Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Windows 7 + Chrome Browser: Conduit-Suche entfernen (https://www.trojaner-board.de/143322-windows-7-chrome-browser-conduit-suche-entfernen.html)

GlobalPen 20.10.2013 13:17
Windows 7 + Chrome Browser: Conduit-Suche entfernen
 
Hallo Leute,

ich hab mir schon wieder was eingefangen. :headbang:

Chrome startet immer mit folgender Seite: hxxp://search.conduit.com/
In den Programmen habe ich eine Search Toolbar gefunden, die ich deinstalliert habe. In Chrome hab ich die Startseite und die Standard-Suche auf Google geändert, was aber nichts gebracht hat.

FRST:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-10-2013
Ran by Steve (administrator) on LENOVO-NB on 20-10-2013 13:53:59
Running from C:\Users\Steve\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-09-26] (Synaptics Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-10] (Avira Operations GmbH & Co. KG)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP595CA00B-48E0-465D-BADC-7544EED627BA
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x57D2100C07CCCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP595CA00B-48E0-465D-BADC-7544EED627BA&q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP595CA00B-48E0-465D-BADC-7544EED627BA&q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome:
=======
CHR HomePage: hxxp://www.google.de/
CHR RestoreOnStartup: "hxxp://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP595CA00B-48E0-465D-BADC-7544EED627BA"
CHR Extension: (Google Docs) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6.1_0
CHR Extension: (Google Search) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Lookup Companion for Wikipedia) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhgpkiiipkgmckicafkhcihkcldbdeej\1.9.0_0
CHR Extension: (Google Calendar) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0
CHR Extension: (Full Screen Weather) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg\1.3_0
CHR Extension: (Google Mail Checker) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0
CHR Extension: (Ghostery) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij\5.0.0_0
CHR Extension: (Bookmarked tabs to the front) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmllilpdpplbmjdjhlkagmimpgdflphb\1.0.2_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (LEO W\u00F6rterbuchsuche) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojniiiidjmoaiehegaedmfdclmgmmpdp\1.4_0
CHR Extension: (Gmail) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105856 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-10] (Avira Operations GmbH & Co. KG)
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [x]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-20 13:53 - 2013-10-20 13:53 - 01954548 _____ (Farbar) C:\Users\Steve\Downloads\FRST64.exe
2013-10-20 10:44 - 2013-10-20 10:44 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-20 10:44 - 2013-10-20 10:44 - 00000000 ____D C:\Program Files\CCleaner
2013-10-20 10:33 - 2013-10-20 10:33 - 00003288 _____ C:\Windows\System32\Tasks\{0A9D4DE6-6421-494C-8986-E5161A082308}
2013-10-20 10:32 - 2013-10-20 10:32 - 00003244 _____ C:\Windows\System32\Tasks\{0E9F07D3-76C4-4640-BB3B-DE87ED61D277}
2013-10-19 18:33 - 2013-10-20 10:30 - 00000000 ____D C:\Users\Steve\Documents\Virtual Machines
2013-10-19 18:26 - 2013-10-20 11:25 - 00000000 ____D C:\Users\Steve\AppData\Roaming\VMware
2013-10-19 18:26 - 2013-10-20 10:51 - 00000000 ____D C:\Users\Steve\AppData\Local\VMware
2013-10-19 18:14 - 2013-10-19 18:25 - 00000000 ____D C:\Users\Steve\AppData\Roaming\uTorrent
2013-10-19 17:54 - 2013-10-20 11:27 - 00000000 ____D C:\ProgramData\VMware
2013-10-19 17:54 - 2013-10-19 17:54 - 01526948 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-19 16:36 - 2013-10-19 16:36 - 00000000 ____D C:\Users\Steve\AppData\Roaming\TightVNC
2013-10-19 15:52 - 2013-04-17 09:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-19 15:52 - 2013-04-17 08:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-19 15:52 - 2012-07-06 22:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-10-19 15:52 - 2011-04-28 05:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-10-19 15:52 - 2011-03-11 08:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2013-10-19 15:52 - 2011-03-11 08:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-10-19 15:52 - 2011-03-11 08:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2013-10-19 15:52 - 2011-03-11 08:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2013-10-19 15:52 - 2011-03-11 08:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2013-10-19 15:52 - 2011-03-11 08:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2013-10-19 15:52 - 2011-03-11 08:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-10-19 15:52 - 2011-03-11 08:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2013-10-19 15:52 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-10-19 15:52 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2013-10-19 15:52 - 2011-03-11 06:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-10-19 09:36 - 2013-10-19 09:36 - 00000000 ____D C:\Users\Steve\Desktop\UltraVNC
2013-10-19 09:36 - 2013-10-19 09:36 - 00000000 ____D C:\Users\Steve\AppData\Roaming\UltraVNC
2013-10-19 09:33 - 2013-10-19 09:33 - 00000000 ____D C:\Users\Steve\AppData\Local\Cisco
2013-10-19 09:33 - 2013-10-19 09:33 - 00000000 ____D C:\ProgramData\Cisco
2013-10-19 09:32 - 2013-10-19 09:32 - 00000000 ____D C:\ProgramData\Oracle
2013-10-19 09:30 - 2013-10-19 09:30 - 00000000 ____D C:\ProgramData\Sun
2013-10-19 09:30 - 2013-10-19 09:29 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-19 09:29 - 2013-10-19 09:29 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-19 09:25 - 2013-10-19 09:25 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-10-19 09:23 - 2013-10-19 09:25 - 00000000 ____D C:\Program Files\Java
2013-10-19 09:15 - 2013-10-19 09:16 - 00000000 ____D C:\Program Files\Tracker Software
2013-10-19 00:38 - 2013-10-19 00:38 - 00000000 ____D C:\Users\Steve\AppData\Roaming\PwrMgr
2013-10-19 00:29 - 2013-10-19 00:29 - 00000000 ____D C:\Users\Steve\AppData\Local\Lenovo
2013-10-19 00:26 - 2013-10-19 00:26 - 00000000 ____D C:\ProgramData\Lenovo
2013-10-19 00:26 - 2013-10-19 00:26 - 00000000 ____D C:\Program Files\Common Files\Lenovo
2013-10-19 00:23 - 2013-10-19 00:23 - 00000000 ____D C:\swtools
2013-10-19 00:22 - 2013-10-19 00:22 - 00000000 ____D C:\Program Files (x86)\Intel
2013-10-19 00:22 - 2012-07-04 10:55 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2013-10-19 00:19 - 2013-10-19 00:19 - 00000000 ____D C:\Intel
2013-10-19 00:16 - 2013-10-19 00:16 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Intel
2013-10-19 00:14 - 2013-10-19 09:33 - 00000000 ____D C:\Program Files (x86)\Cisco
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\ProgramData\Intel
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\Program Files\Intel
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\Program Files\Common Files\Intel
2013-10-19 00:12 - 2013-10-19 00:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-10-19 00:11 - 2013-10-19 00:11 - 00000000 ____D C:\Program Files\Synaptics
2013-10-19 00:10 - 2013-09-26 19:04 - 01048816 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2013-10-19 00:10 - 2013-09-26 19:04 - 00540400 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll
2013-10-19 00:10 - 2013-09-26 19:04 - 00461040 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2013-10-19 00:10 - 2013-09-26 19:04 - 00229616 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2013-10-19 00:10 - 2013-09-26 19:04 - 00178416 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo14.dll
2013-10-19 00:10 - 2013-09-26 19:04 - 00114416 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll
2013-10-19 00:10 - 2011-09-14 18:11 - 01048576 _____ C:\Windows\system32\syndata.bin
2013-10-18 23:14 - 2013-10-18 23:14 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-10-18 23:11 - 2013-09-04 14:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-18 19:01 - 2013-10-18 19:01 - 00000000 ____D C:\Windows\system32\appmgmt
2013-10-18 18:51 - 2013-10-18 18:51 - 00000000 ____D C:\FRST
2013-10-18 18:44 - 2013-10-18 18:44 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Avira
2013-10-18 18:33 - 2013-10-18 18:33 - 00000000 ____D C:\ProgramData\APN
2013-10-18 18:33 - 2013-10-18 18:33 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-10-18 18:32 - 2013-10-18 18:32 - 00000000 ____D C:\ProgramData\Avira
2013-10-18 18:32 - 2013-10-18 18:32 - 00000000 ____D C:\Program Files (x86)\Avira
2013-10-18 18:32 - 2013-10-10 19:14 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-18 18:32 - 2013-10-10 19:14 - 00105856 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-18 18:32 - 2013-10-10 19:14 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-10-18 18:32 - 2013-10-10 19:14 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-18 18:18 - 2013-10-20 13:48 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-18 18:18 - 2013-10-20 11:55 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-18 18:18 - 2013-10-18 18:26 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-18 18:18 - 2013-10-18 18:26 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-18 18:18 - 2013-10-18 18:20 - 00000000 ____D C:\Users\Steve\AppData\Local\Google
2013-10-18 18:18 - 2013-10-18 18:20 - 00000000 ____D C:\Program Files (x86)\Google
2013-10-18 18:17 - 2013-10-18 18:18 - 00000000 ____D C:\Users\Steve\AppData\Local\Deployment
2013-10-18 18:17 - 2013-10-18 18:17 - 00058016 _____ C:\Users\Steve\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-18 18:17 - 2013-10-18 18:17 - 00000000 ____D C:\Users\Steve\AppData\Local\Apps\2.0
2013-10-18 18:10 - 2013-10-18 18:10 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Adobe
2013-10-18 18:09 - 2013-10-18 18:09 - 00003538 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2013-10-18 16:42 - 2013-10-18 16:42 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-18 16:42 - 2013-10-18 16:42 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-18 16:42 - 2013-10-18 16:42 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-18 16:42 - 2013-10-18 16:42 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-18 16:42 - 2013-10-18 16:42 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-18 16:42 - 2013-10-18 16:42 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-18 16:42 - 2013-10-18 16:42 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-18 16:42 - 2013-10-18 16:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-18 16:42 - 2013-10-18 16:42 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-18 16:42 - 2013-10-18 16:42 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-18 16:42 - 2013-10-18 16:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-18 16:35 - 2013-10-18 16:35 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-18 16:24 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-10-18 16:21 - 2013-10-20 10:47 - 00000000 ____D C:\Windows\Panther
2013-10-18 16:21 - 2013-10-18 16:21 - 00008192 __RSH C:\BOOTSECT.BAK
2013-10-18 16:21 - 2010-11-21 05:23 - 00383786 __RSH C:\bootmgr
2013-10-18 16:10 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-10-18 16:10 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-10-18 16:10 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-10-18 16:10 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-10-18 16:10 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-10-18 16:10 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-10-18 16:10 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-10-18 16:10 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-10-18 16:07 - 2013-10-18 16:07 - 00000000 ____D C:\Windows\SysWOW64\x64
2013-10-18 16:07 - 2009-09-23 19:30 - 01002008 _____ (Intel Corporation) C:\Windows\SysWOW64\igxpun.exe
2013-10-18 16:05 - 2013-10-18 16:05 - 00000000 ____D C:\Windows\system32\MRT
2013-10-18 16:05 - 2013-09-26 01:46 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-18 16:04 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-10-18 16:04 - 2012-03-01 08:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-10-18 16:04 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-10-18 16:04 - 2012-03-01 07:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-10-18 16:04 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-10-18 16:03 - 2013-10-18 16:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2013-10-18 16:03 - 2013-10-18 16:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2013-10-18 16:02 - 2013-10-18 16:02 - 00000000 ____D C:\Program Files\AuthenTec
2013-10-18 16:00 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-18 16:00 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-18 16:00 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-10-18 16:00 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-10-18 16:00 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-10-18 15:59 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-18 15:59 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-18 15:59 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-18 15:59 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-18 15:59 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-18 15:59 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-18 15:59 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-18 15:59 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-18 15:59 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-18 15:59 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-18 15:59 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-18 15:59 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-18 15:59 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-18 15:59 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-18 15:59 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-18 15:59 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-18 15:59 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-18 15:59 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-10-18 15:59 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-10-18 15:59 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-18 15:59 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-10-18 15:59 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-10-18 15:59 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-10-18 15:59 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-10-18 15:59 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-10-18 15:59 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-10-18 15:59 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-10-18 15:59 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-10-18 15:59 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-10-18 15:59 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-10-18 15:59 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2013-10-18 15:59 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2013-10-18 15:58 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-10-18 15:58 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-10-18 15:58 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-10-18 15:58 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-18 15:58 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-18 15:58 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-10-18 15:58 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-10-18 15:58 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-10-18 15:58 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-10-18 15:58 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-10-18 15:58 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-18 15:58 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-10-18 15:58 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2013-10-18 15:58 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2013-10-18 15:58 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2013-10-18 15:58 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2013-10-18 15:58 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2013-10-18 15:58 - 2012-11-30 07:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-10-18 15:58 - 2012-11-30 07:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-10-18 15:58 - 2012-11-30 07:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-10-18 15:58 - 2012-11-30 01:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2013-10-18 15:58 - 2012-11-30 01:15 - 00420064 _____ C:\Windows\system32\locale.nls
