011.07.23 18:13:30 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2011.07.23 18:13:30 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prncache.dll
[2011.07.23 18:13:30 | 000,109,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PresentationHostProxy.dll
[2011.07.23 18:13:30 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\psisrndr.ax
[2011.07.23 18:13:30 | 000,099,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PresentationHostProxy.dll
[2011.07.23 18:13:30 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\setupcl.exe
[2011.07.23 18:13:30 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2011.07.23 18:13:30 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\regapi.dll
[2011.07.23 18:13:30 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\resutils.dll
[2011.07.23 18:13:30 | 000,068,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpd3d.dll
[2011.07.23 18:13:30 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WavDest.dll
[2011.07.23 18:13:30 | 000,052,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\winhv.sys
[2011.07.23 18:13:30 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PrintIsolationProxy.dll
[2011.07.23 18:13:30 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WUDFCoinstaller.dll
[2011.07.23 18:13:30 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmbusres.dll
[2011.07.23 18:13:30 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vbisurf.ax
[2011.07.23 18:13:30 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2011.07.23 18:13:30 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WerFaultSecure.exe
[2011.07.23 18:13:30 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vpnikeapi.dll
[2011.07.23 18:13:30 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\perfts.dll
[2011.07.23 18:13:30 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vmbuspipe.dll
[2011.07.23 18:13:29 | 002,202,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SensorsCpl.dll
[2011.07.23 18:13:29 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samsrv.dll
[2011.07.23 18:13:29 | 000,592,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msftedit.dll
[2011.07.23 18:13:29 | 000,568,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scrptadm.dll
[2011.07.23 18:13:29 | 000,488,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc.dll
[2011.07.23 18:13:29 | 000,481,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mscms.dll
[2011.07.23 18:13:29 | 000,428,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shwebsvc.dll
[2011.07.23 18:13:29 | 000,359,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate.exe
[2011.07.23 18:13:29 | 000,300,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msconfig.exe
[2011.07.23 18:13:29 | 000,279,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sethc.exe
[2011.07.23 18:13:29 | 000,278,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp_isv.exe
[2011.07.23 18:13:29 | 000,270,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sethc.exe
[2011.07.23 18:13:29 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scansetting.dll
[2011.07.23 18:13:29 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\SmartcardCredentialProvider.dll
[2011.07.23 18:13:29 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
[2011.07.23 18:13:29 | 000,146,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scavengeui.dll
[2011.07.23 18:13:29 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\rmcast.sys
[2011.07.23 18:13:29 | 000,130,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shsetup.dll
[2011.07.23 18:13:29 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp_isv.dll
[2011.07.23 18:13:29 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\samcli.dll
[2011.07.23 18:13:29 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RpcRtRemote.dll
[2011.07.23 18:13:29 | 000,050,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\runonce.exe
[2011.07.23 18:13:29 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shimgvw.dll
[2011.07.23 18:13:29 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rtutils.dll
[2011.07.23 18:13:29 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdmo.dll
[2011.07.23 18:13:29 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\shgina.dll
[2011.07.23 18:13:29 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sisbkup.dll
[2011.07.23 18:13:29 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shgina.dll
[2011.07.23 18:13:29 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sisbkup.dll
[2011.07.23 18:13:29 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\slwga.dll
[2011.07.23 18:13:29 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\shunimpl.dll
[2011.07.23 18:13:29 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msdxm.ocx
[2011.07.23 18:13:28 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmploc.DLL
[2011.07.23 18:13:28 | 011,410,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmp.dll
[2011.07.23 18:13:28 | 005,066,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\AuthFWSnapin.dll
[2011.07.23 18:13:28 | 002,072,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WMPEncEn.dll
[2011.07.23 18:13:28 | 001,003,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WMNetMgr.dll
[2011.07.23 18:13:28 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appwiz.cpl
[2011.07.23 18:13:28 | 000,679,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\autoconv.exe
[2011.07.23 18:13:28 | 000,649,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\appwiz.cpl
[2011.07.23 18:13:28 | 000,582,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sxs.dll
[2011.07.23 18:13:28 | 000,524,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmicmiplugin.dll
[2011.07.23 18:13:28 | 000,481,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpps.dll
[2011.07.23 18:13:28 | 000,479,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\appmgr.dll
[2011.07.23 18:13:28 | 000,472,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\azroleui.dll
[2011.07.23 18:13:28 | 000,352,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpeffects.dll
[2011.07.23 18:13:28 | 000,335,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WinSATAPI.dll
[2011.07.23 18:13:28 | 000,314,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\azroleui.dll
[2011.07.23 18:13:28 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\stobject.dll
[2011.07.23 18:13:28 | 000,248,832 | ---- | C] (Microsoft Corporation) --

MrMeeToo · 26.07.2011, 17:32

teil3 -.-

Code:

ATTFilter

C:\Windows\SysNative\wksprt.exe
[2011.07.23 18:13:28 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll
[2011.07.23 18:13:28 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winsta.dll
[2011.07.23 18:13:28 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpshell.dll
[2011.07.23 18:13:28 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpshell.dll
[2011.07.23 18:13:28 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011.07.23 18:13:28 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011.07.23 18:13:28 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wkscli.dll
[2011.07.23 18:13:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2011.07.23 18:13:28 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sscore.dll
[2011.07.23 18:13:27 | 002,851,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themeui.dll
[2011.07.23 18:13:27 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkmap.dll
[2011.07.23 18:13:27 | 001,672,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkexplorer.dll
[2011.07.23 18:13:27 | 001,264,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdclt.exe
[2011.07.23 18:13:27 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
[2011.07.23 18:13:27 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdengin2.dll
[2011.07.23 18:13:27 | 001,080,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onexui.dll
[2011.07.23 18:13:27 | 000,933,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlsrv32.dll
[2011.07.23 18:13:27 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pmcsnap.dll
[2011.07.23 18:13:27 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhotoScreensaver.scr
[2011.07.23 18:13:27 | 000,464,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrptadm.dll
[2011.07.23 18:13:27 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshipsec.dll
[2011.07.23 18:13:27 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizeng.dll
[2011.07.23 18:13:27 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\termmgr.dll
[2011.07.23 18:13:27 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\systemcpl.dll
[2011.07.23 18:13:27 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PhotoScreensaver.scr
[2011.07.23 18:13:27 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\termmgr.dll
[2011.07.23 18:13:27 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll
[2011.07.23 18:13:27 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll
[2011.07.23 18:13:27 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\photowiz.dll
[2011.07.23 18:13:27 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recdisc.exe
[2011.07.23 18:13:27 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ppcsnap.dll
[2011.07.23 18:13:27 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onex.dll
[2011.07.23 18:13:27 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskmgr.exe
[2011.07.23 18:13:27 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqmapi.dll
[2011.07.23 18:13:27 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl
[2011.07.23 18:13:27 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prntvpt.dll
[2011.07.23 18:13:27 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppc.dll
[2011.07.23 18:13:27 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spbcd.dll
[2011.07.23 18:13:27 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\repair-bde.exe
[2011.07.23 18:13:27 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdi.sys
[2011.07.23 18:13:27 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2011.07.23 18:13:27 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizres.dll
[2011.07.23 18:13:26 | 003,715,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2011.07.23 18:13:26 | 001,644,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcenter.dll
[2011.07.23 18:13:26 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2011.07.23 18:13:26 | 001,363,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Query.dll
[2011.07.23 18:13:26 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Narrator.exe
[2011.07.23 18:13:26 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSMPEG2ENC.DLL
[2011.07.23 18:13:26 | 000,812,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpccpl.dll
[2011.07.23 18:13:26 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2011.07.23 18:13:26 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ipsmsnap.dll
[2011.07.23 18:13:26 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2011.07.23 18:13:26 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localsec.dll
[2011.07.23 18:13:26 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2011.07.23 18:13:26 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msinfo32.exe
[2011.07.23 18:13:26 | 000,376,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2011.07.23 18:13:26 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2011.07.23 18:13:26 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2011.07.23 18:13:26 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.exe
[2011.07.23 18:13:26 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiobj.dll
[2011.07.23 18:13:26 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netdiagfx.dll
[2011.07.23 18:13:26 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2011.07.23 18:13:26 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netdiagfx.dll
[2011.07.23 18:13:26 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpencom.dll
[2011.07.23 18:13:26 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksproxy.ax
[2011.07.23 18:13:26 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qcap.dll
[2011.07.23 18:13:26 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msutb.dll
[2011.07.23 18:13:26 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2011.07.23 18:13:26 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\net1.exe
[2011.07.23 18:13:26 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nci.dll
[2011.07.23 18:13:26 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2011.07.23 18:13:26 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2011.07.23 18:13:26 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSTPager.ax
[2011.07.23 18:13:26 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscapi.dll
[2011.07.23 18:13:26 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetmib1.dll
[2011.07.23 18:13:26 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2011.07.23 18:13:26 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PushPrinterConnections.exe
[2011.07.23 18:13:26 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2011.07.23 18:13:26 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\profprov.dll
[2011.07.23 18:13:26 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2011.07.23 18:13:26 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsdchngr.dll
[2011.07.23 18:13:26 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshirda.dll
[2011.07.23 18:13:26 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshirda.dll
[2011.07.23 18:13:26 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcfgex.dll
[2011.07.23 18:13:25 | 001,466,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2011.07.23 18:13:25 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DiagCpl.dll
[2011.07.23 18:13:25 | 001,009,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcmde.dll
[2011.07.23 18:13:25 | 000,750,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
[2011.07.23 18:13:25 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2011.07.23 18:13:25 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
[2011.07.23 18:13:25 | 000,516,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\main.cpl
[2011.07.23 18:13:25 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2011.07.23 18:13:25 | 000,312,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MCEWMDRMNDBootstrap.dll
[2011.07.23 18:13:25 | 000,299,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcupdate_GenuineIntel.dll
[2011.07.23 18:13:25 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2011.07.23 18:13:25 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2011.07.23 18:13:25 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll
[2011.07.23 18:13:25 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vdsbas.dll
[2011.07.23 18:13:25 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxlib.dll
[2011.07.23 18:13:25 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VBICodec.ax
[2011.07.23 18:13:25 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiavideo.dll
[2011.07.23 18:13:25 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userenv.dll
[2011.07.23 18:13:25 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapistub.dll
[2011.07.23 18:13:25 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapi32.dll
[2011.07.23 18:13:25 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserAccountControlSettings.dll
[2011.07.23 18:13:25 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vfwwdm32.dll
[2011.07.23 18:13:25 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\luainstall.dll
[2011.07.23 18:13:25 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUQ.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDLT1.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTEL.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTAM.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINORI.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINMAR.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINHIN.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBASH.DLL
[2011.07.23 18:13:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUS.DLL
[2011.07.23 18:13:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTAJIK.DLL
[2011.07.23 18:13:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMON.DLL
[2011.07.23 18:13:23 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2011.07.23 18:13:23 | 001,632,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2011.07.23 18:13:23 | 001,371,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2011.07.23 18:13:23 | 000,784,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpprefcl.dll
[2011.07.23 18:13:23 | 000,780,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2011.07.23 18:13:23 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsuiext.dll
[2011.07.23 18:13:23 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl
[2011.07.23 18:13:23 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2011.07.23 18:13:23 | 000,623,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSAPI.dll
[2011.07.23 18:13:23 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfrgui.exe
[2011.07.23 18:13:23 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscui.dll
[2011.07.23 18:13:23 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSTIFF.dll
[2011.07.23 18:13:23 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imkr80.ime
[2011.07.23 18:13:23 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\zipfldr.dll
[2011.07.23 18:13:23 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquoui.dll
[2011.07.23 18:13:23 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsadmin.exe
[2011.07.23 18:13:23 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\defaultlocationcpl.dll
[2011.07.23 18:13:23 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ifsutil.dll
[2011.07.23 18:13:23 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ifsutil.dll
[2011.07.23 18:13:23 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EhStorAPI.dll
[2011.07.23 18:13:23 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EhStorAPI.dll
[2011.07.23 18:13:23 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\desk.cpl
[2011.07.23 18:13:23 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscmmc.dll
[2011.07.23 18:13:23 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2011.07.23 18:13:23 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2011.07.23 18:13:23 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2011.07.23 18:13:23 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabinet.dll
[2011.07.23 18:13:23 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdeploy.dll
[2011.07.23 18:13:23 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\findstr.exe
[2011.07.23 18:13:23 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hbaapi.dll
[2011.07.23 18:13:23 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cca.dll
[2011.07.23 18:13:23 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2011.07.23 18:13:23 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscapi.dll
[2011.07.23 18:13:23 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscdll.dll
[2011.07.23 18:13:23 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsperf.dll
[2011.07.23 18:13:23 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fixmapi.exe
[2011.07.23 18:13:23 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\C_ISCII.DLL
[2011.07.23 18:13:23 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2011.07.23 18:13:23 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnaddr.dll
[2011.07.23 18:11:17 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2011.07.23 18:09:19 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Intel Corporation
[2011.07.23 18:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games
[2011.07.23 18:01:10 | 000,000,000 | ---D | C] -- C:\ProgramData\OEM
[2011.07.23 18:01:02 | 000,000,000 | ---D | C] -- C:\Program Files\Acer
[2011.07.23 17:59:42 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2011.07.23 17:58:15 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2011.07.23 17:57:47 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2011.07.23 17:57:42 | 002,601,816 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2011.07.23 17:57:42 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2011.07.23 17:57:42 | 000,220,496 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysNative\SFNHK64.dll
[2011.07.23 17:57:42 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2011.07.23 17:57:42 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2011.07.23 17:57:42 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2011.07.23 17:57:41 | 002,004,072 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2011.07.23 17:57:41 | 001,146,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2011.07.23 17:57:41 | 000,078,672 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysNative\SFCOM64.dll
[2011.07.23 17:57:41 | 000,078,672 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysNative\SFAPO64.dll
[2011.07.23 17:57:41 | 000,071,504 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll
[2011.07.23 17:57:40 | 000,332,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2011.07.23 17:57:39 | 002,622,056 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2011.07.23 17:57:39 | 001,216,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2011.07.23 17:57:39 | 000,476,264 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2011.07.23 17:57:39 | 000,372,936 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2011.07.23 17:57:39 | 000,201,928 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2011.07.23 17:57:39 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2011.07.23 17:57:39 | 000,099,016 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2011.07.23 17:57:39 | 000,076,488 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2011.07.23 17:57:38 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2011.07.23 17:57:38 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2011.07.23 17:57:38 | 000,155,752 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
[2011.07.23 17:57:38 | 000,073,832 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInst64.dll
[2011.07.23 17:57:37 | 002,197,264 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2011.07.23 17:57:37 | 001,736,536 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek.dll
[2011.07.23 17:57:37 | 000,335,192 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2011.07.23 17:57:37 | 000,334,680 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2011.07.23 17:57:37 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2011.07.23 17:57:36 | 001,325,328 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2011.07.23 17:57:36 | 000,489,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2011.07.23 17:57:36 | 000,474,896 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2011.07.23 17:57:36 | 000,330,656 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2011.07.23 17:57:35 | 001,178,384 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2011.07.23 17:57:35 | 001,110,800 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2011.07.23 17:57:35 | 000,504,592 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2011.07.23 17:57:35 | 000,315,152 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2011.07.23 17:57:35 | 000,268,560 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2011.07.23 17:57:35 | 000,265,488 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2011.07.23 17:57:35 | 000,168,288 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2011.07.23 17:57:35 | 000,124,176 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2011.07.23 17:57:35 | 000,123,664 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2011.07.23 17:57:35 | 000,123,152 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2011.07.23 17:57:35 | 000,108,960 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2011.07.23 17:57:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2011.07.23 17:57:33 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2011.07.23 17:57:32 | 001,251,944 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2011.07.23 17:57:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2011.07.23 17:57:13 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Liteon
[2011.07.23 17:57:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye webcam
[2011.07.23 17:57:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Acer Crystal Eye webcam
[2011.07.23 17:55:38 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2011.07.23 17:55:12 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
[2011.07.23 17:54:40 | 000,540,696 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iaStor.sys
[2011.07.23 17:54:40 | 000,000,000 | ---D | C] -- C:\Intel
[2011.07.23 17:54:37 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2011.07.23 17:54:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2011.07.23 17:54:36 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\InstallShield
[2011.07.23 17:54:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Launch Manager
[2011.07.23 17:49:47 | 000,025,608 | ---- | C] (Sophos Plc) -- C:\Windows\SysNative\drivers\SophosBootDriver.sys
[2011.07.23 17:49:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Sophos
[2011.07.23 17:49:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sophos
[2011.07.23 17:48:00 | 000,000,000 | ---D | C] -- C:\savw_9_sa
[2011.07.23 17:46:43 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2011.07.23 17:45:21 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2011.07.23 17:45:16 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2011.07.23 17:44:52 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011.07.23 17:43:23 | 000,000,000 | R--D | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011.07.23 17:43:23 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Searches
[2011.07.23 17:43:23 | 000,000,000 | R--D | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011.07.23 17:43:10 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Identities
[2011.07.23 17:43:05 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Contacts
[2011.07.23 17:43:04 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\VirtualStore
[2011.07.23 17:42:50 | 000,000,000 | --SD | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Videos
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Saved Games
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Pictures
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Music
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Links
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Favorites
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Downloads
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Documents
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Desktop
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Vorlagen
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\AppData\Local\Verlauf
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\AppData\Local\Temporary Internet Files
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Startmenü
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\SendTo
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Recent
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Netzwerkumgebung
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Lokale Einstellungen
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Documents\Eigene Videos
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Documents\Eigene Musik
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Eigene Dateien
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Documents\Eigene Bilder
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Druckumgebung
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Cookies
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\AppData\Local\Anwendungsdaten
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Anwendungsdaten
[2011.07.23 17:42:50 | 000,000,000 | -H-D | C] -- C:\Users\Milosh\AppData
[2011.07.23 17:42:50 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\Temp
[2011.07.23 17:42:50 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\Microsoft
[2011.07.23 17:42:50 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Media Center Programs
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Recovery
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Programme
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2011.07.23 17:37:40 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011.07.23 17:35:10 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011.07.23 17:34:42 | 000,000,000 | -HSD | C] -- C:\System Volume Information


