Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Win 8:kann MSI Installer nicht löschen-immer noch snapdo a?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 15.04.2014, 18:49   #1
Kasslertier
 
Win 8:kann MSI Installer nicht löschen-immer noch snapdo a? - Ausrufezeichen

Win 8:kann MSI Installer nicht löschen-immer noch snapdo a?



Hallo liebe Leser,

ich könnte verzweifeln

Ich habe win8 pro installiert, dies aber schon seit längerer Zeit.
Seit drei Tagen kehrt ein und dasselbe Problem immer wieder auf:

der PC ist abscheulich langsam, die Problemsuche wird dadurch auch zur Folter!

Wir haben etliche Virensuchprogramme durchlaufen lassen, alle unabhängig voneinander und schön der Reihe nach.

Gefunden wurde stets: PUP.Optional.Snapdo.A

Mittlerweile habe ich ihn aus den Interneteinstellungen löschen können.

Dachte ich zumindest. Der PC ist nach wie vor sehr langsam.

Ich habe nachgeschaut. Ich habe die "Shopping Helper Smartbar" in den Programmen stehen und bekomme sie NICHT gelöscht, deinstalliert oder anderes.
Kann den MSI Installer nicht löschen sagt CCleaner. Er findet den Pfad nicht mehr, es gibt ihn nicht mehr.

Bitte um HILFE!!

Alt 15.04.2014, 19:18   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Win 8:kann MSI Installer nicht löschen-immer noch snapdo a? - Standard

Win 8:kann MSI Installer nicht löschen-immer noch snapdo a?



hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 15.04.2014, 20:14   #3
Kasslertier
 
Win 8:kann MSI Installer nicht löschen-immer noch snapdo a? - Standard

Win 8:kann MSI Installer nicht löschen-immer noch snapdo a?



...sorry aber wie bette ich meinen Fund ein??


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-04-2014
Ran by Kevin (administrator) on SCHMASCHMA on 15-04-2014 20:37:37
Running from C:\Users\Kevin\Downloads
Microsoft Windows 8 Pro (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe\LiveComm.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\RuntimeBroker.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [1797064 2014-03-21] (NVIDIA Corporation)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-3089941994-69430303-190838165-1001\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [1821888 2014-02-25] (Valve Corporation)
HKU\S-1-5-21-3089941994-69430303-190838165-1001\...\Run: [] => [X]
HKU\S-1-5-21-3089941994-69430303-190838165-1001\...\Run: [NokiaSuite.exe] => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-10-02] (Nokia)
HKU\S-1-5-21-3089941994-69430303-190838165-1001\...\MountPoints2: {9ac578da-b5e8-11e3-af9b-806e6f6e6963} - "D:\AUTORUN.EXE" 
AppInit_DLLs: C:\PROGRA~1\SupTab\SEARCH~1.DLL => C:\PROGRA~1\SupTab\SEARCH~1.DLL File Not Found
IFEO\bpsvc.exe: [Debugger] tasklist.exe
IFEO\browsersafeguard.exe: [Debugger] tasklist.exe
IFEO\dprotectsvc.exe: [Debugger] tasklist.exe
IFEO\protectedsearch.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\searchprotection.exe: [Debugger] tasklist.exe
IFEO\searchprotector.exe: [Debugger] tasklist.exe
IFEO\snapdo.exe: [Debugger] tasklist.exe
IFEO\stinst32.exe: [Debugger] tasklist.exe
IFEO\stinst64.exe: [Debugger] tasklist.exe
IFEO\utiljumpflip.exe: [Debugger] tasklist.exe
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x4B445842FC49CF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope value is missing.
Tcpip\Parameters: [DhcpNameServer] 83.169.186.161 83.169.186.225

FireFox:
========
FF Plugin: @nokia.com/EnablerPlugin - C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR Extension: (Google Docs) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-27]
CHR Extension: (Google Drive) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-27]
CHR Extension: (YouTube) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-27]
CHR Extension: (Google-Suche) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-27]
CHR Extension: (Google Wallet) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-27]
CHR Extension: (Google Mail) - C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-27]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

S2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14480 2013-10-25] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