2013-10-18 15:58 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-10-18 15:58 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-10-18 15:58 - 2012-11-29 00:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-10-18 15:58 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-10-18 15:58 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-10-18 15:58 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-10-18 15:58 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-10-18 15:58 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-10-18 15:58 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-10-18 15:58 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-10-18 15:58 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-10-18 15:58 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-10-18 15:58 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-10-18 15:58 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-10-18 15:58 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-10-18 15:58 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-10-18 15:58 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2013-10-18 15:58 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-10-18 15:58 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-10-18 15:58 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-10-18 15:58 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-10-18 15:58 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-10-18 15:58 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-10-18 15:58 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-10-18 15:58 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-10-18 15:58 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-10-18 15:58 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-10-18 15:58 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-10-18 15:58 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-10-18 15:58 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-10-18 15:58 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-10-18 15:58 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-10-18 15:58 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-10-18 15:58 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-10-18 15:58 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-10-18 15:57 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-18 15:57 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-18 15:57 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-18 15:57 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-18 15:57 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-18 15:57 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-18 15:57 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-18 15:57 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-18 15:57 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-18 15:57 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-18 15:57 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-18 15:57 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-10-18 15:57 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-10-18 15:57 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-10-18 15:57 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-10-18 15:57 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-10-18 15:57 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-10-18 15:57 - 2013-03-19 07:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-10-18 15:57 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-10-18 15:57 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-18 15:57 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-18 15:57 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-18 15:57 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-18 15:57 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-18 15:57 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-18 15:57 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-10-18 15:57 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-10-18 15:57 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-10-18 15:57 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-10-18 15:57 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-10-18 15:57 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-10-18 15:57 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-10-18 15:57 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-10-18 15:57 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-10-18 15:57 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-10-18 15:57 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-10-18 15:57 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-10-18 15:57 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-10-18 15:57 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-10-18 15:57 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-10-18 15:57 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-10-18 15:57 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2013-10-18 15:57 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-10-18 15:57 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-10-18 15:57 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-10-18 15:57 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-10-18 15:57 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-10-18 15:57 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-10-18 15:57 - 2011-07-09 04:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-10-18 15:57 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-10-18 15:57 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2013-10-18 15:57 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-10-18 15:57 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-10-18 15:57 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-10-18 15:57 - 2011-04-27 04:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-10-18 15:57 - 2011-04-27 04:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-10-18 15:57 - 2011-04-23 00:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-10-18 15:57 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-10-18 15:57 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-10-18 15:57 - 2011-03-11 08:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-10-18 15:57 - 2011-03-11 08:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-10-18 15:57 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-10-18 15:57 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-10-18 15:57 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-10-18 15:57 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2013-10-18 15:57 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2013-10-18 15:57 - 2010-06-26 05:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-10-18 15:57 - 2010-06-26 05:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-10-18 15:56 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-18 15:56 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-18 15:56 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-18 15:56 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-18 15:56 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-18 15:56 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-18 15:56 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-18 15:56 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-10-18 15:56 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-10-18 15:56 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-18 15:56 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-18 15:56 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-18 15:56 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-18 15:56 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-18 15:56 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-18 15:56 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-18 15:56 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-18 15:56 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-18 15:56 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-10-18 15:56 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-18 15:56 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-10-18 15:56 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-18 15:56 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-18 15:56 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-10-18 15:56 - 2012-11-22 07:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-10-18 15:56 - 2012-11-22 06:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2013-10-18 15:56 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-10-18 15:56 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-10-18 15:56 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-10-18 15:56 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-10-18 15:56 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-10-18 15:56 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-10-18 15:56 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-10-18 15:56 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-10-18 15:56 - 2012-06-02 07:50 - 00458704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-18 15:56 - 2012-06-02 07:48 - 00151920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-18 15:56 - 2012-06-02 07:48 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-10-18 15:56 - 2012-06-02 07:45 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-18 15:56 - 2012-06-02 06:40 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-18 15:56 - 2012-06-02 06:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-18 15:56 - 2012-06-02 06:34 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-18 15:56 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-10-18 15:56 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-10-18 15:56 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-10-18 15:56 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2013-10-18 15:56 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-10-18 15:56 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-10-18 15:56 - 2011-11-17 08:35 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-18 15:56 - 2011-11-17 08:35 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-10-18 15:56 - 2011-11-17 08:35 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-10-18 15:56 - 2011-11-17 08:35 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-10-18 15:56 - 2011-11-17 08:33 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-10-18 15:56 - 2011-10-26 07:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-10-18 15:56 - 2011-10-26 07:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-18 15:56 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-10-18 15:56 - 2011-10-26 06:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-18 15:56 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-10-18 15:56 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-10-18 15:56 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-10-18 15:56 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-10-18 15:56 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-10-18 15:56 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-10-18 15:56 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-10-18 15:56 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-10-18 15:56 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-10-18 15:56 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-10-18 15:56 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-10-18 15:56 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-10-18 15:56 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-10-18 15:56 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-10-18 15:56 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-10-18 15:56 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-10-18 15:56 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-10-18 15:56 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-10-18 15:56 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-10-18 15:56 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-10-18 15:56 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-10-18 15:56 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-10-18 15:56 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-10-18 15:56 - 2011-03-03 08:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-10-18 15:56 - 2011-03-03 08:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-10-18 15:56 - 2011-03-03 08:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-10-18 15:56 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-10-18 15:56 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-10-18 15:56 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-10-18 15:56 - 2011-02-25 07:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-10-18 15:56 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-10-18 15:56 - 2011-02-05 19:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-10-18 15:56 - 2011-02-05 19:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-10-18 15:56 - 2011-02-05 19:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-10-18 15:56 - 2011-02-05 19:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-10-18 15:56 - 2011-02-05 19:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-10-18 15:56 - 2011-02-05 19:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-10-18 15:56 - 2011-02-05 19:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-10-18 15:56 - 2010-12-23 12:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-10-18 15:56 - 2010-12-23 12:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-10-18 15:56 - 2010-12-23 12:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-10-18 15:56 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-10-18 15:56 - 2010-12-23 07:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-10-18 15:56 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-10-18 15:55 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-18 15:55 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-18 15:55 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-18 15:55 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-18 15:55 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-10-18 15:55 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-10-18 15:55 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2013-10-18 15:55 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-10-18 15:55 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-10-18 15:55 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-10-18 15:55 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2013-10-18 15:55 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-10-18 15:55 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-10-18 15:55 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-10-18 15:55 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-18 15:47 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-18 15:44 - 2012-02-11 08:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-10-18 15:44 - 2012-02-11 08:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2013-10-18 15:41 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-10-18 15:41 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-10-18 15:35 - 2013-10-18 18:10 - 00001413 _____ C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-18 15:34 - 2013-10-18 18:10 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-18 15:34 - 2013-10-18 18:10 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-18 15:34 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-10-18 15:34 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-10-18 15:34 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-10-18 15:34 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-10-18 15:33 - 2013-10-18 15:33 - 00000020 ___SH C:\Users\Steve\ntuser.ini
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Vorlagen
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Startmenü
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Netzwerkumgebung
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Lokale Einstellungen
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Eigene Dateien
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Druckumgebung
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Documents\Eigene Musik
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Documents\Eigene Bilder
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Local\Verlauf
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Local\Anwendungsdaten
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Anwendungsdaten
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 ____D C:\Users\Steve\AppData\Local\VirtualStore
2013-10-18 15:33 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-10-18 15:33 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-10-18 15:33 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-10-18 15:33 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-10-18 15:33 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-10-18 15:33 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-18 15:33 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-18 15:32 - 2013-10-18 15:34 - 00000000 ____D C:\Users\Steve
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 __SHD C:\Recovery
2013-10-18 15:25 - 2013-10-20 13:00 - 01142940 _____ C:\Windows\WindowsUpdate.log
2013-10-18 15:25 - 2013-10-18 15:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf

==================== One Month Modified Files and Folders =======

2013-10-20 13:53 - 2013-10-20 13:53 - 01954548 _____ (Farbar) C:\Users\Steve\Downloads\FRST64.exe
2013-10-20 13:48 - 2013-10-18 18:18 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-20 13:48 - 2013-10-18 15:25 - 01142940 _____ C:\Windows\WindowsUpdate.log
2013-10-20 11:58 - 2011-04-12 09:43 - 00654166 _____ C:\Windows\system32\perfh007.dat
2013-10-20 11:58 - 2011-04-12 09:43 - 00130006 _____ C:\Windows\system32\perfc007.dat
2013-10-20 11:58 - 2009-07-14 07:13 - 01498506 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-20 11:55 - 2013-10-18 18:18 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-20 11:54 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-20 11:49 - 2009-07-14 06:45 - 00020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-20 11:49 - 2009-07-14 06:45 - 00020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-20 11:27 - 2013-10-19 17:54 - 00000000 ____D C:\ProgramData\VMware
2013-10-20 11:25 - 2013-10-19 18:26 - 00000000 ____D C:\Users\Steve\AppData\Roaming\VMware
2013-10-20 10:51 - 2013-10-19 18:26 - 00000000 ____D C:\Users\Steve\AppData\Local\VMware
2013-10-20 10:47 - 2013-10-18 16:21 - 00000000 ____D C:\Windows\Panther
2013-10-20 10:44 - 2013-10-20 10:44 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-20 10:44 - 2013-10-20 10:44 - 00000000 ____D C:\Program Files\CCleaner
2013-10-20 10:33 - 2013-10-20 10:33 - 00003288 _____ C:\Windows\System32\Tasks\{0A9D4DE6-6421-494C-8986-E5161A082308}
2013-10-20 10:32 - 2013-10-20 10:32 - 00003244 _____ C:\Windows\System32\Tasks\{0E9F07D3-76C4-4640-BB3B-DE87ED61D277}
2013-10-20 10:30 - 2013-10-19 18:33 - 00000000 ____D C:\Users\Steve\Documents\Virtual Machines
2013-10-19 18:25 - 2013-10-19 18:14 - 00000000 ____D C:\Users\Steve\AppData\Roaming\uTorrent
2013-10-19 17:54 - 2013-10-19 17:54 - 01526948 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-19 17:53 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-10-19 16:36 - 2013-10-19 16:36 - 00000000 ____D C:\Users\Steve\AppData\Roaming\TightVNC
2013-10-19 09:36 - 2013-10-19 09:36 - 00000000 ____D C:\Users\Steve\Desktop\UltraVNC
2013-10-19 09:36 - 2013-10-19 09:36 - 00000000 ____D C:\Users\Steve\AppData\Roaming\UltraVNC
2013-10-19 09:33 - 2013-10-19 09:33 - 00000000 ____D C:\Users\Steve\AppData\Local\Cisco
2013-10-19 09:33 - 2013-10-19 09:33 - 00000000 ____D C:\ProgramData\Cisco
2013-10-19 09:33 - 2013-10-19 00:14 - 00000000 ____D C:\Program Files (x86)\Cisco
2013-10-19 09:32 - 2013-10-19 09:32 - 00000000 ____D C:\ProgramData\Oracle
2013-10-19 09:30 - 2013-10-19 09:30 - 00000000 ____D C:\ProgramData\Sun
2013-10-19 09:29 - 2013-10-19 09:30 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-19 09:29 - 2013-10-19 09:29 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-19 09:25 - 2013-10-19 09:25 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-10-19 09:25 - 2013-10-19 09:23 - 00000000 ____D C:\Program Files\Java
2013-10-19 09:16 - 2013-10-19 09:15 - 00000000 ____D C:\Program Files\Tracker Software
2013-10-19 00:38 - 2013-10-19 00:38 - 00000000 ____D C:\Users\Steve\AppData\Roaming\PwrMgr
2013-10-19 00:29 - 2013-10-19 00:29 - 00000000 ____D C:\Users\Steve\AppData\Local\Lenovo
2013-10-19 00:26 - 2013-10-19 00:26 - 00000000 ____D C:\ProgramData\Lenovo
2013-10-19 00:26 - 2013-10-19 00:26 - 00000000 ____D C:\Program Files\Common Files\Lenovo
2013-10-19 00:24 - 2009-07-14 05:20 - 00000000 __RSD C:\Windows\Media
2013-10-19 00:23 - 2013-10-19 00:23 - 00000000 ____D C:\swtools
2013-10-19 00:22 - 2013-10-19 00:22 - 00000000 ____D C:\Program Files (x86)\Intel
2013-10-19 00:19 - 2013-10-19 00:19 - 00000000 ____D C:\Intel
2013-10-19 00:16 - 2013-10-19 00:16 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Intel
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\ProgramData\Intel
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\Program Files\Intel
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\Program Files\Common Files\Intel
2013-10-19 00:12 - 2013-10-19 00:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-10-19 00:11 - 2013-10-19 00:11 - 00000000 ____D C:\Program Files\Synaptics
2013-10-18 23:14 - 2013-10-18 23:14 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-10-18 22:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2013-10-18 20:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-10-18 19:01 - 2013-10-18 19:01 - 00000000 ____D C:\Windows\system32\appmgmt
2013-10-18 18:51 - 2013-10-18 18:51 - 00000000 ____D C:\FRST
2013-10-18 18:44 - 2013-10-18 18:44 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Avira
2013-10-18 18:33 - 2013-10-18 18:33 - 00000000 ____D C:\ProgramData\APN
2013-10-18 18:33 - 2013-10-18 18:33 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-10-18 18:32 - 2013-10-18 18:32 - 00000000 ____D C:\ProgramData\Avira
2013-10-18 18:32 - 2013-10-18 18:32 - 00000000 ____D C:\Program Files (x86)\Avira
2013-10-18 18:26 - 2013-10-18 18:18 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-18 18:26 - 2013-10-18 18:18 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-18 18:20 - 2013-10-18 18:18 - 00000000 ____D C:\Users\Steve\AppData\Local\Google
2013-10-18 18:20 - 2013-10-18 18:18 - 00000000 ____D C:\Program Files (x86)\Google
2013-10-18 18:18 - 2013-10-18 18:17 - 00000000 ____D C:\Users\Steve\AppData\Local\Deployment
2013-10-18 18:17 - 2013-10-18 18:17 - 00058016 _____ C:\Users\Steve\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-18 18:17 - 2013-10-18 18:17 - 00000000 ____D C:\Users\Steve\AppData\Local\Apps\2.0
2013-10-18 18:10 - 2013-10-18 18:10 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Adobe
2013-10-18 18:10 - 2013-10-18 15:35 - 00001413 _____ C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-18 18:10 - 2013-10-18 15:34 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-18 18:10 - 2013-10-18 15:34 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-18 18:09 - 2013-10-18 18:09 - 00003538 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2013-10-18 18:08 - 2009-07-14 06:45 - 00275856 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-18 18:05 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-18 18:05 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-18 18:04 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-18 16:42 - 2013-10-18 16:42 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-18 16:42 - 2013-10-18 16:42 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-18 16:42 - 2013-10-18 16:42 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-18 16:42 - 2013-10-18 16:42 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-18 16:42 - 2013-10-18 16:42 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-18 16:42 - 2013-10-18 16:42 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-18 16:42 - 2013-10-18 16:42 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-18 16:42 - 2013-10-18 16:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-18 16:42 - 2013-10-18 16:42 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-18 16:42 - 2013-10-18 16:42 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-18 16:42 - 2013-10-18 16:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-18 16:35 - 2013-10-18 16:35 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-18 16:21 - 2013-10-18 16:21 - 00008192 __RSH C:\BOOTSECT.BAK
2013-10-18 16:21 - 2009-07-14 07:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2013-10-18 16:21 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2013-10-18 16:07 - 2013-10-18 16:07 - 00000000 ____D C:\Windows\SysWOW64\x64
2013-10-18 16:05 - 2013-10-18 16:05 - 00000000 ____D C:\Windows\system32\MRT
2013-10-18 16:03 - 2013-10-18 16:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2013-10-18 16:03 - 2013-10-18 16:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2013-10-18 16:02 - 2013-10-18 16:02 - 00000000 ____D C:\Program Files\AuthenTec
2013-10-18 16:02 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2013-10-18 15:34 - 2013-10-18 15:32 - 00000000 ____D C:\Users\Steve
2013-10-18 15:33 - 2013-10-18 15:33 - 00000020 ___SH C:\Users\Steve\ntuser.ini
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Vorlagen
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Startmenü
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Netzwerkumgebung
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Lokale Einstellungen
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Eigene Dateien
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Druckumgebung
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Documents\Eigene Musik
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Documents\Eigene Bilder
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Local\Verlauf
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Local\Anwendungsdaten
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Anwendungsdaten
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 ____D C:\Users\Steve\AppData\Local\VirtualStore
2013-10-18 15:33 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 __SHD C:\Recovery
2013-10-18 15:32 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2013-10-18 15:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Recovery
2013-10-18 15:32 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT
2013-10-18 15:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
2013-10-18 15:25 - 2013-10-18 15:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2013-10-18 15:23 - 2011-04-12 09:55 - 00000000 ____D C:\Windows\CSC
2013-10-10 19:14 - 2013-10-18 18:32 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-10 19:14 - 2013-10-18 18:32 - 00105856 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-10 19:14 - 2013-10-18 18:32 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-10-10 19:14 - 2013-10-18 18:32 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-09-26 19:04 - 2013-10-19 00:10 - 01048816 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2013-09-26 19:04 - 2013-10-19 00:10 - 00540400 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll
2013-09-26 19:04 - 2013-10-19 00:10 - 00461040 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2013-09-26 19:04 - 2013-10-19 00:10 - 00229616 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2013-09-26 19:04 - 2013-10-19 00:10 - 00178416 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo14.dll
2013-09-26 19:04 - 2013-10-19 00:10 - 00114416 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll
2013-09-26 01:46 - 2013-10-18 16:05 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\Steve\AppData\Local\Temp\avgnt.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-18 20:34