========== Files - Modified Within 30 Days ==========
 
[2011.07.26 18:05:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.07.26 17:15:42 | 001,472,002 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.07.26 17:15:42 | 000,643,866 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2011.07.26 17:15:42 | 000,607,190 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.07.26 17:15:42 | 000,126,394 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2011.07.26 17:15:42 | 000,103,568 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.07.26 17:13:48 | 003,216,552 | ---- | M] (Piriform Ltd) -- C:\Users\Milosh\Desktop\ccsetup308.exe
[2011.07.26 17:13:05 | 000,002,097 | ---- | M] () -- C:\Users\Milosh\Desktop\hjtscanlist.zip
[2011.07.26 17:11:54 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Milosh\Desktop\OTL.exe
[2011.07.26 17:11:14 | 000,012,560 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.07.26 17:11:14 | 000,012,560 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.07.26 17:08:31 | 000,274,464 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011.07.26 17:08:20 | 3113,254,912 | -HS- | M] () -- C:\hiberfil.sys
[2011.07.25 22:12:40 | 000,001,075 | ---- | M] () -- C:\Users\Public\Desktop\Mobile Partner.lnk
[2011.07.25 19:22:26 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.07.25 19:19:36 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011.07.23 19:27:27 | 000,144,160 | ---- | M] (Sophos Limited) -- C:\Windows\SysNative\drivers\savonaccess.sys
[2011.07.23 19:27:25 | 000,026,104 | ---- | M] (Sophos Plc) -- C:\Windows\SysNative\drivers\sdcfilter.sys
[2011.07.23 19:27:15 | 000,037,400 | ---- | M] (Sophos Limited) -- C:\Windows\SysNative\SophosBootTasks.exe
[2011.07.23 19:27:13 | 000,183,024 | ---- | M] (Sophos Plc) -- C:\Windows\SysNative\sdccoinstaller.dll
[2011.07.23 19:13:17 | 000,001,246 | ---- | M] () -- C:\Users\Public\Desktop\Virtual CloneDrive.lnk
[2011.07.23 19:12:37 | 000,001,000 | ---- | M] () -- C:\Users\Public\Desktop\SRWare Iron.lnk
[2011.07.23 19:10:17 | 000,002,759 | ---- | M] () -- C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk
[2011.07.23 19:04:37 | 000,001,935 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011.07.23 19:03:06 | 000,001,105 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.07.23 18:42:37 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msclmd.dll
[2011.07.23 18:42:37 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msclmd.dll
[2011.07.23 18:26:07 | 000,707,378 | ---- | M] () -- C:\Windows\SysNative\oem10.inf
[2011.07.23 18:25:39 | 000,006,656 | ---- | M] () -- C:\Windows\SysNative\bcmwlrc.dll
[2011.07.23 18:25:38 | 004,171,328 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\BCMWL664.SYS
[2011.07.23 18:25:38 | 003,561,272 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvui64.dll
[2011.07.23 18:25:38 | 000,095,544 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\bcmwlcoi.dll
[2011.07.23 18:25:37 | 003,896,632 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvsrv64.dll
[2011.07.23 17:59:55 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011.07.23 17:54:24 | 000,000,000 | ---- | M] () -- C:\Windows\Setup.INI
[2011.07.23 17:54:17 | 000,000,184 | ---- | M] () -- C:\Windows\LMv4.UNI
[2011.07.23 17:38:24 | 000,057,035 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2011.07.23 17:38:24 | 000,057,035 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2011.07.23 17:36:44 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011.07.06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011.07.06 19:52:42 | 000,025,912 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
 
========== Files Created - No Company Name ==========
 
[2011.07.26 17:13:12 | 000,002,097 | ---- | C] () -- C:\Users\Milosh\Desktop\hjtscanlist.zip
[2011.07.26 01:35:40 | 001,240,109 | ---- | C] () -- C:\Users\Milosh\Desktop\IMG_0009.JPG
[2011.07.26 01:35:17 | 000,048,525 | ---- | C] () -- C:\Users\Milosh\Desktop\1295811208010.jpg
[2011.07.26 00:06:28 | 000,565,325 | ---- | C] () -- C:\Users\Milosh\Desktop\13062010096.jpg
[2011.07.26 00:06:19 | 000,343,717 | ---- | C] () -- C:\Users\Milosh\Desktop\13062010102.jpg
[2011.07.26 00:04:33 | 733,954,048 | ---- | C] () -- C:\Users\Milosh\Desktop\qom-american.high.school.avi
[2011.07.25 23:38:18 | 000,698,478 | ---- | C] () -- C:\Users\Milosh\Desktop\united.psd
[2011.07.25 22:12:40 | 000,001,075 | ---- | C] () -- C:\Users\Public\Desktop\Mobile Partner.lnk
[2011.07.25 20:00:19 | 000,066,414 | ---- | C] () -- C:\Users\Milosh\Desktop\getImage.jpg
[2011.07.25 19:22:26 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.07.25 19:22:25 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011.07.23 19:13:17 | 000,001,246 | ---- | C] () -- C:\Users\Public\Desktop\Virtual CloneDrive.lnk
[2011.07.23 19:12:37 | 000,001,000 | ---- | C] () -- C:\Users\Public\Desktop\SRWare Iron.lnk
[2011.07.23 19:10:17 | 000,002,759 | ---- | C] () -- C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk
[2011.07.23 19:04:37 | 000,001,935 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011.07.23 19:03:06 | 000,001,105 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.07.23 18:26:22 | 000,707,378 | ---- | C] () -- C:\Windows\SysNative\oem10.inf
[2011.07.23 18:25:46 | 000,006,656 | ---- | C] () -- C:\Windows\SysNative\bcmwlrc.dll
[2011.07.23 18:14:03 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2011.07.23 18:13:47 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2011.07.23 18:13:27 | 000,146,389 | ---- | C] () -- C:\Windows\SysWow64\printmanagement.msc
[2011.07.23 18:13:27 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2011.07.23 18:13:26 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2011.07.23 18:13:26 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2011.07.23 17:59:55 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011.07.23 17:57:47 | 000,037,468 | ---- | C] () -- C:\Windows\SysNative\drivers\RtPCEE3.DAT
[2011.07.23 17:57:47 | 000,001,448 | ---- | C] () -- C:\Windows\SysNative\drivers\RtHdatEx.dat
[2011.07.23 17:57:47 | 000,000,024 | ---- | C] () -- C:\Windows\SysNative\drivers\rtkhdaud.dat
[2011.07.23 17:57:46 | 000,247,560 | ---- | C] () -- C:\Windows\SysNative\drivers\RTConvEQ.dat
[2011.07.23 17:57:46 | 000,000,520 | ---- | C] () -- C:\Windows\SysNative\drivers\RTEQEX3.dat
[2011.07.23 17:57:46 | 000,000,520 | ---- | C] () -- C:\Windows\SysNative\drivers\RTEQEX2.dat
[2011.07.23 17:57:46 | 000,000,520 | ---- | C] () -- C:\Windows\SysNative\drivers\RTEQEX1.dat
[2011.07.23 17:57:46 | 000,000,520 | ---- | C] () -- C:\Windows\SysNative\drivers\RTEQEX0.dat
[2011.07.23 17:57:46 | 000,000,176 | ---- | C] () -- C:\Windows\SysNative\drivers\RTHDAEQ1.dat
[2011.07.23 17:54:24 | 000,000,000 | ---- | C] () -- C:\Windows\Setup.INI
[2011.07.23 17:54:17 | 000,000,184 | ---- | C] () -- C:\Windows\LMv4.UNI
[2011.07.23 17:38:19 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011.07.23 17:38:08 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011.07.23 17:36:44 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011.07.23 17:34:42 | 3113,254,912 | -HS- | C] () -- C:\hiberfil.sys
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
 
========== Files - Unicode (All) ==========
[2011.07.26 00:07:02 | 008,581,120 | ---- | C] ()(C:\Users\Milosh\Desktop\19.19. ?????? - ????? ?????.mp3) -- C:\Users\Milosh\Desktop\19.19. Легион - Нужно время.mp3
[2008.03.24 16:20:48 | 008,581,120 | ---- | M] ()(C:\Users\Milosh\Desktop\19.19. ?????? - ????? ?????.mp3) -- C:\Users\Milosh\Desktop\19.19. Легион - Нужно время.mp3

< End of report >

MrMeeToo · 26.07.2011, 17:33

teil3 -.-

Code:

ATTFilter

C:\Windows\SysNative\wksprt.exe
[2011.07.23 18:13:28 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wintrust.dll
[2011.07.23 18:13:28 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\winsta.dll
[2011.07.23 18:13:28 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wmpshell.dll
[2011.07.23 18:13:28 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wmpshell.dll
[2011.07.23 18:13:28 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011.07.23 18:13:28 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011.07.23 18:13:28 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wkscli.dll
[2011.07.23 18:13:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\tsgqec.dll
[2011.07.23 18:13:28 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sscore.dll
[2011.07.23 18:13:27 | 002,851,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\themeui.dll
[2011.07.23 18:13:27 | 002,146,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkmap.dll
[2011.07.23 18:13:27 | 001,672,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\networkexplorer.dll
[2011.07.23 18:13:27 | 001,264,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdclt.exe
[2011.07.23 18:13:27 | 001,160,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\OpcServices.dll
[2011.07.23 18:13:27 | 001,120,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sdengin2.dll
[2011.07.23 18:13:27 | 001,080,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onexui.dll
[2011.07.23 18:13:27 | 000,933,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sqlsrv32.dll
[2011.07.23 18:13:27 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\pmcsnap.dll
[2011.07.23 18:13:27 | 000,477,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\PhotoScreensaver.scr
[2011.07.23 18:13:27 | 000,464,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scrptadm.dll
[2011.07.23 18:13:27 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nshipsec.dll
[2011.07.23 18:13:27 | 000,445,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizeng.dll
[2011.07.23 18:13:27 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\termmgr.dll
[2011.07.23 18:13:27 | 000,419,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\systemcpl.dll
[2011.07.23 18:13:27 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PhotoScreensaver.scr
[2011.07.23 18:13:27 | 000,352,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\termmgr.dll
[2011.07.23 18:13:27 | 000,307,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll
[2011.07.23 18:13:27 | 000,305,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskcomp.dll
[2011.07.23 18:13:27 | 000,295,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\photowiz.dll
[2011.07.23 18:13:27 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\recdisc.exe
[2011.07.23 18:13:27 | 000,238,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ppcsnap.dll
[2011.07.23 18:13:27 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\onex.dll
[2011.07.23 18:13:27 | 000,227,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\taskmgr.exe
[2011.07.23 18:13:27 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sqmapi.dll
[2011.07.23 18:13:27 | 000,173,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powercfg.cpl
[2011.07.23 18:13:27 | 000,156,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prntvpt.dll
[2011.07.23 18:13:27 | 000,145,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sppc.dll
[2011.07.23 18:13:27 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spbcd.dll
[2011.07.23 18:13:27 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\repair-bde.exe
[2011.07.23 18:13:27 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\tdi.sys
[2011.07.23 18:13:27 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\spwmp.dll
[2011.07.23 18:13:27 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\spwizres.dll
[2011.07.23 18:13:26 | 003,715,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mstscax.dll
[2011.07.23 18:13:26 | 001,644,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netcenter.dll
[2011.07.23 18:13:26 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2011.07.23 18:13:26 | 001,363,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\Query.dll
[2011.07.23 18:13:26 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\Narrator.exe
[2011.07.23 18:13:26 | 000,830,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MSMPEG2ENC.DLL
[2011.07.23 18:13:26 | 000,812,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wpccpl.dll
[2011.07.23 18:13:26 | 000,624,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qedit.dll
[2011.07.23 18:13:26 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ipsmsnap.dll
[2011.07.23 18:13:26 | 000,560,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wuapi.dll
[2011.07.23 18:13:26 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\localsec.dll
[2011.07.23 18:13:26 | 000,485,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secproc_isv.dll
[2011.07.23 18:13:26 | 000,378,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msinfo32.exe
[2011.07.23 18:13:26 | 000,376,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\netio.sys
[2011.07.23 18:13:26 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2011.07.23 18:13:26 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\RMActivate_isv.exe
[2011.07.23 18:13:26 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsm.exe
[2011.07.23 18:13:26 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\puiobj.dll
[2011.07.23 18:13:26 | 000,324,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\netdiagfx.dll
[2011.07.23 18:13:26 | 000,280,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\RMActivate_ssp.exe
[2011.07.23 18:13:26 | 000,225,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\netdiagfx.dll
[2011.07.23 18:13:26 | 000,222,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpencom.dll
[2011.07.23 18:13:26 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ksproxy.ax
[2011.07.23 18:13:26 | 000,181,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qcap.dll
[2011.07.23 18:13:26 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msutb.dll
[2011.07.23 18:13:26 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\aaclient.dll
[2011.07.23 18:13:26 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\net1.exe
[2011.07.23 18:13:26 | 000,090,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\nci.dll
[2011.07.23 18:13:26 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wudriver.dll
[2011.07.23 18:13:26 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\secproc_ssp.dll
[2011.07.23 18:13:26 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\WSTPager.ax
[2011.07.23 18:13:26 | 000,063,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wscapi.dll
[2011.07.23 18:13:26 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetmib1.dll
[2011.07.23 18:13:26 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2011.07.23 18:13:26 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\PushPrinterConnections.exe
[2011.07.23 18:13:26 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2011.07.23 18:13:26 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\profprov.dll
[2011.07.23 18:13:26 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wups.dll
[2011.07.23 18:13:26 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wsdchngr.dll
[2011.07.23 18:13:26 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wshirda.dll
[2011.07.23 18:13:26 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wshirda.dll
[2011.07.23 18:13:26 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcfgex.dll
[2011.07.23 18:13:25 | 001,466,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2011.07.23 18:13:25 | 001,202,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DiagCpl.dll
[2011.07.23 18:13:25 | 001,009,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcmde.dll
[2011.07.23 18:13:25 | 000,750,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\TSWorkspace.dll
[2011.07.23 18:13:25 | 000,638,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VAN.dll
[2011.07.23 18:13:25 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\usercpl.dll
[2011.07.23 18:13:25 | 000,516,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\main.cpl
[2011.07.23 18:13:25 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2011.07.23 18:13:25 | 000,312,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MCEWMDRMNDBootstrap.dll
[2011.07.23 18:13:25 | 000,299,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mcupdate_GenuineIntel.dll
[2011.07.23 18:13:25 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfreadwrite.dll
[2011.07.23 18:13:25 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfreadwrite.dll
[2011.07.23 18:13:25 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MFPlay.dll
[2011.07.23 18:13:25 | 000,160,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vdsbas.dll
[2011.07.23 18:13:25 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\uxlib.dll
[2011.07.23 18:13:25 | 000,153,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\VBICodec.ax
[2011.07.23 18:13:25 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wiavideo.dll
[2011.07.23 18:13:25 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\userenv.dll
[2011.07.23 18:13:25 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapistub.dll
[2011.07.23 18:13:25 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mapi32.dll
[2011.07.23 18:13:25 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\UserAccountControlSettings.dll
[2011.07.23 18:13:25 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\vfwwdm32.dll
[2011.07.23 18:13:25 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\luainstall.dll
[2011.07.23 18:13:25 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDTUQ.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDLT1.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINTEL.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINTAM.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDINORI.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINMAR.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDINHIN.DLL
[2011.07.23 18:13:25 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KBDBASH.DLL
[2011.07.23 18:13:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDUS.DLL
[2011.07.23 18:13:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDTAJIK.DLL
[2011.07.23 18:13:25 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\KBDMON.DLL
[2011.07.23 18:13:23 | 002,576,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\gameux.dll
[2011.07.23 18:13:23 | 001,632,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dwmcore.dll
[2011.07.23 18:13:23 | 001,371,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dwmcore.dll
[2011.07.23 18:13:23 | 000,784,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\gpprefcl.dll
[2011.07.23 18:13:23 | 000,780,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ci.dll
[2011.07.23 18:13:23 | 000,701,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dsuiext.dll
[2011.07.23 18:13:23 | 000,692,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bthprops.cpl
[2011.07.23 18:13:23 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\comctl32.dll
[2011.07.23 18:13:23 | 000,623,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSAPI.dll
[2011.07.23 18:13:23 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dfrgui.exe
[2011.07.23 18:13:23 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscui.dll
[2011.07.23 18:13:23 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\FXSTIFF.dll
[2011.07.23 18:13:23 | 000,430,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\imkr80.ime
[2011.07.23 18:13:23 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\zipfldr.dll
[2011.07.23 18:13:23 | 000,239,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dskquoui.dll
[2011.07.23 18:13:23 | 000,232,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\bitsadmin.exe
[2011.07.23 18:13:23 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\defaultlocationcpl.dll
[2011.07.23 18:13:23 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ifsutil.dll
[2011.07.23 18:13:23 | 000,148,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ifsutil.dll
[2011.07.23 18:13:23 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\EhStorAPI.dll
[2011.07.23 18:13:23 | 000,128,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\EhStorAPI.dll
[2011.07.23 18:13:23 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\desk.cpl
[2011.07.23 18:13:23 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscmmc.dll
[2011.07.23 18:13:23 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesysprep.dll
[2011.07.23 18:13:23 | 000,093,696 | ---- | C] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWow64\fms.dll
[2011.07.23 18:13:23 | 000,082,944 | ---- | C] (Radius Inc.) -- C:\Windows\SysWow64\iccvid.dll
[2011.07.23 18:13:23 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cabinet.dll
[2011.07.23 18:13:23 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fdeploy.dll
[2011.07.23 18:13:23 | 000,071,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\findstr.exe
[2011.07.23 18:13:23 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\hbaapi.dll
[2011.07.23 18:13:23 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\cca.dll
[2011.07.23 18:13:23 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\browcli.dll
[2011.07.23 18:13:23 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscapi.dll
[2011.07.23 18:13:23 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cscdll.dll
[2011.07.23 18:13:23 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\bitsperf.dll
[2011.07.23 18:13:23 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fixmapi.exe
[2011.07.23 18:13:23 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\C_ISCII.DLL
[2011.07.23 18:13:23 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dxmasf.dll
[2011.07.23 18:13:23 | 000,003,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dpnaddr.dll
[2011.07.23 18:11:17 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\EventProviders
[2011.07.23 18:09:19 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Intel Corporation
[2011.07.23 18:05:03 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games
[2011.07.23 18:01:10 | 000,000,000 | ---D | C] -- C:\ProgramData\OEM
[2011.07.23 18:01:02 | 000,000,000 | ---D | C] -- C:\Program Files\Acer
[2011.07.23 17:59:42 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2011.07.23 17:58:15 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\RTCOM
[2011.07.23 17:57:47 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2011.07.23 17:57:42 | 002,601,816 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2011.07.23 17:57:42 | 000,518,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSX64.dll
[2011.07.23 17:57:42 | 000,220,496 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysNative\SFNHK64.dll
[2011.07.23 17:57:42 | 000,211,184 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSTSH64.dll
[2011.07.23 17:57:42 | 000,198,896 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSHP64.dll
[2011.07.23 17:57:42 | 000,155,888 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\SysNative\SRSWOW64.dll
[2011.07.23 17:57:41 | 002,004,072 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtPgEx64.dll
[2011.07.23 17:57:41 | 001,146,984 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTSnMg64.cpl
[2011.07.23 17:57:41 | 000,078,672 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysNative\SFCOM64.dll
[2011.07.23 17:57:41 | 000,078,672 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysNative\SFAPO64.dll
[2011.07.23 17:57:41 | 000,071,504 | ---- | C] (Virage Logic Corporation / Sonic Focus) -- C:\Windows\SysWow64\SFCOM.dll
[2011.07.23 17:57:40 | 000,332,392 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtlCPAPI64.dll
[2011.07.23 17:57:39 | 002,622,056 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkAPO64.dll
[2011.07.23 17:57:39 | 001,216,104 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RTCOM64.dll
[2011.07.23 17:57:39 | 000,476,264 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkApi64.dll
[2011.07.23 17:57:39 | 000,372,936 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2011.07.23 17:57:39 | 000,201,928 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2011.07.23 17:57:39 | 000,149,608 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RtkCfg64.dll
[2011.07.23 17:57:39 | 000,099,016 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2011.07.23 17:57:39 | 000,076,488 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2011.07.23 17:57:38 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2011.07.23 17:57:38 | 000,307,920 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2011.07.23 17:57:38 | 000,155,752 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoRes64.dat
[2011.07.23 17:57:38 | 000,073,832 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\SysNative\RCoInst64.dll
[2011.07.23 17:57:37 | 002,197,264 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2011.07.23 17:57:37 | 001,736,536 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek.dll
[2011.07.23 17:57:37 | 000,335,192 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO30.dll
[2011.07.23 17:57:37 | 000,334,680 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2011.07.23 17:57:37 | 000,318,808 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPO20.dll
[2011.07.23 17:57:36 | 001,325,328 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2011.07.23 17:57:36 | 000,489,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2011.07.23 17:57:36 | 000,474,896 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2011.07.23 17:57:36 | 000,330,656 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2011.07.23 17:57:35 | 001,178,384 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2011.07.23 17:57:35 | 001,110,800 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2011.07.23 17:57:35 | 000,504,592 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2011.07.23 17:57:35 | 000,315,152 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2011.07.23 17:57:35 | 000,268,560 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2011.07.23 17:57:35 | 000,265,488 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2011.07.23 17:57:35 | 000,168,288 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAC64.dll
[2011.07.23 17:57:35 | 000,124,176 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2011.07.23 17:57:35 | 000,123,664 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2011.07.23 17:57:35 | 000,123,152 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2011.07.23 17:57:35 | 000,108,960 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\SysNative\AERTAR64.dll
[2011.07.23 17:57:34 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Realtek
[2011.07.23 17:57:33 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\Temp
[2011.07.23 17:57:32 | 001,251,944 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll
[2011.07.23 17:57:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield
[2011.07.23 17:57:13 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Liteon
[2011.07.23 17:57:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye webcam
[2011.07.23 17:57:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Acer Crystal Eye webcam
[2011.07.23 17:55:38 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\SysWow64\CSVer.dll
[2011.07.23 17:55:12 | 000,000,000 | R--D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
[2011.07.23 17:54:40 | 000,540,696 | ---- | C] (Intel Corporation) -- C:\Windows\SysNative\drivers\iaStor.sys
[2011.07.23 17:54:40 | 000,000,000 | ---D | C] -- C:\Intel
[2011.07.23 17:54:37 | 000,000,000 | -H-D | C] -- C:\Program Files (x86)\InstallShield Installation Information
[2011.07.23 17:54:37 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Intel
[2011.07.23 17:54:36 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\InstallShield
[2011.07.23 17:54:15 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Launch Manager
[2011.07.23 17:49:47 | 000,025,608 | ---- | C] (Sophos Plc) -- C:\Windows\SysNative\drivers\SophosBootDriver.sys
[2011.07.23 17:49:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Sophos
[2011.07.23 17:49:03 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Sophos
[2011.07.23 17:48:00 | 000,000,000 | ---D | C] -- C:\savw_9_sa
[2011.07.23 17:46:43 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2011.07.23 17:45:21 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2011.07.23 17:45:16 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2011.07.23 17:44:52 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011.07.23 17:43:23 | 000,000,000 | R--D | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2011.07.23 17:43:23 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Searches
[2011.07.23 17:43:23 | 000,000,000 | R--D | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2011.07.23 17:43:10 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Identities
[2011.07.23 17:43:05 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Contacts
[2011.07.23 17:43:04 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\VirtualStore
[2011.07.23 17:42:50 | 000,000,000 | --SD | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Videos
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Saved Games
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Pictures
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Music
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Links
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Favorites
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Downloads
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Documents
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\Desktop
[2011.07.23 17:42:50 | 000,000,000 | R--D | C] -- C:\Users\Milosh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Vorlagen
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\AppData\Local\Verlauf
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\AppData\Local\Temporary Internet Files
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Startmenü
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\SendTo
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Recent
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Netzwerkumgebung
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Lokale Einstellungen
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Documents\Eigene Videos
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Documents\Eigene Musik
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Eigene Dateien
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Documents\Eigene Bilder
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Druckumgebung
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Cookies
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\AppData\Local\Anwendungsdaten
[2011.07.23 17:42:50 | 000,000,000 | -HSD | C] -- C:\Users\Milosh\Anwendungsdaten
[2011.07.23 17:42:50 | 000,000,000 | -H-D | C] -- C:\Users\Milosh\AppData
[2011.07.23 17:42:50 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\Temp
[2011.07.23 17:42:50 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Local\Microsoft
[2011.07.23 17:42:50 | 000,000,000 | ---D | C] -- C:\Users\Milosh\AppData\Roaming\Media Center Programs
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Vorlagen
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Startmenü
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Recovery
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Programme
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Program Files\Gemeinsame Dateien
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Favoriten
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Videos
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Musik
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Eigene Bilder
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\Dokumente und Einstellungen
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumente
[2011.07.23 17:42:39 | 000,000,000 | -HSD | C] -- C:\ProgramData\Anwendungsdaten
[2011.07.23 17:37:40 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2011.07.23 17:35:10 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2011.07.23 17:34:42 | 000,000,000 | -HSD | C] -- C:\System Volume Information


========== Files - Modified Within 30 Days ==========
 
[2011.07.26 18:05:29 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011.07.26 17:15:42 | 001,472,002 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011.07.26 17:15:42 | 000,643,866 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
[2011.07.26 17:15:42 | 000,607,190 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011.07.26 17:15:42 | 000,126,394 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
[2011.07.26 17:15:42 | 000,103,568 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011.07.26 17:13:48 | 003,216,552 | ---- | M] (Piriform Ltd) -- C:\Users\Milosh\Desktop\ccsetup308.exe
[2011.07.26 17:13:05 | 000,002,097 | ---- | M] () -- C:\Users\Milosh\Desktop\hjtscanlist.zip
[2011.07.26 17:11:54 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Users\Milosh\Desktop\OTL.exe
[2011.07.26 17:11:14 | 000,012,560 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011.07.26 17:11:14 | 000,012,560 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011.07.26 17:08:31 | 000,274,464 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011.07.26 17:08:20 | 3113,254,912 | -HS- | M] () -- C:\hiberfil.sys
[2011.07.25 22:12:40 | 000,001,075 | ---- | M] () -- C:\Users\Public\Desktop\Mobile Partner.lnk
[2011.07.25 19:22:26 | 000,002,019 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.07.25 19:19:36 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2011.07.23 19:27:27 | 000,144,160 | ---- | M] (Sophos Limited) -- C:\Windows\SysNative\drivers\savonaccess.sys
[2011.07.23 19:27:25 | 000,026,104 | ---- | M] (Sophos Plc) -- C:\Windows\SysNative\drivers\sdcfilter.sys
[2011.07.23 19:27:15 | 000,037,400 | ---- | M] (Sophos Limited) -- C:\Windows\SysNative\SophosBootTasks.exe
[2011.07.23 19:27:13 | 000,183,024 | ---- | M] (Sophos Plc) -- C:\Windows\SysNative\sdccoinstaller.dll
[2011.07.23 19:13:17 | 000,001,246 | ---- | M] () -- C:\Users\Public\Desktop\Virtual CloneDrive.lnk
[2011.07.23 19:12:37 | 000,001,000 | ---- | M] () -- C:\Users\Public\Desktop\SRWare Iron.lnk
[2011.07.23 19:10:17 | 000,002,759 | ---- | M] () -- C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk
[2011.07.23 19:04:37 | 000,001,935 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011.07.23 19:03:06 | 000,001,105 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.07.23 18:42:37 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\msclmd.dll
[2011.07.23 18:42:37 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\msclmd.dll
[2011.07.23 18:26:07 | 000,707,378 | ---- | M] () -- C:\Windows\SysNative\oem10.inf
[2011.07.23 18:25:39 | 000,006,656 | ---- | M] () -- C:\Windows\SysNative\bcmwlrc.dll
[2011.07.23 18:25:38 | 004,171,328 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\drivers\BCMWL664.SYS
[2011.07.23 18:25:38 | 003,561,272 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvui64.dll
[2011.07.23 18:25:38 | 000,095,544 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\bcmwlcoi.dll
[2011.07.23 18:25:37 | 003,896,632 | ---- | M] (Broadcom Corporation) -- C:\Windows\SysNative\bcmihvsrv64.dll
[2011.07.23 17:59:55 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011.07.23 17:54:24 | 000,000,000 | ---- | M] () -- C:\Windows\Setup.INI
[2011.07.23 17:54:17 | 000,000,184 | ---- | M] () -- C:\Windows\LMv4.UNI
[2011.07.23 17:38:24 | 000,057,035 | ---- | M] () -- C:\Windows\SysWow64\license.rtf
[2011.07.23 17:38:24 | 000,057,035 | ---- | M] () -- C:\Windows\SysNative\license.rtf
[2011.07.23 17:36:44 | 000,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011.07.06 19:52:42 | 000,041,272 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysWow64\drivers\mbamswissarmy.sys
[2011.07.06 19:52:42 | 000,025,912 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
 