R1 BasicRender; C:\WINDOWS\System32\drivers\BasicRender.sys [24576 2012-07-26] (Microsoft Corporation)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-04-03] (Malwarebytes Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [16256 2013-05-17] ()
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [155136 2012-07-26] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-15 20:37 - 2014-04-15 20:37 - 00007144 _____ () C:\Users\Kevin\Downloads\FRST.txt
2014-04-15 20:37 - 2014-04-15 20:37 - 00000000 ____D () C:\FRST
2014-04-15 20:34 - 2014-04-15 20:36 - 01042944 _____ (Farbar) C:\Users\Kevin\Downloads\FRST.exe
2014-04-15 19:24 - 2014-04-15 19:25 - 00072614 _____ () C:\Users\Kevin\Documents\cc_20140415_192402.reg
2014-04-15 19:21 - 2014-04-15 19:21 - 00000961 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-04-15 19:21 - 2014-04-15 19:21 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-15 19:18 - 2014-04-15 19:18 - 04787368 _____ (Piriform Ltd) C:\Users\Kevin\Downloads\ccsetup412.exe
2014-04-15 18:54 - 2014-04-15 18:58 - 00709352 _____ ( ) C:\Users\Kevin\Downloads\COMPUTER_BILD-Download-Manager_fuer_ccsetup412.exe
2014-04-14 19:41 - 2014-04-14 19:43 - 01426178 _____ () C:\Users\Kevin\Downloads\adwcleaner3023 (1).exe
2014-04-13 19:50 - 2014-04-13 19:51 - 00448512 _____ (OldTimer Tools) C:\Users\Kevin\Downloads\TFC.exe
2014-04-10 14:34 - 2014-04-10 14:34 - 00000000 ____D () C:\Users\Kevin\Documents\Amnesia
2014-04-10 14:34 - 2014-04-10 14:34 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\NVIDIA
2014-04-10 14:34 - 2014-04-10 14:34 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\fltk.org
2014-04-10 14:34 - 2014-04-10 14:34 - 00000000 ____D () C:\ProgramData\fltk.org
2014-04-10 14:04 - 2014-04-10 14:04 - 00000216 _____ () C:\Users\Kevin\Desktop\Amnesia A Machine for Pigs.url
2014-04-09 21:33 - 2014-04-09 21:33 - 00000216 _____ () C:\Users\Kevin\Desktop\Gone Home.url
2014-04-09 21:29 - 2014-04-09 21:29 - 00174420 _____ () C:\Users\Kevin\Downloads\Gone Home translation GER v1.6.rar
2014-04-09 12:34 - 2014-02-03 22:41 - 00303448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2014-04-09 12:34 - 2014-02-03 22:41 - 00238424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msiscsi.sys
2014-04-09 12:34 - 2014-02-01 07:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2014-04-09 12:34 - 2014-01-31 03:33 - 00200384 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe
2014-04-09 12:34 - 2014-01-31 02:48 - 00564736 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-04-09 12:34 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2014-04-09 12:34 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2014-04-09 12:34 - 2014-01-31 02:48 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-09 12:34 - 2014-01-27 03:37 - 01799512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-04-09 12:34 - 2014-01-27 03:09 - 01618264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2014-04-09 12:34 - 2014-01-27 02:52 - 17561088 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-04-09 12:34 - 2014-01-27 01:16 - 00386722 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-04-09 12:34 - 2014-01-16 01:42 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2014-04-09 12:34 - 2014-01-11 07:06 - 05092352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-04-09 12:34 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-04-09 12:33 - 2014-03-07 02:48 - 01766400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-04-09 12:33 - 2014-03-07 02:48 - 01140736 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-04-09 12:33 - 2014-03-07 02:48 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-04-09 12:33 - 2014-03-07 02:47 - 14357504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-04-09 12:33 - 2014-03-07 02:47 - 13760512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-04-09 12:33 - 2014-03-07 02:47 - 02877952 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-04-09 12:33 - 2014-03-07 02:47 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-04-09 12:33 - 2014-03-07 02:47 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-04-09 12:33 - 2014-03-07 02:47 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-04-09 12:33 - 2014-03-07 02:47 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-04-09 12:33 - 2014-02-06 01:37 - 01011712 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2014-04-09 12:33 - 2014-02-06 01:37 - 00757248 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-04-09 12:33 - 2013-10-25 06:45 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2014-04-09 12:33 - 2013-05-16 00:37 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-04-09 12:33 - 2013-05-14 11:23 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-04-09 12:33 - 2013-02-21 12:29 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2014-04-09 12:33 - 2013-02-21 12:29 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-04-09 12:33 - 2013-02-21 12:29 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-04-09 12:33 - 2012-11-08 06:24 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-04-08 21:56 - 2014-04-08 21:56 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
2014-04-07 14:30 - 2014-04-07 14:30 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2014-04-07 13:52 - 2014-04-07 13:52 - 01426178 _____ () C:\Users\Kevin\Downloads\adwcleaner3023.exe
2014-04-07 13:37 - 2014-04-15 19:17 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-04-07 13:37 - 2014-04-07 13:37 - 00001056 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-07 13:37 - 2014-04-07 13:37 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-07 13:37 - 2014-04-07 13:37 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-04-07 13:37 - 2014-04-03 09:51 - 00073432 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-04-07 13:37 - 2014-04-03 09:51 - 00051416 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-04-07 13:37 - 2014-04-03 09:50 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-04-07 13:36 - 2014-04-07 13:36 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Kevin\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-06 18:30 - 2014-04-06 18:30 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Opera Software
2014-04-06 18:30 - 2014-04-06 18:30 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Opera Software
2014-04-06 18:29 - 2014-04-06 18:36 - 00000000 ____D () C:\Program Files\Opera
2014-04-06 18:26 - 2014-04-06 18:26 - 00000000 ____D () C:\Users\Kevin\Desktop\youtube
2014-04-06 18:20 - 2014-04-07 13:32 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\DVDVideoSoft
2014-04-06 18:18 - 2014-04-06 18:18 - 01171856 _____ (AnyProtect.com) C:\Users\Kevin\AppData\Local\nsmA1C5.tmp
2014-04-04 19:03 - 2014-04-04 19:04 - 00000000 ____D () C:\Users\Kevin\Desktop\AOK Bilder
2014-04-04 17:06 - 2013-07-20 00:13 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-04-04 15:02 - 2014-04-04 15:02 - 00041984 ___SH () C:\Users\Kevin\Desktop\Thumbs.db
2014-04-04 14:40 - 2014-04-04 14:40 - 00002047 _____ () C:\Users\Public\Desktop\Nokia Suite.lnk
2014-04-04 14:40 - 2014-04-04 14:40 - 00000000 ____D () C:\Program Files\Common Files\Nokia
2014-04-04 14:28 - 2014-04-04 14:28 - 00000000 ____D () C:\Users\Kevin\Documents\Nokia Suite
2014-04-04 14:05 - 2014-04-04 14:05 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Nokia
2014-04-04 14:03 - 2014-04-04 14:03 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf
2014-04-04 13:58 - 2014-04-04 14:03 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-04-04 13:58 - 2014-04-04 13:58 - 00002115 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-04-04 13:58 - 2014-04-04 13:58 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-04-04 13:58 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\WINDOWS\system32\sdnclean.exe
2014-04-04 13:56 - 2014-04-04 13:56 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Kevin\Downloads\spybot-2.2.25.exe
2014-04-04 13:52 - 2014-04-04 13:52 - 00000000 ____D () C:\Users\Kevin\AppData\Local\NokiaAccount
2014-04-04 13:48 - 2014-04-04 13:48 - 00281160 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-04-04 13:45 - 2014-04-04 13:45 - 00000000 ____D () C:\WINDOWS\system32\XPSViewer
2014-04-04 13:45 - 2014-04-04 13:45 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-04-04 13:45 - 2014-04-04 13:45 - 00000000 ____D () C:\Program Files\MSBuild
2014-04-04 13:31 - 2014-04-04 13:31 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-04 13:07 - 2014-04-08 21:56 - 00000000 ____D () C:\ProgramData\PC Suite
2014-04-04 13:07 - 2014-04-04 14:05 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\PC Suite
2014-04-04 13:07 - 2014-04-04 13:51 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Nokia
2014-04-04 13:06 - 2014-04-04 13:06 - 00000000 ____D () C:\ProgramData\Nokia
2014-04-04 13:05 - 2014-04-04 13:05 - 00000000 ____D () C:\Program Files\PC Connectivity Solution
2014-04-04 13:05 - 2014-04-04 13:05 - 00000000 ____D () C:\Program Files\DIFX
2014-04-04 13:05 - 2013-01-23 10:31 - 00075264 _____ (Nokia) C:\WINDOWS\system32\nmwcdcls.dll
2014-04-04 13:05 - 2012-10-17 14:53 - 00019072 _____ (Nokia) C:\WINDOWS\system32\Drivers\pccsmcfd.sys
2014-04-04 13:02 - 2014-04-04 14:40 - 00000000 ____D () C:\Program Files\Nokia
2014-04-04 13:02 - 2014-04-04 13:02 - 00000000 ____D () C:\ProgramData\NokiaInstallerCache
2014-04-04 13:01 - 2014-04-04 13:02 - 106311632 _____ () C:\Users\Kevin\Desktop\Nokia_Suite_webinstaller_ALL.exe
2014-04-04 12:01 - 2014-04-04 12:01 - 04413904 _____ (Avira Operations GmbH & Co. KG) C:\Users\Kevin\Downloads\avira_de_av___ws.exe
2014-04-04 11:55 - 2014-04-04 13:41 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\sweet-page
2014-04-04 11:44 - 2014-04-05 21:42 - 01156457 _____ (AnyProtect.com) C:\Users\Kevin\AppData\Local\AnyProtectScannerSetup.exe
2014-04-04 11:39 - 2012-07-06 04:02 - 00778856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-04-04 11:39 - 2012-07-06 04:02 - 00035400 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-04-04 11:38 - 2014-04-07 13:30 - 00000444 __RSH () C:\ProgramData\ntuser.pol
2014-04-04 11:38 - 2014-04-04 11:38 - 00000000 ____D () C:\Users\Kevin\AppData\Local\cache
2014-04-04 11:38 - 2014-04-04 11:38 - 00000000 ____D () C:\Users\Kevin\.android
2014-04-04 11:38 - 2014-04-04 11:38 - 00000000 _____ () C:\Users\Kevin\daemonprocess.txt
2014-04-04 11:34 - 2014-04-04 11:35 - 00190792 _____ () C:\Users\Kevin\Downloads\Setup.exe
2014-04-03 13:15 - 2012-11-20 07:24 - 01164800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-04-03 13:15 - 2012-11-20 07:02 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDKURD.DLL
2014-04-03 13:15 - 2012-10-12 07:39 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dskquota.dll
2014-04-03 13:15 - 2012-10-11 07:48 - 00342248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2014-04-03 13:15 - 2012-10-11 07:45 - 00030440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\battc.sys
2014-04-03 13:15 - 2012-10-11 07:42 - 00612416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2014-04-03 13:15 - 2012-10-11 07:34 - 00155880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2014-04-03 13:15 - 2012-10-11 07:28 - 00046824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2014-04-03 13:15 - 2012-10-11 07:27 - 00493136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2014-04-03 13:15 - 2012-10-11 07:08 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2014-04-03 13:15 - 2012-10-11 07:07 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2014-04-03 13:15 - 2012-10-11 07:07 - 00962560 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2014-04-03 13:15 - 2012-10-11 07:07 - 00466944 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
2014-04-03 13:15 - 2012-10-11 07:07 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2014-04-03 13:15 - 2012-10-11 07:07 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.Compression.dll
2014-04-03 13:15 - 2012-10-11 07:06 - 01022464 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-04-03 13:15 - 2012-10-11 07:06 - 00219648 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2014-04-03 13:15 - 2012-10-11 07:06 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2014-04-03 13:15 - 2012-10-11 07:06 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2014-04-03 13:15 - 2012-10-11 02:45 - 00478424 _____ () C:\WINDOWS\system32\locale.nls
2014-04-03 13:14 - 2012-11-06 06:48 - 01150160 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2014-04-03 13:14 - 2012-11-06 06:20 - 01203712 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-04-03 13:14 - 2012-11-06 06:20 - 00788480 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2014-04-03 13:14 - 2012-11-06 06:20 - 00516608 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2014-04-03 13:14 - 2012-11-06 06:20 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanmsm.dll
2014-04-03 13:14 - 2012-11-06 06:20 - 00375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansec.dll
2014-04-03 13:14 - 2012-11-06 06:20 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcncsvc.dll
2014-04-03 13:14 - 2012-11-06 06:20 - 00257024 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2014-04-03 13:14 - 2012-11-06 06:20 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2014-04-03 13:14 - 2012-11-06 06:20 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2014-04-03 13:14 - 2012-11-06 06:20 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2014-04-03 13:14 - 2012-11-06 06:20 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapPeerProxy.dll
2014-04-03 13:14 - 2012-11-06 06:20 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnEapAuthProxy.dll
2014-04-03 13:14 - 2012-11-06 06:19 - 08552448 _____ (Microsoft Corporation) C:\WINDOWS\system32\glcndFilter.dll
2014-04-03 13:14 - 2012-11-06 06:19 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2014-04-03 13:14 - 2012-11-06 06:18 - 00189440 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2014-04-03 13:14 - 2012-11-06 06:18 - 00093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2014-04-03 13:14 - 2012-11-06 06:18 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2014-04-03 13:14 - 2012-11-06 05:50 - 00438272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2014-04-03 13:14 - 2012-10-24 05:11 - 00319208 _____ (Microsoft Corporation) C:\WINDOWS\system32\halmacpi.dll
2014-04-03 13:14 - 2012-10-24 05:11 - 00319208 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2014-04-03 13:14 - 2012-10-17 05:57 - 00929792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2014-04-03 13:14 - 2012-10-17 05:57 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2014-04-03 13:14 - 2012-10-17 05:57 - 00513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-04-03 13:14 - 2012-10-11 07:08 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\BdeUISrv.exe
2014-04-03 13:14 - 2012-10-11 07:07 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2014-04-03 13:14 - 2012-10-11 07:06 - 01014784 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2014-04-03 13:14 - 2012-10-11 07:06 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mswsock.dll
2014-04-03 13:14 - 2012-10-11 07:06 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2014-04-03 13:14 - 2012-10-11 07:06 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc.dll
2014-04-03 13:14 - 2012-10-11 07:06 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2014-04-03 13:14 - 2012-10-11 07:05 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2014-04-03 13:14 - 2012-10-11 07:05 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSip.dll
2014-04-03 13:14 - 2012-10-11 06:43 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-pdc.dll
2014-04-03 13:14 - 2012-10-11 06:42 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\kbdhebl3.dll
2014-04-03 13:13 - 2012-11-06 05:58 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsilog.dll
2014-04-03 13:13 - 2012-11-06 05:56 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2014-04-03 13:13 - 2012-11-06 05:52 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdk8.sys