==================== End Of Log ============================
Gmer:
Code:
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-10-20 14:07:05
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 HITACHI_HTS542512K9SA00 rev.BB2ZC3HP 111,79GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\Steve\AppData\Local\Temp\pxdcypog.sys


---- Registry - GMER 2.1 ----

Reg  HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\002269c6a558                     
Reg  HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\002269c6a558 (not active ControlSet) 

---- EOF - GMER 2.1 ----
Könnt ihr mir bitte helfen die blöde Suche zu entfernen. Über den Sync von Chrome hab ich die auch auf meinem anderen Rechner.

Danke und Gruß
GlobalPen

schrauber 20.10.2013 13:48
hi,

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.

GlobalPen 20.10.2013 13:54
Hi,

ich habe eben bereits selbst in die FRST geschaut.
Was ich danach gemacht habe:
  • Im Chrome geändert welche Seite aufgerufen wird (hatte ich noch vergessen zu ändern)
  • Im IE die Startseite geändert.

Danach nochmal FRST laufen lassen. Es wurde noch nicht alles entfernt.

Ich befolge jetzt noch deine Schritte und editieren dann diesen Post.

Edit:

Anti-Maleware:
Code:
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.10.20.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16721
Steve :: LENOVO-NB [Administrator]

20.10.2013 14:57:31
mbam-log-2013-10-20 (14-57-31).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 194900
Laufzeit: 4 Minute(n), 27 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)
AdwCleaner:
AdwCleaner Logfile:
Code:
# AdwCleaner v3.009 - Bericht erstellt am 20/10/2013 um 15:05:21
# Updated 19/10/2013 von Xplode
# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)
# Benutzername : Steve - LENOVO-NB
# Gestartet von : C:\Users\Steve\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16720


-\\ Google Chrome v30.0.1599.101

[ Datei : C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1032 octets] - [20/10/2013 15:03:43]
AdwCleaner[S0].txt - [833 octets] - [20/10/2013 15:05:21]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [892 octets] ##########
--- --- ---


JRT:
JRT Logfile:
Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows 7 Professional x64
Ran by Steve on 20.10.2013 at 15:19:08,89
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\apn"



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Steve\appdata\local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20.10.2013 at 15:24:17,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
--- --- ---

GlobalPen 20.10.2013 14:33
Die neue FRST (in einem extra Post, weil zu groß):
Neue FRST:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-10-2013
Ran by Steve (administrator) on LENOVO-NB on 20-10-2013 15:28:56
Running from C:\Users\Steve\Downloads
Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-09-26] (Synaptics Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [681032 2013-10-10] (Avira Operations GmbH & Co. KG)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x57D2100C07CCCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Chrome:
=======
CHR HomePage: hxxp://www.google.de/
CHR RestoreOnStartup: "hxxp://www.google.de/"
CHR Extension: (Google Docs) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Adblock Plus) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6.1_0
CHR Extension: (Google Search) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Lookup Companion for Wikipedia) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhgpkiiipkgmckicafkhcihkcldbdeej\1.9.0_0
CHR Extension: (Google Calendar) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0
CHR Extension: (Full Screen Weather) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkaebihfmbofclegkcfkkemepfehibg\1.3_0
CHR Extension: (Google Mail Checker) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff\4.4.0_0
CHR Extension: (Ghostery) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij\5.0.0_0
CHR Extension: (Bookmarked tabs to the front) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmllilpdpplbmjdjhlkagmimpgdflphb\1.0.2_0
CHR Extension: (LEO W\u00F6rterbuchsuche) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\ojniiiidjmoaiehegaedmfdclmgmmpdp\1.4_0
CHR Extension: (Gmail) - C:\Users\Steve\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