========== Files Created - No Company Name ==========
 
[2011.07.26 17:13:12 | 000,002,097 | ---- | C] () -- C:\Users\Milosh\Desktop\hjtscanlist.zip
[2011.07.26 01:35:40 | 001,240,109 | ---- | C] () -- C:\Users\Milosh\Desktop\IMG_0009.JPG
[2011.07.26 01:35:17 | 000,048,525 | ---- | C] () -- C:\Users\Milosh\Desktop\1295811208010.jpg
[2011.07.26 00:06:28 | 000,565,325 | ---- | C] () -- C:\Users\Milosh\Desktop\13062010096.jpg
[2011.07.26 00:06:19 | 000,343,717 | ---- | C] () -- C:\Users\Milosh\Desktop\13062010102.jpg
[2011.07.26 00:04:33 | 733,954,048 | ---- | C] () -- C:\Users\Milosh\Desktop\qom-american.high.school.avi
[2011.07.25 23:38:18 | 000,698,478 | ---- | C] () -- C:\Users\Milosh\Desktop\united.psd
[2011.07.25 22:12:40 | 000,001,075 | ---- | C] () -- C:\Users\Public\Desktop\Mobile Partner.lnk
[2011.07.25 20:00:19 | 000,066,414 | ---- | C] () -- C:\Users\Milosh\Desktop\getImage.jpg
[2011.07.25 19:22:26 | 000,002,019 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk
[2011.07.25 19:22:25 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2011.07.23 19:13:17 | 000,001,246 | ---- | C] () -- C:\Users\Public\Desktop\Virtual CloneDrive.lnk
[2011.07.23 19:12:37 | 000,001,000 | ---- | C] () -- C:\Users\Public\Desktop\SRWare Iron.lnk
[2011.07.23 19:10:17 | 000,002,759 | ---- | C] () -- C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk
[2011.07.23 19:04:37 | 000,001,935 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2011.07.23 19:03:06 | 000,001,105 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011.07.23 18:26:22 | 000,707,378 | ---- | C] () -- C:\Windows\SysNative\oem10.inf
[2011.07.23 18:25:46 | 000,006,656 | ---- | C] () -- C:\Windows\SysNative\bcmwlrc.dll
[2011.07.23 18:14:03 | 000,347,904 | ---- | C] () -- C:\Windows\SysNative\systemsf.ebd
[2011.07.23 18:13:47 | 000,001,041 | ---- | C] () -- C:\Windows\SysWow64\tcpbidi.xml
[2011.07.23 18:13:27 | 000,146,389 | ---- | C] () -- C:\Windows\SysWow64\printmanagement.msc
[2011.07.23 18:13:27 | 000,010,429 | ---- | C] () -- C:\Windows\SysNative\ScavengeSpace.xml
[2011.07.23 18:13:26 | 000,105,559 | ---- | C] () -- C:\Windows\SysWow64\RacRules.xml
[2011.07.23 18:13:26 | 000,105,559 | ---- | C] () -- C:\Windows\SysNative\RacRules.xml
[2011.07.23 17:59:55 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_Kernel_SynTP_01009.Wdf
[2011.07.23 17:57:47 | 000,037,468 | ---- | C] () -- C:\Windows\SysNative\drivers\RtPCEE3.DAT
[2011.07.23 17:57:47 | 000,001,448 | ---- | C] () -- C:\Windows\SysNative\drivers\RtHdatEx.dat
[2011.07.23 17:57:47 | 000,000,024 | ---- | C] () -- C:\Windows\SysNative\drivers\rtkhdaud.dat
[2011.07.23 17:57:46 | 000,247,560 | ---- | C] () -- C:\Windows\SysNative\drivers\RTConvEQ.dat
[2011.07.23 17:57:46 | 000,000,520 | ---- | C] () -- C:\Windows\SysNative\drivers\RTEQEX3.dat
[2011.07.23 17:57:46 | 000,000,520 | ---- | C] () -- C:\Windows\SysNative\drivers\RTEQEX2.dat
[2011.07.23 17:57:46 | 000,000,520 | ---- | C] () -- C:\Windows\SysNative\drivers\RTEQEX1.dat
[2011.07.23 17:57:46 | 000,000,520 | ---- | C] () -- C:\Windows\SysNative\drivers\RTEQEX0.dat
[2011.07.23 17:57:46 | 000,000,176 | ---- | C] () -- C:\Windows\SysNative\drivers\RTHDAEQ1.dat
[2011.07.23 17:54:24 | 000,000,000 | ---- | C] () -- C:\Windows\Setup.INI
[2011.07.23 17:54:17 | 000,000,184 | ---- | C] () -- C:\Windows\LMv4.UNI
[2011.07.23 17:38:19 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[2011.07.23 17:38:08 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[2011.07.23 17:36:44 | 000,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdFs_01_09_00.Wdf
[2011.07.23 17:34:42 | 3113,254,912 | -HS- | C] () -- C:\hiberfil.sys
[2009.07.14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009.07.14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009.07.14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009.07.14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009.07.14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009.07.13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009.06.10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
 
========== Files - Unicode (All) ==========
[2011.07.26 00:07:02 | 008,581,120 | ---- | C] ()(C:\Users\Milosh\Desktop\19.19. ?????? - ????? ?????.mp3) -- C:\Users\Milosh\Desktop\19.19. Легион - Нужно время.mp3
[2008.03.24 16:20:48 | 008,581,120 | ---- | M] ()(C:\Users\Milosh\Desktop\19.19. ?????? - ????? ?????.mp3) -- C:\Users\Milosh\Desktop\19.19. Легион - Нужно время.mp3

< End of report >

MrMeeToo · 26.07.2011, 17:35

extras.txt:
OTL EXTRAS Logfile:

Code:

ATTFilter

OTL Extras logfile created on: 26.07.2011 18:08:04 - Run 1
OTL by OldTimer - Version 3.2.26.1     Folder = C:\Users\Milosh\Desktop
64bit- An unknown product Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,87 Gb Total Physical Memory | 1,92 Gb Available Physical Memory | 49,74% Memory free
7,73 Gb Paging File | 5,76 Gb Available in Paging File | 74,50% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 224,61 Gb Total Space | 191,91 Gb Free Space | 85,44% Space Free | Partition Type: NTFS
Drive D: | 13,00 Gb Total Space | 4,30 Gb Free Space | 33,04% Space Free | Partition Type: NTFS
Drive E: | 228,05 Gb Total Space | 7,78 Gb Free Space | 3,41% Space Free | Partition Type: NTFS
 
Computer Name: MILOSH-PC | User Name: Milosh | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- Reg Error: Key error. File not found
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- Reg Error: Key error.
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- Reg Error: Key error.
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- Reg Error: Key error.
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- Reg Error: Key error.
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
"" = 
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Broadcom 802.11 Network Adapter" = Broadcom 802.11 Network Adapter
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{15C418EB-7675-42be-B2B3-281952DA014D}" = Sophos AutoUpdate
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{51F026FA-5146-4232-A8BA-1364740BD053}" = Acer Crystal Eye webcam
"{53DF73B1-37F5-4B7F-86ED-FA7CC4041031}" = Nero 8 Essentials
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{9ACB414D-9347-40B6-A453-5EFB2DB59DFA}" = Sophos Anti-Virus
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Deutsch
"{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1" = SRWare Iron 8.0.555.0
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2010-10-10
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware Version 1.51.1.1800
"Mobile Partner" = Mobile Partner
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"VirtualCloneDrive" = VirtualCloneDrive
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 23.07.2011 15:07:02 | Computer Name = Milosh-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
 (x86)\Nero\Nero8\Nero Toolkit\DiscSpeed.exe". Fehler in  Manifest- oder Richtliniendatei
 "" in Zeile .  Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
 mit  einer anderen, bereits aktiven Komponentenversion.  In Konflikt stehende Komponenten:.
Komponente
 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente
 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error - 25.07.2011 12:04:24 | Computer Name = Milosh-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
 (x86)\Nero\Nero8\Nero Toolkit\DiscSpeed.exe". Fehler in  Manifest- oder Richtliniendatei
 "" in Zeile .  Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
 mit  einer anderen, bereits aktiven Komponentenversion.  In Konflikt stehende Komponenten:.
Komponente
 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente
 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error - 26.07.2011 11:02:45 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: SavService.exe, Version: 9.7.0.9556,
 Zeitstempel: 0x4d7df37b  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x490  Startzeit der fehlerhaften Anwendung: 0x01cc4abb0ab49579  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 512fbf31-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:02:48 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: dsiwmis.exe, Version: 2.8.0.708, 
Zeitstempel: 0x4c205915  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, 
Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x674  Startzeit der fehlerhaften Anwendung: 0x01cc4abb1a9643cd  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Launch Manager\dsiwmis.exe  Pfad des
 fehlerhaften Moduls: unknown  Berichtskennung: 52d9d582-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:02:49 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: SAVAdminService.exe, Version: 9.7.0.9556,
 Zeitstempel: 0x4d7df0c9  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x7b4  Startzeit der fehlerhaften Anwendung: 0x01cc4abb1af0b817  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 534c1790-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:02:52 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: ALsvc.exe, Version: 3.15.33.263, 
Zeitstempel: 0x4d753f8d  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, 
Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x844  Startzeit der fehlerhaften Anwendung: 0x01cc4abb1c5ceaa1  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe  Pfad 
des fehlerhaften Moduls: unknown  Berichtskennung: 5576b82f-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:02:54 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: swi_service.exe, Version: 2.1.0.0,
 Zeitstempel: 0x4d5030bc  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x89c  Startzeit der fehlerhaften Anwendung: 0x01cc4abb1e2ab596  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 5688766f-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:02:54 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: NMIndexingService.exe, Version: 3.1.2.0,
 Zeitstempel: 0x470f754b  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0xca4  Startzeit der fehlerhaften Anwendung: 0x01cc4abb2a585451  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 56ba7355-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:03:00 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 9.6.2.1001,
 Zeitstempel: 0x4bc4a166  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0xcb8  Startzeit der fehlerhaften Anwendung: 0x01cc4abb67038f07  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 5a1ce838-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:03:05 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: mbamservice.exe, Version: 1.51.1.0,
 Zeitstempel: 0x4e0f0e18  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x9dc  Startzeit der fehlerhaften Anwendung: 0x01cc4abb67febb94  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 5cdfe0ea-b798-11e0-8772-9abdf88782d6
 
[ System Events ]
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...ram Files (x86)\Common Files\Nero\Lib\NMDvdContentHandler.dll]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a00b4d0]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...ram Files (x86)\Common Files\Nero\Lib\NMDvdContentHandler.dll]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a057791]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...3\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess svchost.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a057791]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...am Files (x86)\Common Files\Nero\Lib\NMFileContentHandler.dll]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a07d8f1]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...e3\Program Files (x86)\Common Files\Nero\Lib\NMFirstStart.exe]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a0efd12]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...am Files (x86)\Common Files\Nero\Lib\NMFullTextExtraction.dll]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a188293]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...\Program Files (x86)\Common Files\Nero\Lib\NMHDirServices.dll]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a1d4554]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...ogram Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a246974]).  
 
Error - 26.07.2011 11:03:01 | Computer Name = Milosh-PC | Source = Service Control Manager | ID = 7034
Description = Dienst "NMIndexingService" wurde unerwartet beendet. Dies ist bereits
 1 Mal passiert.
 
Error - 26.07.2011 11:09:21 | Computer Name = Milosh-PC | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler 
beendet:   %%16405
 
 
< End of report >

--- --- ---

HJT:

Code:

ATTFilter

 
	Code: 

 ATTFilter

  
	 
                        $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ 
                        º                                    º 
                                    hjtscanlist v2.0              
                        º                                    º 
                        $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ 

Microsoft Windows [Version 6.1.7601]
 
 
C:

       C:\pagefile.sys ---------    
       C:\hiberfil.sys ---------    
  26.07.2011 03:03     C:\Windows --------- 16384   
  26.07.2011 03:02     C:\Program Files (x86) --------- 8192   
  26.07.2011 03:00     C:\System Volume Information --------- 4096   
  25.07.2011 19:21     C:\ProgramData --------- 4096   
  23.07.2011 19:11     C:\Program Files --------- 8192   
  23.07.2011 17:54     C:\Intel --------- 0   
  23.07.2011 17:48     C:\savw_9_sa --------- 4096   
  23.07.2011 17:43     C:\$Recycle.Bin --------- 0   
  23.07.2011 17:42     C:\Users --------- 4096   
  23.07.2011 17:42     C:\Recovery --------- 0   
  23.07.2011 17:42     C:\Programme --------- 0   
  23.07.2011 17:42     C:\Dokumente und Einstellungen --------- 0   
  14.07.2009 07:08     C:\Documents and Settings --------- 0   
  14.07.2009 05:20     C:\PerfLogs --------- 0   
----------------------------------------

