Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten

Lilhomer · 19.06.2015, 08:49

Hallo,

es geht darum, dass sich mein PC aufhängt, sobald ich den Windows(8.1)-Updatebereich betreten möchte.
Aus diesem Grund wollte ich mal schauen ob vielleicht Adware auf meinem PC liegt, welcher vielleicht etwas damit zutun haben könnte.
Nun kommt die Fehlermeldung wenn ich den ADwareCleaner starten möchte, dass 'sqlite3.dll' nicht geladen werden kann. Woanders steht, dass es mit einem Viren oder Adware zusammenhängen könnte.

MBAM hat die letzten 2 Tage nichts gefunden, Avast nun ebenso wenig.

PS: Ich habe gerade gesehen das ich wohl im falschen Unterforum bin. Tut mir leid, bin einfach nur der Anleitung gefolgt :x

schrauber · 19.06.2015, 09:07

Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Lilhomer · 19.06.2015, 10:02

Okay, verstanden.

Code:

ATTFilter

defogger_disable by jpshortstuff (23.02.10.1)
Log created at 09:12 on 19/06/2015 (Lilhomers)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-

Part1 FRST

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2015
Ran by Lilhomers (administrator) on LILHOMER on 19-06-2015 09:13:44
Running from C:\Users\Lilhomers\Desktop
Loaded Profiles: Lilhomers (Available Profiles: Lilhomers)
Platform: Windows 8.1 Pro (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Avast Software s.r.o.) J:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\KOR\KorIME.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Avast Software s.r.o.) J:\Program Files\AVAST Software\Avast\AvastUI.exe
() J:\Program Files (x86)\DiskBoss\bin\diskbsa.exe
(NetEase) J:\Program Files (x86)\Netease\CloudMusic\cloudmusic.exe
(NetEase) J:\Program Files (x86)\Netease\CloudMusic\cloudmusic.exe
(NetEase) J:\Program Files (x86)\Netease\CloudMusic\cloudmusic.exe
(CMedia) C:\Program Files\ASUS Essence STX II Audio Device\Customapp\AsusAudioCenter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\CmiCnfgSTXII.dll,CMICtrlWnd
HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] ()
HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] ()
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-05-28] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => J:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-05] (Avast Software s.r.o.)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\Run: [Steam] => J:\Program Files (x86)\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation)
HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3095840 2015-04-30] (Nota Inc.)
HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\Run: [cloudmusic] => J:\Program Files (x86)\Netease\CloudMusic\cloudmusic.exe [331664 2015-04-30] (NetEase)
HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28917376 2015-05-14] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => J:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-06-03] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3862967198-3418230011-351970294-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll [2015-05-30] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> J:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-03] (Avast Software s.r.o.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll [2015-05-30] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre8\bin\ssv.dll [2015-05-30] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> J:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-03] (Avast Software s.r.o.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll [2015-05-30] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Lilhomers\AppData\Roaming\Mozilla\Firefox\Profiles\dG9XeQe7.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_160.dll [2015-06-19] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll [2015-05-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll [2015-05-30] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_160.dll [2015-06-19] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2015-04-17] (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll [2015-05-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll [2015-05-30] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-05-28] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-05-28] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-29] (Google Inc.)
FF Extension: Avira Browser Safety - C:\Users\Lilhomers\AppData\Roaming\Mozilla\Firefox\Profiles\dG9XeQe7.default\Extensions\abs@avira.com [2015-05-29]
FF Extension: Adblock Plus - C:\Users\Lilhomers\AppData\Roaming\Mozilla\Firefox\Profiles\dG9XeQe7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-01]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - J:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - J:\Program Files\AVAST Software\Avast\WebRep\FF [2015-06-03]
FF Extension: No Name - J:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found]