==================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440392 2013-10-10] (Avira Operations GmbH & Co. KG)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [105856 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-10-10] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-10] (Avira Operations GmbH & Co. KG)
S3 vmci; \SystemRoot\system32\DRIVERS\vmci.sys [x]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-10-20 15:24 - 2013-10-20 15:24 - 00000837 _____ C:\Users\Steve\Desktop\JRT.txt
2013-10-20 15:19 - 2013-10-20 15:19 - 00000000 ____D C:\Windows\ERUNT
2013-10-20 15:18 - 2013-10-20 15:18 - 01033335 _____ (Thisisu) C:\Users\Steve\Downloads\JRT.exe
2013-10-20 15:11 - 2013-10-20 15:11 - 00000971 _____ C:\Users\Steve\Desktop\AdwCleaner[S0].txt
2013-10-20 15:07 - 2013-10-20 15:07 - 00000056 _____ C:\Windows\setupact.log
2013-10-20 15:07 - 2013-10-20 15:07 - 00000000 _____ C:\Windows\setuperr.log
2013-10-20 14:55 - 2013-10-20 15:05 - 00000000 ____D C:\AdwCleaner
2013-10-20 14:55 - 2013-10-20 14:55 - 01056666 _____ C:\Users\Steve\Downloads\adwcleaner.exe
2013-10-20 14:55 - 2013-10-20 14:55 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-20 14:55 - 2013-10-20 14:55 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Malwarebytes
2013-10-20 14:55 - 2013-10-20 14:55 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 14:55 - 2013-10-20 14:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-20 14:55 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-10-20 14:54 - 2013-10-20 14:55 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Steve\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-20 14:47 - 2013-10-20 14:47 - 00115777 _____ C:\Users\Steve\Desktop\FRST.txt
2013-10-20 14:46 - 2013-10-20 14:47 - 00014419 _____ C:\Users\Steve\Desktop\Addition.txt
2013-10-20 14:33 - 2013-10-20 14:33 - 05647048 _____ (Auslogics Labs Pty Ltd                                      ) C:\Users\Steve\Downloads\disk-defrag-setup.exe
2013-10-20 14:07 - 2013-10-20 14:07 - 00000568 _____ C:\Users\Steve\Desktop\Gmer.txt
2013-10-20 13:56 - 2013-10-20 13:56 - 00377856 _____ C:\Users\Steve\Downloads\gmer_2.1.19163.exe
2013-10-20 13:55 - 2013-10-20 13:55 - 00115982 _____ C:\Users\Steve\Desktop\FRST1.txt
2013-10-20 13:53 - 2013-10-20 13:53 - 01954548 _____ (Farbar) C:\Users\Steve\Downloads\FRST64.exe
2013-10-20 10:44 - 2013-10-20 10:44 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-20 10:44 - 2013-10-20 10:44 - 00000000 ____D C:\Program Files\CCleaner
2013-10-20 10:33 - 2013-10-20 10:33 - 00003288 _____ C:\Windows\System32\Tasks\{0A9D4DE6-6421-494C-8986-E5161A082308}
2013-10-20 10:32 - 2013-10-20 10:32 - 00003244 _____ C:\Windows\System32\Tasks\{0E9F07D3-76C4-4640-BB3B-DE87ED61D277}
2013-10-19 18:33 - 2013-10-20 10:30 - 00000000 ____D C:\Users\Steve\Documents\Virtual Machines
2013-10-19 18:26 - 2013-10-20 11:25 - 00000000 ____D C:\Users\Steve\AppData\Roaming\VMware
2013-10-19 18:26 - 2013-10-20 10:51 - 00000000 ____D C:\Users\Steve\AppData\Local\VMware
2013-10-19 18:14 - 2013-10-19 18:25 - 00000000 ____D C:\Users\Steve\AppData\Roaming\uTorrent
2013-10-19 17:54 - 2013-10-20 11:27 - 00000000 ____D C:\ProgramData\VMware
2013-10-19 17:54 - 2013-10-19 17:54 - 01526948 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-19 16:36 - 2013-10-19 16:36 - 00000000 ____D C:\Users\Steve\AppData\Roaming\TightVNC
2013-10-19 15:52 - 2013-04-17 09:02 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-10-19 15:52 - 2013-04-17 08:24 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2013-10-19 15:52 - 2012-07-06 22:07 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2013-10-19 15:52 - 2011-04-28 05:54 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2013-10-19 15:52 - 2011-03-11 08:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2013-10-19 15:52 - 2011-03-11 08:41 - 00189824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2013-10-19 15:52 - 2011-03-11 08:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2013-10-19 15:52 - 2011-03-11 08:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2013-10-19 15:52 - 2011-03-11 08:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2013-10-19 15:52 - 2011-03-11 08:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2013-10-19 15:52 - 2011-03-11 08:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2013-10-19 15:52 - 2011-03-11 08:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2013-10-19 15:52 - 2011-03-11 07:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2013-10-19 15:52 - 2011-03-11 07:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2013-10-19 15:52 - 2011-03-11 06:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2013-10-19 09:36 - 2013-10-19 09:36 - 00000000 ____D C:\Users\Steve\AppData\Roaming\UltraVNC
2013-10-19 09:33 - 2013-10-19 09:33 - 00000000 ____D C:\Users\Steve\AppData\Local\Cisco
2013-10-19 09:33 - 2013-10-19 09:33 - 00000000 ____D C:\ProgramData\Cisco
2013-10-19 09:32 - 2013-10-19 09:32 - 00000000 ____D C:\ProgramData\Oracle
2013-10-19 09:30 - 2013-10-19 09:30 - 00000000 ____D C:\ProgramData\Sun
2013-10-19 09:30 - 2013-10-19 09:29 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-19 09:29 - 2013-10-19 09:29 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-19 09:25 - 2013-10-19 09:25 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-10-19 09:23 - 2013-10-19 09:25 - 00000000 ____D C:\Program Files\Java
2013-10-19 09:15 - 2013-10-19 09:16 - 00000000 ____D C:\Program Files\Tracker Software
2013-10-19 00:38 - 2013-10-19 00:38 - 00000000 ____D C:\Users\Steve\AppData\Roaming\PwrMgr
2013-10-19 00:29 - 2013-10-19 00:29 - 00000000 ____D C:\Users\Steve\AppData\Local\Lenovo
2013-10-19 00:26 - 2013-10-19 00:26 - 00000000 ____D C:\ProgramData\Lenovo
2013-10-19 00:26 - 2013-10-19 00:26 - 00000000 ____D C:\Program Files\Common Files\Lenovo
2013-10-19 00:23 - 2013-10-19 00:23 - 00000000 ____D C:\swtools
2013-10-19 00:22 - 2013-10-19 00:22 - 00000000 ____D C:\Program Files (x86)\Intel
2013-10-19 00:22 - 2012-07-04 10:55 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2013-10-19 00:19 - 2013-10-19 00:19 - 00000000 ____D C:\Intel
2013-10-19 00:16 - 2013-10-19 00:16 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Intel
2013-10-19 00:14 - 2013-10-19 09:33 - 00000000 ____D C:\Program Files (x86)\Cisco
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\ProgramData\Intel
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\Program Files\Intel
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\Program Files\Common Files\Intel
2013-10-19 00:12 - 2013-10-19 00:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-10-19 00:11 - 2013-10-19 00:11 - 00000000 ____D C:\Program Files\Synaptics
2013-10-19 00:10 - 2013-09-26 19:04 - 01048816 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2013-10-19 00:10 - 2013-09-26 19:04 - 00540400 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll
2013-10-19 00:10 - 2013-09-26 19:04 - 00461040 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2013-10-19 00:10 - 2013-09-26 19:04 - 00229616 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2013-10-19 00:10 - 2013-09-26 19:04 - 00178416 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo14.dll
2013-10-19 00:10 - 2013-09-26 19:04 - 00114416 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll
2013-10-19 00:10 - 2011-09-14 18:11 - 01048576 _____ C:\Windows\system32\syndata.bin
2013-10-18 23:14 - 2013-10-18 23:14 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-10-18 23:11 - 2013-09-04 14:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2013-10-18 23:11 - 2013-09-04 14:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2013-10-18 19:01 - 2013-10-18 19:01 - 00000000 ____D C:\Windows\system32\appmgmt
2013-10-18 18:51 - 2013-10-18 18:51 - 00000000 ____D C:\FRST
2013-10-18 18:44 - 2013-10-18 18:44 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Avira
2013-10-18 18:33 - 2013-10-18 18:33 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-10-18 18:32 - 2013-10-18 18:32 - 00000000 ____D C:\ProgramData\Avira
2013-10-18 18:32 - 2013-10-18 18:32 - 00000000 ____D C:\Program Files (x86)\Avira
2013-10-18 18:32 - 2013-10-10 19:14 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-18 18:32 - 2013-10-10 19:14 - 00105856 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-18 18:32 - 2013-10-10 19:14 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-10-18 18:32 - 2013-10-10 19:14 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-10-18 18:18 - 2013-10-20 15:08 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-18 18:18 - 2013-10-20 14:31 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-18 18:18 - 2013-10-18 18:26 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-18 18:18 - 2013-10-18 18:26 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-18 18:18 - 2013-10-18 18:20 - 00000000 ____D C:\Users\Steve\AppData\Local\Google
2013-10-18 18:18 - 2013-10-18 18:20 - 00000000 ____D C:\Program Files (x86)\Google
2013-10-18 18:17 - 2013-10-18 18:18 - 00000000 ____D C:\Users\Steve\AppData\Local\Deployment
2013-10-18 18:17 - 2013-10-18 18:17 - 00058016 _____ C:\Users\Steve\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-18 18:17 - 2013-10-18 18:17 - 00000000 ____D C:\Users\Steve\AppData\Local\Apps\2.0
2013-10-18 18:10 - 2013-10-18 18:10 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Adobe
2013-10-18 18:09 - 2013-10-18 18:09 - 00003538 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2013-10-18 16:42 - 2013-10-18 16:42 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-18 16:42 - 2013-10-18 16:42 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-18 16:42 - 2013-10-18 16:42 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-18 16:42 - 2013-10-18 16:42 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-18 16:42 - 2013-10-18 16:42 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-18 16:42 - 2013-10-18 16:42 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-18 16:42 - 2013-10-18 16:42 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-18 16:42 - 2013-10-18 16:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-18 16:42 - 2013-10-18 16:42 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-18 16:42 - 2013-10-18 16:42 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-18 16:42 - 2013-10-18 16:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-18 16:35 - 2013-10-18 16:35 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-18 16:24 - 2010-02-23 10:16 - 00294912 _____ (Microsoft Corporation) C:\Windows\system32\browserchoice.exe
2013-10-18 16:21 - 2013-10-20 10:47 - 00000000 ____D C:\Windows\Panther
2013-10-18 16:21 - 2013-10-18 16:21 - 00008192 __RSH C:\BOOTSECT.BAK
2013-10-18 16:21 - 2010-11-21 05:23 - 00383786 __RSH C:\bootmgr
2013-10-18 16:10 - 2012-07-26 05:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2013-10-18 16:10 - 2012-07-26 05:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2013-10-18 16:10 - 2012-07-26 05:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2013-10-18 16:10 - 2012-07-26 05:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2013-10-18 16:10 - 2012-07-26 05:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2013-10-18 16:10 - 2012-07-26 04:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2013-10-18 16:10 - 2012-07-26 04:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2013-10-18 16:10 - 2012-06-02 16:57 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2013-10-18 16:07 - 2013-10-18 16:07 - 00000000 ____D C:\Windows\SysWOW64\x64
2013-10-18 16:07 - 2009-09-23 19:30 - 01002008 _____ (Intel Corporation) C:\Windows\SysWOW64\igxpun.exe
2013-10-18 16:05 - 2013-10-18 16:05 - 00000000 ____D C:\Windows\system32\MRT
2013-10-18 16:05 - 2013-09-26 01:46 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-10-18 16:04 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2013-10-18 16:04 - 2012-03-01 08:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-10-18 16:04 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2013-10-18 16:04 - 2012-03-01 07:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-10-18 16:04 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2013-10-18 16:03 - 2013-10-18 16:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2013-10-18 16:03 - 2013-10-18 16:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2013-10-18 16:02 - 2013-10-18 16:02 - 00000000 ____D C:\Program Files\AuthenTec