2014-04-03 13:13 - 2012-11-06 05:52 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelppm.sys
2014-04-03 13:13 - 2012-11-06 05:52 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\amdppm.sys
2014-04-03 13:13 - 2012-11-06 05:52 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\viac7.sys
2014-04-03 13:13 - 2012-11-06 05:52 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\processr.sys
2014-04-03 13:13 - 2012-11-06 05:52 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fxppm.sys
2014-04-02 10:06 - 2013-11-26 01:17 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2014-04-02 10:06 - 2013-10-31 06:02 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2014-04-02 10:06 - 2013-10-31 06:01 - 00550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FirewallAPI.dll
2014-04-02 10:06 - 2013-10-31 05:03 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mpsdrv.sys
2014-04-02 10:06 - 2013-10-28 06:05 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2014-04-02 10:06 - 2013-09-14 00:36 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-04-02 10:06 - 2013-08-30 02:44 - 00054104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2014-04-02 10:06 - 2013-08-30 01:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2014-04-02 10:06 - 2013-08-27 00:29 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2014-04-02 10:06 - 2013-08-27 00:28 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2014-04-02 10:06 - 2013-08-21 06:28 - 00407384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2014-04-02 10:06 - 2013-08-10 07:24 - 00123224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2014-04-02 10:06 - 2013-08-10 05:58 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-04-02 10:06 - 2013-08-10 05:58 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2014-04-02 10:06 - 2013-08-03 07:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2014-04-02 10:06 - 2013-08-03 07:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2014-04-02 10:06 - 2013-08-03 07:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2014-04-02 10:06 - 2013-08-02 07:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2014-04-02 10:06 - 2013-07-25 01:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-04-02 10:06 - 2013-07-25 01:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2014-04-02 10:06 - 2013-07-13 06:23 - 00366592 _____ (Microsoft Corporation) C:\WINDOWS\system32\appmgr.dll
2014-04-02 10:06 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2014-04-02 10:06 - 2013-07-09 06:16 - 00097112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2014-04-02 10:06 - 2013-07-09 05:58 - 00330240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2014-04-02 10:06 - 2013-07-09 05:58 - 00317952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll
2014-04-02 10:06 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2014-04-02 10:06 - 2013-07-04 04:14 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2014-04-02 10:06 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2014-04-02 10:06 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-04-02 10:06 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe
2014-04-02 10:06 - 2013-06-29 06:45 - 00296280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2014-04-02 10:06 - 2013-06-29 06:29 - 00159576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-04-02 10:06 - 2013-06-29 06:29 - 00105304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-04-02 10:06 - 2013-06-26 04:29 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2014-04-02 10:06 - 2013-06-26 04:27 - 00277504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2014-04-02 10:06 - 2013-06-25 01:10 - 00372736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2014-04-02 10:06 - 2013-06-25 01:09 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2014-04-02 10:06 - 2013-06-25 01:09 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2014-04-02 10:06 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll
2014-04-02 10:06 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2014-04-02 10:06 - 2013-06-17 00:33 - 00816896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-04-02 10:06 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2014-04-02 10:06 - 2013-06-06 08:03 - 00097024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-04-02 10:06 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-04-02 10:06 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-04-02 10:06 - 2013-04-10 00:29 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2014-04-02 10:06 - 2012-10-11 07:07 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfapigp.dll
2014-04-02 10:06 - 2012-10-11 07:06 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfupgd.dll
2014-04-02 10:06 - 2012-10-02 08:55 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2014-04-02 10:06 - 2012-09-27 08:35 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.exe
2014-04-02 10:06 - 2012-09-27 08:35 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndadmin.exe
2014-04-02 10:06 - 2012-09-27 08:34 - 00275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\newdev.dll
2014-04-02 10:05 - 2013-10-09 01:08 - 00052656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-04-02 10:05 - 2013-10-09 00:30 - 02600960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-04-02 10:05 - 2013-10-09 00:30 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2014-04-02 10:05 - 2013-10-09 00:30 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-04-02 10:05 - 2013-10-09 00:30 - 00216064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2014-04-02 10:05 - 2013-10-09 00:30 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2014-04-02 10:05 - 2013-10-09 00:30 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2014-04-02 10:05 - 2013-10-09 00:30 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2014-04-02 10:05 - 2013-10-09 00:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2014-04-02 10:05 - 2013-10-05 06:33 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-04-02 10:05 - 2013-10-02 02:38 - 00362840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2014-04-02 10:05 - 2013-09-28 05:58 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-04-02 10:05 - 2013-09-19 08:02 - 01230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-04-02 10:05 - 2013-08-30 01:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2014-04-02 10:05 - 2013-08-30 01:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2014-04-02 10:05 - 2013-06-01 11:41 - 00281344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2014-04-02 10:05 - 2013-06-01 11:26 - 00581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds.exe
2014-04-02 10:05 - 2013-06-01 11:26 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeParserTask.exe
2014-04-02 10:05 - 2013-06-01 11:25 - 00550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2014-04-02 10:05 - 2013-06-01 11:25 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsutil.dll
2014-04-02 10:05 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2014-04-02 10:05 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-04-02 10:05 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
2014-04-02 10:05 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mscms.dll
2014-04-02 10:05 - 2013-06-01 11:23 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-04-02 10:05 - 2013-06-01 11:23 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupManager.dll
2014-04-02 10:05 - 2013-06-01 04:29 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2014-04-02 10:05 - 2013-05-25 00:08 - 01166232 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-04-02 10:05 - 2013-05-25 00:08 - 01063960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-04-02 10:05 - 2013-05-25 00:08 - 01035512 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-04-02 10:05 - 2013-05-25 00:08 - 00939448 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-04-02 10:05 - 2012-11-27 06:49 - 01027152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2014-04-02 10:05 - 2012-11-27 06:20 - 02799616 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2014-04-02 10:05 - 2012-11-27 06:20 - 01217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2014-04-02 10:05 - 2012-11-27 06:20 - 01048064 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2014-04-02 10:05 - 2012-11-27 06:20 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2014-04-02 10:05 - 2012-11-27 06:20 - 00560128 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserLanguagesCpl.dll
2014-04-02 10:05 - 2012-11-27 06:20 - 00179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2014-04-02 10:05 - 2012-10-12 09:12 - 00023272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2014-04-02 10:05 - 2012-10-12 07:40 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2014-04-02 10:05 - 2012-10-12 07:15 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2014-04-02 10:05 - 2012-09-11 06:53 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\vds_ps.dll
2014-04-02 10:05 - 2012-09-11 06:53 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsldr.exe
2014-04-02 10:04 - 2012-09-20 09:09 - 00031464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cnghwassist.sys
2014-04-02 10:04 - 2012-09-20 08:47 - 00307192 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
2014-04-02 10:04 - 2012-09-20 08:43 - 00081128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2014-04-02 10:04 - 2012-09-20 08:27 - 00338152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2014-04-02 10:04 - 2012-09-20 08:26 - 00016784 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtIntcLpioDMA.dll
2014-04-02 10:04 - 2012-09-20 08:26 - 00014736 _____ (Microsoft Corporation) C:\WINDOWS\system32\HalExtIntcUartDMA.dll
2014-04-02 10:04 - 2012-09-20 08:17 - 00062488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2014-04-02 10:04 - 2012-09-20 08:13 - 00023656 _____ (Microsoft Corporation) C:\WINDOWS\system32\avrt.dll
2014-04-02 10:04 - 2012-09-20 07:55 - 03502080 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSAT.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 01752064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00995328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2014-04-02 10:04 - 2012-09-20 07:55 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetup.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2014-04-02 10:04 - 2012-09-20 07:55 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2014-04-02 10:04 - 2012-09-20 07:55 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSATAPI.dll
2014-04-02 10:04 - 2012-09-20 07:55 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2014-04-02 10:04 - 2012-09-20 07:55 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2014-04-02 10:04 - 2012-09-20 07:55 - 00148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2014-04-02 10:04 - 2012-09-20 07:55 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvinst.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpremove.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\svchost.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2014-04-02 10:04 - 2012-09-20 07:55 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2014-04-02 10:04 - 2012-09-20 07:54 - 01369600 _____ (Microsoft Corporation) C:\WINDOWS\system32\RacEngn.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 01196032 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 01171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00709632 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00575488 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00533504 _____ (Microsoft Corporation) C:\WINDOWS\system32\provcore.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00509952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\VAN.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsrcsnk.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00413184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfh264enc.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFPlay.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpnpmgr.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpo.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmcss.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\RpcEpMap.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\setbcdlocale.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfctrs.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfproc.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfos.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfdisk.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\LangCleanupSysprepAction.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\perfnet.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\MUILanguageCleanup.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpksetupproxyserv.dll
2014-04-02 10:04 - 2012-09-20 07:54 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\shimeng.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 02007040 _____ (Microsoft Corporation) C:\WINDOWS\system32\batmeter.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2014-04-02 10:04 - 2012-09-20 07:53 - 00613888 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00366080 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\aelupsvc.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00150016 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdsrv.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\IPHLPAPI.DLL
2014-04-02 10:04 - 2012-09-20 07:53 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\CscMig.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevPropMgr.dll
2014-04-02 10:04 - 2012-09-20 07:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2014-04-02 10:04 - 2012-09-20 07:33 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-kernel-power-events.dll
2014-04-02 10:04 - 2012-09-20 07:30 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys
2014-04-02 10:04 - 2012-09-20 07:29 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\csc.sys
2014-04-02 10:04 - 2012-09-20 07:29 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hdaudbus.sys
2014-04-02 09:52 - 2014-03-31 23:18 - 00694232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-04-02 09:52 - 2014-03-31 23:18 - 00078296 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-04-01 14:59 - 2014-04-02 09:55 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320579031.txt
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320578968.txt
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320575906.txt
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320561937.txt
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320561750.txt
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320561500.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257041015.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257040875.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257037765.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257025968.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257025796.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257025125.txt
2014-03-30 21:49 - 2014-03-30 21:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-179205015.txt
2014-03-30 21:49 - 2014-03-30 21:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-179204062.txt
2014-03-30 21:49 - 2014-03-30 21:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-179203546.txt
2014-03-30 21:49 - 2014-03-30 21:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-179203500.txt
2014-03-30 16:14 - 2014-04-09 13:00 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-03-30 16:14 - 2014-04-09 12:54 - 88028728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-03-30 16:09 - 2014-01-19 09:32 - 00231584 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-03-30 15:37 - 2014-03-30 15:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-156888125.txt