Chrome: 
=======
CHR Profile: C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (ProxFlow) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-06-05]
CHR Extension: (Google Drive) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-05]
CHR Extension: (YouTube) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-05]
CHR Extension: (Adblock for Youtube™) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-06-05]
CHR Extension: (Google Search) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-05]
CHR Extension: (AdBlock) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-06-05]
CHR Extension: (Avast Online Security) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-06-05]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-05]
CHR Extension: (Ghostery) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-06-05]
CHR Extension: (Google Wallet) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-05]
CHR Extension: (uMatrix) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ogfcmafjalglgifnmanfmnieipoejdcf [2015-06-05]
CHR Extension: (Gmail) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-05]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - J:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-05]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; J:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-03] (Avast Software s.r.o.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-21] (Microsoft Corporation)
R2 DiskBoss Service; J:\Program Files (x86)\DiskBoss\bin\diskbsa.exe [118784 2015-06-04] () [File not signed]
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [235744 2015-06-03] (EasyAntiCheat Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-28] (NVIDIA Corporation)
S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008 2015-05-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23006864 2015-05-28] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-06-13] ()
R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [282296 2015-06-18] ()
S4 TunngleService; J:\Program Files (x86)\Tunngle\TnglCtrl.exe [792016 2015-02-09] (Tunngle.net GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-06-03] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-06-03] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-06-03] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-06-03] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-06-03] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-03] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-06-03] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-06-03] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2000-01-01] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-28] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-05-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-05-28] (NVIDIA Corporation)
S3 RTCore64; J:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-05-25] ()
R3 STXIIService; C:\Windows\system32\drivers\STXII.sys [2736640 2014-02-18] (C-Media Inc)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-19 09:13 - 2015-06-19 09:13 - 02109952 _____ (Farbar) C:\Users\Lilhomers\Desktop\FRST64.exe
2015-06-19 09:13 - 2015-06-19 09:13 - 00015812 _____ C:\Users\Lilhomers\Desktop\FRST.txt
2015-06-19 09:13 - 2015-06-19 09:13 - 00000000 ____D C:\FRST
2015-06-19 09:12 - 2015-06-19 09:12 - 00000480 _____ C:\Users\Lilhomers\Desktop\defogger_disable.log
2015-06-19 09:12 - 2015-06-19 09:12 - 00000000 _____ C:\Users\Lilhomers\defogger_reenable
2015-06-19 09:06 - 2015-06-19 09:06 - 00050477 _____ C:\Users\Lilhomers\Desktop\Defogger.exe
2015-06-19 08:42 - 2015-06-19 08:42 - 00000578 _____ C:\Users\Lilhomers\Desktop\Neues Textdokument.txt
2015-06-19 08:14 - 2015-06-19 08:14 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\DiskBoss
2015-06-19 08:13 - 2015-06-19 08:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiskBoss
2015-06-18 01:32 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll
2015-06-18 01:32 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2015-06-18 01:32 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2015-06-18 01:32 - 2015-05-02 01:33 - 00410739 _____ C:\Windows\system32\ApnDatabase.xml
2015-06-18 01:32 - 2015-05-01 03:13 - 06521800 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2015-06-18 01:32 - 2015-05-01 03:13 - 01488000 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-06-18 01:32 - 2015-05-01 03:13 - 00261376 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2015-06-18 00:01 - 2015-06-18 00:01 - 00002583 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Excel Viewer.lnk
2015-06-18 00:00 - 2015-06-18 00:00 - 00000090 _____ C:\Users\Lilhomers\Desktop\Download Excel Viewer from Official Microsoft Download Center.url
2015-06-18 00:00 - 2015-06-18 00:00 - 00000000 ____D C:\Program Files (x86)\MSECache
2015-06-16 23:06 - 2015-06-17 20:09 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Real
2015-06-16 23:06 - 2015-06-17 20:09 - 00000000 ____D C:\Program Files (x86)\Real
2015-06-16 23:06 - 2015-06-16 23:06 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Real
2015-06-16 23:04 - 2015-06-17 20:08 - 00000000 ____D C:\ProgramData\Real
2015-06-16 22:57 - 2015-06-16 22:57 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\BaiduYunKernel
2015-06-16 22:57 - 2015-06-16 22:57 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\BaiduYunGuanjia
2015-06-16 22:57 - 2015-06-16 22:57 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\baidu
2015-06-13 23:46 - 2015-06-18 19:16 - 00282296 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2015-06-13 23:46 - 2015-06-18 19:16 - 00282296 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2015-06-13 23:46 - 2015-06-18 19:15 - 00215128 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2015-06-13 23:46 - 2015-06-14 12:03 - 00000000 ____D C:\Users\Lilhomers\Documents\BFBC2
2015-06-13 23:46 - 2015-06-13 23:54 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2015-06-13 23:46 - 2015-06-13 23:46 - 02434856 _____ C:\Windows\SysWOW64\pbsvc_bc2.exe
2015-06-13 23:46 - 2015-06-13 23:46 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\PunkBuster
2015-06-13 11:03 - 2015-06-13 11:03 - 00000101 _____ C:\Users\Lilhomers\Desktop\EUIV- Suggestions - Paradox Interactive Forums.url
2015-06-12 11:31 - 2015-06-12 11:31 - 00000799 _____ C:\DelFix.txt
2015-06-12 11:31 - 2015-06-12 11:31 - 00000000 ____D C:\Windows\ERUNT
2015-06-11 08:55 - 2015-06-11 08:57 - 00000000 ____D C:\ProgramData\BlueStacks
2015-06-11 08:54 - 2015-06-11 09:22 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2015-06-10 16:20 - 2015-05-16 00:01 - 00133288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-06-10 16:20 - 2015-05-15 23:05 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-06-10 16:20 - 2015-05-15 22:47 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-06-10 16:20 - 2015-05-15 22:23 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-06-10 16:20 - 2015-05-15 21:42 - 03682304 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-06-10 16:20 - 2015-05-15 21:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-06-10 16:20 - 2015-05-15 21:31 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-06-10 16:20 - 2015-05-15 21:28 - 02223104 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-06-10 16:20 - 2015-05-15 21:28 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-06-10 16:20 - 2015-05-15 21:28 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-06-10 16:20 - 2015-05-15 21:27 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-06-10 16:20 - 2015-05-15 21:21 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-06-10 16:20 - 2015-05-15 21:21 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-06-10 16:20 - 2015-05-15 21:19 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-06-10 16:20 - 2015-05-15 21:19 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-06-10 07:21 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-06-10 07:21 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-06-10 07:21 - 2015-05-25 15:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-06-10 07:21 - 2015-05-25 15:07 - 01430528 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-06-10 07:21 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-06-10 07:21 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-06-10 07:21 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-06-10 07:21 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-06-10 07:21 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-06-10 07:21 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-06-10 07:21 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-06-10 07:21 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-06-10 07:21 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-06-10 07:21 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-06-10 07:21 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-06-10 07:21 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-06-10 07:21 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-06-10 07:21 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-06-10 07:21 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-06-10 07:21 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-06-10 07:21 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-06-10 07:21 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-06-10 07:21 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-06-10 07:21 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-06-10 07:21 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-06-10 07:21 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-06-10 07:21 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-06-10 07:21 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-06-10 07:21 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-06-10 07:21 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-06-10 07:21 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-06-10 07:21 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-06-10 07:21 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-06-10 07:21 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-06-10 07:21 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-06-10 07:21 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-06-10 07:21 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-06-10 07:21 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-06-10 07:21 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-06-10 07:21 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-06-10 07:21 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-06-10 07:21 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-06-10 07:21 - 2015-05-22 15:08 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-06-10 07:21 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-06-10 07:21 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-06-10 07:21 - 2015-05-21 15:08 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-06-10 07:21 - 2015-05-21 15:08 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-06-10 07:21 - 2015-05-21 15:08 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-06-10 07:21 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-06-10 07:21 - 2015-05-21 15:08 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-06-10 07:21 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-06-10 07:21 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-06-10 07:21 - 2015-04-17 00:07 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-06-08 19:23 - 2015-06-08 19:23 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\NVIDIA
2015-06-07 09:48 - 2015-06-07 09:48 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\AVAST Software
2015-06-06 18:01 - 2015-06-06 18:01 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\de.devolo.dLAN.Cockpit
2015-06-05 18:11 - 2015-06-03 12:45 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe
2015-06-03 17:07 - 2015-06-03 17:07 - 00000000 ____D C:\Users\Lilhomers\Documents\Freemake
2015-06-03 17:07 - 2015-06-03 17:07 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2015-06-03 17:07 - 2015-06-03 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-06-03 17:07 - 2015-06-03 17:07 - 00000000 ____D C:\ProgramData\Freemake
2015-06-03 16:35 - 2015-06-03 16:51 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\NVIDIA Corporation
2015-06-03 16:35 - 2015-06-03 16:51 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\NVIDIA
2015-06-03 16:34 - 2015-06-03 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-06-03 16:34 - 2015-05-28 09:04 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-06-03 16:34 - 2015-05-28 09:04 - 01320304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-06-03 16:34 - 2015-05-28 09:04 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-06-03 16:33 - 2015-06-12 11:07 - 00000000 ____D C:\ProgramData\NVIDIA
2015-06-03 16:33 - 2015-06-03 16:38 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-06-03 16:33 - 2015-06-03 16:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-06-03 16:33 - 2015-05-28 09:04 - 42719888 _____ C:\Windows\system32\nvcompiler.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 37741712 _____ C:\Windows\SysWOW64\nvcompiler.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 30480528 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 22946960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 17486856 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 16185352 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 15864064 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 14987528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 14495448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 13304280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 12852152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 11830512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 10995528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-06-03 16:33 - 2015-05-28 09:04 - 03379680 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 02986392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435306.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435306.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 01050440 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00982856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00878816 _____ C:\Windows\system32\nvmcumd.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00407112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-06-03 16:33 - 2015-05-28 09:04 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00117576 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00112968 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00052880 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00048784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00039056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-06-03 16:33 - 2015-05-28 09:04 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-06-03 16:33 - 2015-05-28 09:04 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-06-03 16:33 - 2015-05-28 09:04 - 00030966 _____ C:\Windows\system32\nvinfo.pb
2015-06-03 16:33 - 2015-05-28 06:15 - 06872904 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-06-03 16:33 - 2015-05-28 06:15 - 03491984 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-06-03 16:33 - 2015-05-28 06:15 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-06-03 16:33 - 2015-05-28 06:15 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-06-03 16:33 - 2015-05-28 06:15 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-06-03 16:33 - 2015-05-28 06:15 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-06-03 16:33 - 2015-05-28 05:52 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-06-03 16:33 - 2015-05-27 12:48 - 04408727 _____ C:\Windows\system32\nvcoproc.bin
2015-06-03 16:32 - 2015-06-19 08:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-06-03 12:45 - 2015-06-12 11:07 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-06-03 12:45 - 2015-06-05 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-06-03 12:45 - 2015-06-03 12:45 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys
2015-06-03 12:45 - 2015-06-03 12:45 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys
2015-06-03 12:45 - 2015-06-03 12:45 - 00272248 _____ C:\Windows\system32\Drivers\aswVmm.sys
2015-06-03 12:45 - 2015-06-03 12:45 - 00137288 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys
2015-06-03 12:45 - 2015-06-03 12:45 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys
2015-06-03 12:45 - 2015-06-03 12:45 - 00089944 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-06-03 12:45 - 2015-06-03 12:45 - 00065736 _____ C:\Windows\system32\Drivers\aswRvrt.sys
2015-06-03 12:45 - 2015-06-03 12:45 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr
2015-06-03 12:45 - 2015-06-03 12:45 - 00029168 _____ C:\Windows\system32\Drivers\aswHwid.sys
2015-06-03 12:45 - 2015-06-03 12:45 - 00000000 ____D C:\Program Files\avast software
2015-06-03 12:44 - 2015-06-05 18:08 - 00000000 ____D C:\ProgramData\AVAST Software
2015-06-03 12:38 - 2015-03-03 15:17 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2015-06-03 11:42 - 2015-06-03 11:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-06-03 11:01 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-06-03 11:01 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-06-03 10:41 - 2015-06-03 10:41 - 00235744 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe
2015-06-03 10:27 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-06-03 10:27 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-06-02 20:35 - 2015-05-28 09:04 - 01571696 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-06-02 19:46 - 2015-06-02 19:46 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z
2015-06-02 15:47 - 2015-06-11 18:18 - 00000080 _____ C:\Users\Lilhomers\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-06-02 15:40 - 2015-06-02 15:40 - 00007605 _____ C:\Users\Lilhomers\AppData\Local\Resmon.ResmonCfg
2015-06-02 15:14 - 2015-06-02 15:14 - 00000000 ____D C:\Users\Lilhomers\Documents\Road Redemption
2015-06-02 15:12 - 2015-06-02 15:12 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2015-06-02 15:12 - 2015-06-02 15:12 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-06-02 15:12 - 2015-06-02 15:12 - 00000000 ____D C:\Program Files\MSBuild
2015-06-02 15:12 - 2015-06-02 15:12 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-06-02 15:12 - 2015-06-02 15:12 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-06-02 15:12 - 2013-08-03 06:48 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2015-06-02 15:12 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2015-06-02 13:42 - 2015-06-02 13:42 - 00000000 ____D C:\$WINDOWS.~BT
2015-06-02 13:35 - 2015-06-02 13:35 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2015-06-02 13:35 - 2015-06-02 13:35 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2015-06-02 11:42 - 2015-06-02 14:10 - 00000000 ____D C:\Windows\pss
2015-06-01 19:33 - 2015-06-01 19:33 - 00000000 ____D C:\ProgramData\Mozilla
2015-06-01 19:22 - 2015-06-16 12:26 - 00241664 ___SH C:\Users\Lilhomers\Desktop\Thumbs.db
2015-06-01 17:36 - 2015-06-01 17:36 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Gyazo
2015-06-01 17:19 - 2015-06-02 13:35 - 00000000 ____D C:\Windows\SysWOW64\directx
2015-06-01 15:22 - 2015-06-01 15:22 - 00000000 ____D C:\ProgramData\Mr Blade Designs
2015-06-01 15:21 - 2015-06-05 18:02 - 00000000 ____D C:\Program Files (x86)\numix
2015-06-01 13:31 - 2015-06-01 13:31 - 00000000 ____D C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8
2015-06-01 13:23 - 2015-06-01 14:13 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UltraUXThemePatcher
2015-06-01 12:25 - 2015-06-02 14:10 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenIV
2015-06-01 12:25 - 2015-06-01 12:25 - 00001326 _____ C:\Users\Lilhomers\Desktop\OpenIV.lnk
2015-06-01 07:43 - 2015-06-01 07:43 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\GWX
2015-05-31 19:27 - 2015-05-31 19:27 - 00000000 ____D C:\Users\Lilhomers\Documents\Paradox Interactive
2015-05-30 20:51 - 2015-06-14 01:13 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-05-30 20:51 - 2015-05-30 20:51 - 00003864 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2015-05-30 20:49 - 2015-06-14 11:05 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Adobe