2013-10-18 16:00 - 2013-08-28 03:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-10-18 16:00 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2013-10-18 16:00 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-10-18 16:00 - 2012-11-20 07:48 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-10-18 16:00 - 2012-11-20 06:51 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-10-18 15:59 - 2013-08-29 04:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-10-18 15:59 - 2013-08-29 04:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-10-18 15:59 - 2013-08-29 04:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2013-10-18 15:59 - 2013-08-29 04:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-10-18 15:59 - 2013-08-29 04:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2013-10-18 15:59 - 2013-08-29 03:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-10-18 15:59 - 2013-08-29 03:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-10-18 15:59 - 2013-08-29 03:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-10-18 15:59 - 2013-08-29 03:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2013-10-18 15:59 - 2013-08-29 03:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-10-18 15:59 - 2013-08-29 03:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2013-10-18 15:59 - 2013-08-29 02:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-10-18 15:59 - 2013-08-29 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-10-18 15:59 - 2013-08-29 02:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-10-18 15:59 - 2013-08-29 02:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-10-18 15:59 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2013-10-18 15:59 - 2013-08-02 04:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2013-10-18 15:59 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2013-10-18 15:59 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2013-10-18 15:59 - 2013-08-02 02:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2013-10-18 15:59 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-10-18 15:59 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2013-10-18 15:59 - 2013-07-26 04:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2013-10-18 15:59 - 2013-07-26 03:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2013-10-18 15:59 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-10-18 15:59 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-10-18 15:59 - 2013-04-12 16:45 - 01656680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2013-10-18 15:59 - 2013-02-27 08:02 - 00111448 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2013-10-18 15:59 - 2013-02-27 07:48 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-10-18 15:59 - 2013-02-27 07:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2013-10-18 15:59 - 2013-02-27 06:49 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-10-18 15:59 - 2012-01-04 12:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2013-10-18 15:59 - 2012-01-04 10:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2013-10-18 15:58 - 2013-07-26 04:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2013-10-18 15:58 - 2013-07-26 03:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2013-10-18 15:58 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-10-18 15:58 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-10-18 15:58 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-10-18 15:58 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-10-18 15:58 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-10-18 15:58 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-10-18 15:58 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-10-18 15:58 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-10-18 15:58 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2013-10-18 15:58 - 2013-01-03 08:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2013-10-18 15:58 - 2012-12-07 15:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2013-10-18 15:58 - 2012-12-07 15:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2013-10-18 15:58 - 2012-12-07 14:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2013-10-18 15:58 - 2012-12-07 14:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2013-10-18 15:58 - 2012-12-07 13:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2013-10-18 15:58 - 2012-12-07 13:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2013-10-18 15:58 - 2012-12-07 13:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2013-10-18 15:58 - 2012-12-07 12:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2013-10-18 15:58 - 2012-11-30 07:45 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2013-10-18 15:58 - 2012-11-30 07:45 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2013-10-18 15:58 - 2012-11-30 07:43 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2013-10-18 15:58 - 2012-11-30 01:17 - 00420064 _____ C:\Windows\SysWOW64\locale.nls
2013-10-18 15:58 - 2012-11-30 01:15 - 00420064 _____ C:\Windows\system32\locale.nls
2013-10-18 15:58 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2013-10-18 15:58 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2013-10-18 15:58 - 2012-11-29 00:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2013-10-18 15:58 - 2012-10-03 19:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2013-10-18 15:58 - 2012-10-03 19:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2013-10-18 15:58 - 2012-10-03 19:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2013-10-18 15:58 - 2012-10-03 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2013-10-18 15:58 - 2012-10-03 19:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2013-10-18 15:58 - 2012-10-03 19:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2013-10-18 15:58 - 2012-10-03 18:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2013-10-18 15:58 - 2012-10-03 18:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2013-10-18 15:58 - 2012-10-03 18:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2013-10-18 15:58 - 2012-10-03 18:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-10-18 15:58 - 2012-08-22 20:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2013-10-18 15:58 - 2012-01-13 09:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2013-10-18 15:58 - 2011-12-30 08:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2013-10-18 15:58 - 2011-12-30 07:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2013-10-18 15:58 - 2011-05-04 07:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2013-10-18 15:58 - 2011-05-04 07:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2013-10-18 15:58 - 2011-05-04 07:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2013-10-18 15:58 - 2011-05-04 07:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2013-10-18 15:58 - 2011-05-04 07:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2013-10-18 15:58 - 2011-05-04 07:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2013-10-18 15:58 - 2011-05-04 07:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2013-10-18 15:58 - 2011-05-04 07:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2013-10-18 15:58 - 2011-05-04 07:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2013-10-18 15:58 - 2011-05-04 06:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2013-10-18 15:58 - 2011-05-04 06:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2013-10-18 15:58 - 2011-05-04 06:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2013-10-18 15:58 - 2011-05-04 06:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2013-10-18 15:58 - 2011-05-04 06:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2013-10-18 15:58 - 2011-05-04 06:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2013-10-18 15:58 - 2011-05-04 06:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2013-10-18 15:58 - 2011-05-04 06:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2013-10-18 15:58 - 2011-05-04 06:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2013-10-18 15:57 - 2013-08-05 04:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2013-10-18 15:57 - 2013-06-06 07:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2013-10-18 15:57 - 2013-06-06 07:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2013-10-18 15:57 - 2013-06-06 07:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2013-10-18 15:57 - 2013-06-06 07:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2013-10-18 15:57 - 2013-06-06 06:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2013-10-18 15:57 - 2013-06-06 06:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2013-10-18 15:57 - 2013-06-06 06:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2013-10-18 15:57 - 2013-06-06 05:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2013-10-18 15:57 - 2013-06-06 05:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2013-10-18 15:57 - 2013-06-06 05:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2013-10-18 15:57 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-10-18 15:57 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-10-18 15:57 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2013-10-18 15:57 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2013-10-18 15:57 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-10-18 15:57 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-10-18 15:57 - 2013-03-19 07:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2013-10-18 15:57 - 2013-03-19 07:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2013-10-18 15:57 - 2013-02-15 08:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-10-18 15:57 - 2013-02-15 08:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-10-18 15:57 - 2013-02-15 08:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2013-10-18 15:57 - 2013-02-15 06:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-10-18 15:57 - 2013-02-15 06:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2013-10-18 15:57 - 2013-02-15 05:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-10-18 15:57 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2013-10-18 15:57 - 2012-11-02 07:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2013-10-18 15:57 - 2012-11-02 07:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2013-10-18 15:57 - 2012-11-01 07:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2013-10-18 15:57 - 2012-11-01 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2013-10-18 15:57 - 2012-11-01 06:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2013-10-18 15:57 - 2012-11-01 06:47 - 01236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2013-10-18 15:57 - 2012-10-09 20:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2013-10-18 15:57 - 2012-10-09 20:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2013-10-18 15:57 - 2012-10-09 19:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2013-10-18 15:57 - 2012-10-09 19:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2013-10-18 15:57 - 2012-09-26 00:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2013-10-18 15:57 - 2012-09-26 00:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2013-10-18 15:57 - 2012-08-22 20:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2013-10-18 15:57 - 2012-07-04 22:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2013-10-18 15:57 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2013-10-18 15:57 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2013-10-18 15:57 - 2012-04-26 07:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2013-10-18 15:57 - 2012-04-26 07:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2013-10-18 15:57 - 2012-04-26 07:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2013-10-18 15:57 - 2012-03-17 09:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2013-10-18 15:57 - 2011-11-17 08:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2013-10-18 15:57 - 2011-11-17 07:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2013-10-18 15:57 - 2011-07-09 04:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2013-10-18 15:57 - 2011-06-16 07:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2013-10-18 15:57 - 2011-06-16 06:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2013-10-18 15:57 - 2011-04-29 05:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2013-10-18 15:57 - 2011-04-29 05:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2013-10-18 15:57 - 2011-04-29 05:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2013-10-18 15:57 - 2011-04-27 04:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2013-10-18 15:57 - 2011-04-27 04:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2013-10-18 15:57 - 2011-04-23 00:15 - 00027520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2013-10-18 15:57 - 2011-04-09 08:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2013-10-18 15:57 - 2011-04-09 07:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2013-10-18 15:57 - 2011-03-11 08:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2013-10-18 15:57 - 2011-03-11 08:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2013-10-18 15:57 - 2011-03-11 07:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2013-10-18 