2014-03-30 15:37 - 2014-03-30 15:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-156887796.txt
2014-03-30 15:37 - 2014-03-30 15:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-156887546.txt
2014-03-30 15:37 - 2014-03-30 15:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-156883750.txt
2014-03-28 22:19 - 2013-07-11 04:31 - 05573464 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-03-28 22:19 - 2012-10-06 06:15 - 02400256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-03-28 22:18 - 2014-01-31 02:48 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-03-28 22:18 - 2013-06-22 06:47 - 00527064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2014-03-28 22:18 - 2013-06-22 06:47 - 00047832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2014-03-28 22:18 - 2013-03-06 07:25 - 00104680 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2014-03-28 22:18 - 2013-03-06 07:02 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-03-28 22:17 - 2013-07-02 00:50 - 00268120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-03-28 22:17 - 2013-07-02 00:50 - 00180568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2014-03-28 22:17 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscapi.dll
2014-03-28 22:17 - 2013-04-09 01:39 - 01476024 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-03-28 22:17 - 2013-04-09 01:38 - 00248576 _____ (Microsoft Corporation) C:\WINDOWS\system32\kd_02_10ec.dll
2014-03-28 22:17 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2014-03-28 22:17 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2014-03-28 22:17 - 2013-04-09 01:37 - 00207576 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2014-03-28 22:17 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2014-03-28 22:17 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2014-03-28 22:17 - 2013-04-08 23:52 - 00614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2014-03-28 22:17 - 2013-04-08 23:52 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-03-28 22:17 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2014-03-28 22:17 - 2013-04-08 23:52 - 00300032 _____ (Microsoft Corporation) C:\WINDOWS\system32\conhost.exe
2014-03-28 22:17 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2014-03-28 22:17 - 2013-04-08 23:52 - 00106496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Robocopy.exe
2014-03-28 22:17 - 2013-04-08 23:52 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSAudDecMFT.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00942080 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfreadwrite.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00201216 _____ (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00181760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmvdsitf.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\fmifs.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2014-03-28 22:17 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\msshooks.dll
2014-03-28 22:17 - 2013-04-06 06:59 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2014-03-28 22:17 - 2013-04-06 06:58 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2014-03-28 22:17 - 2013-04-06 06:57 - 00494592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2014-03-28 22:17 - 2013-04-06 06:56 - 00709632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2014-03-28 22:17 - 2013-04-06 06:55 - 00196096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2014-03-28 22:17 - 2013-04-06 06:55 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2014-03-28 22:17 - 2013-04-05 00:07 - 00457624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2014-03-28 22:17 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rsaenh.dll
2014-03-28 22:17 - 2013-03-02 10:23 - 00847360 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2014-03-28 22:17 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2014-03-28 22:17 - 2013-02-02 10:40 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsRasterService.dll
2014-03-28 22:17 - 2013-01-10 01:51 - 00259816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-03-28 22:17 - 2012-12-13 05:59 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2014-03-28 22:17 - 2012-11-06 07:00 - 00463768 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2014-03-28 22:17 - 2012-11-03 07:26 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysreset.exe
2014-03-28 22:17 - 2012-11-03 07:25 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\resetengmig.dll
2014-03-28 22:17 - 2012-10-11 07:06 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2014-03-28 22:17 - 2012-10-11 07:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2014-03-28 22:17 - 2012-09-20 07:55 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhmanagew.exe
2014-03-28 22:17 - 2012-09-20 07:55 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ndptsp.tsp
2014-03-28 22:17 - 2012-09-20 07:55 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2014-03-28 22:17 - 2012-09-20 07:54 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2014-03-28 22:17 - 2012-09-20 07:54 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2014-03-28 22:17 - 2012-09-20 07:54 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2014-03-28 22:17 - 2012-09-20 07:54 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2014-03-28 22:17 - 2012-09-20 07:54 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\spwmp.dll
2014-03-28 22:17 - 2012-09-20 07:54 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdxm.ocx
2014-03-28 22:17 - 2012-09-20 07:54 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxmasf.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcat.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhshl.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvc.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsrchapi.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhautoplay.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhevents.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsrchph.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhlisten.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcleanup.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhtask.dll
2014-03-28 22:17 - 2012-09-20 07:53 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsvcctl.dll
2014-03-28 22:17 - 2012-09-20 07:32 - 09374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmploc.DLL
2014-03-28 22:17 - 2012-09-20 07:30 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2014-03-28 22:16 - 2013-03-02 11:51 - 00368360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2014-03-28 22:16 - 2013-03-02 11:21 - 00271080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-03-28 22:16 - 2013-03-02 10:52 - 00066280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storahci.sys
2014-03-28 22:16 - 2013-03-02 10:23 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-03-28 22:16 - 2013-03-02 10:23 - 00820224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-03-28 22:16 - 2013-03-02 10:23 - 00601088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2014-03-28 22:16 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2014-03-28 22:16 - 2013-03-02 10:23 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbmon.dll
2014-03-28 22:16 - 2013-03-02 10:23 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-03-28 22:16 - 2013-03-02 10:23 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\TimeBrokerServer.dll
2014-03-28 22:16 - 2013-03-02 10:23 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2014-03-28 22:16 - 2013-03-02 10:23 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2014-03-28 22:16 - 2013-03-02 10:23 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDPrintProxy.DLL
2014-03-28 22:16 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\netcfgx.dll
2014-03-28 22:16 - 2013-03-02 10:22 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NdisImPlatform.dll
2014-03-28 22:16 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2014-03-28 22:16 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.cpl
2014-03-28 22:16 - 2013-03-02 10:21 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\discan.dll
2014-03-28 22:16 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevDispItemProvider.dll
2014-03-28 22:16 - 2013-03-02 09:18 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2014-03-28 22:16 - 2013-03-02 09:15 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2014-03-28 22:12 - 2014-01-13 01:30 - 02032640 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-03-28 22:12 - 2013-11-20 01:57 - 03288576 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-03-28 22:12 - 2013-10-19 06:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-03-28 22:12 - 2013-07-04 04:13 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2014-03-28 22:12 - 2013-05-24 01:27 - 00837632 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2014-03-28 22:11 - 2014-02-06 01:37 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2014-03-28 22:11 - 2013-12-05 01:37 - 01419264 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-03-28 22:11 - 2013-10-02 01:37 - 01569280 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2014-03-28 22:11 - 2013-08-21 05:02 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbser.sys
2014-03-28 22:11 - 2013-07-13 06:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2014-03-28 22:11 - 2013-07-13 06:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2014-03-28 22:11 - 2013-07-13 06:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2014-03-28 22:11 - 2013-07-13 06:23 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2014-03-28 22:11 - 2013-05-04 06:57 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2014-03-28 22:11 - 2013-04-24 01:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2014-03-28 22:11 - 2013-04-24 01:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2014-03-28 22:11 - 2013-02-02 10:40 - 00586240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2014-03-28 22:11 - 2013-02-02 10:40 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlroamextension.dll
2014-03-28 22:11 - 2013-02-02 10:40 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2014-03-28 22:11 - 2013-02-02 10:40 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2014-03-28 22:11 - 2013-02-02 10:40 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tasklist.exe
2014-03-28 22:11 - 2013-02-02 10:40 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskkill.exe
2014-03-28 22:11 - 2013-02-02 10:40 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2014-03-28 22:11 - 2013-02-02 10:39 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2014-03-28 22:11 - 2013-02-02 10:39 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\hotspotauth.dll
2014-03-28 22:11 - 2013-02-02 10:38 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2014-03-28 22:11 - 2013-02-02 09:32 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2014-03-28 22:11 - 2012-11-27 05:55 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-03-28 22:11 - 2012-11-27 05:53 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthhfHid.sys
2014-03-28 22:11 - 2012-11-26 06:21 - 00071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2014-03-28 22:11 - 2012-11-03 07:26 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2014-03-28 22:11 - 2012-11-03 07:24 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2014-03-28 22:11 - 2012-11-03 07:24 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2014-03-28 22:11 - 2012-11-03 07:24 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2014-03-28 22:11 - 2012-11-03 07:24 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2014-03-28 22:11 - 2012-11-03 07:00 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2014-03-28 22:11 - 2012-11-03 07:00 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2014-03-28 22:11 - 2012-10-24 04:48 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2014-03-28 22:11 - 2012-10-24 04:47 - 00333824 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2014-03-28 22:11 - 2012-10-24 04:47 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2014-03-28 22:11 - 2012-10-24 04:26 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2014-03-28 22:11 - 2012-10-10 08:31 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\synceng.dll
2014-03-28 22:11 - 2012-09-20 07:54 - 00286720 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2014-03-28 22:11 - 2012-09-20 07:54 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2014-03-28 22:10 - 2013-12-09 02:45 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-03-28 22:10 - 2013-11-23 07:05 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-03-28 22:10 - 2013-11-01 05:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-03-28 22:10 - 2013-10-03 01:41 - 01075712 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2014-03-28 22:10 - 2013-09-28 04:57 - 00219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-03-28 22:10 - 2013-08-23 03:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-03-28 22:10 - 2013-08-16 01:59 - 02156392 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2014-03-28 22:10 - 2013-08-16 01:21 - 00051544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2014-03-28 22:10 - 2013-08-16 00:43 - 03831808 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2014-03-28 22:10 - 2013-08-16 00:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2014-03-28 22:10 - 2013-08-16 00:43 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2014-03-28 22:10 - 2013-08-16 00:43 - 00083968 _____ () C:\WINDOWS\system32\OEMLicense.dll
2014-03-28 22:10 - 2013-08-16 00:43 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2014-03-28 22:10 - 2013-08-16 00:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-03-28 22:10 - 2013-08-16 00:42 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2014-03-28 22:10 - 2013-08-16 00:42 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2014-03-28 22:10 - 2013-08-16 00:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2014-03-28 22:10 - 2013-08-16 00:42 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2014-03-28 22:10 - 2013-08-16 00:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2014-03-28 22:10 - 2013-05-27 01:17 - 00035328 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2014-03-28 22:10 - 2013-05-25 04:32 - 00300032 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2014-03-28 22:10 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdlg.dll
2014-03-28 22:10 - 2013-02-06 00:30 - 00304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-03-28 22:10 - 2013-02-06 00:29 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2014-03-28 22:10 - 2013-02-02 07:41 - 01437184 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2014-03-28 22:10 - 2012-11-08 06:24 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2014-03-28 22:10 - 2012-11-08 06:24 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2014-03-28 22:10 - 2012-11-08 06:01 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2014-03-28 22:10 - 2012-10-11 07:07 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2014-03-28 22:10 - 2012-10-11 06:40 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2014-03-28 22:10 - 2012-10-11 06:39 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2014-03-28 22:09 - 2013-10-10 12:07 - 00038744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2014-03-28 22:09 - 2013-10-10 11:29 - 00683520 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2014-03-28 22:09 - 2013-10-10 11:28 - 00473600 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2014-03-28 22:09 - 2013-09-24 00:30 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2014-03-28 22:09 - 2013-06-10 21:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2014-03-28 22:09 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2014-03-28 22:09 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2014-03-28 22:09 - 2013-01-10 01:26 - 01611776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmc.exe