 
C:\Windows

  26.07.2011 18:05     C:\Windows\WindowsUpdate.log --------- 540438   
  26.07.2011 18:05     C:\Windows\bootstat.dat --------- 67584   
  26.07.2011 17:08     C:\Windows\setupact.log --------- 21587   
  26.07.2011 03:03     C:\Windows\msxml4-KB973688-enu.LOG --------- 297066   
  26.07.2011 03:02     C:\Windows\msxml4-KB954430-enu.LOG --------- 296764   
  23.07.2011 19:31     C:\Windows\PFRO.log --------- 6466   
  23.07.2011 19:07     C:\Windows\DirectX.log --------- 27580   
  23.07.2011 18:00     C:\Windows\DPINST.LOG --------- 4362   
  23.07.2011 17:54     C:\Windows\Setup.INI --------- 0   
  23.07.2011 17:54     C:\Windows\LMv4.UNI --------- 184   
  23.07.2011 17:37     C:\Windows\DtcInstall.log --------- 1774   
  23.07.2011 17:37     C:\Windows\TSSysprep.log --------- 1313   
  20.11.2010 05:25     C:\Windows\splwow64.exe --------- 67072   
  20.11.2010 05:24     C:\Windows\explorer.exe --------- 2872320   
  20.11.2010 05:24     C:\Windows\bfsvc.exe --------- 71168   
  20.11.2010 04:21     C:\Windows\twain_32.dll --------- 51200   
  07.06.2010 09:27     C:\Windows\RtlExUpd.dll --------- 1251944   
  25.01.2010 09:09     C:\Windows\UNINSTLMv4.EXE --------- 349776   
  14.07.2009 07:09     C:\Windows\win.ini --------- 403   
  14.07.2009 06:54     C:\Windows\WindowsShell.Manifest --------- 749   
  14.07.2009 06:51     C:\Windows\setuperr.log --------- 0   
  14.07.2009 03:39     C:\Windows\write.exe --------- 10240   
  14.07.2009 03:39     C:\Windows\regedit.exe --------- 427008   
  14.07.2009 03:39     C:\Windows\notepad.exe --------- 193536   
  14.07.2009 03:39     C:\Windows\hh.exe --------- 16896   
  14.07.2009 03:39     C:\Windows\HelpPane.exe --------- 733696   
  14.07.2009 03:39     C:\Windows\fveupdate.exe --------- 15360   
  14.07.2009 03:14     C:\Windows\winhlp32.exe --------- 9728   
  14.07.2009 03:14     C:\Windows\twunk_32.exe --------- 31232   
  14.07.2009 01:06     C:\Windows\mib.bin --------- 43131   
  10.06.2009 23:41     C:\Windows\twunk_16.exe --------- 49680   
  10.06.2009 23:41     C:\Windows\twain.dll --------- 94784   
  10.06.2009 23:08     C:\Windows\system.ini --------- 219   
  10.06.2009 22:52     C:\Windows\WMSysPr9.prx --------- 316640   
  10.06.2009 22:36     C:\Windows\msdfmap.ini --------- 1405   
  10.06.2009 22:31     C:\Windows\Starter.xml --------- 48201   
  10.06.2009 22:30     C:\Windows\Professional.xml --------- 53551   
----------------------------------------

 
C:\Windows\System

----------------------------------------

 
C:\Windows\System32

 26.07.2011 17:28     C:\Windows\system32\config --------- 24576  
 26.07.2011 17:15     C:\Windows\system32\perfc009.dat --------- 103568  
 26.07.2011 17:15     C:\Windows\system32\perfh009.dat --------- 607190  
 26.07.2011 17:15     C:\Windows\system32\perfc007.dat --------- 126394  
 26.07.2011 17:15     C:\Windows\system32\perfh007.dat --------- 643866  
 26.07.2011 17:15     C:\Windows\system32\PerfStringBackup.INI --------- 1472002  
 26.07.2011 17:15     C:\Windows\system32\catroot --------- 4096  
 26.07.2011 17:15     C:\Windows\system32\catroot2 --------- 32768  
 26.07.2011 17:11     C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 --------- 12560  
 26.07.2011 17:11     C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 --------- 12560  
 26.07.2011 17:08     C:\Windows\system32\FNTCACHE.DAT --------- 274464  
 26.07.2011 17:03     C:\Windows\system32\wdi --------- 4096  
 26.07.2011 17:02     C:\Windows\system32\drivers --------- 65536  
 26.07.2011 17:02     C:\Windows\system32\migration --------- 4096  
 26.07.2011 17:02     C:\Windows\system32\Boot --------- 0  
 25.07.2011 22:12     C:\Windows\system32\DriverStore --------- 4096  
 23.07.2011 19:27     C:\Windows\system32\SophosBootTasks.exe --------- 37400  
 23.07.2011 19:27     C:\Windows\system32\sdccoinstaller.dll --------- 183024  
 23.07.2011 19:13     C:\Windows\system32\Tasks --------- 0  
 23.07.2011 18:54     C:\Windows\system32\da-DK --------- 0  
 23.07.2011 18:54     C:\Windows\system32\de-DE --------- 327680  
 23.07.2011 18:53     C:\Windows\system32\oobe --------- 4096  
 23.07.2011 18:53     C:\Windows\system32\AdvancedInstallers --------- 0  
 23.07.2011 18:53     C:\Windows\system32\Setup --------- 0  
 23.07.2011 18:53     C:\Windows\system32\cs-CZ --------- 0  
 23.07.2011 18:53     C:\Windows\system32\manifeststore --------- 0  
 23.07.2011 18:53     C:\Windows\system32\es-ES --------- 0  
 23.07.2011 18:53     C:\Windows\system32\sppui --------- 0  
 23.07.2011 18:53     C:\Windows\system32\wbem --------- 65536  
 23.07.2011 18:53     C:\Windows\system32\migwiz --------- 4096  
 23.07.2011 18:53     C:\Windows\system32\Dism --------- 4096  
 23.07.2011 18:51     C:\Windows\system32\SPReview --------- 0  
 23.07.2011 18:42     C:\Windows\system32\msclmd.dll --------- 175616  
 23.07.2011 18:26     C:\Windows\system32\oem10.inf --------- 707378  
 23.07.2011 18:25     C:\Windows\system32\zh-HK --------- 0  
 23.07.2011 18:25     C:\Windows\system32\zh-TW --------- 0  
 23.07.2011 18:25     C:\Windows\system32\zh-CN --------- 0  
 23.07.2011 18:25     C:\Windows\system32\tr-TR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\th-TH --------- 0  
 23.07.2011 18:25     C:\Windows\system32\sv-SE --------- 0  
 23.07.2011 18:25     C:\Windows\system32\sl-SI --------- 0  
 23.07.2011 18:25     C:\Windows\system32\sk-SK --------- 0  
 23.07.2011 18:25     C:\Windows\system32\ru-RU --------- 0  
 23.07.2011 18:25     C:\Windows\system32\ro-RO --------- 0  
 23.07.2011 18:25     C:\Windows\system32\pt-PT --------- 0  
 23.07.2011 18:25     C:\Windows\system32\pt-BR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\pl-PL --------- 0  
 23.07.2011 18:25     C:\Windows\system32\nl-NL --------- 0  
 23.07.2011 18:25     C:\Windows\system32\nb-NO --------- 0  
 23.07.2011 18:25     C:\Windows\system32\lv-LV --------- 0  
 23.07.2011 18:25     C:\Windows\system32\lt-LT --------- 0  
 23.07.2011 18:25     C:\Windows\system32\ko-KR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\ja-JP --------- 0  
 23.07.2011 18:25     C:\Windows\system32\it-IT --------- 0  
 23.07.2011 18:25     C:\Windows\system32\hu-HU --------- 0  
 23.07.2011 18:25     C:\Windows\system32\hr-HR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\he-IL --------- 0  
 23.07.2011 18:25     C:\Windows\system32\fr-FR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\fi-FI --------- 0  
 23.07.2011 18:25     C:\Windows\system32\et-EE --------- 0  
 23.07.2011 18:25     C:\Windows\system32\en-US --------- 4096  
 23.07.2011 18:25     C:\Windows\system32\el-GR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\bg-BG --------- 0  
 23.07.2011 18:25     C:\Windows\system32\ar-SA --------- 0  
 23.07.2011 18:25     C:\Windows\system32\bcmwlrc.dll --------- 6656  
 23.07.2011 18:25     C:\Windows\system32\bcmwlcoi.dll --------- 95544  
 23.07.2011 18:25     C:\Windows\system32\bcmihvui64.dll --------- 3561272  
 23.07.2011 18:25     C:\Windows\system32\bcmihvsrv64.dll --------- 3896632  
 23.07.2011 18:11     C:\Windows\system32\EventProviders --------- 0  
 23.07.2011 17:56     C:\Windows\system32\CodeIntegrity --------- 0  
 23.07.2011 17:48     C:\Windows\system32\restore --------- 0  
 23.07.2011 17:38     C:\Windows\system32\license.rtf --------- 57035  
 23.07.2011 17:37     C:\Windows\system32\sysprep --------- 0  
 11.06.2011 05:07     C:\Windows\system32\win32k.sys --------- 3137536  
 03.06.2011 08:56     C:\Windows\system32\KernelBase.dll --------- 421888  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll --------- 6144  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll --------- 4608  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll --------- 4096  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll --------- 4096  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll --------- 4608  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll --------- 4096  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll --------- 4096  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll --------- 5120  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll --------- 3072  
----------------------------------------

 
C:\Windows\Prefetch

----------------------------------------

 
C:\Windows\Tasks

 26.07.2011 17:08     C:\Windows\Tasks\SA.DAT --------- 6  
 14.07.2009 07:08     C:\Windows\Tasks\SCHEDLGU.TXT --------- 2898  
----------------------------------------

 
C:\Windows\Temp

----------------------------------------

 
C:\Users\Milosh\AppData\Local\Temp

 26.07.2011 17:14     C:\Users\Milosh\AppData\Local\Temp\etilqs_nOZzlUfnoIkjMhgqyJeg --------- 0  
 26.07.2011 17:13     C:\Users\Milosh\AppData\Local\Temp\etilqs_OnTK8N2s1kBIbflgL7fd --------- 0  
 26.07.2011 17:09     C:\Users\Milosh\AppData\Local\Temp\LMworker.log --------- 0  
 26.07.2011 17:09     C:\Users\Milosh\AppData\Local\Temp\aipflib.log --------- 0  
 26.07.2011 17:09     C:\Users\Milosh\AppData\Local\Temp\LManager.log --------- 0  
 26.07.2011 17:09     C:\Users\Milosh\AppData\Local\Temp\AdobeARM.log --------- 2700  
 26.07.2011 17:09     C:\Users\Milosh\AppData\Local\Temp\WPDNSE --------- 0  
 25.07.2011 22:32     C:\Users\Milosh\AppData\Local\Temp\History --------- 0  
 25.07.2011 22:32     C:\Users\Milosh\AppData\Local\Temp\Cookies --------- 0  
 25.07.2011 22:32     C:\Users\Milosh\AppData\Local\Temp\Temporary Internet Files --------- 0  
 25.07.2011 22:31     C:\Users\Milosh\AppData\Local\Temp\Adobe --------- 0  
 25.07.2011 22:12     C:\Users\Milosh\AppData\Local\Temp\~DFCD2274D2871DC947.TMP --------- 32768  
 25.07.2011 22:12     C:\Users\Milosh\AppData\Local\Temp\E220AutoRunLog.tmp --------- 9157  
 25.07.2011 22:11     C:\Users\Milosh\AppData\Local\Temp\UTPSDLL --------- 0  
 25.07.2011 19:23     C:\Users\Milosh\AppData\Local\Temp\AdobeSFX.log --------- 1651  
 25.07.2011 19:19     C:\Users\Milosh\AppData\Local\Temp\EF63.tmp --------- 328864  
 25.07.2011 16:28     C:\Users\Milosh\AppData\Local\Temp\DMI13D1.tmp --------- 0  
 23.07.2011 21:11     C:\Users\Milosh\AppData\Local\Temp\wmsetup.log --------- 4562  
 23.07.2011 19:16     C:\Users\Milosh\AppData\Local\Temp\SetupExe(20110723191627FD8).log --------- 5496  
 23.07.2011 19:16     C:\Users\Milosh\AppData\Local\Temp\SetupExe(20110723191556A6C).log --------- 8675  
 23.07.2011 19:10     C:\Users\Milosh\AppData\Local\Temp\nps.tmp --------- 0  
 23.07.2011 19:08     C:\Users\Milosh\AppData\Local\Temp\nero.tmp --------- 0  
 23.07.2011 19:06     C:\Users\Milosh\AppData\Local\Temp\nro.log --------- 0  
 23.07.2011 19:01     C:\Users\Milosh\AppData\Local\Temp\cbed9b6d7ad4e5a3254baec2 --------- 0  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\{F4DC16BE-4FF3-4823-96A9-625B6B6C4CC3} --------- 0  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\bcmwl.log --------- 39786  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\Install_EAP_Modules.log --------- 792  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\CFG3784.tmp --------- 123  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\CFG2EBD.tmp --------- 123  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\CFG19C7.tmp --------- 123  
 23.07.2011 18:25     C:\Users\Milosh\AppData\Local\Temp\{0E310C9E-8DDF-45FB-BABE-E36BC98C7DC7} --------- 0  
 23.07.2011 18:01     C:\Users\Milosh\AppData\Local\Temp\{7B6D3D16-5F2F-4C42-8138-A35B69DA86F1} --------- 0  
 23.07.2011 17:57     C:\Users\Milosh\AppData\Local\Temp\{51F026FA-5146-4232-A8BA-1364740BD053} --------- 0  
 23.07.2011 17:55     C:\Users\Milosh\AppData\Local\Temp\{98267988-46D6-416F-8BB7-8B7516DBC3A6} --------- 0  
 23.07.2011 17:54     C:\Users\Milosh\AppData\Local\Temp\aiPlatformSetupAddOn.log --------- 0  
 23.07.2011 17:50     C:\Users\Milosh\AppData\Local\Temp\Sophos Standalone Installer.txt --------- 1545  
 23.07.2011 17:50     C:\Users\Milosh\AppData\Local\Temp\Sophos AutoUpdate Install Log.txt --------- 641704  
 23.07.2011 17:49     C:\Users\Milosh\AppData\Local\Temp\Sophos Anti-Virus Install Log_110723_034837.txt --------- 4288700  
 23.07.2011 17:49     C:\Users\Milosh\AppData\Local\Temp\Sophos Anti-Virus CustomActions Log_110723_034837.txt --------- 7210  
 23.07.2011 17:48     C:\Users\Milosh\AppData\Local\Temp\avremove.log --------- 107677  
 23.07.2011 17:48     C:\Users\Milosh\AppData\Local\Temp\crt --------- 0  
 23.07.2011 17:44     C:\Users\Milosh\AppData\Local\Temp\{878B34F6-6026-465E-A601-A99C07E32E4D} --------- 0  
 23.07.2011 17:43     C:\Users\Milosh\AppData\Local\Temp\FXSAPIDebugLogFile.txt --------- 0  
 23.07.2011 17:43     C:\Users\Milosh\AppData\Local\Temp\Milosh.bmp --------- 49208  
 23.07.2011 17:42     C:\Users\Milosh\AppData\Local\Temp\Low --------- 0  
 10.04.2010 02:00     C:\Users\Milosh\AppData\Local\Temp\DataCard_Setup64.exe --------- 206336  
 10.04.2010 02:00     C:\Users\Milosh\AppData\Local\Temp\ResetDevice.exe --------- 7168  
 10.04.2010 02:00     C:\Users\Milosh\AppData\Local\Temp\SysConfig.dat --------- 2476  
----------------------------------------

 
C:\Program Files

 26.07.2011 17:02     C:\Program Files\Internet Explorer --------- 4096  
 23.07.2011 19:11     C:\Program Files\WinRAR --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Sidebar --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Mail --------- 4096  
 23.07.2011 18:54     C:\Program Files\DVD Maker --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Portable Devices --------- 0  
 23.07.2011 18:54     C:\Program Files\Windows Media Player --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Journal --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Photo Viewer --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Defender --------- 4096  
 23.07.2011 18:25     C:\Program Files\Broadcom --------- 0  
 23.07.2011 18:05     C:\Program Files\Microsoft Games --------- 4096  
 23.07.2011 18:01     C:\Program Files\Acer --------- 0  
 23.07.2011 17:59     C:\Program Files\Synaptics --------- 0  
 23.07.2011 17:57     C:\Program Files\Realtek --------- 0  
 23.07.2011 17:45     C:\Program Files\NVIDIA Corporation --------- 4096  
 23.07.2011 17:42     C:\Program Files\Windows NT --------- 4096  
 23.07.2011 17:42     C:\Program Files\Gemeinsame Dateien --------- 0  
 14.07.2009 07:32     C:\Program Files\MSBuild --------- 0  
 14.07.2009 07:32     C:\Program Files\Reference Assemblies --------- 0  
 14.07.2009 07:09     C:\Program Files\Uninstall Information --------- 0  
 14.07.2009 06:54     C:\Program Files\desktop.ini --------- 174  
 14.07.2009 05:20     C:\Program Files\Common Files --------- 4096  
----------------------------------------

 
C:\ProgramData\.. 