2015-05-30 17:03 - 2015-06-02 14:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron
2015-05-30 17:03 - 2015-05-30 17:03 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Chromium
2015-05-30 15:16 - 2015-06-16 22:18 - 00000000 ____D C:\Users\Lilhomers\Documents\My Cheat Tables
2015-05-30 14:57 - 2015-06-03 16:35 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-05-30 11:22 - 2015-05-30 11:22 - 00000000 ____D C:\Users\Public\Documents\Tunngle
2015-05-30 11:22 - 2015-05-30 11:22 - 00000000 ____D C:\Users\Lilhomers\Documents\Tunngle
2015-05-30 11:22 - 2015-05-30 11:22 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Tunngle
2015-05-30 11:22 - 2015-05-30 11:22 - 00000000 ____D C:\ProgramData\Tunngle
2015-05-30 11:22 - 2015-05-30 11:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle
2015-05-30 11:22 - 2009-09-16 07:02 - 00031232 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys
2015-05-30 11:02 - 2015-05-30 11:02 - 00000000 ____D C:\Users\Lilhomers\Tracing
2015-05-30 11:00 - 2015-05-30 11:00 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Skype
2015-05-30 10:59 - 2015-06-18 21:20 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Skype
2015-05-30 10:59 - 2015-05-30 10:59 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-05-30 10:59 - 2015-05-30 10:59 - 00000000 ____D C:\ProgramData\Skype
2015-05-30 10:59 - 2015-05-30 10:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-05-30 07:46 - 2015-06-01 12:25 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\New Technology Studio
2015-05-30 07:46 - 2015-05-30 07:46 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\New Technology Studio
2015-05-30 07:42 - 2015-06-13 23:45 - 00035152 _____ C:\Windows\DirectX.log
2015-05-30 07:42 - 2015-06-10 18:09 - 00000000 ____D C:\Program Files\Rockstar Games
2015-05-30 07:42 - 2015-06-10 18:09 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-05-30 07:42 - 2015-05-30 07:42 - 00000000 ____D C:\Users\Lilhomers\Documents\Rockstar Games
2015-05-30 07:42 - 2015-05-30 07:42 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Rockstar Games
2015-05-30 07:42 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-05-30 07:05 - 2015-05-30 07:05 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\WinRAR
2015-05-30 06:05 - 2015-05-30 06:05 - 00000000 ____D C:\Windows\system32\appmgmt
2015-05-30 06:02 - 2015-05-30 06:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-05-30 06:02 - 2015-05-30 06:02 - 00000000 ____D C:\ProgramData\Intel
2015-05-30 06:02 - 2015-05-30 06:02 - 00000000 ____D C:\Program Files (x86)\Intel
2015-05-30 06:02 - 2000-01-01 02:00 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2015-05-30 06:02 - 2000-01-01 02:00 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2015-05-30 06:02 - 2000-01-01 02:00 - 00016344 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2015-05-30 06:01 - 2015-05-31 13:13 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-05-30 06:01 - 2015-05-30 06:01 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-05-30 06:00 - 2015-05-30 06:00 - 00000000 ____D C:\ProgramData\SlimWare Utilities, Inc
2015-05-30 06:00 - 2015-05-30 06:00 - 00000000 ____D C:\Intel
2015-05-30 05:58 - 2015-05-30 05:58 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers
2015-05-30 05:58 - 2015-05-30 05:58 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\SlimWare Utilities Inc
2015-05-30 05:50 - 2015-05-30 06:02 - 00000000 ____D C:\Program Files\Intel
2015-05-30 05:49 - 2015-05-30 05:49 - 00000000 ____D C:\ProgramData\IntelDLM
2015-05-30 05:48 - 2015-05-30 05:48 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Intel
2015-05-30 05:40 - 2015-05-30 05:40 - 00000864 _____ C:\Users\Public\Desktop\网易云音乐.lnk
2015-05-30 05:40 - 2015-05-30 05:40 - 00000864 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\网易云音乐.lnk
2015-05-30 05:40 - 2015-05-30 05:40 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Netease
2015-05-30 05:40 - 2015-05-30 05:40 - 00000000 ____D C:\ProgramData\NetEaseWinDA
2015-05-30 05:40 - 2015-05-30 05:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\网易云音乐
2015-05-30 05:34 - 2015-05-31 13:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-05-30 05:34 - 2015-05-30 05:34 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2015-05-30 05:34 - 2015-05-30 05:34 - 00111616 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2015-05-30 05:34 - 2015-05-30 05:34 - 00051139 _____ C:\Windows\CMICNFGSTXII.INI.cfl
2015-05-30 05:34 - 2015-05-30 05:34 - 00001025 _____ C:\Windows\CMICNFGSTXII.INI.imi
2015-05-30 05:34 - 2015-05-30 05:34 - 00000964 _____ C:\Windows\system\CMICNFGSTXII.INI
2015-05-30 05:34 - 2015-05-30 05:34 - 00000137 _____ C:\Windows\system\Dlap.pfx
2015-05-30 05:34 - 2015-05-30 05:34 - 00000004 _____ C:\Windows\SysWOW64\ê¬Îw
2015-05-30 05:34 - 2015-05-30 05:34 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\ASUS
2015-05-30 05:34 - 2015-05-30 05:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Essence STX II Audio Device
2015-05-30 05:34 - 2015-05-30 05:34 - 00000000 ____D C:\Program Files\ASUS Essence STX II Audio Device
2015-05-30 05:34 - 2015-05-30 05:34 - 00000000 ____D C:\Program Files (x86)\OpenAL
2015-05-30 05:34 - 2014-02-18 07:04 - 02736640 _____ (C-Media Inc) C:\Windows\system32\Drivers\STXII.sys
2015-05-30 05:34 - 2014-02-18 07:04 - 00315392 _____ (C-Media Electronics Inc.) C:\Windows\SysWOW64\CmiFltr_STXII.dll
2015-05-30 05:34 - 2014-02-18 07:04 - 00315392 _____ (C-Media Electronics Inc.) C:\Windows\system\CmiFltr_STXII.dll
2015-05-30 05:34 - 2014-02-18 07:04 - 00032768 _____ (C-Media Electronics Inc.) C:\Windows\system32\cmudaxp_STXII.dll
2015-05-30 05:34 - 2014-02-11 09:03 - 00000505 ____N C:\Windows\cmudaxp_STXII.ini
2015-05-30 05:34 - 2014-01-27 05:05 - 13463552 ____N (C-Media Corporation) C:\Windows\SysWOW64\CmiCnfgSTXII.dll
2015-05-30 05:34 - 2014-01-08 06:08 - 00465408 ____N (C-Media Electronics Inc.) C:\Windows\system32\cmasioSTXII64.dll
2015-05-30 05:34 - 2014-01-08 06:08 - 00303104 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\cmasioSTXII.dll
2015-05-30 05:34 - 2013-12-05 10:15 - 00005277 ____N C:\Windows\CMICNFGSTXII.INI.cfg
2015-05-30 05:34 - 2013-11-29 06:23 - 04650496 ____N C:\Windows\system32\CmiCnfgSTXII.cpl
2015-05-30 05:34 - 2013-11-25 06:01 - 00832000 ____N C:\Windows\system32\cmeauASUSSTX2.exe
2015-05-30 05:34 - 2013-11-22 05:35 - 00000058 ____N C:\Windows\system32\cmasioSTXII64.ini
2015-05-30 05:34 - 2013-11-22 05:35 - 00000054 ____N C:\Windows\SysWOW64\cmasioSTXII.ini
2015-05-30 05:34 - 2013-10-16 04:55 - 00143360 ____N C:\Windows\SysWOW64\VmixP8.dll
2015-05-30 05:34 - 2012-01-06 03:30 - 00212992 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\HsSrv2.dll
2015-05-30 05:34 - 2012-01-06 03:30 - 00212992 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\HsSrv.dll
2015-05-30 05:34 - 2012-01-06 03:30 - 00122880 ____N (C-Media Electronics Inc.) C:\Windows\system\HsSrv642.dll
2015-05-30 05:34 - 2012-01-06 03:30 - 00122880 ____N (C-Media Electronics Inc.) C:\Windows\system\HsSrv64.dll
2015-05-30 05:34 - 2009-08-19 10:00 - 00359424 ____N C:\Windows\system32\CmiInstallResAll64.dll
2015-05-30 05:34 - 2008-07-11 09:04 - 00200704 ____N C:\Windows\SysWOW64\HsMgr.exe
2015-05-30 05:34 - 2008-07-11 09:03 - 00282112 ____N C:\Windows\system\HsMgr64.exe
2015-05-30 05:34 - 2007-12-13 11:12 - 00122880 ____N (CMedia Electronics Inc.) C:\Windows\SysWOW64\Cm_Oal.dll
2015-05-30 05:34 - 2007-12-13 11:12 - 00122880 ____N (CMedia Electronics Inc.) C:\Windows\system32\Cm_Oal.dll
2015-05-30 05:34 - 2006-10-05 23:45 - 00524768 ____R (Microsoft Corporation) C:\Windows\difxapi.dll
2015-05-30 05:34 - 2006-09-13 20:21 - 00200704 ____N (C-Media) C:\Windows\SysWOW64\Cmpaoxy.dll
2015-05-30 05:32 - 2014-11-21 06:06 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe.bak
2015-05-30 05:32 - 2014-11-21 06:06 - 00821696 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll.bak
2015-05-30 05:32 - 2014-11-21 06:06 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll.bak
2015-05-30 05:31 - 2015-05-30 05:31 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-05-30 05:31 - 2015-05-30 05:31 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Shark007
2015-05-30 05:31 - 2015-05-30 05:31 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Advanced
2015-05-30 05:31 - 2015-05-30 05:31 - 00000000 ____D C:\ProgramData\Shark007
2015-05-30 05:31 - 2015-05-30 05:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shark007 Codecs
2015-05-30 05:31 - 2015-05-30 05:31 - 00000000 ____D C:\Program Files\Shark007
2015-05-30 05:31 - 2015-03-04 20:45 - 00260184 _____ C:\Windows\system32\unrar64.dll
2015-05-30 05:31 - 2015-02-28 12:22 - 03571200 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll
2015-05-30 05:31 - 2015-02-18 13:00 - 01929216 _____ (MPC-HC Team) C:\Windows\system32\VSFilter.dll
2015-05-30 05:31 - 2014-11-21 06:06 - 01478144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe.bak
2015-05-30 05:31 - 2014-11-21 06:06 - 00705008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll.bak
2015-05-30 05:31 - 2014-11-21 06:06 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll.bak
2015-05-30 05:31 - 2013-04-06 03:26 - 01679360 _____ C:\Windows\SysWOW64\ac3filter.acm.new
2015-05-30 05:31 - 2013-04-06 00:27 - 02231296 _____ C:\Windows\system32\ac3filter.acm.new
2015-05-30 05:31 - 2013-04-06 00:27 - 02231296 _____ C:\Windows\system32\ac3filter.acm
2015-05-30 05:31 - 2013-04-06 00:27 - 00324608 _____ (IntelleSoft) C:\Windows\system32\BugTrap-x64.dll
2015-05-30 05:31 - 2009-08-11 21:22 - 00580096 _____ C:\Windows\system32\ac3filter.acm.old
2015-05-30 05:31 - 2009-01-23 01:51 - 00124909 _____ (Open Source Software community project) C:\Windows\system32\pthreadGC2.dll
2015-05-30 05:30 - 2015-05-30 05:31 - 00000000 ____D C:\ProgramData\Advanced
2015-05-30 05:28 - 2015-06-05 18:08 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Notepad++
2015-05-30 05:28 - 2015-05-30 06:28 - 00000000 ____D C:\Program Files (x86)\Gyazo
2015-05-30 05:28 - 2015-05-30 05:28 - 00003762 _____ C:\Windows\System32\Tasks\GyazoUpdateTaskMachine
2015-05-30 05:28 - 2015-05-30 05:28 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-05-30 05:28 - 2015-05-30 05:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2015-05-30 05:28 - 2015-05-30 05:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2015-05-30 05:27 - 2015-05-30 05:27 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-05-30 05:27 - 2015-05-30 05:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-05-30 00:23 - 2015-05-30 00:23 - 00000000 ____D C:\Program Files\Common Files\Atheros
2015-05-30 00:18 - 2015-05-30 00:21 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Hero_Siege
2015-05-30 00:14 - 2015-05-30 00:14 - 00000000 ____D C:\SteamLibrary
2015-05-30 00:13 - 2015-05-30 00:13 - 01199175 _____ C:\Windows\unins001.exe
2015-05-30 00:13 - 2015-05-30 00:13 - 01198049 _____ C:\Windows\unins000.exe
2015-05-30 00:13 - 2015-05-30 00:13 - 00021131 _____ C:\Windows\unins001.dat
2015-05-30 00:13 - 2015-05-30 00:13 - 00010826 _____ C:\Windows\unins000.dat
2015-05-30 00:13 - 2015-05-30 00:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-05-30 00:13 - 2015-05-30 00:13 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-05-30 00:13 - 2015-05-30 00:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-05-30 00:13 - 2014-06-05 08:07 - 01177088 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll
2015-05-30 00:13 - 2014-06-05 08:07 - 00271360 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll
2015-05-30 00:13 - 2014-06-05 08:07 - 00271360 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\libssl32.dll
2015-05-30 00:13 - 2014-06-01 19:53 - 00460104 _____ (AutoIt Team) C:\Windows\SysWOW64\autoitx3.dll
2015-05-30 00:13 - 2014-01-25 14:30 - 00131072 _____ (Sereby Corporation) C:\Windows\SysWOW64\AiORuntimes.dll
2015-05-30 00:13 - 2013-12-23 15:44 - 00163480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 01070232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomctl.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00660120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomct2.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00617896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00444328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshflxgd.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00416408 _____ (Microsoft Corporation ) C:\Windows\SysWOW64\comct332.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00279192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatgrd.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00259736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msflxgrd.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00253080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatlst.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00222360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tabctl32.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00219288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\richtx32.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00218776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dblist32.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00212112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mci32.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00179352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmask32.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00170920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comct232.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00131728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00130712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstdfmt.dll
2015-05-30 00:13 - 2013-12-20 01:48 - 00127640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswinsck.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00119960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomm32.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00108696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstkprp.dll
2015-05-30 00:13 - 2013-12-20 01:48 - 00104088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\picclp32.ocx
2015-05-30 00:13 - 2013-12-20 01:48 - 00084624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysinfo.ocx
2015-05-30 00:13 - 2013-08-31 21:40 - 03115385 _____ (Red Hat) C:\Windows\SysWOW64\cygwin1.dll
2015-05-30 00:13 - 2012-06-14 15:36 - 00107520 _____ C:\Windows\SysWOW64\zlib1.dll
2015-05-30 00:13 - 2012-04-03 17:11 - 00138752 _____ C:\Windows\SysWOW64\libpng15.dll
2015-05-30 00:13 - 2011-10-12 04:09 - 04033440 _____ (Intel Corporation) C:\Windows\SysWOW64\libmmd.dll
2015-05-30 00:13 - 2011-10-01 09:16 - 00445016 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2015-05-30 00:13 - 2011-10-01 09:16 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\openal32.dll
2015-05-30 00:13 - 2011-01-12 14:36 - 01054208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71u.dll
2015-05-30 00:13 - 2011-01-12 14:25 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71DEU.dll
2015-05-30 00:13 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ITA.dll
2015-05-30 00:13 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71FRA.dll
2015-05-30 00:13 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ESP.dll
2015-05-30 00:13 - 2011-01-12 14:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ENU.dll
2015-05-30 00:13 - 2011-01-12 14:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71KOR.dll
2015-05-30 00:13 - 2011-01-12 14:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71JPN.dll
2015-05-30 00:13 - 2011-01-12 14:25 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71CHT.dll
2015-05-30 00:13 - 2011-01-12 14:25 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71CHS.dll
2015-05-30 00:13 - 2011-01-12 14:19 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2015-05-30 00:13 - 2011-01-12 13:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl71.dll
2015-05-30 00:13 - 2010-06-27 18:44 - 00053248 _____ (Adobe Systems, Incorporated) C:\Windows\system\plugin.dll
2015-05-30 00:13 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2015-05-30 00:13 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-05-30 00:13 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-05-30 00:13 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-05-30 00:13 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-05-30 00:13 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2015-05-30 00:13 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-05-30 00:13 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2015-05-30 00:13 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-05-30 00:13 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-05-30 00:13 - 2010-03-18 21:21 - 00799568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdia100.dll
2015-05-30 00:13 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-05-30 00:13 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-05-30 00:13 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-05-30 00:13 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-05-30 00:13 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-05-30 00:13 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-05-30 00:13 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-05-30 00:13 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-05-30 00:13 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-05-30 00:13 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-05-30 00:13 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-05-30 00:13 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-05-30 00:13 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-05-30 00:13 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-05-30 00:13 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-05-30 00:13 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-05-30 00:13 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-05-30 00:13 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_42.dll
2015-05-30 00:13 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-05-30 00:13 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_42.dll
2015-05-30 00:13 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-05-30 00:13 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-05-30 00:13 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-05-30 00:13 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-05-30 00:13 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-05-30 00:13 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-05-30 00:13 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-05-30 00:13 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-05-30 00:13 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-05-30 00:13 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-05-30 00:13 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_41.dll
2015-05-30 00:13 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_41.dll
2015-05-30 00:13 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-05-30 00:13 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-05-30 00:13 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-05-30 00:13 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-05-30 00:13 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-05-30 00:13 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-05-30 00:13 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-05-30 00:13 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-05-30 00:13 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-05-30 00:13 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-05-30 00:13 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-05-30 00:13 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-05-30 00:13 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_40.dll
2015-05-30 00:13 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_40.dll
2015-05-30 00:13 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-05-30 00:13 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-05-30 00:13 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-05-30 00:13 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll

Lilhomer · 19.06.2015, 10:05

Part2 FRST

Code:

ATTFilter

2015-05-30 00:13 - 2008-08-26 07:40 - 00162304 _____ C:\Windows\SysWOW64\libpng13.dll
2015-05-30 00:13 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-05-30 00:13 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-05-30 00:13 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-05-30 00:13 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-05-30 00:13 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-05-30 00:13 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-05-30 00:13 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-05-30 00:13 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_39.dll
2015-05-30 00:13 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_39.dll
2015-05-30 00:13 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-05-30 00:13 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-05-30 00:13 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-05-30 00:13 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-05-30 00:13 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-05-30 00:13 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-05-30 00:13 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-05-30 00:13 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-05-30 00:13 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-05-30 00:13 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-05-30 00:13 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-05-30 00:13 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_38.dll
2015-05-30 00:13 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_38.dll
2015-05-30 00:13 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-05-30 00:13 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-05-30 00:13 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-05-30 00:13 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-05-30 00:13 - 2008-03-14 18:21 - 01008128 _____ (GnuWin32 <hxxp://gnuwin32.sourceforge.net>) C:\Windows\SysWOW64\libiconv2.dll
2015-05-30 00:13 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-05-30 00:13 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-05-30 00:13 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-05-30 00:13 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-05-30 00:13 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-05-30 00:13 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-05-30 00:13 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_37.dll
2015-05-30 00:13 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_37.dll
2015-05-30 00:13 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-05-30 00:13 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-05-30 00:13 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-05-30 00:13 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-05-30 00:13 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-05-30 00:13 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-05-30 00:13 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_2.dll
2015-05-30 00:13 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_2.dll
2015-05-30 00:13 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-05-30 00:13 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-05-30 00:13 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_36.dll
2015-05-30 00:13 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcompiler_36.dll
2015-05-30 00:13 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-05-30 00:13 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-05-30 00:13 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-05-30 00:13 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-05-30 00:13 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-05-30 00:13 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-05-30 00:13 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_35.dll
2015-05-30 00:13 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcompiler_35.dll
2015-05-30 00:13 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-05-30 00:13 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-05-30 00:13 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-05-30 00:13 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-05-30 00:13 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-05-30 00:13 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-05-30 00:13 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_34.dll
2015-05-30 00:13 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcompiler_34.dll
2015-05-30 00:13 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-05-30 00:13 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-05-30 00:13 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-05-30 00:13 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-05-30 00:13 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-05-30 00:13 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-05-30 00:13 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-05-30 00:13 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-05-30 00:13 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-05-30 00:13 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-05-30 00:13 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_33.dll
2015-05-30 00:13 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcompiler_33.dll
2015-05-30 00:13 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-05-30 00:13 - 2007-01-30 23:04 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll
2015-05-30 00:13 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-05-30 00:13 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-05-30 00:13 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-05-30 00:13 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-05-30 00:13 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-05-30 00:13 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-05-30 00:13 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-05-30 00:13 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-05-30 00:13 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-05-30 00:13 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-05-30 00:13 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-05-30 00:13 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-05-30 00:13 - 2006-08-26 01:28 - 01017344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll
2015-05-30 00:13 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ITA.dll
2015-05-30 00:13 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70FRA.dll
2015-05-30 00:13 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ESP.dll
2015-05-30 00:13 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70DEU.dll
2015-05-30 00:13 - 2006-08-26 01:15 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ENU.dll
2015-05-30 00:13 - 2006-08-26 01:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70KOR.dll
2015-05-30 00:13 - 2006-08-26 01:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70JPN.dll
2015-05-30 00:13 - 2006-08-26 01:15 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70CHT.dll
2015-05-30 00:13 - 2006-08-26 01:15 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70CHS.dll
2015-05-30 00:13 - 2006-08-26 01:07 - 01024000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll
2015-05-30 00:13 - 2006-08-26 00:17 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl70.dll
2015-05-30 00:13 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-05-30 00:13 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-05-30 00:13 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-05-30 00:13 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-05-30 00:13 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-05-30 00:13 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-05-30 00:13 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-05-30 00:13 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-05-30 00:13 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-05-30 00:13 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-05-30 00:13 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-05-30 00:13 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-05-30 00:13 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-05-30 00:13 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-05-30 00:13 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-05-30 00:13 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-05-30 00:13 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-05-30 00:13 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-05-30 00:13 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-05-30 00:13 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-05-30 00:13 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-05-30 00:13 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-05-30 00:13 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-05-30 00:13 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-05-30 00:13 - 2005-05-06 14:52 - 00103424 _____ (GNU <www.gnu.org>) C:\Windows\SysWOW64\libintl3.dll
2015-05-30 00:13 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-05-30 00:13 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-05-30 00:13 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-05-30 00:13 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-05-30 00:13 - 2005-01-20 20:25 - 00054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvci70.dll
2015-05-30 00:13 - 2002-01-05 06:40 - 00487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp70.dll
2015-05-30 00:13 - 1996-01-12 04:00 - 00935632 _____ (Microsoft Corporation) C:\Windows\system\vb40016.dll
2015-05-30 00:13 - 1996-01-12 04:00 - 00722192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb40032.dll
2015-05-30 00:13 - 1994-11-17 14:00 - 00210944 _____ C:\Windows\system\msvcrt10.dll
2015-05-30 00:13 - 1993-05-11 20:00 - 00398416 _____ (Microsoft Corporation) C:\Windows\system\vbrun300.dll
2015-05-30 00:13 - 1992-10-21 01:00 - 00356992 _____ (Microsoft Corporation) C:\Windows\system\vbrun200.dll
2015-05-30 00:13 - 1991-05-10 02:00 - 00271264 _____ C:\Windows\system\vbrun100.dll
2015-05-30 00:12 - 2015-06-19 08:38 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-30 00:12 - 2015-06-19 07:52 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-05-30 00:12 - 2015-05-30 00:12 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2015-05-30 00:12 - 2015-05-30 00:12 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\Windows\SysWOW64\Adobe
2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\ProgramData\Sun
2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\ProgramData\Oracle
2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\Program Files\Java
2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\Program Files (x86)\Java
2015-05-29 23:57 - 2015-06-12 11:13 - 00507068 _____ C:\Windows\system32\perfh012.dat
2015-05-29 23:57 - 2015-06-12 11:13 - 00135332 _____ C:\Windows\system32\perfc012.dat
2015-05-29 23:57 - 2015-05-29 23:57 - 00159486 _____ C:\Windows\system32\perfi012.dat
2015-05-29 23:57 - 2015-05-29 23:57 - 00033362 _____ C:\Windows\system32\perfd012.dat
2015-05-29 23:57 - 2015-05-29 23:57 - 00000000 ____D C:\Windows\SysWOW64\ko
2015-05-29 23:57 - 2015-05-29 23:57 - 00000000 ____D C:\Windows\system32\ko
2015-05-29 23:54 - 2013-08-21 23:59 - 00000468 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Messenger Center.lnk
2015-05-29 23:54 - 2013-08-21 23:59 - 00000468 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Player Center.lnk
2015-05-29 23:52 - 2015-05-29 23:52 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Steam
2015-05-29 23:51 - 2015-05-29 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-05-29 23:50 - 2015-05-29 22:58 - 00000000 ____D C:\Windows\Panther
2015-05-29 23:50 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-05-29 23:50 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-05-29 23:50 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-05-29 23:50 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-05-29 23:50 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-05-29 23:50 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2015-05-29 23:49 - 2015-06-19 08:21 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-29 23:49 - 2015-05-29 23:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-05-29 23:49 - 2015-05-29 23:49 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-05-29 23:49 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-29 23:49 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-29 23:49 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-05-29 23:48 - 2015-05-29 23:48 - 00000000 ____D C:\NVIDIA
2015-05-29 23:48 - 2015-05-12 08:27 - 17540416 _____ (NVIDIA Corporation) C:\Windows\system32\SET9EA7.tmp
2015-05-29 23:48 - 2015-05-12 08:27 - 15048816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\SETA5DC.tmp
2015-05-29 23:48 - 2015-05-12 08:27 - 12849056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\SETA279.tmp
2015-05-29 23:48 - 2015-05-12 08:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\SET695E.tmp
2015-05-29 23:45 - 2015-05-29 23:45 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\AviraSpeedup
2015-05-29 23:29 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll
2015-05-29 23:29 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll
2015-05-29 23:29 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll
2015-05-29 23:29 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-05-29 23:29 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll
2015-05-29 23:29 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll
2015-05-29 23:29 - 2015-01-06 05:01 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-05-29 23:29 - 2015-01-06 04:59 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-05-29 23:29 - 2015-01-06 03:12 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2015-05-29 23:29 - 2015-01-06 03:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2015-05-29 23:29 - 2014-11-15 21:05 - 00801584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2015-05-29 23:29 - 2014-11-15 08:29 - 00962216 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2015-05-29 23:29 - 2014-11-14 08:57 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-05-29 23:29 - 2014-11-14 07:03 - 00885760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-05-29 23:29 - 2014-11-10 20:06 - 02485056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-05-29 23:29 - 2014-11-10 20:06 - 00473408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-05-29 23:29 - 2014-11-10 20:06 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-05-29 23:29 - 2014-11-10 20:06 - 00136512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-05-29 23:29 - 2014-11-10 04:57 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2015-05-29 23:29 - 2014-11-10 03:37 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-05-29 23:29 - 2014-11-10 03:34 - 01084416 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-05-29 23:29 - 2014-11-10 03:26 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-05-29 23:29 - 2014-11-10 03:20 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2015-05-29 23:29 - 2014-11-10 03:09 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-05-29 23:29 - 2014-11-10 03:08 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2015-05-29 23:29 - 2014-11-10 03:06 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-05-29 23:29 - 2014-11-10 02:57 - 00624640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2015-05-29 23:29 - 2014-11-10 02:57 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-05-29 23:29 - 2014-11-08 06:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2015-05-29 23:29 - 2014-11-08 05:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys
2015-05-29 23:29 - 2014-11-08 05:56 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2015-05-29 23:29 - 2014-11-08 05:56 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2015-05-29 23:29 - 2014-11-08 05:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2015-05-29 23:29 - 2014-11-08 05:24 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2015-05-29 23:29 - 2014-11-08 05:13 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2015-05-29 23:29 - 2014-11-08 05:13 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2015-05-29 23:29 - 2014-11-08 05:13 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2015-05-29 23:29 - 2014-11-08 04:48 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2015-05-29 23:29 - 2014-11-08 04:38 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2015-05-29 23:29 - 2014-11-08 04:17 - 00143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2015-05-29 23:29 - 2014-11-08 04:03 - 00733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2015-05-29 23:29 - 2014-11-08 03:58 - 04837376 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2015-05-29 23:29 - 2014-11-08 03:49 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2015-05-29 23:29 - 2014-11-07 05:58 - 00952896 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-05-29 23:29 - 2014-11-07 05:20 - 00786120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-05-29 23:29 - 2014-11-05 04:12 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2015-05-29 23:29 - 2014-11-05 04:12 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2015-05-29 23:29 - 2014-11-05 04:06 - 00514048 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2015-05-29 23:29 - 2014-11-05 03:44 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-05-29 23:29 - 2014-11-05 03:43 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-05-29 23:29 - 2014-11-05 03:41 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-05-29 23:29 - 2014-11-05 03:39 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL
2015-05-29 23:29 - 2014-11-05 03:39 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL
2015-05-29 23:29 - 2014-11-05 03:33 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2015-05-29 23:29 - 2014-11-05 03:21 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-05-29 23:29 - 2014-11-05 03:20 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-05-29 23:29 - 2014-11-05 03:18 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-05-29 23:29 - 2014-11-05 03:14 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2015-05-29 23:29 - 2014-11-05 03:06 - 00555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2015-05-29 23:29 - 2014-11-04 21:33 - 00058176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2015-05-29 23:29 - 2014-11-04 21:25 - 00059712 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys
2015-05-29 23:29 - 2014-11-04 21:25 - 00051008 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys
2015-05-29 23:29 - 2014-11-04 08:55 - 00026112 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys
2015-05-29 23:29 - 2014-11-04 08:54 - 00108544 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys
2015-05-29 23:29 - 2014-11-04 08:54 - 00032256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2015-05-29 23:29 - 2014-11-04 08:54 - 00030208 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-05-29 23:29 - 2014-11-04 08:27 - 00128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2015-05-29 23:29 - 2014-11-04 07:01 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-05-29 23:29 - 2014-10-31 02:51 - 18823168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-05-29 23:29 - 2014-10-31 02:10 - 15158784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-05-29 23:29 - 2014-10-29 05:05 - 00551232 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-05-29 23:29 - 2014-10-29 03:55 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2015-05-29 23:29 - 2014-10-29 03:13 - 00169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2015-05-29 23:29 - 2014-10-21 03:59 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll
2015-05-29 23:29 - 2014-10-21 03:19 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll
2015-05-29 23:29 - 2014-10-21 02:50 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2015-05-29 23:29 - 2014-10-21 02:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-05-29 23:29 - 2014-10-21 02:31 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2015-05-29 23:29 - 2014-10-21 02:30 - 01454080 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-05-29 23:29 - 2014-10-21 02:20 - 01142272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2015-05-29 23:29 - 2014-10-17 06:56 - 00039744 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2015-05-29 23:29 - 2014-10-17 05:35 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-05-29 23:29 - 2014-04-16 01:35 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll
2015-05-29 23:29 - 2014-04-16 01:34 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll
2015-05-29 23:28 - 2015-04-16 08:17 - 00325464 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-05-29 23:28 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll
2015-05-29 23:28 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll
2015-05-29 23:28 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-05-29 23:28 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-05-29 23:28 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll
2015-05-29 23:28 - 2015-04-02 00:42 - 03097600 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-05-29 23:28 - 2015-04-02 00:30 - 02483712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-05-29 23:28 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-05-29 23:28 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-05-29 23:28 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-05-29 23:28 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-05-29 23:28 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-05-29 23:28 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-05-29 23:28 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-05-29 23:28 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-05-29 23:28 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-05-29 23:28 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-05-29 23:28 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-05-29 23:28 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-05-29 23:28 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-05-29 23:28 - 2014-11-17 22:17 - 00672984 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2015-05-29 23:28 - 2014-11-17 22:17 - 00273240 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2015-05-29 23:28 - 2014-11-14 08:54 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2015-05-29 23:28 - 2014-11-14 08:46 - 02171904 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2015-05-29 23:20 - 2015-06-10 16:16 - 00000000 ____D C:\Windows\system32\appraiser
2015-05-29 23:20 - 2015-06-05 18:10 - 00000000 ___SD C:\Windows\system32\GWX
2015-05-29 23:20 - 2015-05-29 23:20 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-05-29 23:13 - 2015-06-10 08:13 - 00000000 ____D C:\Windows\system32\MRT
2015-05-29 23:13 - 2015-06-10 08:11 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-29 23:10 - 2015-03-17 19:26 - 00467776 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-05-29 23:10 - 2015-03-09 04:02 - 00057856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-05-29 23:10 - 2015-02-04 01:58 - 00264000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-05-29 23:10 - 2015-02-04 01:58 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys
2015-05-29 23:10 - 2015-02-04 01:58 - 00044024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-05-29 23:10 - 2015-02-03 01:53 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll
2015-05-29 23:10 - 2015-02-03 01:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll
2015-05-29 23:10 - 2015-01-27 05:44 - 00933888 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2015-05-29 23:10 - 2015-01-24 03:51 - 00816128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe
2015-05-29 23:10 - 2015-01-23 09:17 - 00723072 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2015-05-29 23:10 - 2015-01-23 07:02 - 00560392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2015-05-29 23:10 - 2014-11-10 04:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupStatusProvider.dll
2015-05-29 23:10 - 2014-11-10 03:51 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceSetupStatusProvider.dll
2015-05-29 23:10 - 2014-10-31 01:39 - 01970432 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-05-29 23:10 - 2014-10-31 01:38 - 01612992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-05-29 23:10 - 2014-10-31 00:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-05-29 23:10 - 2014-10-31 00:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-05-29 23:09 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-29 23:09 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-29 23:09 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-29 23:09 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-29 23:09 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-29 23:09 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-29 23:09 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-29 23:09 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-29 23:09 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-29 23:09 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-05-29 23:09 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-05-29 23:09 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-05-29 23:09 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-05-29 23:09 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-05-29 23:09 - 2015-03-23 23:59 - 07476032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-05-29 23:09 - 2015-03-23 23:59 - 01733952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-05-29 23:09 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll
2015-05-29 23:09 - 2015-03-23 23:58 - 01498872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-05-29 23:09 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll
2015-05-29 23:09 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2015-05-29 23:09 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-05-29 23:09 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-05-29 23:09 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe
2015-05-29 23:09 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe
2015-05-29 23:09 - 2015-03-20 04:40 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-05-29 23:09 - 2015-03-20 04:16 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2015-05-29 23:09 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-29 23:09 - 2015-03-14 10:20 - 01385256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-05-29 23:09 - 2015-03-14 10:13 - 01124352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-05-29 23:09 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-05-29 23:09 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-05-29 23:09 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-05-29 23:09 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-05-29 23:09 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-05-29 23:09 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-05-29 23:09 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-29 23:09 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-29 23:09 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-05-29 23:09 - 2015-02-20 05:03 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-05-29 23:09 - 2015-02-20 04:58 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-05-29 23:09 - 2015-02-20 04:20 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-05-29 23:09 - 2015-02-20 04:15 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-05-29 23:09 - 2015-02-05 22:24 - 01113920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-05-29 23:09 - 2015-02-03 02:03 - 03551744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll
2015-05-29 23:09 - 2015-02-03 02:02 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll
2015-05-29 23:09 - 2015-01-30 05:01 - 00097792 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2015-05-29 23:09 - 2015-01-30 05:00 - 00167424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2015-05-29 23:09 - 2015-01-30 04:03 - 01488896 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-05-29 23:09 - 2015-01-30 04:03 - 01464832 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-05-29 23:09 - 2015-01-30 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2015-05-29 23:09 - 2015-01-30 03:42 - 01204224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2015-05-29 23:09 - 2015-01-30 03:29 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll
2015-05-29 23:09 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-05-29 23:09 - 2015-01-29 03:58 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll
2015-05-29 23:09 - 2015-01-29 03:29 - 00290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll
2015-05-29 23:09 - 2015-01-29 03:04 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-05-29 23:09 - 2014-12-19 10:57 - 00788680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-05-29 23:09 - 2014-12-19 10:25 - 00602776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-05-29 23:09 - 2014-12-19 08:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-05-29 23:09 - 2014-12-13 23:28 - 00513488 _____ C:\Windows\SysWOW64\locale.nls
2015-05-29 23:09 - 2014-12-13 23:28 - 00513488 _____ C:\Windows\system32\locale.nls
2015-05-29 23:09 - 2014-12-12 04:04 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-05-29 23:09 - 2014-12-09 05:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-05-29 23:09 - 2014-12-09 03:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-05-29 23:09 - 2014-12-09 03:50 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-05-29 23:09 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll
2015-05-29 23:09 - 2014-10-29 03:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-05-29 23:09 - 2014-10-29 03:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-05-29 23:09 - 2014-10-29 03:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-05-29 23:09 - 2014-10-29 03:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-05-29 23:09 - 2014-10-29 03:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-05-29 23:09 - 2014-10-29 03:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-05-29 23:08 - 2015-05-29 23:08 - 00000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information
2015-05-29 23:08 - 2015-05-29 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5200 series
2015-05-29 23:08 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-29 23:08 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-29 23:08 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-29 23:08 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-29 23:08 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-29 23:08 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-29 23:08 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-29 23:08 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-29 23:08 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-29 23:08 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-29 23:08 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-29 23:08 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-29 23:08 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-29 23:08 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys
2015-05-29 23:08 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-05-29 23:08 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-05-29 23:08 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-05-29 23:08 - 2015-02-20 04:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-05-29 23:08 - 2015-02-20 04:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-05-29 23:08 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-29 23:08 - 2015-02-12 19:40 - 22291584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-05-29 23:08 - 2015-02-12 19:34 - 19731824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-05-29 23:08 - 2015-02-08 01:57 - 01090048 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2015-05-29 23:08 - 2015-02-08 01:49 - 00791040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2015-05-29 23:08 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-05-29 23:08 - 2015-01-30 04:02 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll
2015-05-29 23:08 - 2015-01-30 03:40 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll
2015-05-29 23:08 - 2015-01-30 03:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll
2015-05-29 23:08 - 2015-01-30 03:24 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll
2015-05-29 23:08 - 2015-01-30 03:24 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll
2015-05-29 23:08 - 2015-01-30 03:16 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll
2015-05-29 23:08 - 2015-01-30 03:08 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll
2015-05-29 23:08 - 2015-01-30 03:06 - 00278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll
2015-05-29 23:08 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-05-29 23:08 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-05-29 23:08 - 2015-01-29 03:11 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-05-29 23:08 - 2015-01-29 03:00 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-05-29 23:08 - 2015-01-29 02:59 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-05-29 23:08 - 2015-01-29 02:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-05-29 23:08 - 2015-01-29 02:50 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-05-29 23:08 - 2015-01-29 02:49 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-05-29 23:08 - 2015-01-28 04:24 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\StorageContextHandler.dll
2015-05-29 23:08 - 2015-01-28 03:47 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorageContextHandler.dll
2015-05-29 23:08 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-05-29 23:08 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-05-29 23:08 - 2015-01-28 01:47 - 02501368 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-05-29 23:08 - 2015-01-28 01:41 - 02207488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-05-29 23:08 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-05-29 23:08 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-05-29 23:08 - 2015-01-16 00:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-05-29 23:08 - 2015-01-12 04:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-05-29 23:08 - 2015-01-12 03:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-05-29 23:08 - 2014-12-11 07:36 - 00046456 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentServer.exe
2015-05-29 23:08 - 2014-12-08 21:42 - 00535640 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-05-29 23:08 - 2014-12-08 21:42 - 00531616 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-05-29 23:08 - 2014-12-08 21:42 - 00448792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-05-29 23:08 - 2014-12-08 21:42 - 00413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-05-29 23:08 - 2014-12-08 21:42 - 00372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-05-29 23:08 - 2014-12-08 21:42 - 00108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-05-29 23:08 - 2014-12-08 21:42 - 00038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-05-29 23:08 - 2014-12-08 21:42 - 00033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-05-29 23:08 - 2014-12-06 05:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-05-29 23:08 - 2014-12-06 03:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-05-29 23:08 - 2014-12-06 03:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-05-29 23:08 - 2014-11-10 01:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-05-29 23:08 - 2014-11-10 01:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-05-29 23:08 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-05-29 23:08 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-05-29 23:07 - 2015-05-29 23:07 - 00000000 ___HD C:\ProgramData\CanonBJ
2015-05-29 23:07 - 2010-08-25 05:00 - 00361472 _____ (CANON INC.) C:\Windows\system32\CNMLMAE.DLL
2015-05-29 23:06 - 2015-06-02 14:10 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Mozilla
2015-05-29 23:04 - 2015-06-17 20:08 - 00000000 ____D C:\ProgramData\Package Cache
2015-05-29 23:04 - 2015-06-03 12:26 - 00000000 ____D C:\Program Files (x86)\Avira
2015-05-29 23:03 - 2015-06-19 08:19 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3862967198-3418230011-351970294-1001
2015-05-29 23:03 - 2015-05-29 23:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-05-29 23:03 - 2015-05-29 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-29 23:02 - 2015-06-19 09:07 - 00001134 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-29 23:02 - 2015-06-19 07:34 - 00001130 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-29 23:02 - 2015-05-29 23:03 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Google
2015-05-29 23:02 - 2015-05-29 23:02 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-29 23:02 - 2015-05-29 23:02 - 00003870 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-29 23:02 - 2015-05-29 23:02 - 00000000 ____D C:\Program Files (x86)\Google
2015-05-29 23:01 - 2015-06-17 20:09 - 00000000 __SHD C:\Users\Lilhomers\AppData\Local\EmieUserList
2015-05-29 23:01 - 2015-06-17 20:09 - 00000000 __SHD C:\Users\Lilhomers\AppData\Local\EmieSiteList
2015-05-29 23:01 - 2015-06-17 20:09 - 00000000 __SHD C:\Users\Lilhomers\AppData\Local\EmieBrowserModeList
2015-05-29 23:01 - 2015-05-29 23:01 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Macromedia
2015-05-29 22:58 - 2015-06-19 09:12 - 00000000 ____D C:\Users\Lilhomers
2015-05-29 22:58 - 2015-06-05 18:10 - 00000000 ___RD C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-29 22:58 - 2015-06-03 16:35 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\VirtualStore
2015-05-29 22:58 - 2015-05-29 22:58 - 00001450 _____ C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-29 22:58 - 2015-05-29 22:58 - 00000020 ___SH C:\Users\Lilhomers\ntuser.ini
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Vorlagen
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Startmenü
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Netzwerkumgebung
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Lokale Einstellungen
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Eigene Dateien
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Druckumgebung
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Documents\Eigene Musik
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Documents\Eigene Bilder
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\AppData\Local\Verlauf
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\AppData\Local\Anwendungsdaten
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Anwendungsdaten
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Adobe
2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Packages
2015-05-29 22:58 - 2014-11-21 13:08 - 00000000 ___RD C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-29 22:58 - 2014-11-21 13:08 - 00000000 ___RD C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-05-29 22:58 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-05-29 22:58 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-05-29 22:58 - 2013-08-22 17:36 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-05-29 22:55 - 2015-03-14 03:56 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-05-29 22:55 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-05-29 22:55 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-05-29 22:55 - 2014-10-18 08:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-05-29 22:54 - 2015-06-19 08:50 - 01910076 _____ C:\Windows\WindowsUpdate.log
2015-05-29 22:54 - 2015-05-29 22:54 - 00000000 ____D C:\Windows\CSC
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Programme
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\ProgramData\Vorlagen
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\ProgramData\Startmenü
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\ProgramData\Dokumente
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Dokumente und Einstellungen
2015-05-29 22:51 - 2015-06-02 13:40 - 00000000 __SHD C:\Recovery