2014-03-28 22:09 - 2013-01-10 01:26 - 01532928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2014-03-28 22:08 - 2013-07-09 04:50 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys
2014-03-28 22:08 - 2013-07-01 00:48 - 00380248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2014-03-28 22:08 - 2013-07-01 00:48 - 00334680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2014-03-28 22:08 - 2013-07-01 00:48 - 00064344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2014-03-28 22:08 - 2013-07-01 00:48 - 00018776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2014-03-28 22:08 - 2013-06-29 04:31 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2014-03-28 22:08 - 2013-06-29 04:30 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2014-03-28 22:08 - 2013-05-04 06:58 - 01150976 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2014-03-28 22:08 - 2013-05-04 06:57 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2014-03-28 22:08 - 2013-05-04 06:57 - 00371200 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2014-03-28 22:08 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2014-03-28 22:08 - 2013-05-04 06:57 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-03-28 22:08 - 2013-05-04 06:56 - 00975360 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-03-28 22:08 - 2013-05-04 06:56 - 00582144 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2014-03-28 22:08 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-03-28 22:08 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\BCP47Langs.dll
2014-03-28 22:08 - 2013-05-04 06:56 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-03-28 22:08 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2014-03-28 22:08 - 2013-05-04 06:06 - 00320512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2014-03-28 22:08 - 2013-03-02 11:06 - 00057576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-03-28 22:08 - 2013-01-10 03:07 - 00024808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpiowin32.sys
2014-03-28 22:08 - 2013-01-10 02:08 - 00074984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\partmgr.sys
2014-03-28 22:08 - 2013-01-10 01:26 - 01752064 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupapi.dll
2014-03-28 22:08 - 2013-01-10 01:26 - 00436736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MP4SDECD.DLL
2014-03-28 22:08 - 2013-01-10 01:26 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2014-03-28 22:08 - 2013-01-10 01:26 - 00278528 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm.dll
2014-03-28 22:08 - 2013-01-10 01:26 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2014-03-28 22:08 - 2013-01-10 01:26 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2014-03-28 22:08 - 2013-01-10 01:26 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmstormod.dll
2014-03-28 22:08 - 2013-01-10 01:26 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaacmgr.exe
2014-03-28 22:08 - 2013-01-10 01:25 - 00741376 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2014-03-28 22:08 - 2013-01-10 01:25 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2014-03-28 22:08 - 2012-11-20 06:59 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2014-03-28 22:08 - 2012-10-12 07:41 - 00987648 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmclient.dll
2014-03-28 22:08 - 2012-10-12 07:41 - 00487936 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmscan.dll
2014-03-28 22:08 - 2012-10-12 07:41 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmshell.dll
2014-03-28 22:08 - 2012-10-12 07:41 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\adrclient.dll
2014-03-28 22:08 - 2012-10-12 07:41 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\srmtrace.dll
2014-03-28 22:08 - 2012-10-12 07:41 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\srm_ps.dll
2014-03-28 22:07 - 2013-10-25 06:56 - 00030224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2014-03-28 22:07 - 2013-10-25 00:33 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2014-03-28 22:07 - 2013-10-10 11:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2014-03-28 22:07 - 2013-10-10 11:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2014-03-28 22:07 - 2013-10-10 11:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-03-28 22:07 - 2013-07-02 00:15 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2014-03-28 22:07 - 2013-06-29 04:32 - 00026496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2014-03-28 22:07 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autochk.exe
2014-03-28 22:07 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2014-03-28 22:07 - 2013-05-04 07:54 - 00103176 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthHost.exe
2014-03-28 22:07 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Magnify.exe
2014-03-28 22:07 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2014-03-28 22:07 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\netplwiz.dll
2014-03-28 22:07 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2014-03-28 22:07 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\muifontsetup.dll
2014-03-28 22:07 - 2013-05-04 06:56 - 00554496 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-03-28 22:07 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2014-03-28 22:07 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\biwinrt.dll
2014-03-28 22:07 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2014-03-28 22:07 - 2013-05-04 06:08 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2014-03-28 22:07 - 2013-04-12 00:30 - 01421312 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2014-03-28 22:07 - 2013-03-02 10:24 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2014-03-28 22:07 - 2013-02-07 03:33 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-03-28 22:07 - 2012-11-20 06:56 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidi2c.sys
2014-03-28 22:07 - 2012-11-06 06:20 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2014-03-28 22:07 - 2012-11-06 06:20 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2014-03-28 22:07 - 2012-11-06 05:59 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wushareduxresources.dll
2014-03-28 22:05 - 2013-03-15 02:16 - 00640000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2014-03-28 22:05 - 2012-11-10 06:23 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-03-28 22:05 - 2012-11-01 06:41 - 01802240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2014-03-28 22:05 - 2012-11-01 06:20 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2014-03-28 22:04 - 2013-12-05 01:37 - 00451072 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-03-28 22:04 - 2013-10-02 01:37 - 02035712 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-03-28 22:04 - 2013-08-02 07:08 - 08858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-03-28 22:04 - 2012-10-24 04:48 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgentc.exe
2014-03-28 21:54 - 2013-02-12 02:18 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2014-03-28 21:53 - 2014-02-08 06:08 - 03387904 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-03-28 21:53 - 2013-04-27 05:21 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2014-03-28 20:13 - 2014-03-28 20:20 - 00000000 ____D () C:\Users\Kevin\Desktop\Neuer Ordner (2)
2014-03-28 20:04 - 2014-03-28 20:04 - 00000000 ____D () C:\Users\Kevin\AppData\Local\NVIDIA
2014-03-28 20:00 - 2014-03-28 20:00 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-03-28 19:59 - 2014-03-28 19:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79774453.txt
2014-03-28 19:59 - 2014-03-28 19:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79774234.txt
2014-03-28 19:59 - 2014-03-28 19:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79774171.txt
2014-03-28 19:59 - 2014-03-28 19:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79773468.txt
2014-03-28 00:07 - 2014-04-15 17:58 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-03-28 00:07 - 2014-03-04 14:34 - 04348704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2014-03-28 00:07 - 2014-03-04 14:34 - 03044696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc.dll
2014-03-28 00:07 - 2014-03-04 14:34 - 02556360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2014-03-28 00:07 - 2014-03-04 14:34 - 00663896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2014-03-28 00:07 - 2014-03-04 14:34 - 00375128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2014-03-28 00:07 - 2014-03-04 14:34 - 00062752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2014-03-28 00:07 - 2014-03-04 13:32 - 00599840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvStreaming.exe
2014-03-28 00:06 - 2014-03-28 00:07 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-03-28 00:06 - 2014-03-28 00:07 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-03-28 00:06 - 2014-03-21 00:03 - 00053024 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2014-03-27 23:38 - 2010-06-02 05:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2014-03-27 23:38 - 2010-06-02 05:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2014-03-27 23:38 - 2010-05-26 12:41 - 02106216 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2014-03-27 23:38 - 2010-05-26 12:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2014-03-27 23:38 - 2010-05-26 12:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2014-03-27 23:38 - 2010-02-04 11:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2014-03-27 23:38 - 2007-04-04 19:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2014-03-27 23:26 - 2014-03-27 23:26 - 00000216 _____ () C:\Users\Kevin\Desktop\Ether One.url
2014-03-27 23:22 - 2014-03-27 23:22 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-03-27 22:54 - 2014-03-27 22:54 - 00000000 ____D () C:\Program Files\dumps
2014-03-27 22:50 - 2014-04-10 14:04 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-03-27 22:50 - 2014-03-27 22:50 - 00001740 _____ () C:\Users\Kevin\Desktop\Counter-Strike Source.lnk
2014-03-27 22:49 - 2014-03-27 22:49 - 00000355 _____ () C:\Users\Kevin\Desktop\Computer - Verknüpfung.lnk
2014-03-27 22:47 - 2014-04-15 19:25 - 00000000 ____D () C:\Program Files\Steam
2014-03-27 22:47 - 2014-03-27 22:47 - 00000652 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-03-27 22:39 - 2014-04-15 19:50 - 00001118 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-27 22:39 - 2014-04-15 19:50 - 00001114 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-27 22:39 - 2014-04-11 20:56 - 00002121 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-03-27 22:39 - 2014-03-27 22:39 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Google
2014-03-27 22:39 - 2014-03-27 22:39 - 00000000 ____D () C:\Program Files\Google
2014-03-27 22:38 - 2014-03-27 22:38 - 00847848 _____ (Google Inc.) C:\Users\Kevin\Downloads\ChromeSetup.exe
2014-03-27 22:36 - 2014-03-27 22:36 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Macromedia
2014-03-27 22:32 - 2014-04-04 11:38 - 00000000 ____D () C:\Users\Kevin
2014-03-27 22:32 - 2014-04-02 09:55 - 00000000 ____D () C:\ProgramData\PRICache
2014-03-27 22:32 - 2014-03-27 22:32 - 00001434 _____ () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-27 22:32 - 2014-03-27 22:32 - 00000020 ___SH () C:\Users\Kevin\ntuser.ini
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\Startmenü
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\Netzwerkumgebung
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\Druckumgebung
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\Documents\Eigene Musik
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\Documents\Eigene Bilder
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\AppData\Local\Verlauf
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Adobe
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 ____D () C:\Users\Kevin\AppData\Local\VirtualStore
2014-03-27 22:32 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-27 22:32 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-03-27 22:32 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-03-27 22:32 - 2012-07-26 08:53 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-03-27 21:58 - 2014-04-15 18:05 - 01745416 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-27 21:56 - 2014-03-27 21:56 - 00000000 ____D () C:\WINDOWS\CSC
2014-03-27 21:54 - 2014-03-27 21:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-275437.txt
2014-03-27 21:54 - 2014-03-27 21:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-275265.txt
2014-03-27 21:54 - 2014-03-27 21:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-271609.txt
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-03-27 21:49 - 2014-03-27 21:49 - 00001128 _____ () C:\WINDOWS\system32\netcfg-118343.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000177 _____ () C:\WINDOWS\system32\netcfg-117437.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000156 _____ () C:\WINDOWS\system32\netcfg-111078.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000153 _____ () C:\WINDOWS\system32\netcfg-117234.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000152 _____ () C:\WINDOWS\system32\netcfg-116718.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000152 _____ () C:\WINDOWS\system32\netcfg-116171.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000152 _____ () C:\WINDOWS\system32\netcfg-110640.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000151 _____ () C:\WINDOWS\system32\netcfg-115984.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000149 _____ () C:\WINDOWS\system32\netcfg-116921.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000149 _____ () C:\WINDOWS\system32\netcfg-111703.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000142 _____ () C:\WINDOWS\system32\netcfg-115718.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-03-27 21:46 - 2014-03-27 21:46 - 00000000 ____D () C:\Windows.old
2014-03-27 21:39 - 2014-03-27 21:39 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-03-27 21:26 - 2014-04-15 19:25 - 00000000 ____D () C:\WINDOWS\Panther
2014-03-21 00:03 - 2014-03-21 00:03 - 23716640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv32.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 17559384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 10523480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2014-03-21 00:03 - 2014-03-21 00:03 - 09728064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 09690424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 02956632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 02715264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 02411976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 01049888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3233523.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00895264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco3220103.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00894296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3233523.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00865224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00847136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00162592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda32v.sys
2014-03-21 00:03 - 2014-03-21 00:03 - 00028448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap32.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00019204 _____ () C:\WINDOWS\system32\nvinfo.pb
2014-03-19 22:08 - 2014-03-27 21:51 - 00000000 __SHD () C:\Recovery
2014-03-19 22:08 - 2014-03-19 22:08 - 00000000 _SHDL () C:\Programme
2014-03-19 22:01 - 2014-03-27 21:39 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-03-19 22:00 - 2013-11-14 09:54 - 00398356 __RSH () C:\bootmgr
2014-03-19 22:00 - 2012-06-02 16:30 - 00000001 ___SH () C:\BOOTNXT
2014-03-19 20:15 - 2014-03-28 20:19 - 00000000 ____D () C:\Users\Kevin\Desktop\Mukke