Milosh    
Default    
Public    
Default User    
All Users    
desktop.ini    
----------------------------------------

 
C:\Windows\system32\drivers\etc\hosts


----------------------------------------

 

Abbildname                     PID Sitzungsname       Sitz.-Nr. Speichernutzung
========================= ======== ================ =========== ===============
System Idle Process              0 Services                   0            24 K
System                           4 Services                   0         4.184 K
smss.exe                       324 Services                   0         1.172 K
csrss.exe                      544 Services                   0         4.740 K
wininit.exe                    596 Services                   0         5.156 K
csrss.exe                      616 Console                    1        14.152 K
services.exe                   660 Services                   0         9.740 K
lsass.exe                      676 Services                   0        11.064 K
lsm.exe                        684 Services                   0         4.528 K
winlogon.exe                   768 Console                    1         7.684 K
svchost.exe                    832 Services                   0         9.920 K
nvvsvc.exe                     892 Services                   0         5.332 K
svchost.exe                    932 Services                   0        11.284 K
svchost.exe                   1016 Services                   0        19.312 K
svchost.exe                    336 Services                   0       166.968 K
svchost.exe                    532 Services                   0        46.044 K
svchost.exe                   1108 Services                   0        13.860 K
SavService.exe                1196 Services                   0       139.128 K
svchost.exe                   1528 Services                   0        16.612 K
svchost.exe                   1632 Services                   0        27.204 K
wlanext.exe                   1692 Services                   0         5.680 K
conhost.exe                   1704 Services                   0         3.252 K
spoolsv.exe                   1752 Services                   0        12.596 K
armsvc.exe                    1872 Services                   0         4.080 K
dsiwmis.exe                   1912 Services                   0         6.160 K
ePowerSvc.exe                 1956 Services                   0         7.580 K
SAVAdminService.exe           2012 Services                   0         3.216 K
ALsvc.exe                     1052 Services                   0         2.088 K
swi_service.exe               1232 Services                   0         5.808 K
nvvsvc.exe                    2724 Console                    1        10.252 K
LogonUI.exe                   2732 Services                   0        16.716 K
taskhost.exe                  2848 Console                    1        10.400 K
dwm.exe                       2968 Console                    1        28.628 K
explorer.exe                  3012 Console                    1        54.400 K
RAVCpl64.exe                  2808 Console                    1        11.800 K
SynTPEnh.exe                  2628 Console                    1        14.044 K
ePowerTray.exe                3000 Console                    1        12.184 K
NMBgMonitor.exe               2992 Console                    1        12.136 K
NMIndexingService.exe         3096 Services                   0        11.536 K
SearchIndexer.exe             3200 Services                   0        31.192 K
SynTPHelper.exe               3332 Console                    1         5.012 K
LManager.exe                  3376 Console                    1        13.788 K
IAStorIcon.exe                3388 Console                    1        27.684 K
mbamgui.exe                   3400 Console                    1         7.244 K
VCDDaemon.exe                 3412 Console                    1         5.532 K
ALMon.exe                     3464 Console                    1         1.660 K
unsecapp.exe                  3552 Console                    1         7.204 K
WmiPrvSE.exe                  3616 Services                   0         7.348 K
ePowerEvent.exe               3912 Console                    1         5.588 K
NMIndexStoreSvr.exe           4008 Console                    1        15.664 K
MMDx64Fx.exe                  3036 Console                    1         6.172 K
LMworker.exe                  3268 Console                    1         4.420 K
iron.exe                      3324 Console                    1        67.320 K
iron.exe                      1216 Console                    1        57.664 K
svchost.exe                    124 Services                   0         7.064 K
IAStorDataMgrSvc.exe          2760 Services                   0        20.404 K
mbamservice.exe                720 Services                   0        40.572 K
sppsvc.exe                    2388 Services                   0         9.436 K
svchost.exe                   3768 Services                   0        35.992 K
wuauclt.exe                   5040 Console                    1         7.648 K
notepad.exe                   5044 Console                    1         6.560 K
notepad.exe                   3500 Console                    1         7.652 K
notepad.exe                   2604 Console                    1         8.288 K
audiodg.exe                   4656 Services                   0        17.172 K
SearchProtocolHost.exe        3576 Services                   0         9.072 K
SearchFilterHost.exe          3568 Services                   0         7.304 K
cmd.exe                       4268 Console                    1         4.356 K
conhost.exe                   2940 Console                    1         6.684 K
dllhost.exe                   4276 Console                    1         7.180 K
tasklist.exe                  3144 Console                    1         6.272 K
WmiPrvSE.exe                  3536 Services                   0         6.800 K

 
***** Ende des Scans 26.07.2011 um 18:17:36,26 ***

ccleaner:

Code:

ATTFilter

Acer Crystal Eye webcam	Liteon	22.07.2011	3,22MB	1.0.4.0
Acer ePower Management	Acer Incorporated	22.07.2011		5.00.3005
Adobe Flash Player 10 Plugin	Adobe Systems Incorporated	24.07.2011	6,00MB	10.3.181.34
Adobe Reader X (10.1.0) - Deutsch	Adobe Systems Incorporated	24.07.2011	118,5MB	10.1.0
Broadcom 802.11 Network Adapter	Broadcom Corporation	23.07.2011		5.100.249.2
CCleaner	Piriform	25.07.2011		3.08
Cisco EAP-FAST Module	Cisco Systems, Inc.	22.07.2011	1,55MB	2.2.14
Cisco LEAP Module	Cisco Systems, Inc.	22.07.2011	0,63MB	1.0.19
Cisco PEAP Module	Cisco Systems, Inc.	22.07.2011	1,24MB	1.1.6
Combined Community Codec Pack 2010-10-10	CCCP Project	22.07.2011	26,1MB	2010.10.10.0
Intel(R) Rapid Storage Technology	Intel Corporation	23.07.2011		9.6.2.1001
Launch Manager	Acer Inc.	22.07.2011		4.0.12
Malwarebytes' Anti-Malware Version 1.51.1.1800	Malwarebytes Corporation	22.07.2011	13,4MB	1.51.1.1800
Mobile Partner	Huawei Technologies Co.,Ltd	24.07.2011		16.001.06.01.500
Mozilla Firefox (3.6.13)	Mozilla	22.07.2011		3.6.13 (de)
MSXML 4.0 SP2 (KB954430)	Microsoft Corporation	25.07.2011	1,28MB	4.20.9870.0
MSXML 4.0 SP2 (KB973688)	Microsoft Corporation	25.07.2011	1,33MB	4.20.9876.0
Nero 8 Essentials	Nero AG	22.07.2011	897MB	8.10.124
NVIDIA Display Control Panel	NVIDIA Corporation	22.07.2011	135,0MB	6.14.12.5903
NVIDIA Drivers	NVIDIA Corporation	22.07.2011	65,1MB	1.10.62.40
Realtek High Definition Audio Driver	Realtek Semiconductor Corp.	22.07.2011		6.0.1.6141
Sophos Anti-Virus	Sophos Limited	22.07.2011	24,0MB	9.7.3
Sophos AutoUpdate	Sophos Limited	22.07.2011	11,2MB	2.5.9
SRWare Iron 8.0.555.0	SRWare	22.07.2011	58,9MB	
Synaptics Pointing Device Driver	Synaptics Incorporated	22.07.2011		14.0.19.0
VirtualCloneDrive	Elaborate Bytes	22.07.2011		
WinRAR		22.07.2011

So das war jetzt alles hoff ich mal =) Hoffentlich kannst mir helfen =) Und danke dir

MrMeeToo · 26.07.2011, 17:36

extras.txt:
OTL EXTRAS Logfile:

Code:

ATTFilter

OTL Extras logfile created on: 26.07.2011 18:08:04 - Run 1
OTL by OldTimer - Version 3.2.26.1     Folder = C:\Users\Milosh\Desktop
64bit- An unknown product Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,87 Gb Total Physical Memory | 1,92 Gb Available Physical Memory | 49,74% Memory free
7,73 Gb Paging File | 5,76 Gb Available in Paging File | 74,50% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 224,61 Gb Total Space | 191,91 Gb Free Space | 85,44% Space Free | Partition Type: NTFS
Drive D: | 13,00 Gb Total Space | 4,30 Gb Free Space | 33,04% Space Free | Partition Type: NTFS
Drive E: | 228,05 Gb Total Space | 7,78 Gb Free Space | 3,41% Space Free | Partition Type: NTFS
 
Computer Name: MILOSH-PC | User Name: Milosh | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- Reg Error: Key error. File not found
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- Reg Error: Key error. File not found
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- Reg Error: Key error.
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" File not found
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome File not found
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l File not found
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- Reg Error: Key error.
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- Reg Error: Key error.
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome
https [open] -- "C:\Program Files (x86)\Internet Explorer\iexplore.exe" -nohome
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- Reg Error: Key error.
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Key error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
"" = 
"DisableMonitoring" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
========== Authorized Applications List ==========
 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Broadcom 802.11 Network Adapter" = Broadcom 802.11 Network Adapter
"NVIDIA Display Control Panel" = NVIDIA Display Control Panel
"NVIDIA Drivers" = NVIDIA Drivers
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{15C418EB-7675-42be-B2B3-281952DA014D}" = Sophos AutoUpdate
"{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{51F026FA-5146-4232-A8BA-1364740BD053}" = Acer Crystal Eye webcam
"{53DF73B1-37F5-4B7F-86ED-FA7CC4041031}" = Nero 8 Essentials
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{9ACB414D-9347-40B6-A453-5EFB2DB59DFA}" = Sophos Anti-Virus
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Deutsch
"{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1" = SRWare Iron 8.0.555.0
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Combined Community Codec Pack_is1" = Combined Community Codec Pack 2010-10-10
"LManager" = Launch Manager
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware Version 1.51.1.1800
"Mobile Partner" = Mobile Partner
"Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13)
"VirtualCloneDrive" = VirtualCloneDrive
 
========== Last 10 Event Log Errors ==========
 
[ Application Events ]
Error - 23.07.2011 15:07:02 | Computer Name = Milosh-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
 (x86)\Nero\Nero8\Nero Toolkit\DiscSpeed.exe". Fehler in  Manifest- oder Richtliniendatei
 "" in Zeile .  Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
 mit  einer anderen, bereits aktiven Komponentenversion.  In Konflikt stehende Komponenten:.
Komponente
 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente
 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error - 25.07.2011 12:04:24 | Computer Name = Milosh-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
 (x86)\Nero\Nero8\Nero Toolkit\DiscSpeed.exe". Fehler in  Manifest- oder Richtliniendatei
 "" in Zeile .  Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt
 mit  einer anderen, bereits aktiven Komponentenversion.  In Konflikt stehende Komponenten:.
Komponente
 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente
 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error - 26.07.2011 11:02:45 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: SavService.exe, Version: 9.7.0.9556,
 Zeitstempel: 0x4d7df37b  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x490  Startzeit der fehlerhaften Anwendung: 0x01cc4abb0ab49579  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 512fbf31-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:02:48 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: dsiwmis.exe, Version: 2.8.0.708, 
Zeitstempel: 0x4c205915  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, 
Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x674  Startzeit der fehlerhaften Anwendung: 0x01cc4abb1a9643cd  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Launch Manager\dsiwmis.exe  Pfad des
 fehlerhaften Moduls: unknown  Berichtskennung: 52d9d582-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:02:49 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: SAVAdminService.exe, Version: 9.7.0.9556,
 Zeitstempel: 0x4d7df0c9  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x7b4  Startzeit der fehlerhaften Anwendung: 0x01cc4abb1af0b817  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 534c1790-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:02:52 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: ALsvc.exe, Version: 3.15.33.263, 
Zeitstempel: 0x4d753f8d  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, 
Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x844  Startzeit der fehlerhaften Anwendung: 0x01cc4abb1c5ceaa1  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe  Pfad 
des fehlerhaften Moduls: unknown  Berichtskennung: 5576b82f-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:02:54 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: swi_service.exe, Version: 2.1.0.0,
 Zeitstempel: 0x4d5030bc  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x89c  Startzeit der fehlerhaften Anwendung: 0x01cc4abb1e2ab596  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 5688766f-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:02:54 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: NMIndexingService.exe, Version: 3.1.2.0,
 Zeitstempel: 0x470f754b  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0xca4  Startzeit der fehlerhaften Anwendung: 0x01cc4abb2a585451  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 56ba7355-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:03:00 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: IAStorDataMgrSvc.exe, Version: 9.6.2.1001,
 Zeitstempel: 0x4bc4a166  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0xcb8  Startzeit der fehlerhaften Anwendung: 0x01cc4abb67038f07  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 5a1ce838-b798-11e0-8772-9abdf88782d6
 
Error - 26.07.2011 11:03:05 | Computer Name = Milosh-PC | Source = Application Error | ID = 1000
Description = Name der fehlerhaften Anwendung: mbamservice.exe, Version: 1.51.1.0,
 Zeitstempel: 0x4e0f0e18  Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0,
 Zeitstempel: 0x00000000  Ausnahmecode: 0xc0000005  Fehleroffset: 0x73706c9c  ID des fehlerhaften
 Prozesses: 0x9dc  Startzeit der fehlerhaften Anwendung: 0x01cc4abb67febb94  Pfad der
 fehlerhaften Anwendung: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
Pfad
 des fehlerhaften Moduls: unknown  Berichtskennung: 5cdfe0ea-b798-11e0-8772-9abdf88782d6
 
[ System Events ]
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...ram Files (x86)\Common Files\Nero\Lib\NMDvdContentHandler.dll]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a00b4d0]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...ram Files (x86)\Common Files\Nero\Lib\NMDvdContentHandler.dll]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a057791]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...3\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess svchost.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a057791]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...am Files (x86)\Common Files\Nero\Lib\NMFileContentHandler.dll]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a07d8f1]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...e3\Program Files (x86)\Common Files\Nero\Lib\NMFirstStart.exe]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a0efd12]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...am Files (x86)\Common Files\Nero\Lib\NMFullTextExtraction.dll]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a188293]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...\Program Files (x86)\Common Files\Nero\Lib\NMHDirServices.dll]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a1d4554]).  
 
Error - 26.07.2011 11:02:56 | Computer Name = Milosh-PC | Source = SAVOnAccess | ID = 3997781
Description =   Der Scan von Datei [...ogram Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe]
 wurde nach einer Zeitüberschreitung/Auslastung durchgeführt. Sie wird protokolliert.
 Prozess WerFault.exe, (Überprüfung des Zeitstempels [ 1cc4ba51a246974]).  
 
Error - 26.07.2011 11:03:01 | Computer Name = Milosh-PC | Source = Service Control Manager | ID = 7034
Description = Dienst "NMIndexingService" wurde unerwartet beendet. Dies ist bereits
 1 Mal passiert.
 