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-19 09:02 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru
2015-06-18 01:33 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2015-06-17 17:03 - 2013-08-22 16:46 - 00049884 _____ C:\Windows\setupact.log
2015-06-12 12:37 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2015-06-12 11:13 - 2014-11-21 05:35 - 02419892 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-12 11:13 - 2014-11-21 04:45 - 00764340 _____ C:\Windows\system32\perfh007.dat
2015-06-12 11:13 - 2014-11-21 04:45 - 00159160 _____ C:\Windows\system32\perfc007.dat
2015-06-12 11:07 - 2014-11-20 20:24 - 00550000 _____ C:\Windows\PFRO.log
2015-06-12 11:07 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\MediaViewer
2015-06-12 11:07 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-11 09:35 - 2013-08-22 17:36 - 00000000 __RHD C:\Users\Public\Libraries
2015-06-10 16:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions
2015-06-10 16:17 - 2013-08-22 16:44 - 00338104 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-10 16:16 - 2014-11-21 13:07 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-06-10 16:16 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\security
2015-06-08 11:22 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2015-06-05 18:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2015-06-05 18:10 - 2014-11-21 05:13 - 00000000 ____D C:\Windows\ShellNew
2015-06-05 18:10 - 2014-11-21 05:13 - 00000000 ____D C:\Program Files\Windows Journal
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 __RSD C:\Windows\Media
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\ras
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\zh-HK
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\uk-UA
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\tr-TR
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\th-TH
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sl-SI
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sk-SK
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\ro-RO
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\ras
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\lv-LV
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\lt-LT
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\hr-HR
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\he-IL
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\et-EE
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\en-GB
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\bg-BG
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\ar-SA
2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Globalization
2015-06-05 18:10 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Sysprep
2015-06-05 18:09 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\registration
2015-06-05 18:08 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Resources
2015-06-03 18:18 - 2014-11-21 13:15 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-03 18:18 - 2014-11-21 13:15 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-03 16:33 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help
2015-06-03 12:38 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM
2015-06-02 15:12 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\MUI
2015-06-02 15:12 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\MUI
2015-06-01 14:14 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\DesktopTileResources
2015-06-01 08:48 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\LiveKernelReports
2015-05-31 13:13 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2015-05-30 05:34 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\System
2015-05-30 01:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppCompat
2015-05-30 00:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2015-05-30 00:12 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2015-05-30 00:12 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\SysWOW64\winrm
2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\SysWOW64\WCN
2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\SysWOW64\slmgr
2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts
2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\system32\winrm
2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\system32\WCN
2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\system32\slmgr
2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ___SD C:\Windows\system32\dsc
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Com
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\migwiz
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Com
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\IME
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\FileManager
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-05-29 23:57 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\oobe
2015-05-29 23:57 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\Dism
2015-05-29 23:57 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\oobe
2015-05-29 23:57 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Dism
2015-05-29 23:57 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\servicing
2015-05-29 23:49 - 2013-08-22 17:36 - 00262144 _____ C:\Windows\system32\config\BCD-Template
2015-05-29 23:36 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData
2015-05-29 23:36 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\setup
2015-05-29 23:36 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\setup
2015-05-29 23:36 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI(644)
2015-05-29 23:36 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI(367)
2015-05-29 23:36 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI(1908)
2015-05-29 23:20 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-29 23:20 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-05-29 23:20 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-05-29 23:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sr-Latn-RS
2015-05-29 23:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sr-Latn-CS
2015-05-29 22:55 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\AdvancedInstallers
2015-05-29 22:52 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows NT
2015-05-29 22:52 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default
2015-05-29 22:51 - 2013-08-22 17:37 - 00002988 _____ C:\Windows\DtcInstall.log
2015-05-29 22:51 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Recovery