==================== One Month Modified Files and Folders =======

2014-04-15 20:37 - 2014-04-15 20:37 - 00007144 _____ () C:\Users\Kevin\Downloads\FRST.txt
2014-04-15 20:37 - 2014-04-15 20:37 - 00000000 ____D () C:\FRST
2014-04-15 20:36 - 2014-04-15 20:34 - 01042944 _____ (Farbar) C:\Users\Kevin\Downloads\FRST.exe
2014-04-15 19:50 - 2014-03-27 22:39 - 00001118 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-15 19:50 - 2014-03-27 22:39 - 00001114 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-15 19:25 - 2014-04-15 19:24 - 00072614 _____ () C:\Users\Kevin\Documents\cc_20140415_192402.reg
2014-04-15 19:25 - 2014-03-27 22:47 - 00000000 ____D () C:\Program Files\Steam
2014-04-15 19:25 - 2014-03-27 21:26 - 00000000 ____D () C:\WINDOWS\Panther
2014-04-15 19:21 - 2014-04-15 19:21 - 00000961 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-04-15 19:21 - 2014-04-15 19:21 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-15 19:18 - 2014-04-15 19:18 - 04787368 _____ (Piriform Ltd) C:\Users\Kevin\Downloads\ccsetup412.exe
2014-04-15 19:17 - 2014-04-07 13:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-04-15 19:00 - 2012-07-26 08:53 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-04-15 18:58 - 2014-04-15 18:54 - 00709352 _____ ( ) C:\Users\Kevin\Downloads\COMPUTER_BILD-Download-Manager_fuer_ccsetup412.exe
2014-04-15 18:05 - 2014-03-27 21:58 - 01745416 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-04-15 17:58 - 2014-03-28 00:07 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-15 17:58 - 2012-07-26 08:04 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-04-15 17:58 - 2012-07-26 06:17 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-04-14 20:21 - 2013-11-19 18:37 - 00000000 ____D () C:\AdwCleaner
2014-04-14 19:43 - 2014-04-14 19:41 - 01426178 _____ () C:\Users\Kevin\Downloads\adwcleaner3023 (1).exe
2014-04-14 12:03 - 2012-07-26 08:53 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-04-13 19:51 - 2014-04-13 19:50 - 00448512 _____ (OldTimer Tools) C:\Users\Kevin\Downloads\TFC.exe
2014-04-11 20:56 - 2014-03-27 22:39 - 00002121 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-11 20:43 - 2012-07-26 08:53 - 00000000 ____D () C:\WINDOWS\AUInstallAgent
2014-04-10 19:12 - 2012-07-26 08:53 - 00000000 ____D () C:\WINDOWS\rescache
2014-04-10 14:34 - 2014-04-10 14:34 - 00000000 ____D () C:\Users\Kevin\Documents\Amnesia
2014-04-10 14:34 - 2014-04-10 14:34 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\NVIDIA
2014-04-10 14:34 - 2014-04-10 14:34 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\fltk.org
2014-04-10 14:34 - 2014-04-10 14:34 - 00000000 ____D () C:\ProgramData\fltk.org
2014-04-10 14:04 - 2014-04-10 14:04 - 00000216 _____ () C:\Users\Kevin\Desktop\Amnesia A Machine for Pigs.url
2014-04-10 14:04 - 2014-03-27 22:50 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-04-10 13:55 - 2012-07-26 08:53 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-04-10 13:55 - 2012-07-26 08:53 - 00000000 ____D () C:\WINDOWS\WinStore
2014-04-09 21:33 - 2014-04-09 21:33 - 00000216 _____ () C:\Users\Kevin\Desktop\Gone Home.url
2014-04-09 21:29 - 2014-04-09 21:29 - 00174420 _____ () C:\Users\Kevin\Downloads\Gone Home translation GER v1.6.rar
2014-04-09 13:00 - 2014-03-30 16:14 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-04-09 12:54 - 2014-03-30 16:14 - 88028728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-04-08 21:56 - 2014-04-08 21:56 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
2014-04-08 21:56 - 2014-04-04 13:07 - 00000000 ____D () C:\ProgramData\PC Suite
2014-04-07 14:30 - 2014-04-07 14:30 - 00000000 ____D () C:\WINDOWS\system32\appmgmt
2014-04-07 14:22 - 2012-07-26 08:53 - 00000000 ____D () C:\WINDOWS\Help
2014-04-07 13:52 - 2014-04-07 13:52 - 01426178 _____ () C:\Users\Kevin\Downloads\adwcleaner3023.exe
2014-04-07 13:37 - 2014-04-07 13:37 - 00001056 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-07 13:37 - 2014-04-07 13:37 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-07 13:37 - 2014-04-07 13:37 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-04-07 13:36 - 2014-04-07 13:36 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Kevin\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-07 13:32 - 2014-04-06 18:20 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\DVDVideoSoft
2014-04-07 13:30 - 2014-04-04 11:38 - 00000444 __RSH () C:\ProgramData\ntuser.pol
2014-04-06 18:36 - 2014-04-06 18:29 - 00000000 ____D () C:\Program Files\Opera
2014-04-06 18:30 - 2014-04-06 18:30 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Opera Software
2014-04-06 18:30 - 2014-04-06 18:30 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Opera Software
2014-04-06 18:26 - 2014-04-06 18:26 - 00000000 ____D () C:\Users\Kevin\Desktop\youtube
2014-04-06 18:18 - 2014-04-06 18:18 - 01171856 _____ (AnyProtect.com) C:\Users\Kevin\AppData\Local\nsmA1C5.tmp
2014-04-05 21:42 - 2014-04-04 11:44 - 01156457 _____ (AnyProtect.com) C:\Users\Kevin\AppData\Local\AnyProtectScannerSetup.exe
2014-04-04 19:04 - 2014-04-04 19:03 - 00000000 ____D () C:\Users\Kevin\Desktop\AOK Bilder
2014-04-04 17:24 - 2012-07-26 08:53 - 00000000 ____D () C:\WINDOWS\system32\de-DE
2014-04-04 15:02 - 2014-04-04 15:02 - 00041984 ___SH () C:\Users\Kevin\Desktop\Thumbs.db
2014-04-04 14:40 - 2014-04-04 14:40 - 00002047 _____ () C:\Users\Public\Desktop\Nokia Suite.lnk
2014-04-04 14:40 - 2014-04-04 14:40 - 00000000 ____D () C:\Program Files\Common Files\Nokia
2014-04-04 14:40 - 2014-04-04 13:02 - 00000000 ____D () C:\Program Files\Nokia
2014-04-04 14:28 - 2014-04-04 14:28 - 00000000 ____D () C:\Users\Kevin\Documents\Nokia Suite
2014-04-04 14:05 - 2014-04-04 14:05 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Nokia
2014-04-04 14:05 - 2014-04-04 13:07 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\PC Suite
2014-04-04 14:03 - 2014-04-04 14:03 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_ccdcmb_01009.Wdf
2014-04-04 14:03 - 2014-04-04 13:58 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-04-04 13:58 - 2014-04-04 13:58 - 00002115 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-04-04 13:58 - 2014-04-04 13:58 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-04-04 13:56 - 2014-04-04 13:56 - 40658208 _____ (Safer-Networking Ltd. ) C:\Users\Kevin\Downloads\spybot-2.2.25.exe
2014-04-04 13:52 - 2014-04-04 13:52 - 00000000 ____D () C:\Users\Kevin\AppData\Local\NokiaAccount
2014-04-04 13:51 - 2014-04-04 13:07 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Nokia
2014-04-04 13:48 - 2014-04-04 13:48 - 00281160 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-04-04 13:45 - 2014-04-04 13:45 - 00000000 ____D () C:\WINDOWS\system32\XPSViewer
2014-04-04 13:45 - 2014-04-04 13:45 - 00000000 ____D () C:\Program Files\Reference Assemblies
2014-04-04 13:45 - 2014-04-04 13:45 - 00000000 ____D () C:\Program Files\MSBuild
2014-04-04 13:41 - 2014-04-04 11:55 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\sweet-page
2014-04-04 13:31 - 2014-04-04 13:31 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-04-04 13:06 - 2014-04-04 13:06 - 00000000 ____D () C:\ProgramData\Nokia
2014-04-04 13:05 - 2014-04-04 13:05 - 00000000 ____D () C:\Program Files\PC Connectivity Solution
2014-04-04 13:05 - 2014-04-04 13:05 - 00000000 ____D () C:\Program Files\DIFX
2014-04-04 13:02 - 2014-04-04 13:02 - 00000000 ____D () C:\ProgramData\NokiaInstallerCache
2014-04-04 13:02 - 2014-04-04 13:01 - 106311632 _____ () C:\Users\Kevin\Desktop\Nokia_Suite_webinstaller_ALL.exe
2014-04-04 13:00 - 2012-07-26 06:43 - 00000000 ___RD () C:\Users\Public
2014-04-04 12:01 - 2014-04-04 12:01 - 04413904 _____ (Avira Operations GmbH & Co. KG) C:\Users\Kevin\Downloads\avira_de_av___ws.exe
2014-04-04 11:38 - 2014-04-04 11:38 - 00000000 ____D () C:\Users\Kevin\AppData\Local\cache
2014-04-04 11:38 - 2014-04-04 11:38 - 00000000 ____D () C:\Users\Kevin\.android
2014-04-04 11:38 - 2014-04-04 11:38 - 00000000 _____ () C:\Users\Kevin\daemonprocess.txt
2014-04-04 11:38 - 2014-03-27 22:32 - 00000000 ____D () C:\Users\Kevin
2014-04-04 11:38 - 2012-07-26 08:53 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy
2014-04-04 11:35 - 2014-04-04 11:34 - 00190792 _____ () C:\Users\Kevin\Downloads\Setup.exe
2014-04-03 09:51 - 2014-04-07 13:37 - 00073432 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-07 13:37 - 00051416 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-07 13:37 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-04-02 19:03 - 2012-07-26 08:53 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2014-04-02 19:02 - 2012-07-26 08:53 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-04-02 09:55 - 2014-04-01 14:59 - 00000000 ___RD () C:\WINDOWS\BrowserChoice
2014-04-02 09:55 - 2014-03-27 22:32 - 00000000 ____D () C:\ProgramData\PRICache
2014-04-01 14:59 - 2012-07-26 10:45 - 00000000 ____D () C:\Program Files\Windows Journal
2014-04-01 14:58 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-04-01 14:58 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-04-01 14:58 - 2012-07-26 08:53 - 00000000 ____D () C:\Program Files\Windows Defender
2014-04-01 14:58 - 2012-07-26 08:53 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-04-01 14:57 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-04-01 14:57 - 2012-07-26 08:53 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-04-01 14:57 - 2012-07-26 08:53 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320579031.txt
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320578968.txt
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320575906.txt
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320561937.txt
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320561750.txt
2014-04-01 13:05 - 2014-04-01 13:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-320561500.txt
2014-03-31 23:18 - 2014-04-02 09:52 - 00694232 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-03-31 23:18 - 2014-04-02 09:52 - 00078296 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257041015.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257040875.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257037765.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257025968.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257025796.txt
2014-03-31 19:26 - 2014-03-31 19:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257025125.txt
2014-03-30 21:49 - 2014-03-30 21:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-179205015.txt
2014-03-30 21:49 - 2014-03-30 21:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-179204062.txt
2014-03-30 21:49 - 2014-03-30 21:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-179203546.txt
2014-03-30 21:49 - 2014-03-30 21:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-179203500.txt
2014-03-30 16:09 - 2012-07-26 06:17 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-03-30 15:37 - 2014-03-30 15:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-156888125.txt
2014-03-30 15:37 - 2014-03-30 15:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-156887796.txt
2014-03-30 15:37 - 2014-03-30 15:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-156887546.txt
2014-03-30 15:37 - 2014-03-30 15:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-156883750.txt
2014-03-28 20:20 - 2014-03-28 20:13 - 00000000 ____D () C:\Users\Kevin\Desktop\Neuer Ordner (2)
2014-03-28 20:19 - 2014-03-19 20:15 - 00000000 ____D () C:\Users\Kevin\Desktop\Mukke
2014-03-28 20:04 - 2014-03-28 20:04 - 00000000 ____D () C:\Users\Kevin\AppData\Local\NVIDIA
2014-03-28 20:00 - 2014-03-28 20:00 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-03-28 19:59 - 2014-03-28 19:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79774453.txt
2014-03-28 19:59 - 2014-03-28 19:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79774234.txt
2014-03-28 19:59 - 2014-03-28 19:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79774171.txt
2014-03-28 19:59 - 2014-03-28 19:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79773468.txt
2014-03-28 00:07 - 2014-03-28 00:06 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-03-28 00:07 - 2014-03-28 00:06 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-03-27 23:26 - 2014-03-27 23:26 - 00000216 _____ () C:\Users\Kevin\Desktop\Ether One.url
2014-03-27 23:22 - 2014-03-27 23:22 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-03-27 22:54 - 2014-03-27 22:54 - 00000000 ____D () C:\Program Files\dumps
2014-03-27 22:50 - 2014-03-27 22:50 - 00001740 _____ () C:\Users\Kevin\Desktop\Counter-Strike Source.lnk
2014-03-27 22:49 - 2014-03-27 22:49 - 00000355 _____ () C:\Users\Kevin\Desktop\Computer - Verknüpfung.lnk
2014-03-27 22:47 - 2014-03-27 22:47 - 00000652 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-03-27 22:47 - 2012-07-26 08:53 - 00000000 ____D () C:\WINDOWS\system32\restore
2014-03-27 22:39 - 2014-03-27 22:39 - 00000000 ____D () C:\Users\Kevin\AppData\Local\Google
2014-03-27 22:39 - 2014-03-27 22:39 - 00000000 ____D () C:\Program Files\Google
2014-03-27 22:38 - 2014-03-27 22:38 - 00847848 _____ (Google Inc.) C:\Users\Kevin\Downloads\ChromeSetup.exe
2014-03-27 22:36 - 2014-03-27 22:36 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Macromedia
2014-03-27 22:32 - 2014-03-27 22:32 - 00001434 _____ () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-03-27 22:32 - 2014-03-27 22:32 - 00000020 ___SH () C:\Users\Kevin\ntuser.ini
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\Startmenü
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\Netzwerkumgebung
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\Druckumgebung
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\Documents\Eigene Musik
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\Documents\Eigene Bilder
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 _SHDL () C:\Users\Kevin\AppData\Local\Verlauf
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 ____D () C:\Users\Kevin\AppData\Roaming\Adobe
2014-03-27 22:32 - 2014-03-27 22:32 - 00000000 ____D () C:\Users\Kevin\AppData\Local\VirtualStore
2014-03-27 21:56 - 2014-03-27 21:56 - 00000000 ____D () C:\WINDOWS\CSC
2014-03-27 21:54 - 2014-03-27 21:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-275437.txt
2014-03-27 21:54 - 2014-03-27 21:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-275265.txt
2014-03-27 21:54 - 2014-03-27 21:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-271609.txt
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-03-27 21:51 - 2014-03-27 21:51 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-03-27 21:51 - 2014-03-19 22:08 - 00000000 __SHD () C:\Recovery
2014-03-27 21:51 - 2012-07-26 08:53 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2014-03-27 21:51 - 2012-07-26 08:53 - 00000000 ____D () C:\Program Files\Windows NT
2014-03-27 21:51 - 2012-07-26 06:43 - 00000000 __RHD () C:\Users\Default
2014-03-27 21:49 - 2014-03-27 21:49 - 00001128 _____ () C:\WINDOWS\system32\netcfg-118343.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000177 _____ () C:\WINDOWS\system32\netcfg-117437.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000156 _____ () C:\WINDOWS\system32\netcfg-111078.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000153 _____ () C:\WINDOWS\system32\netcfg-117234.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000152 _____ () C:\WINDOWS\system32\netcfg-116718.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000152 _____ () C:\WINDOWS\system32\netcfg-116171.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000152 _____ () C:\WINDOWS\system32\netcfg-110640.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000151 _____ () C:\WINDOWS\system32\netcfg-115984.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000149 _____ () C:\WINDOWS\system32\netcfg-116921.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000149 _____ () C:\WINDOWS\system32\netcfg-111703.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000142 _____ () C:\WINDOWS\system32\netcfg-115718.txt
2014-03-27 21:49 - 2014-03-27 21:49 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-03-27 21:46 - 2014-03-27 21:46 - 00000000 ____D () C:\Windows.old
2014-03-27 21:46 - 2012-07-26 08:53 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2014-03-27 21:40 - 2012-07-26 06:17 - 00000000 ___HD () C:\$WINDOWS.~BT
2014-03-27 21:39 - 2014-03-27 21:39 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-03-27 21:39 - 2014-03-19 22:01 - 00008192 __RSH () C:\BOOTSECT.BAK
2014-03-21 00:03 - 2014-03-28 00:06 - 00053024 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 23716640 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv32.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 17559384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 10523480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2014-03-21 00:03 - 2014-03-21 00:03 - 09728064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 09690424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 02956632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 02715264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 02411976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvenc.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 01049888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3233523.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00895264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco3220103.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00894296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3233523.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00865224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00847136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00162592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda32v.sys
2014-03-21 00:03 - 2014-03-21 00:03 - 00028448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap32.dll
2014-03-21 00:03 - 2014-03-21 00:03 - 00019204 _____ () C:\WINDOWS\system32\nvinfo.pb
2014-03-21 00:03 - 2012-07-25 22:25 - 15783992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2um.dll
2014-03-21 00:03 - 2012-06-28 04:06 - 14709720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dum.dll
2014-03-19 22:08 - 2014-03-19 22:08 - 00000000 _SHDL () C:\Programme