Error - 26.07.2011 11:09:21 | Computer Name = Milosh-PC | Source = Service Control Manager | ID = 7023
Description = Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler 
beendet:   %%16405
 
 
< End of report >

--- --- ---

HJT:

Code:

ATTFilter

 
	Code: 

 ATTFilter

  
	 
                        $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ 
                        º                                    º 
                                    hjtscanlist v2.0              
                        º                                    º 
                        $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ 

Microsoft Windows [Version 6.1.7601]
 
 
C:

       C:\pagefile.sys ---------    
       C:\hiberfil.sys ---------    
  26.07.2011 03:03     C:\Windows --------- 16384   
  26.07.2011 03:02     C:\Program Files (x86) --------- 8192   
  26.07.2011 03:00     C:\System Volume Information --------- 4096   
  25.07.2011 19:21     C:\ProgramData --------- 4096   
  23.07.2011 19:11     C:\Program Files --------- 8192   
  23.07.2011 17:54     C:\Intel --------- 0   
  23.07.2011 17:48     C:\savw_9_sa --------- 4096   
  23.07.2011 17:43     C:\$Recycle.Bin --------- 0   
  23.07.2011 17:42     C:\Users --------- 4096   
  23.07.2011 17:42     C:\Recovery --------- 0   
  23.07.2011 17:42     C:\Programme --------- 0   
  23.07.2011 17:42     C:\Dokumente und Einstellungen --------- 0   
  14.07.2009 07:08     C:\Documents and Settings --------- 0   
  14.07.2009 05:20     C:\PerfLogs --------- 0   
----------------------------------------

 
C:\Windows

  26.07.2011 18:05     C:\Windows\WindowsUpdate.log --------- 540438   
  26.07.2011 18:05     C:\Windows\bootstat.dat --------- 67584   
  26.07.2011 17:08     C:\Windows\setupact.log --------- 21587   
  26.07.2011 03:03     C:\Windows\msxml4-KB973688-enu.LOG --------- 297066   
  26.07.2011 03:02     C:\Windows\msxml4-KB954430-enu.LOG --------- 296764   
  23.07.2011 19:31     C:\Windows\PFRO.log --------- 6466   
  23.07.2011 19:07     C:\Windows\DirectX.log --------- 27580   
  23.07.2011 18:00     C:\Windows\DPINST.LOG --------- 4362   
  23.07.2011 17:54     C:\Windows\Setup.INI --------- 0   
  23.07.2011 17:54     C:\Windows\LMv4.UNI --------- 184   
  23.07.2011 17:37     C:\Windows\DtcInstall.log --------- 1774   
  23.07.2011 17:37     C:\Windows\TSSysprep.log --------- 1313   
  20.11.2010 05:25     C:\Windows\splwow64.exe --------- 67072   
  20.11.2010 05:24     C:\Windows\explorer.exe --------- 2872320   
  20.11.2010 05:24     C:\Windows\bfsvc.exe --------- 71168   
  20.11.2010 04:21     C:\Windows\twain_32.dll --------- 51200   
  07.06.2010 09:27     C:\Windows\RtlExUpd.dll --------- 1251944   
  25.01.2010 09:09     C:\Windows\UNINSTLMv4.EXE --------- 349776   
  14.07.2009 07:09     C:\Windows\win.ini --------- 403   
  14.07.2009 06:54     C:\Windows\WindowsShell.Manifest --------- 749   
  14.07.2009 06:51     C:\Windows\setuperr.log --------- 0   
  14.07.2009 03:39     C:\Windows\write.exe --------- 10240   
  14.07.2009 03:39     C:\Windows\regedit.exe --------- 427008   
  14.07.2009 03:39     C:\Windows\notepad.exe --------- 193536   
  14.07.2009 03:39     C:\Windows\hh.exe --------- 16896   
  14.07.2009 03:39     C:\Windows\HelpPane.exe --------- 733696   
  14.07.2009 03:39     C:\Windows\fveupdate.exe --------- 15360   
  14.07.2009 03:14     C:\Windows\winhlp32.exe --------- 9728   
  14.07.2009 03:14     C:\Windows\twunk_32.exe --------- 31232   
  14.07.2009 01:06     C:\Windows\mib.bin --------- 43131   
  10.06.2009 23:41     C:\Windows\twunk_16.exe --------- 49680   
  10.06.2009 23:41     C:\Windows\twain.dll --------- 94784   
  10.06.2009 23:08     C:\Windows\system.ini --------- 219   
  10.06.2009 22:52     C:\Windows\WMSysPr9.prx --------- 316640   
  10.06.2009 22:36     C:\Windows\msdfmap.ini --------- 1405   
  10.06.2009 22:31     C:\Windows\Starter.xml --------- 48201   
  10.06.2009 22:30     C:\Windows\Professional.xml --------- 53551   
----------------------------------------

 
C:\Windows\System

----------------------------------------

 
C:\Windows\System32

 26.07.2011 17:28     C:\Windows\system32\config --------- 24576  
 26.07.2011 17:15     C:\Windows\system32\perfc009.dat --------- 103568  
 26.07.2011 17:15     C:\Windows\system32\perfh009.dat --------- 607190  
 26.07.2011 17:15     C:\Windows\system32\perfc007.dat --------- 126394  
 26.07.2011 17:15     C:\Windows\system32\perfh007.dat --------- 643866  
 26.07.2011 17:15     C:\Windows\system32\PerfStringBackup.INI --------- 1472002  
 26.07.2011 17:15     C:\Windows\system32\catroot --------- 4096  
 26.07.2011 17:15     C:\Windows\system32\catroot2 --------- 32768  
 26.07.2011 17:11     C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 --------- 12560  
 26.07.2011 17:11     C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 --------- 12560  
 26.07.2011 17:08     C:\Windows\system32\FNTCACHE.DAT --------- 274464  
 26.07.2011 17:03     C:\Windows\system32\wdi --------- 4096  
 26.07.2011 17:02     C:\Windows\system32\drivers --------- 65536  
 26.07.2011 17:02     C:\Windows\system32\migration --------- 4096  
 26.07.2011 17:02     C:\Windows\system32\Boot --------- 0  
 25.07.2011 22:12     C:\Windows\system32\DriverStore --------- 4096  
 23.07.2011 19:27     C:\Windows\system32\SophosBootTasks.exe --------- 37400  
 23.07.2011 19:27     C:\Windows\system32\sdccoinstaller.dll --------- 183024  
 23.07.2011 19:13     C:\Windows\system32\Tasks --------- 0  
 23.07.2011 18:54     C:\Windows\system32\da-DK --------- 0  
 23.07.2011 18:54     C:\Windows\system32\de-DE --------- 327680  
 23.07.2011 18:53     C:\Windows\system32\oobe --------- 4096  
 23.07.2011 18:53     C:\Windows\system32\AdvancedInstallers --------- 0  
 23.07.2011 18:53     C:\Windows\system32\Setup --------- 0  
 23.07.2011 18:53     C:\Windows\system32\cs-CZ --------- 0  
 23.07.2011 18:53     C:\Windows\system32\manifeststore --------- 0  
 23.07.2011 18:53     C:\Windows\system32\es-ES --------- 0  
 23.07.2011 18:53     C:\Windows\system32\sppui --------- 0  
 23.07.2011 18:53     C:\Windows\system32\wbem --------- 65536  
 23.07.2011 18:53     C:\Windows\system32\migwiz --------- 4096  
 23.07.2011 18:53     C:\Windows\system32\Dism --------- 4096  
 23.07.2011 18:51     C:\Windows\system32\SPReview --------- 0  
 23.07.2011 18:42     C:\Windows\system32\msclmd.dll --------- 175616  
 23.07.2011 18:26     C:\Windows\system32\oem10.inf --------- 707378  
 23.07.2011 18:25     C:\Windows\system32\zh-HK --------- 0  
 23.07.2011 18:25     C:\Windows\system32\zh-TW --------- 0  
 23.07.2011 18:25     C:\Windows\system32\zh-CN --------- 0  
 23.07.2011 18:25     C:\Windows\system32\tr-TR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\th-TH --------- 0  
 23.07.2011 18:25     C:\Windows\system32\sv-SE --------- 0  
 23.07.2011 18:25     C:\Windows\system32\sl-SI --------- 0  
 23.07.2011 18:25     C:\Windows\system32\sk-SK --------- 0  
 23.07.2011 18:25     C:\Windows\system32\ru-RU --------- 0  
 23.07.2011 18:25     C:\Windows\system32\ro-RO --------- 0  
 23.07.2011 18:25     C:\Windows\system32\pt-PT --------- 0  
 23.07.2011 18:25     C:\Windows\system32\pt-BR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\pl-PL --------- 0  
 23.07.2011 18:25     C:\Windows\system32\nl-NL --------- 0  
 23.07.2011 18:25     C:\Windows\system32\nb-NO --------- 0  
 23.07.2011 18:25     C:\Windows\system32\lv-LV --------- 0  
 23.07.2011 18:25     C:\Windows\system32\lt-LT --------- 0  
 23.07.2011 18:25     C:\Windows\system32\ko-KR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\ja-JP --------- 0  
 23.07.2011 18:25     C:\Windows\system32\it-IT --------- 0  
 23.07.2011 18:25     C:\Windows\system32\hu-HU --------- 0  
 23.07.2011 18:25     C:\Windows\system32\hr-HR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\he-IL --------- 0  
 23.07.2011 18:25     C:\Windows\system32\fr-FR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\fi-FI --------- 0  
 23.07.2011 18:25     C:\Windows\system32\et-EE --------- 0  
 23.07.2011 18:25     C:\Windows\system32\en-US --------- 4096  
 23.07.2011 18:25     C:\Windows\system32\el-GR --------- 0  
 23.07.2011 18:25     C:\Windows\system32\bg-BG --------- 0  
 23.07.2011 18:25     C:\Windows\system32\ar-SA --------- 0  
 23.07.2011 18:25     C:\Windows\system32\bcmwlrc.dll --------- 6656  
 23.07.2011 18:25     C:\Windows\system32\bcmwlcoi.dll --------- 95544  
 23.07.2011 18:25     C:\Windows\system32\bcmihvui64.dll --------- 3561272  
 23.07.2011 18:25     C:\Windows\system32\bcmihvsrv64.dll --------- 3896632  
 23.07.2011 18:11     C:\Windows\system32\EventProviders --------- 0  
 23.07.2011 17:56     C:\Windows\system32\CodeIntegrity --------- 0  
 23.07.2011 17:48     C:\Windows\system32\restore --------- 0  
 23.07.2011 17:38     C:\Windows\system32\license.rtf --------- 57035  
 23.07.2011 17:37     C:\Windows\system32\sysprep --------- 0  
 11.06.2011 05:07     C:\Windows\system32\win32k.sys --------- 3137536  
 03.06.2011 08:56     C:\Windows\system32\KernelBase.dll --------- 421888  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll --------- 6144  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll --------- 4608  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll --------- 4096  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll --------- 4096  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll --------- 4608  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll --------- 4096  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll --------- 4096  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll --------- 3584  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll --------- 5120  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll --------- 3072  
 03.06.2011 08:44     C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll --------- 3072  
----------------------------------------

 
C:\Windows\Prefetch

----------------------------------------

 
C:\Windows\Tasks

 26.07.2011 17:08     C:\Windows\Tasks\SA.DAT --------- 6  
 14.07.2009 07:08     C:\Windows\Tasks\SCHEDLGU.TXT --------- 2898  
----------------------------------------

 
C:\Windows\Temp

----------------------------------------

 
C:\Users\Milosh\AppData\Local\Temp

 26.07.2011 17:14     C:\Users\Milosh\AppData\Local\Temp\etilqs_nOZzlUfnoIkjMhgqyJeg --------- 0  
 26.07.2011 17:13     C:\Users\Milosh\AppData\Local\Temp\etilqs_OnTK8N2s1kBIbflgL7fd --------- 0  
 26.07.2011 17:09     C:\Users\Milosh\AppData\Local\Temp\LMworker.log --------- 0  
 26.07.2011 17:09     C:\Users\Milosh\AppData\Local\Temp\aipflib.log --------- 0  
 26.07.2011 17:09     C:\Users\Milosh\AppData\Local\Temp\LManager.log --------- 0  
 26.07.2011 17:09     C:\Users\Milosh\AppData\Local\Temp\AdobeARM.log --------- 2700  
 26.07.2011 17:09     C:\Users\Milosh\AppData\Local\Temp\WPDNSE --------- 0  
 25.07.2011 22:32     C:\Users\Milosh\AppData\Local\Temp\History --------- 0  
 25.07.2011 22:32     C:\Users\Milosh\AppData\Local\Temp\Cookies --------- 0  
 25.07.2011 22:32     C:\Users\Milosh\AppData\Local\Temp\Temporary Internet Files --------- 0  
 25.07.2011 22:31     C:\Users\Milosh\AppData\Local\Temp\Adobe --------- 0  
 25.07.2011 22:12     C:\Users\Milosh\AppData\Local\Temp\~DFCD2274D2871DC947.TMP --------- 32768  
 25.07.2011 22:12     C:\Users\Milosh\AppData\Local\Temp\E220AutoRunLog.tmp --------- 9157  
 25.07.2011 22:11     C:\Users\Milosh\AppData\Local\Temp\UTPSDLL --------- 0  
 25.07.2011 19:23     C:\Users\Milosh\AppData\Local\Temp\AdobeSFX.log --------- 1651  
 25.07.2011 19:19     C:\Users\Milosh\AppData\Local\Temp\EF63.tmp --------- 328864  
 25.07.2011 16:28     C:\Users\Milosh\AppData\Local\Temp\DMI13D1.tmp --------- 0  
 23.07.2011 21:11     C:\Users\Milosh\AppData\Local\Temp\wmsetup.log --------- 4562  
 23.07.2011 19:16     C:\Users\Milosh\AppData\Local\Temp\SetupExe(20110723191627FD8).log --------- 5496  
 23.07.2011 19:16     C:\Users\Milosh\AppData\Local\Temp\SetupExe(20110723191556A6C).log --------- 8675  
 23.07.2011 19:10     C:\Users\Milosh\AppData\Local\Temp\nps.tmp --------- 0  
 23.07.2011 19:08     C:\Users\Milosh\AppData\Local\Temp\nero.tmp --------- 0  
 23.07.2011 19:06     C:\Users\Milosh\AppData\Local\Temp\nro.log --------- 0  
 23.07.2011 19:01     C:\Users\Milosh\AppData\Local\Temp\cbed9b6d7ad4e5a3254baec2 --------- 0  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\{F4DC16BE-4FF3-4823-96A9-625B6B6C4CC3} --------- 0  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\bcmwl.log --------- 39786  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\Install_EAP_Modules.log --------- 792  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\CFG3784.tmp --------- 123  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\CFG2EBD.tmp --------- 123  
 23.07.2011 18:26     C:\Users\Milosh\AppData\Local\Temp\CFG19C7.tmp --------- 123  
 23.07.2011 18:25     C:\Users\Milosh\AppData\Local\Temp\{0E310C9E-8DDF-45FB-BABE-E36BC98C7DC7} --------- 0  
 23.07.2011 18:01     C:\Users\Milosh\AppData\Local\Temp\{7B6D3D16-5F2F-4C42-8138-A35B69DA86F1} --------- 0  
 23.07.2011 17:57     C:\Users\Milosh\AppData\Local\Temp\{51F026FA-5146-4232-A8BA-1364740BD053} --------- 0  
 23.07.2011 17:55     C:\Users\Milosh\AppData\Local\Temp\{98267988-46D6-416F-8BB7-8B7516DBC3A6} --------- 0  
 23.07.2011 17:54     C:\Users\Milosh\AppData\Local\Temp\aiPlatformSetupAddOn.log --------- 0  
 23.07.2011 17:50     C:\Users\Milosh\AppData\Local\Temp\Sophos Standalone Installer.txt --------- 1545  
 23.07.2011 17:50     C:\Users\Milosh\AppData\Local\Temp\Sophos AutoUpdate Install Log.txt --------- 641704  
 23.07.2011 17:49     C:\Users\Milosh\AppData\Local\Temp\Sophos Anti-Virus Install Log_110723_034837.txt --------- 4288700  
 23.07.2011 17:49     C:\Users\Milosh\AppData\Local\Temp\Sophos Anti-Virus CustomActions Log_110723_034837.txt --------- 7210  
 23.07.2011 17:48     C:\Users\Milosh\AppData\Local\Temp\avremove.log --------- 107677  
 23.07.2011 17:48     C:\Users\Milosh\AppData\Local\Temp\crt --------- 0  
 23.07.2011 17:44     C:\Users\Milosh\AppData\Local\Temp\{878B34F6-6026-465E-A601-A99C07E32E4D} --------- 0  
 23.07.2011 17:43     C:\Users\Milosh\AppData\Local\Temp\FXSAPIDebugLogFile.txt --------- 0  
 23.07.2011 17:43     C:\Users\Milosh\AppData\Local\Temp\Milosh.bmp --------- 49208  
 23.07.2011 17:42     C:\Users\Milosh\AppData\Local\Temp\Low --------- 0  
 10.04.2010 02:00     C:\Users\Milosh\AppData\Local\Temp\DataCard_Setup64.exe --------- 206336  
 10.04.2010 02:00     C:\Users\Milosh\AppData\Local\Temp\ResetDevice.exe --------- 7168  
 10.04.2010 02:00     C:\Users\Milosh\AppData\Local\Temp\SysConfig.dat --------- 2476  
----------------------------------------