==================== Files in the root of some directories =======

2015-06-02 15:40 - 2015-06-02 15:40 - 0007605 _____ () C:\Users\Lilhomers\AppData\Local\Resmon.ResmonCfg
2015-05-30 06:01 - 2015-05-30 06:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-16 12:44

==================== End of log ============================

Addition

Code:

ATTFilter

scan result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by Lilhomers at 2015-06-19 09:14:16
Running from C:\Users\Lilhomers\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3862967198-3418230011-351970294-500 - Administrator - Disabled)
Gast (S-1-5-21-3862967198-3418230011-351970294-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3862967198-3418230011-351970294-1003 - Limited - Enabled)
Lilhomers (S-1-5-21-3862967198-3418230011-351970294-1001 - Administrator - Enabled) => C:\Users\Lilhomers

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.160 - Adobe Systems Incorporated)
Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.160 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\{0E3C52E0-B4F1-4D1E-B172-E390813BD9FE}) (Version: 12.1.8.158 - Adobe Systems, Inc)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.8 - Sereby Corporation)
ASUS Essence STX II Audio Device (HKLM-x32\...\{1A01B996-F7F7-473C-9EA4-B22801713A83}) (Version:   - ASUSTek Computer Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version:  - DICE)
Canon MG5200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series) (Version:  - )
CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
DiskBoss 5.7.14 (HKLM-x32\...\DiskBoss) (Version: 5.7.14 - Flexense Computing Systems Ltd.)
Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version:  - Paradox Development Studio)
Freemake Video Converter Version 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)
Gyazo 2.4 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Hero Siege (HKLM-x32\...\Steam App 269210) (Version:  - Elias Viglione)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.27 - Intel(R) Corporation) Hidden
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
LIMBO (HKLM-x32\...\Steam App 48000) (Version:  - Playdead)
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0407-0000-0000000FF1CE}) (Version: 12.0.6334.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.8.2 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.06 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.28 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
ORION: Prelude (HKLM-x32\...\Steam App 104900) (Version:  - Spiral Game Studios)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.988 - Even Balance, Inc.)
RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder)
Road Redemption (HKLM-x32\...\Steam App 300380) (Version:  - Dark Seas Interactive)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.0 - Rockstar Games)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Shark007 Advanced Codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 5.2.5 - Shark007)
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.28 - NVIDIA Corporation) Hidden
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.)
SRWare Iron Version SRWare Iron 42.2250.1 (HKLM-x32\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: SRWare Iron 42.2250.1 - SRWare)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
The Forest (HKLM-x32\...\Steam App 242760) (Version:  - Endnight Games Ltd)
The Long Dark (HKLM-x32\...\Steam App 305620) (Version:  - Hinterland Studio Inc.)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.2 - Tunngle.net GmbH)
Update for Korean Microsoft IME Standard Dictionary (HKLM\...\{75A54180-CA5E-47B8-AFBB-29337B976B21}) (Version: 16.0.662.1 - Microsoft Corporation)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
x64 Components v5.2.5 (HKLM\...\Advanced x64Components_is1) (Version: 5.2.5 - Shark007)
网易云音乐 (HKLM-x32\...\网易云音乐) (Version: 1.7.0.89635 - 网易公司)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

15-06-2015 09:59:37 Geplanter Prüfpunkt
18-06-2015 00:00:53 Microsoft Office Excel Viewer wird installiert

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {3159DA06-64E2-48A2-8686-00E9002544F2} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattel\DiagTrackRunner.exe [2015-03-16] (Microsoft Corporation)
Task: {420B6DB7-5AE1-4A08-B883-02DE47578D04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-19] (Adobe Systems Incorporated)
Task: {54AAFBA9-8746-4DEC-A923-7520443B3F8B} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-04-30] ()
Task: {7F1A023F-FB13-4909-AD54-731172887BD5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {9381E485-9BC1-40CE-9185-63A90E2DD08A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-06-10] (Microsoft Corporation)
Task: {A1E1EE74-6A8D-43F4-B7F1-8E7054256233} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {A692DE34-F8E7-45C6-9202-1DBD5E9F07CC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {AC914350-FB96-470D-BCA2-60C40B0C8294} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_188_pepper.exe
Task: {B3DCFACB-4683-4E7F-8AD7-212C244C881E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
Task: {B595124F-C2EF-4F8D-92FC-0EBD6A87A64A} - System32\Tasks\avast! Emergency Update => J:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.)
Task: {B5F56682-641E-4361-BB6C-8B733F8D9691} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {D04E527A-A101-438D-A009-C8986211ABFB} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {DFB33E0D-4D50-4AD7-A691-2E4B9F74C8E0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_188_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-06-13 23:46 - 2015-06-13 23:54 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-06-13 23:46 - 2015-06-18 19:16 - 00282296 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2015-06-03 16:33 - 2015-05-28 06:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-06-04 11:49 - 2015-06-04 11:49 - 00118784 _____ () J:\Program Files (x86)\DiskBoss\bin\diskbsa.exe
2015-06-03 12:45 - 2015-06-03 12:45 - 00104400 _____ () J:\Program Files\AVAST Software\Avast\log.dll
2015-06-03 12:45 - 2015-06-03 12:45 - 00081728 _____ () J:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-06-11 22:13 - 2015-06-11 22:13 - 02954752 _____ () J:\Program Files\AVAST Software\Avast\defs\15061102\algo.dll
2015-06-18 22:04 - 2015-06-18 22:04 - 02952704 _____ () J:\Program Files\AVAST Software\Avast\defs\15061801\algo.dll
2015-06-03 16:34 - 2015-05-28 09:04 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-06-03 12:45 - 2015-06-03 12:45 - 40540672 _____ () J:\Program Files\AVAST Software\Avast\libcef.dll
2015-06-04 11:41 - 2015-06-04 11:41 - 02797568 _____ () J:\Program Files (x86)\DiskBoss\bin\libdbs.dll
2015-06-04 11:38 - 2015-06-04 11:38 - 00729088 _____ () J:\Program Files (x86)\DiskBoss\bin\libpal.dll
2015-04-30 08:15 - 2015-04-30 08:15 - 00182160 _____ () J:\Program Files (x86)\Netease\CloudMusic\ExceptionHandler.dll
2015-04-30 08:15 - 2015-04-30 08:15 - 08673168 _____ () J:\Program Files (x86)\Netease\CloudMusic\cloudmusic.dll
2015-04-30 08:15 - 2015-04-30 08:15 - 38804368 _____ () J:\Program Files (x86)\Netease\CloudMusic\libcef.dll
2015-04-30 08:15 - 2015-04-30 08:15 - 02377104 _____ () J:\Program Files (x86)\Netease\CloudMusic\ffmpegsumo.dll
2015-04-30 08:15 - 2015-04-30 08:15 - 00246672 _____ () J:\Program Files (x86)\Netease\CloudMusic\swresample-0.dll
2015-04-30 08:15 - 2015-04-30 08:15 - 00112016 _____ () J:\Program Files (x86)\Netease\CloudMusic\libFLAC++_dynamic.dll
2015-04-30 08:15 - 2015-04-30 08:15 - 00587152 _____ () J:\Program Files (x86)\Netease\CloudMusic\avutil-52.dll
2015-04-30 08:15 - 2015-04-30 08:15 - 00262032 _____ () J:\Program Files (x86)\Netease\CloudMusic\libFLAC_dynamic.dll
2015-04-30 08:15 - 2015-04-30 08:15 - 00877968 _____ () J:\Program Files (x86)\Netease\CloudMusic\libglesv2.dll
2015-04-30 08:15 - 2015-04-30 08:15 - 00135056 _____ () J:\Program Files (x86)\Netease\CloudMusic\libegl.dll
2015-05-30 05:34 - 2013-12-16 05:05 - 00143360 ____N () C:\Program Files\ASUS Essence STX II Audio Device\Customapp\VmixP8.dll
2015-06-10 08:08 - 2015-06-05 20:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\libglesv2.dll
2015-06-10 08:08 - 2015-06-05 20:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3862967198-3418230011-351970294-1001\Control Panel\Desktop\\Wallpaper -> J:\Program Files (x86)\Steam\userdata\91058852\760\remote\271590\screenshots\2015-06-06_00002.jpg
DNS Servers: 192.168.178.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: Avira.ServiceHost => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: Intel(R) Capability Licensing Service Interface => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: MBAMScheduler => 2
MSCONFIG\Services: MBAMService => 2
MSCONFIG\Services: NvNetworkService => 2
MSCONFIG\Services: NvStreamSvc => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: TunngleService => 3
HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\StartupApproved\Run: => "Gyazo"
HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\StartupApproved\Run: => "cloudmusic"
HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{D7C0D5BB-7CB6-4CCB-A699-2CBB2053C60C}] => (Allow) J:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F34D0BD1-42A4-4BE6-A781-53A7E2866CD0}] => (Allow) J:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{738AE88D-8D88-48C2-9EC2-BAB29FE1C362}] => (Allow) J:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{EB6E2BB3-98BB-4927-951F-B62D18D002E4}] => (Allow) J:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{11036621-C610-43CA-A1AE-32396D3D16B3}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\RoadRedemption\RoadRedemptionEarlyAccess.exe
FirewallRules: [{5FD534CB-DFC0-4678-9861-C9F961D41AEB}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\RoadRedemption\RoadRedemptionEarlyAccess.exe
FirewallRules: [TCP Query User{5D750AB3-C65A-46D1-8692-6320FCD56D9C}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{C69402B0-FBFE-42B5-8ECA-A514CF5E8646}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{E2A851AB-3B3F-4B80-A1BF-0DF19BA0FD2A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{97134A51-B36B-4D13-9C93-28A1FBF4523B}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{CCE15871-7133-4EC8-9A67-2AA14354F5A1}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{9B4FFD4E-7EE7-4EB7-B2E4-8BAF4D1BDEBA}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{33913C99-9BD6-4CED-8A96-F08F2E543B5E}] => (Allow) J:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{59B00459-7A09-4B8A-9EB4-85EC79D81B1F}] => (Allow) J:\Program Files (x86)\Tunngle\TnglCtrl.exe
FirewallRules: [{5432BFA6-7BF2-429E-A9BF-F7F486ECB580}] => (Allow) J:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{831ABDDF-C8C4-48A5-9145-707C83B8A6CC}] => (Allow) J:\Program Files (x86)\Tunngle\Tunngle.exe
FirewallRules: [{9975F67B-539B-489F-AB66-8D7E6459BABF}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [{CF94B7D9-7F02-4EE0-9C88-581D115EBDFA}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe
FirewallRules: [TCP Query User{ADF0851F-688D-439D-AA7A-DDEEE0A21D9A}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{D1FE26E0-76A1-4E49-875D-4BBEAC115DE0}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{E2235CD4-CEEF-4B54-B458-A19EBF0CBC20}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe
FirewallRules: [{2C1F7F52-80EF-4D6A-98A1-C0BAA29BA650}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe
FirewallRules: [{6FCDECE1-9C4E-42B2-A304-CA733094F3C0}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\TheLongDark\tld.exe
FirewallRules: [{E5D4F9E7-A987-4956-8E37-4690E1812F29}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\TheLongDark\tld.exe
FirewallRules: [{A006606B-56E2-41F9-8818-7BEBAB07E6A7}] => (Allow) J:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{69D5E48C-B3DD-4A62-972C-F54139C95DAB}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{F40F4615-E23A-4146-A7A8-22D22C99E249}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{38BC3805-4186-4353-AA68-26D016D5CFC5}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{5979EF81-D4AD-4768-A709-84017BDA0E60}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe
FirewallRules: [{ACA80238-60B0-477B-9FA5-E3F30DE8306F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{7897BA15-8E53-4CD0-BD21-5E174A74EF20}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{A214125F-CA2C-434F-8F8E-6D80E8C7DA6A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{FA1A5DDA-E54C-4BC8-A16F-FD3EB11058F9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{04050701-8F09-4FD9-ADAC-4F02C6AFDFE3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8CB6AC45-44DC-48B2-B793-E1F31ABB9341}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D4C43799-AA9E-4E48-B735-A5D2F86AA1A2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F9D19152-0EB8-4BBD-846E-88586CF57B2A}] => (Allow) C:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [{A623CFF9-B447-42A2-95E6-EC6295DDAC7F}] => (Allow) C:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [{86D8C889-8E31-4DEC-B311-662123E54645}] => (Allow) C:\SteamLibrary\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{C402EEA6-9C4E-48F6-A349-A37FE580D69C}] => (Allow) C:\SteamLibrary\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{3D02B400-D70A-4A1F-B3A9-BBBECE0D4776}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{9793616C-F3A7-43AF-A133-11C8309955F1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{99AECDA2-EEFB-4E28-B915-12C5F5140FB8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{76C6F442-3315-4B79-A6C1-2C01EDBEA9EE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{8431A970-B392-4C40-A784-E83BC68CC489}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{657141CD-11EC-4515-B9B2-088B27FF08DF}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe
FirewallRules: [{C183A519-C794-4F26-BF9E-B361EAC3F129}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{2F492275-AA3E-4DBC-995F-DEE7E2D3533B}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{5BA88633-D364-4F3C-BF99-38DF1E64E921}J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe] => (Allow) J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe
FirewallRules: [UDP Query User{C215D39D-5B75-495B-B243-70512C559F62}J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe] => (Allow) J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe
FirewallRules: [{761D437F-473C-443E-A09F-52715D04C112}] => (Block) J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe
FirewallRules: [{F8F63783-C904-49C5-B350-317F9317E9E7}] => (Block) J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe
FirewallRules: [{DF442D3E-FD5B-4224-9CC7-E5FF40B0AE27}] => (Allow) C:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe
FirewallRules: [{3F4541DE-9D00-48F3-9C24-D8E35F176FAB}] => (Allow) C:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/19/2015 08:51:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Explorer.EXE, Version 6.3.9600.17667 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 12d4