Some content of TEMP:
====================
C:\Users\Kevin\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe => MD5 is legit
C:\WINDOWS\system32\winlogon.exe => MD5 is legit
C:\WINDOWS\system32\wininit.exe => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
C:\WINDOWS\system32\User32.dll => MD5 is legit
C:\WINDOWS\system32\userinit.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-08 12:46

==================== End Of Log ============================
         
--- --- ---

--- --- ---
__________________

Alt 16.04.2014, 18:18   #4
Kasslertier
 
Win 8:kann MSI Installer nicht löschen-immer noch snapdo a? - Standard

Win 8:kann MSI Installer nicht löschen-immer noch snapdo a?



Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-04-2014
Ran by Kevin at 2014-04-15 20:38:05
Running from C:\Users\Kevin\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

Amnesia: A Machine for Pigs (HKLM\...\Steam App 239200) (Version:  - The Chinese Room)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
Counter-Strike: Source (HKLM\...\{9580813D-94B1-4C28-9426-A441E2BB29A5}) (Version: 1.0.0.0 - Valve)
Ether One (HKLM\...\Steam App 265950) (Version:  - White Paper Games)
Gone Home (HKLM\...\Steam App 232430) (Version:  - The Fullbright Company)
Google Chrome (HKLM\...\Google Chrome) (Version: 34.0.1847.116 - Google Inc.)
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.1.1004 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1 - Nokia) Hidden
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
My Game Long Name (HKLM\...\UDK-3fd7aa42-0234-43e9-818a-69f6ce60441d) (Version:  - Epic Games, Inc.)
My Game Long Name (HKLM\...\UDK-543422bd-55b7-4a93-a2e6-578713739985) (Version:  - Epic Games, Inc.)
Nokia Connectivity Cable Driver (HKLM\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Nokia Suite (Version: 3.8.48.0 - Nokia) Hidden
NVIDIA 3D Vision Treiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Grafiktreiber 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.145.1024 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.3523 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
NVIDIA Update Core (Version: 10.4.0 - NVIDIA Corporation) Hidden
PC Connectivity Solution (HKLM\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Shopping Helper Smartbar (HKLM\...\{AC6E9B2A-A7E6-4B17-8A6C-29D519673E12}) (Version: 10.215.63.15249 - ReSoft Ltd.) <==== ATTENTION
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Steam(TM) (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve)
Windows-Treiberpaket - Nokia pccsmcfd “LegacyDriver”  (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)

==================== Restore Points  =========================

04-04-2014 15:22:15 Windows Update
06-04-2014 16:18:42 Uniblue SpeedUpMyPC installation
14-04-2014 10:04:15 Geplanter Prüfpunkt

==================== Hosts content: ==========================

2012-07-26 06:17 - 2012-07-26 06:17 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0FC76431-C1EB-441F-8264-0FF43DFE06CE} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {1E84DCB8-8C84-4436-A108-209A65086823} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2E2C2899-AF3F-4A9A-BBFE-1C47E615F2F8} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {39C81E78-1A32-44C6-A2D6-54B2D6FCDB72} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\WINDOWS\system32\NotificationUI.exe [2014-01-31] (Microsoft Corporation)
Task: {4C1BCDBD-FDCE-4C38-9457-01AFC4B10606} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {545C008C-4471-44F8-AD15-96CB8BB2BB0C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {56F59500-C4D1-4720-859F-13B4998AA792} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {6E9505E8-BABB-4770-A774-0047AE8E3FDF} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask
Task: {7BE357E4-8E7B-41B8-947E-15D70D5F0793} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-27] (Google Inc.)
Task: {8776A0BC-E040-439D-80F0-580A44E3A946} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {99768757-32DC-4E02-BE1E-2FE4783695EE} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {EF9592CE-7796-47A6-9CD5-8630640D45BB} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {FA78E443-8240-4644-A97A-0306599CD4D0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-27] (Google Inc.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-03-28 00:07 - 2014-03-04 14:34 - 00109000 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2014-04-04 13:58 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2014-04-04 13:58 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-04-04 13:58 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2014-04-04 13:58 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-04-04 13:58 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-04-11 20:56 - 2014-04-02 03:57 - 00065352 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.116\chrome_elf.dll
2014-04-11 20:56 - 2014-04-02 03:57 - 00674632 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.116\libglesv2.dll
2014-04-11 20:56 - 2014-04-02 03:57 - 00093000 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.116\libegl.dll
2014-04-11 20:56 - 2014-04-02 03:57 - 04081480 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.116\pdf.dll
2014-04-11 20:56 - 2014-04-02 03:58 - 00390472 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.116\ppGoogleNaClPluginChrome.dll
2014-04-11 20:56 - 2014-04-02 03:57 - 01647432 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.116\ffmpegsumo.dll
2014-04-11 20:56 - 2014-04-02 03:58 - 13691720 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.116\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/13/2014 09:06:05 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/13/2014 06:09:02 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/13/2014 02:59:10 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/13/2014 02:37:05 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/11/2014 08:47:02 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/11/2014 08:43:32 PM) (Source: Desktop Window Manager) (User: )
Description: Der Desktopfenster-Manager hat einen schwerwiegenden Fehler (0x8898008d) festgestellt.