 
C:\Program Files

 26.07.2011 17:02     C:\Program Files\Internet Explorer --------- 4096  
 23.07.2011 19:11     C:\Program Files\WinRAR --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Sidebar --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Mail --------- 4096  
 23.07.2011 18:54     C:\Program Files\DVD Maker --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Portable Devices --------- 0  
 23.07.2011 18:54     C:\Program Files\Windows Media Player --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Journal --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Photo Viewer --------- 4096  
 23.07.2011 18:54     C:\Program Files\Windows Defender --------- 4096  
 23.07.2011 18:25     C:\Program Files\Broadcom --------- 0  
 23.07.2011 18:05     C:\Program Files\Microsoft Games --------- 4096  
 23.07.2011 18:01     C:\Program Files\Acer --------- 0  
 23.07.2011 17:59     C:\Program Files\Synaptics --------- 0  
 23.07.2011 17:57     C:\Program Files\Realtek --------- 0  
 23.07.2011 17:45     C:\Program Files\NVIDIA Corporation --------- 4096  
 23.07.2011 17:42     C:\Program Files\Windows NT --------- 4096  
 23.07.2011 17:42     C:\Program Files\Gemeinsame Dateien --------- 0  
 14.07.2009 07:32     C:\Program Files\MSBuild --------- 0  
 14.07.2009 07:32     C:\Program Files\Reference Assemblies --------- 0  
 14.07.2009 07:09     C:\Program Files\Uninstall Information --------- 0  
 14.07.2009 06:54     C:\Program Files\desktop.ini --------- 174  
 14.07.2009 05:20     C:\Program Files\Common Files --------- 4096  
----------------------------------------

 
C:\ProgramData\.. 

Milosh    
Default    
Public    
Default User    
All Users    
desktop.ini    
----------------------------------------

 
C:\Windows\system32\drivers\etc\hosts


----------------------------------------

 

Abbildname                     PID Sitzungsname       Sitz.-Nr. Speichernutzung
========================= ======== ================ =========== ===============
System Idle Process              0 Services                   0            24 K
System                           4 Services                   0         4.184 K
smss.exe                       324 Services                   0         1.172 K
csrss.exe                      544 Services                   0         4.740 K
wininit.exe                    596 Services                   0         5.156 K
csrss.exe                      616 Console                    1        14.152 K
services.exe                   660 Services                   0         9.740 K
lsass.exe                      676 Services                   0        11.064 K
lsm.exe                        684 Services                   0         4.528 K
winlogon.exe                   768 Console                    1         7.684 K
svchost.exe                    832 Services                   0         9.920 K
nvvsvc.exe                     892 Services                   0         5.332 K
svchost.exe                    932 Services                   0        11.284 K
svchost.exe                   1016 Services                   0        19.312 K
svchost.exe                    336 Services                   0       166.968 K
svchost.exe                    532 Services                   0        46.044 K
svchost.exe                   1108 Services                   0        13.860 K
SavService.exe                1196 Services                   0       139.128 K
svchost.exe                   1528 Services                   0        16.612 K
svchost.exe                   1632 Services                   0        27.204 K
wlanext.exe                   1692 Services                   0         5.680 K
conhost.exe                   1704 Services                   0         3.252 K
spoolsv.exe                   1752 Services                   0        12.596 K
armsvc.exe                    1872 Services                   0         4.080 K
dsiwmis.exe                   1912 Services                   0         6.160 K
ePowerSvc.exe                 1956 Services                   0         7.580 K
SAVAdminService.exe           2012 Services                   0         3.216 K
ALsvc.exe                     1052 Services                   0         2.088 K
swi_service.exe               1232 Services                   0         5.808 K
nvvsvc.exe                    2724 Console                    1        10.252 K
LogonUI.exe                   2732 Services                   0        16.716 K
taskhost.exe                  2848 Console                    1        10.400 K
dwm.exe                       2968 Console                    1        28.628 K
explorer.exe                  3012 Console                    1        54.400 K
RAVCpl64.exe                  2808 Console                    1        11.800 K
SynTPEnh.exe                  2628 Console                    1        14.044 K
ePowerTray.exe                3000 Console                    1        12.184 K
NMBgMonitor.exe               2992 Console                    1        12.136 K
NMIndexingService.exe         3096 Services                   0        11.536 K
SearchIndexer.exe             3200 Services                   0        31.192 K
SynTPHelper.exe               3332 Console                    1         5.012 K
LManager.exe                  3376 Console                    1        13.788 K
IAStorIcon.exe                3388 Console                    1        27.684 K
mbamgui.exe                   3400 Console                    1         7.244 K
VCDDaemon.exe                 3412 Console                    1         5.532 K
ALMon.exe                     3464 Console                    1         1.660 K
unsecapp.exe                  3552 Console                    1         7.204 K
WmiPrvSE.exe                  3616 Services                   0         7.348 K
ePowerEvent.exe               3912 Console                    1         5.588 K
NMIndexStoreSvr.exe           4008 Console                    1        15.664 K
MMDx64Fx.exe                  3036 Console                    1         6.172 K
LMworker.exe                  3268 Console                    1         4.420 K
iron.exe                      3324 Console                    1        67.320 K
iron.exe                      1216 Console                    1        57.664 K
svchost.exe                    124 Services                   0         7.064 K
IAStorDataMgrSvc.exe          2760 Services                   0        20.404 K
mbamservice.exe                720 Services                   0        40.572 K
sppsvc.exe                    2388 Services                   0         9.436 K
svchost.exe                   3768 Services                   0        35.992 K
wuauclt.exe                   5040 Console                    1         7.648 K
notepad.exe                   5044 Console                    1         6.560 K
notepad.exe                   3500 Console                    1         7.652 K
notepad.exe                   2604 Console                    1         8.288 K
audiodg.exe                   4656 Services                   0        17.172 K
SearchProtocolHost.exe        3576 Services                   0         9.072 K
SearchFilterHost.exe          3568 Services                   0         7.304 K
cmd.exe                       4268 Console                    1         4.356 K
conhost.exe                   2940 Console                    1         6.684 K
dllhost.exe                   4276 Console                    1         7.180 K
tasklist.exe                  3144 Console                    1         6.272 K
WmiPrvSE.exe                  3536 Services                   0         6.800 K

 
***** Ende des Scans 26.07.2011 um 18:17:36,26 ***

ccleaner:

Code:

ATTFilter

Acer Crystal Eye webcam	Liteon	22.07.2011	3,22MB	1.0.4.0
Acer ePower Management	Acer Incorporated	22.07.2011		5.00.3005
Adobe Flash Player 10 Plugin	Adobe Systems Incorporated	24.07.2011	6,00MB	10.3.181.34
Adobe Reader X (10.1.0) - Deutsch	Adobe Systems Incorporated	24.07.2011	118,5MB	10.1.0
Broadcom 802.11 Network Adapter	Broadcom Corporation	23.07.2011		5.100.249.2
CCleaner	Piriform	25.07.2011		3.08
Cisco EAP-FAST Module	Cisco Systems, Inc.	22.07.2011	1,55MB	2.2.14
Cisco LEAP Module	Cisco Systems, Inc.	22.07.2011	0,63MB	1.0.19
Cisco PEAP Module	Cisco Systems, Inc.	22.07.2011	1,24MB	1.1.6
Combined Community Codec Pack 2010-10-10	CCCP Project	22.07.2011	26,1MB	2010.10.10.0
Intel(R) Rapid Storage Technology	Intel Corporation	23.07.2011		9.6.2.1001
Launch Manager	Acer Inc.	22.07.2011		4.0.12
Malwarebytes' Anti-Malware Version 1.51.1.1800	Malwarebytes Corporation	22.07.2011	13,4MB	1.51.1.1800
Mobile Partner	Huawei Technologies Co.,Ltd	24.07.2011		16.001.06.01.500
Mozilla Firefox (3.6.13)	Mozilla	22.07.2011		3.6.13 (de)
MSXML 4.0 SP2 (KB954430)	Microsoft Corporation	25.07.2011	1,28MB	4.20.9870.0
MSXML 4.0 SP2 (KB973688)	Microsoft Corporation	25.07.2011	1,33MB	4.20.9876.0
Nero 8 Essentials	Nero AG	22.07.2011	897MB	8.10.124
NVIDIA Display Control Panel	NVIDIA Corporation	22.07.2011	135,0MB	6.14.12.5903
NVIDIA Drivers	NVIDIA Corporation	22.07.2011	65,1MB	1.10.62.40
Realtek High Definition Audio Driver	Realtek Semiconductor Corp.	22.07.2011		6.0.1.6141
Sophos Anti-Virus	Sophos Limited	22.07.2011	24,0MB	9.7.3
Sophos AutoUpdate	Sophos Limited	22.07.2011	11,2MB	2.5.9
SRWare Iron 8.0.555.0	SRWare	22.07.2011	58,9MB	
Synaptics Pointing Device Driver	Synaptics Incorporated	22.07.2011		14.0.19.0
VirtualCloneDrive	Elaborate Bytes	22.07.2011		
WinRAR		22.07.2011

So das war jetzt alles hoff ich mal =) Hoffentlich kannst mir helfen =) Und danke dir

kira · 26.07.2011, 21:57

für PC1:
also ich finde keinen Hinweis auf solche Probleme..Malware oder sonstiges

Systemreinigung und prüfung:

1.
Fixen mit OTL

Starte die OTL.exe.
Vista und Windows 7 User: Rechtsklick auf die OTL.exe und "als Administrator ausführen" wählen.
Kopiere folgendes Skript:

Code:

ATTFilter

:OTL
[2010.12.03 20:14:08 | 000,001,105 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{3ae0d4ef-b6ae-11e0-8772-9abdf88782d6}\Shell - "" = AutoRun
O33 - MountPoints2\{3ae0d4ef-b6ae-11e0-8772-9abdf88782d6}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{3ae0d4f2-b6ae-11e0-8772-9abdf88782d6}\Shell - "" = AutoRun
O33 - MountPoints2\{3ae0d4f2-b6ae-11e0-8772-9abdf88782d6}\Shell\AutoRun\command - "" = G:\AutoRun.exe
O33 - MountPoints2\{ed1ab98e-b54c-11e0-ae87-ac901c8700d4}\Shell - "" = AutoRun
O33 - MountPoints2\{ed1ab98e-b54c-11e0-ae87-ac901c8700d4}\Shell\AutoRun\command - "" = H:\SETUP.EXE
O33 - MountPoints2\{ed1ab98e-b54c-11e0-ae87-ac901c8700d4}\Shell\configure\command - "" = H:\SETUP.EXE
O33 - MountPoints2\{ed1ab98e-b54c-11e0-ae87-ac901c8700d4}\Shell\install\command - "" = H:\SETUP.EXE

:Commands
[purity]
[emptytemp]

und füge es hier ein:
Schließe alle Programme.
Klicke auf den Fix Button.
Klick auf .
OTL verlangt einen Neustart. Bitte zulassen.
Nach dem Neustart findest Du ein Textdokument.
Kopiere den Inhalt hier in Deinen Thread.

2.
reinige dein System mit Ccleaner:

"Cleaner"→ "Analysieren"→ Klick auf den Button "Start CCleaner"
"Registry""Fehler suchen"→ "Fehler beheben"→ "Alle beheben"
Starte dein System neu auf

3.

lade Dir SUPERAntiSpyware FREE Edition herunter.
installiere das Programm und update online.
starte SUPERAntiSpyware und klicke auf "Ihren Computer durchsuchen"
setze ein Häkchen bei "Kompletter Scan" und klicke auf "Weiter"
anschließend alle gefundenen Schadprogramme werden aufgelistet, bei alle Funde Häkchen setzen und mit "OK" bestätigen
auf "Weiter" klicken dann "OK" und auf "Fertig stellen"
um die Ergebnisse anzuzeigen: auf "Präferenzen" dann auf den "Statistiken und Protokolle" klicken
drücke auf "Protokoll anzeigen" - anschließend diesen Bericht bitte speichern und hier posten

4.
- "Link:-> ESET Online Scanner
>>Du sollst nicht die Antivirus-Sicherheitssoftware installieren, sondern dein System nur online scannen<<
Auch auf USB-Sticks, selbstgebrannten Datenträgern, externen Festplatten und anderen Datenträgern können Viren transportiert werden. Man muss daher durch regelmäßige Prüfungen auf Schäden, die durch Malware ("Worm.Win32.Autorun") verursacht worden sein können, überwacht werden. Hierfür sind ser gut geegnet und empfohlen, die auf dem Speichermedium gesicherten Daten, mit Hilfe des kostenlosen Online Scanners zu prüfen.
Schließe jetzt alle externe Datenträgeran (USB Sticks etc) Deinen Rechner an, dabei die Hochstell-Taste [Shift-Taste] gedrückt halten, damit die Autorun-Funktion nicht ausgeführt wird. (So verhindest Du die Ausführung der AUTORUN-Funktion) - Man kann die AUTORUN-Funktion aber auch generell abschalten.►Anleitung

-> Führe dann einen Komplett-Systemcheck mit Eset/Nod32 durch

- folgendes bitte anhaken > "Remove found threads" und "Scan archives"
- die Scanergebnis als *.txt Dateien speichern)
- meistens "C:\Programme\Eset\EsetOnlineScanner\log.txt"

Vor dem Scan Einstellungen im Internet Explorer:
- "Extras→ Internetoptionen→ Sicherheit":
- alles auf Standardstufe stellen
- Active X erlauben
- um den Scan zu starten: wenn du danach gefragt wirst (den Text in der Informationsleiste ) - ActiveX-Steuerelement installieren lassen

Malwarebytes sperrt daheim über Wlan ständig verbindungen, über umts stick jedoch nicht

Plagegeister aller Art und deren Bekämpfung: Malwarebytes sperrt daheim über Wlan ständig verbindungen, über umts stick jedoch nicht