15:57 - 2011-03-11 07:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2013-10-18 15:57 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2013-10-18 15:57 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2013-10-18 15:57 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2013-10-18 15:57 - 2010-06-26 05:55 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2013-10-18 15:57 - 2010-06-26 05:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2013-10-18 15:56 - 2013-09-14 03:10 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-10-18 15:56 - 2013-09-08 04:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-10-18 15:56 - 2013-09-08 04:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2013-10-18 15:56 - 2013-09-08 04:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2013-10-18 15:56 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-10-18 15:56 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-10-18 15:56 - 2013-07-12 12:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2013-10-18 15:56 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-10-18 15:56 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-10-18 15:56 - 2013-07-04 14:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2013-10-18 15:56 - 2013-07-04 14:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2013-10-18 15:56 - 2013-07-04 14:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2013-10-18 15:56 - 2013-07-04 13:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2013-10-18 15:56 - 2013-07-04 13:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2013-10-18 15:56 - 2013-07-04 13:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2013-10-18 15:56 - 2013-07-04 12:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2013-10-18 15:56 - 2013-07-03 06:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2013-10-18 15:56 - 2013-07-03 06:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2013-10-18 15:56 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-10-18 15:56 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2013-10-18 15:56 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-10-18 15:56 - 2013-04-26 01:30 - 01505280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-10-18 15:56 - 2013-04-01 00:52 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2013-10-18 15:56 - 2013-02-12 06:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2013-10-18 15:56 - 2012-11-22 07:44 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2013-10-18 15:56 - 2012-11-22 06:45 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2013-10-18 15:56 - 2012-08-21 23:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2013-10-18 15:56 - 2012-08-11 02:56 - 00715776 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2013-10-18 15:56 - 2012-08-11 01:56 - 00542208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2013-10-18 15:56 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2013-10-18 15:56 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2013-10-18 15:56 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2013-10-18 15:56 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2013-10-18 15:56 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2013-10-18 15:56 - 2012-06-02 07:50 - 00458704 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-10-18 15:56 - 2012-06-02 07:48 - 00151920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-10-18 15:56 - 2012-06-02 07:48 - 00095600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-10-18 15:56 - 2012-06-02 07:45 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-10-18 15:56 - 2012-06-02 06:40 - 00225280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-10-18 15:56 - 2012-06-02 06:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-10-18 15:56 - 2012-06-02 06:34 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-10-18 15:56 - 2012-05-01 07:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2013-10-18 15:56 - 2012-04-28 05:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2013-10-18 15:56 - 2012-04-07 14:31 - 03216384 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2013-10-18 15:56 - 2012-04-07 13:26 - 02342400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2013-10-18 15:56 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2013-10-18 15:56 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2013-10-18 15:56 - 2011-11-17 08:35 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-10-18 15:56 - 2011-11-17 08:35 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-10-18 15:56 - 2011-11-17 08:35 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-10-18 15:56 - 2011-11-17 08:35 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-10-18 15:56 - 2011-11-17 08:33 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-10-18 15:56 - 2011-10-26 07:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2013-10-18 15:56 - 2011-10-26 07:25 - 00366592 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2013-10-18 15:56 - 2011-10-26 06:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2013-10-18 15:56 - 2011-10-26 06:32 - 00514560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2013-10-18 15:56 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2013-10-18 15:56 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2013-10-18 15:56 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2013-10-18 15:56 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2013-10-18 15:56 - 2011-08-17 07:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2013-10-18 15:56 - 2011-08-17 07:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2013-10-18 15:56 - 2011-08-17 06:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2013-10-18 15:56 - 2011-08-17 06:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2013-10-18 15:56 - 2011-06-15 12:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2013-10-18 15:56 - 2011-06-15 12:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2013-10-18 15:56 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2013-10-18 15:56 - 2011-06-15 12:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2013-10-18 15:56 - 2011-06-15 10:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2013-10-18 15:56 - 2011-06-15 10:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2013-10-18 15:56 - 2011-06-15 10:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2013-10-18 15:56 - 2011-06-15 10:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2013-10-18 15:56 - 2011-06-15 10:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2013-10-18 15:56 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2013-10-18 15:56 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2013-10-18 15:56 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2013-10-18 15:56 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2013-10-18 15:56 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2013-10-18 15:56 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2013-10-18 15:56 - 2011-03-03 08:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2013-10-18 15:56 - 2011-03-03 08:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2013-10-18 15:56 - 2011-03-03 08:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2013-10-18 15:56 - 2011-03-03 07:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2013-10-18 15:56 - 2011-03-03 07:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2013-10-18 15:56 - 2011-02-25 08:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2013-10-18 15:56 - 2011-02-25 07:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2013-10-18 15:56 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2013-10-18 15:56 - 2011-02-05 19:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2013-10-18 15:56 - 2011-02-05 19:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2013-10-18 15:56 - 2011-02-05 19:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2013-10-18 15:56 - 2011-02-05 19:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2013-10-18 15:56 - 2011-02-05 19:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2013-10-18 15:56 - 2011-02-05 19:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2013-10-18 15:56 - 2011-02-05 19:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2013-10-18 15:56 - 2010-12-23 12:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2013-10-18 15:56 - 2010-12-23 12:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2013-10-18 15:56 - 2010-12-23 12:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2013-10-18 15:56 - 2010-12-23 07:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2013-10-18 15:56 - 2010-12-23 07:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2013-10-18 15:56 - 2010-12-23 07:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2013-10-18 15:55 - 2013-08-01 14:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2013-10-18 15:55 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-10-18 15:55 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-10-18 15:55 - 2013-04-10 08:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2013-10-18 15:55 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2013-10-18 15:55 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2013-10-18 15:55 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2013-10-18 15:55 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2013-10-18 15:55 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2013-10-18 15:55 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2013-10-18 15:55 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2013-10-18 15:55 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2013-10-18 15:55 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2013-10-18 15:55 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2013-10-18 15:55 - 2011-02-03 13:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2013-10-18 15:47 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2013-10-18 15:44 - 2012-02-11 08:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2013-10-18 15:44 - 2012-02-11 08:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2013-10-18 15:41 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2013-10-18 15:41 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2013-10-18 15:35 - 2013-10-18 18:10 - 00001413 _____ C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-18 15:34 - 2013-10-18 18:10 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-18 15:34 - 2013-10-18 18:10 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-18 15:34 - 2012-06-03 00:19 - 02428952 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2013-10-18 15:34 - 2012-06-03 00:19 - 00057880 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2013-10-18 15:34 - 2012-06-03 00:19 - 00044056 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2013-10-18 15:34 - 2012-06-03 00:15 - 02622464 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2013-10-18 15:33 - 2013-10-18 15:33 - 00000020 ___SH C:\Users\Steve\ntuser.ini
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Vorlagen
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Startmenü
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Netzwerkumgebung
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Lokale Einstellungen
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Eigene Dateien
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Druckumgebung
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Documents\Eigene Musik
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Documents\Eigene Bilder
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Local\Verlauf
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Local\Anwendungsdaten
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Anwendungsdaten
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 ____D C:\Users\Steve\AppData\Local\VirtualStore
2013-10-18 15:33 - 2012-06-03 00:19 - 00701976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2013-10-18 15:33 - 2012-06-03 00:19 - 00038424 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2013-10-18 15:33 - 2012-06-03 00:15 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2013-10-18 15:33 - 2012-06-02 15:19 - 00186752 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2013-10-18 15:33 - 2012-06-02 15:15 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2013-10-18 15:33 - 2009-07-14 06:54 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-10-18 15:33 - 2009-07-14 06:49 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-10-18 15:32 - 2013-10-18 15:34 - 00000000 ____D C:\Users\Steve
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 __SHD C:\Recovery
2013-10-18 15:25 - 2013-10-20 15:05 - 01148534 _____ C:\Windows\WindowsUpdate.log
2013-10-18 15:25 - 2013-10-18 15:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf

==================== One Month Modified Files and Folders =======

2013-10-20 15:24 - 2013-10-20 15:24 - 00000837 _____ C:\Users\Steve\Desktop\JRT.txt
2013-10-20 15:19 - 2013-10-20 15:19 - 00000000 ____D C:\Windows\ERUNT
2013-10-20 15:18 - 2013-10-20 15:18 - 01033335 _____ (Thisisu) C:\Users\Steve\Downloads\JRT.exe
2013-10-20 15:18 - 2013-10-18 15:25 - 01148534 _____ C:\Windows\WindowsUpdate.log
2013-10-20 15:12 - 2011-04-12 09:43 - 00654166 _____ C:\Windows\system32\perfh007.dat
2013-10-20 15:12 - 2011-04-12 09:43 - 00130006 _____ C:\Windows\system32\perfc007.dat
2013-10-20 15:12 - 2009-07-14 07:13 - 01498506 _____ C:\Windows\system32\PerfStringBackup.INI
2013-10-20 15:11 - 2013-10-20 15:11 - 00000971 _____ C:\Users\Steve\Desktop\AdwCleaner[S0].txt
2013-10-20 15:08 - 2013-10-18 18:18 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-10-20 15:07 - 2013-10-20 15:07 - 00000056 _____ C:\Windows\setupact.log
2013-10-20 15:07 - 2013-10-20 15:07 - 00000000 _____ C:\Windows\setuperr.log
2013-10-20 15:07 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-10-20 15:06 - 2009-07-14 06:45 - 00020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-10-20 15:06 - 2009-07-14 06:45 - 00020784 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-10-20 15:05 - 2013-10-20 14:55 - 00000000 ____D C:\AdwCleaner
2013-10-20 14:55 - 2013-10-20 14:55 - 01056666 _____ C:\Users\Steve\Downloads\adwcleaner.exe
2013-10-20 14:55 - 2013-10-20 14:55 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-10-20 14:55 - 2013-10-20 14:55 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Malwarebytes
2013-10-20 14:55 - 2013-10-20 14:55 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-10-20 14:55 - 2013-10-20 14:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-10-20 14:55 - 2013-10-20 14:54 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Steve\Downloads\mbam-setup-1.75.0.1300.exe
2013-10-20 14:47 - 2013-10-20 14:47 - 00115777 _____ C:\Users\Steve\Desktop\FRST.txt
2013-10-20 14:47 - 2013-10-20 14:46 - 00014419 _____ C:\Users\Steve\Desktop\Addition.txt
2013-10-20 14:33 - 2013-10-20 14:33 - 05647048 _____ (Auslogics Labs Pty Ltd                                      ) C:\Users\Steve\Downloads\disk-defrag-setup.exe
2013-10-20 14:31 - 2013-10-18 18:18 - 00001108 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-10-20 14:07 - 2013-10-20 14:07 - 00000568 _____ C:\Users\Steve\Desktop\Gmer.txt
2013-10-20 13:56 - 2013-10-20 13:56 - 00377856 _____ C:\Users\Steve\Downloads\gmer_2.1.19163.exe
2013-10-20 13:55 - 2013-10-20 13:55 - 00115982 _____ C:\Users\Steve\Desktop\FRST1.txt
2013-10-20 13:53 - 2013-10-20 13:53 - 01954548 _____ (Farbar) C:\Users\Steve\Downloads\FRST64.exe
2013-10-20 11:27 - 2013-10-19 17:54 - 00000000 ____D C:\ProgramData\VMware
2013-10-20 11:25 - 2013-10-19 18:26 - 00000000 ____D C:\Users\Steve\AppData\Roaming\VMware
2013-10-20 10:51 - 2013-10-19 18:26 - 00000000 ____D C:\Users\Steve\AppData\Local\VMware
2013-10-20 10:47 - 2013-10-18 16:21 - 00000000 ____D C:\Windows\Panther
2013-10-20 10:44 - 2013-10-20 10:44 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-10-20 10:44 - 2013-10-20 10:44 - 00000000 ____D C:\Program Files\CCleaner
2013-10-20 10:33 - 2013-10-20 10:33 - 00003288 _____ C:\Windows\System32\Tasks\{0A9D4DE6-6421-494C-8986-E5161A082308}
2013-10-20 10:32 - 2013-10-20 10:32 - 00003244 _____ C:\Windows\System32\Tasks\{0E9F07D3-76C4-4640-BB3B-DE87ED61D277}
2013-10-20 10:30 - 2013-10-19 18:33 - 00000000 ____D C:\Users\Steve\Documents\Virtual Machines
2013-10-19 18:25 - 2013-10-19 18:14 - 00000000 ____D C:\Users\Steve\AppData\Roaming\uTorrent
2013-10-19 17:54 - 2013-10-19 17:54 - 01526948 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-10-19 17:53 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-10-19 16:36 - 2013-10-19 16:36 - 00000000 ____D C:\Users\Steve\AppData\Roaming\TightVNC
2013-10-19 09:36 - 2013-10-19 09:36 - 00000000 ____D C:\Users\Steve\AppData\Roaming\UltraVNC
2013-10-19 09:33 - 2013-10-19 09:33 - 00000000 ____D C:\Users\Steve\AppData\Local\Cisco
2013-10-19 09:33 - 2013-10-19 09:33 - 00000000 ____D C:\ProgramData\Cisco
2013-10-19 09:33 - 2013-10-19 00:14 - 00000000 ____D C:\Program Files (x86)\Cisco
2013-10-19 09:32 - 2013-10-19 09:32 - 00000000 ____D C:\ProgramData\Oracle
2013-10-19 09:30 - 2013-10-19 09:30 - 00000000 ____D C:\ProgramData\Sun
2013-10-19 09:29 - 2013-10-19 09:30 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-19 09:29 - 2013-10-19 09:29 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-19 09:29 - 2013-10-19 09:29 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-19 09:25 - 2013-10-19 09:25 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-10-19 09:25 - 2013-10-19 09:25 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2013-10-19 09:25 - 2013-10-19 09:23 - 00000000 ____D C:\Program Files\Java
2013-10-19 09:16 - 2013-10-19 09:15 - 00000000 ____D C:\Program Files\Tracker Software
2013-10-19 00:38 - 2013-10-19 00:38 - 00000000 ____D C:\Users\Steve\AppData\Roaming\PwrMgr
2013-10-19 00:29 - 2013-10-19 00:29 - 00000000 ____D C:\Users\Steve\AppData\Local\Lenovo
2013-10-19 00:26 - 2013-10-19 00:26 - 00000000 ____D C:\ProgramData\Lenovo
2013-10-19 00:26 - 2013-10-19 00:26 - 00000000 ____D C:\Program Files\Common Files\Lenovo
2013-10-19 00:24 - 2009-07-14 05:20 - 00000000 __RSD C:\Windows\Media
2013-10-19 00:23 - 2013-10-19 00:23 - 00000000 ____D C:\swtools
2013-10-19 00:22 - 2013-10-19 00:22 - 00000000 ____D C:\Program Files (x86)\Intel
2013-10-19 00:19 - 2013-10-19 00:19 - 00000000 ____D C:\Intel
2013-10-19 00:16 - 2013-10-19 00:16 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Intel
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\ProgramData\Intel
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\Program Files\Intel
2013-10-19 00:14 - 2013-10-19 00:14 - 00000000 ____D C:\Program Files\Common Files\Intel
2013-10-19 00:12 - 2013-10-19 00:12 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2013-10-19 00:11 - 2013-10-19 00:11 - 00000000 ____D C:\Program Files\Synaptics
2013-10-18 23:14 - 2013-10-18 23:14 - 00000000 ____D C:\TDSSKiller_Quarantine
2013-10-18 22:53 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\LiveKernelReports
2013-10-18 20:42 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-10-18 19:01 - 2013-10-18 19:01 - 00000000 ____D C:\Windows\system32\appmgmt
2013-10-18 18:51 - 2013-10-18 18:51 - 00000000 ____D C:\FRST
2013-10-18 18:44 - 2013-10-18 18:44 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Avira
2013-10-18 18:33 - 2013-10-18 18:33 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-10-18 18:32 - 2013-10-18 18:32 - 00000000 ____D C:\ProgramData\Avira
2013-10-18 18:32 - 2013-10-18 18:32 - 00000000 ____D C:\Program Files (x86)\Avira
2013-10-18 18:26 - 2013-10-18 18:18 - 00004104 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2013-10-18 18:26 - 2013-10-18 18:18 - 00003852 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2013-10-18 18:20 - 2013-10-18 18:18 - 00000000 ____D C:\Users\Steve\AppData\Local\Google
2013-10-18 18:20 - 2013-10-18 18:18 - 00000000 ____D C:\Program Files (x86)\Google
2013-10-18 18:18 - 2013-10-18 18:17 - 00000000 ____D C:\Users\Steve\AppData\Local\Deployment
2013-10-18 18:17 - 2013-10-18 18:17 - 00058016 _____ C:\Users\Steve\AppData\Local\GDIPFONTCACHEV1.DAT
2013-10-18 18:17 - 2013-10-18 18:17 - 00000000 ____D C:\Users\Steve\AppData\Local\Apps\2.0
2013-10-18 18:10 - 2013-10-18 18:10 - 00000000 ____D C:\Users\Steve\AppData\Roaming\Adobe
2013-10-18 18:10 - 2013-10-18 15:35 - 00001413 _____ C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-10-18 18:10 - 2013-10-18 15:34 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-10-18 18:10 - 2013-10-18 15:34 - 00000000 ___RD C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-10-18 18:09 - 2013-10-18 18:09 - 00003538 _____ C:\Windows\System32\Tasks\CreateChoiceProcessTask
2013-10-18 18:08 - 2009-07-14 06:45 - 00275856 _____ C:\Windows\system32\FNTCACHE.DAT
2013-10-18 18:05 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-10-18 18:05 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\tr-TR
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\tr-TR
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-10-18 18:05 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2013-10-18 18:04 - 2011-04-12 09:55 - 00000000 ____D C:\Program Files\Windows Journal
2013-10-18 16:42 - 2013-10-18 16:42 - 19252224 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 14335488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02876928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-10-18 16:42 - 2013-10-18 16:42 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-10-18 16:42 - 2013-10-18 16:42 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 02048512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-10-18 16:42 - 2013-10-18 16:42 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-10-18 16:42 - 2013-10-18 16:42 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-10-18 16:42 - 2013-10-18 16:42 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-10-18 16:42 - 2013-10-18 16:42 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-10-18 16:42 - 2013-10-18 16:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-10-18 16:42 - 2013-10-18 16:42 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-10-18 16:42 - 2013-10-18 16:42 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-10-18 16:42 - 2013-10-18 16:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-10-18 16:42 - 2013-10-18 16:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-10-18 16:42 - 2013-10-18 16:42 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-10-18 16:35 - 2013-10-18 16:35 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-18 16:35 - 2013-10-18 16:35 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-10-18 16:21 - 2013-10-18 16:21 - 00008192 __RSH C:\BOOTSECT.BAK
2013-10-18 16:21 - 2009-07-14 07:38 - 00025600 ___SH C:\Windows\system32\config\BCD-Template.LOG
2013-10-18 16:21 - 2009-07-14 07:32 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2013-10-18 16:07 - 2013-10-18 16:07 - 00000000 ____D C:\Windows\SysWOW64\x64
2013-10-18 16:05 - 2013-10-18 16:05 - 00000000 ____D C:\Windows\system32\MRT
2013-10-18 16:03 - 2013-10-18 16:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_tcwbf_01_09_00.Wdf
2013-10-18 16:03 - 2013-10-18 16:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_WinUSB_01009.Wdf
2013-10-18 16:02 - 2013-10-18 16:02 - 00000000 ____D C:\Program Files\AuthenTec
2013-10-18 16:02 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2013-10-18 15:34 - 2013-10-18 15:32 - 00000000 ____D C:\Users\Steve
2013-10-18 15:33 - 2013-10-18 15:33 - 00000020 ___SH C:\Users\Steve\ntuser.ini
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Vorlagen
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Startmenü
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Netzwerkumgebung
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Lokale Einstellungen
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Eigene Dateien
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Druckumgebung
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Documents\Eigene Musik
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Documents\Eigene Bilder
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Local\Verlauf
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\AppData\Local\Anwendungsdaten
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 _SHDL C:\Users\Steve\Anwendungsdaten
2013-10-18 15:33 - 2013-10-18 15:33 - 00000000 ____D C:\Users\Steve\AppData\Local\VirtualStore
2013-10-18 15:33 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\restore
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Programme
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Favoriten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-10-18 15:32 - 2013-10-18 15:32 - 00000000 __SHD C:\Recovery
2013-10-18 15:32 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Default
2013-10-18 15:32 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\Recovery
2013-10-18 15:32 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Windows NT
2013-10-18 15:26 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\sysprep
2013-10-18 15:25 - 2013-10-18 15:25 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WUDFUsbccidDriver_01_09_00.Wdf
2013-10-18 15:23 - 2011-04-12 09:55 - 00000000 ____D C:\Windows\CSC
2013-10-10 19:14 - 2013-10-18 18:32 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-10-10 19:14 - 2013-10-18 18:32 - 00105856 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-10-10 19:14 - 2013-10-18 18:32 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2013-10-10 19:14 - 2013-10-18 18:32 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2013-09-26 19:04 - 2013-10-19 00:10 - 01048816 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2013-09-26 19:04 - 2013-10-19 00:10 - 00540400 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCOM.dll
2013-09-26 19:04 - 2013-10-19 00:10 - 00461040 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2013-09-26 19:04 - 2013-10-19 00:10 - 00229616 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2013-09-26 19:04 - 2013-10-19 00:10 - 00178416 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo14.dll
2013-09-26 19:04 - 2013-10-19 00:10 - 00114416 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynTPCOM.dll
2013-09-26 01:46 - 2013-10-18 16:05 - 80541720 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

Some content of TEMP:
====================
C:\Users\Steve\AppData\Local\Temp\avgnt.exe
C:\Users\Steve\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-10-18 20:34

==================== End Of Log ============================
--- --- ---


Conduit kann ich nirgends mehr finden. Schein also entfernt worden zu sein?

Vielen Dank.

schrauber 20.10.2013 17:59

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)


Alle Zeitangaben in WEZ +1. Es ist jetzt 13:06 Uhr.

Copyright ©2000-2024, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129