Error: (04/10/2014 02:03:34 PM) (Source: .NET Runtime) (User: )
Description: Anwendung: Avira.OE.ServiceHost.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.AccessViolationException
Stapel:
   bei Avira.OE.AvConnector.Interface.ILicensePlugin.GetLicenseType()
   bei Avira.OE.AvConnector.AvStatusReporter.GetLicenseType()
   bei Avira.OE.ServiceHost.UpdateAvailabilityChecker.CreateDevCheckUpdatePayload()
   bei Avira.OE.ServiceHost.UpdateAvailabilityChecker.CheckForUpdate()
   bei Avira.OE.ServiceHost.UpdateAvailabilityChecker.OnRecurrentUpdateCheck(System.Object)
   bei System.Threading.TimerQueueTimer.CallCallbackInContext(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.TimerQueueTimer.CallCallback()
   bei System.Threading.TimerQueueTimer.Fire()
   bei System.Threading.TimerQueue.FireNextTimers()
   bei System.Threading.TimerQueue.AppDomainTimerCallback()

Error: (04/10/2014 02:01:59 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/09/2014 08:01:55 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall

Error: (04/09/2014 02:44:50 PM) (Source: Steam Client Service) (User: )
Description: Error: Failed to poke open firewall


System errors:
=============
Error: (04/15/2014 05:58:57 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Service Component of VO" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/14/2014 08:22:52 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Service Component of VO" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/13/2014 08:47:18 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Service Component of VO" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/13/2014 07:52:39 PM) (Source: Service Control Manager) (User: )
Description: Dienst "NVIDIA Display Driver Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (04/13/2014 06:48:37 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/10/2014 02:03:36 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Avira Service Host" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/10/2014 01:57:40 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Service Component of VO" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/07/2014 02:23:08 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Service Component of VO" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/07/2014 01:59:10 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Service Component of VO" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (04/06/2014 06:23:09 PM) (Source: Service Control Manager) (User: )
Description: Dienst "Re-markit" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Microsoft Office Sessions:
=========================
Error: (04/13/2014 09:06:05 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/13/2014 06:09:02 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/13/2014 02:59:10 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/13/2014 02:37:05 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/11/2014 08:47:02 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/11/2014 08:43:32 PM) (Source: Desktop Window Manager)(User: )
Description: 0x8898008d

Error: (04/10/2014 02:03:34 PM) (Source: .NET Runtime)(User: )
Description: Anwendung: Avira.OE.ServiceHost.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.AccessViolationException
Stapel:
   bei Avira.OE.AvConnector.Interface.ILicensePlugin.GetLicenseType()
   bei Avira.OE.AvConnector.AvStatusReporter.GetLicenseType()
   bei Avira.OE.ServiceHost.UpdateAvailabilityChecker.CreateDevCheckUpdatePayload()
   bei Avira.OE.ServiceHost.UpdateAvailabilityChecker.CheckForUpdate()
   bei Avira.OE.ServiceHost.UpdateAvailabilityChecker.OnRecurrentUpdateCheck(System.Object)
   bei System.Threading.TimerQueueTimer.CallCallbackInContext(System.Object)
   bei System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   bei System.Threading.TimerQueueTimer.CallCallback()
   bei System.Threading.TimerQueueTimer.Fire()
   bei System.Threading.TimerQueue.FireNextTimers()
   bei System.Threading.TimerQueue.AppDomainTimerCallback()

Error: (04/10/2014 02:01:59 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/09/2014 08:01:55 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall

Error: (04/09/2014 02:44:50 PM) (Source: Steam Client Service)(User: )
Description: Failed to poke open firewall


==================== Memory info =========================== 

Percentage of memory in use: 44%
Total physical RAM: 2047.18 MB
Available physical RAM: 1130.44 MB
Total Pagefile: 4223.18 MB
Available Pagefile: 3017.23 MB
Total Virtual: 2047.88 MB
Available Virtual: 1852.27 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:931.51 GB) (Free:825.2 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 932 GB) (Disk ID: 000BF744)

Partition: GPT Partition Type.

==================== End Of Log ============================
         
Hallo, nochmal vielen Dank, schrauber, dass du mir helfen möchtest!
Ich hoffe,ich habe alles richtig gemacht, ich bin ja noch neu hier

Und ich bin sehr gespannt was mit dem PC los ist!

Ich habe eben erneuten Suchlauf mit Antimalwarebytes gemacht. es gab drei Funde:
dreimal : PUP.Optional.Installcore.A

Ich hoffe, es ist ein wenig hilfreich :/

Ich habe den PUP.Optional.Installcore.A entfernt. MBAM findet zurzeit nichts nach einem Neustart.
PC ist nach wie vor langsamer als langsam

Ich sitze hier seit Tagen und versuche das Problem zu lösen. Ich bitte ganz höflich um dringende Hilfe

( an schrauber und alle anderen: ich weiß dass ihr hier alles am Brennen habt zurzeit und ihr eure Freizeit opfert für uns, vielen Dank dafür)

Alt 17.04.2014, 10:24   #5
schrauber
/// the machine
/// TB-Ausbilder
 

Win 8:kann MSI Installer nicht löschen-immer noch snapdo a? - Standard

Win 8:kann MSI Installer nicht löschen-immer noch snapdo a?



Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Win 8:kann MSI Installer nicht löschen-immer noch snapdo a?
ander, dasselbe, deinstalliert, einstellungen, folter, gelöscht, helper, hilfe!, installer, installiert, interne, langsam, liebe, längerer, löschen, msiinstaller, nicht löschen, nicht mehr, problem, programmen, schön, shopping, shopping helper smartbar, smartbar, stehe, tagen, verzweifeln, win



Ähnliche Themen: Win 8:kann MSI Installer nicht löschen-immer noch snapdo a?


  1. Ashampoo findet gefährliche Viren und Trojaner, kann diese weder löschen noch in Quarantäne schieben
    Log-Analyse und Auswertung - 16.10.2015 (1)
  2. update.exe erscheint immer wieder und ich kann es nicht löschen.
    Plagegeister aller Art und deren Bekämpfung - 15.08.2015 (20)
  3. WIN 8.1 - Update (KB3035583) ausgeblendet - GWX noch immer auf dem PC - wie löschen?
    Alles rund um Windows - 14.08.2015 (37)
  4. trojan.generic.11910889 in C:\Windows\Installer\1a15925.msi=>(Embedded EXE) gefunden, kann nicht gelöscht werden
    Log-Analyse und Auswertung - 18.10.2014 (20)
  5. habe ausversehen continue live installer herunterladen und kann ich nun nicht mehr entfernen
    Mülltonne - 30.08.2014 (1)
  6. habe ausversehen continue live installer herunterladen und kann ich nun nicht mehr entfernen
    Log-Analyse und Auswertung - 30.08.2014 (1)
  7. Laptop ruckelt nur noch, Iminent lässt sich nicht löschen und Radio schaltet sich alleine an und aus und lässt sich ebenfalls nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 27.06.2014 (3)
  8. snapdo kann nicht aus systemsteuerung entfernt werden
    Log-Analyse und Auswertung - 30.03.2014 (5)
  9. Emsisoft kann Datei weder löschen noch in quarantäne setzen.
    Log-Analyse und Auswertung - 08.01.2014 (7)
  10. Mein PC läuft nur noch sehr langsam, nicht mal AVIRA funktiomiert noch. Woran kann das liegen?
    Plagegeister aller Art und deren Bekämpfung - 29.10.2013 (5)
  11. search.snapdo.com trotz Löschen noch im Firefox-Browser
    Log-Analyse und Auswertung - 13.09.2013 (11)
  12. Snap.do nach löschen in der Systemsteuerung immer noch vorhanden, Logfiles geben entsprechende Hinweise
    Plagegeister aller Art und deren Bekämpfung - 28.07.2013 (9)
  13. Wurde mein PC gehackt? Kann der Angreifer immer noch meine Passwörter sehen?
    Log-Analyse und Auswertung - 14.08.2012 (5)
  14. XP REchner: kann nicht erkennen, ob ich immer noch Trojaner auf meinem Rechner habe
    Plagegeister aller Art und deren Bekämpfung - 13.09.2011 (43)
  15. Internet Explorer öffnete sich von selbst, nach Löschen des IE immer noch probleme
    Log-Analyse und Auswertung - 07.05.2010 (1)
  16. Bifrost ist nach dem löschen noch immer auf meinem PC?
    Plagegeister aller Art und deren Bekämpfung - 28.12.2009 (1)
  17. escan ältere version die noch löschen kann?
    Antiviren-, Firewall- und andere Schutzprogramme - 14.04.2008 (2)

Zum Thema Win 8:kann MSI Installer nicht löschen-immer noch snapdo a? - Hallo liebe Leser, ich könnte verzweifeln Ich habe win8 pro installiert, dies aber schon seit längerer Zeit. Seit drei Tagen kehrt ein und dasselbe Problem immer wieder auf: der PC - Win 8:kann MSI Installer nicht löschen-immer noch snapdo a?...
Archiv
Du betrachtest: Win 8:kann MSI Installer nicht löschen-immer noch snapdo a? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.