Startzeit: 01d0aa519c0c3e8e

Endzeit: 4294967295

Anwendungspfad: C:\Windows\Explorer.EXE

Berichts-ID: 917a3a9f-164f-11e5-827b-f46d0461d4ca

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (06/19/2015 08:09:30 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm avastui.exe, Version 10.2.2218.944 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: a8

Startzeit: 01d0aa52b7ae2fa8

Endzeit: 60000

Anwendungspfad: J:\Program Files\AVAST Software\Avast\avastui.exe

Berichts-ID: 9425999c-1649-11e5-827b-f46d0461d4ca

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (06/19/2015 08:08:17 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Taskmgr.exe, Version 6.3.9600.17415 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1450

Startzeit: 01d0aa564d2208f8

Endzeit: 4

Anwendungspfad: C:\Windows\System32\Taskmgr.exe

Berichts-ID: 92b21c98-1649-11e5-827b-f46d0461d4ca

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (06/18/2015 00:01:08 AM) (Source: MsiInstaller) (EventID: 1023) (User: Lilhomer)
Description: Produkt: Microsoft Office Excel Viewer - Update "{5E5BD655-7AA9-47F9-BB6D-A1D8CE29AC86}" konnte nicht installiert werden. Fehlercode 1642. Weitere Informationen sind in der Protokolldatei C:\Users\LILHOM~1\AppData\Local\Temp\Microsoft Office Excel Viewer (0).log enthalten.

Error: (06/18/2015 00:01:08 AM) (Source: MsiInstaller) (EventID: 1023) (User: Lilhomer)
Description: Produkt: Microsoft Office Excel Viewer - Update "{47637B5E-81E0-4ECA-82F9-13FE9B204BE3}" konnte nicht installiert werden. Fehlercode 1642. Weitere Informationen sind in der Protokolldatei C:\Users\LILHOM~1\AppData\Local\Temp\Microsoft Office Excel Viewer (0).log enthalten.

Error: (06/18/2015 00:00:54 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".


Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert
.

Error: (06/17/2015 11:59:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Explorer.EXE, Version 6.3.9600.17667 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: d9c

Startzeit: 01d0a8c16da93f21

Endzeit: 4294967295

Anwendungspfad: C:\Windows\Explorer.EXE

Berichts-ID: 25261902-153c-11e5-827b-f46d0461d4ca

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (06/17/2015 08:09:02 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: Lilhomer)
Description: Die Anwendung oder der Dienst "RealPlayer Update Service" konnte nicht neu gestartet werden.

Error: (06/17/2015 07:49:55 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (06/16/2015 11:06:37 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".


System errors:
=============
Error: (06/18/2015 03:36:06 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/18/2015 03:35:36 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (06/18/2015 03:28:38 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/18/2015 03:28:08 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (06/18/2015 03:24:13 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/18/2015 03:23:43 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (06/18/2015 03:07:03 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/18/2015 03:06:33 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (06/18/2015 02:20:58 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/18/2015 02:20:28 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}


Microsoft Office:
=========================
Error: (06/19/2015 08:51:38 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Explorer.EXE6.3.9600.1766712d401d0aa519c0c3e8e4294967295C:\Windows\Explorer.EXE917a3a9f-164f-11e5-827b-f46d0461d4ca

Error: (06/19/2015 08:09:30 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: avastui.exe10.2.2218.944a801d0aa52b7ae2fa860000J:\Program Files\AVAST Software\Avast\avastui.exe9425999c-1649-11e5-827b-f46d0461d4ca

Error: (06/19/2015 08:08:17 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Taskmgr.exe6.3.9600.17415145001d0aa564d2208f84C:\Windows\System32\Taskmgr.exe92b21c98-1649-11e5-827b-f46d0461d4ca

Error: (06/18/2015 00:01:08 AM) (Source: MsiInstaller) (EventID: 1023) (User: Lilhomer)
Description: Microsoft Office Excel Viewer{5E5BD655-7AA9-47F9-BB6D-A1D8CE29AC86}1642C:\Users\LILHOM~1\AppData\Local\Temp\Microsoft Office Excel Viewer (0).log(NULL)(NULL)

Error: (06/18/2015 00:01:08 AM) (Source: MsiInstaller) (EventID: 1023) (User: Lilhomer)
Description: Microsoft Office Excel Viewer{47637B5E-81E0-4ECA-82F9-13FE9B204BE3}1642C:\Users\LILHOM~1\AppData\Local\Temp\Microsoft Office Excel Viewer (0).log(NULL)(NULL)

Error: (06/18/2015 00:00:54 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: 
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.

System Error:
Zugriff verweigert

Error: (06/17/2015 11:59:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Explorer.EXE6.3.9600.17667d9c01d0a8c16da93f214294967295C:\Windows\Explorer.EXE25261902-153c-11e5-827b-f46d0461d4ca

Error: (06/17/2015 08:09:02 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: Lilhomer)
Description: 0RealPlayerUpdateSvc.exeRealPlayer Update Service03026217859920

Error: (06/17/2015 07:49:55 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{9F3B20DF-76F2-47F4-9372-F0F56485A58D}\recordingmanager.exe

Error: (06/16/2015 11:06:37 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="&#x2a;",type="win32",version="1.0.0.0"C:\Windows\Installer\{9F3B20DF-76F2-47F4-9372-F0F56485A58D}\recordingmanager.exe


CodeIntegrity Errors:
===================================
  Date: 2015-06-05 14:54:38.900
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\OldNewExplorer\OldNewExplorer64.dll that did not meet the Windows signing level requirements.

  Date: 2015-06-05 13:54:33.153
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\OldNewExplorer\OldNewExplorer64.dll that did not meet the Windows signing level requirements.

  Date: 2015-06-05 12:37:00.994
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\OldNewExplorer\OldNewExplorer64.dll that did not meet the Windows signing level requirements.

  Date: 2015-06-05 12:02:47.175
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\OldNewExplorer\OldNewExplorer64.dll that did not meet the Windows signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz
Percentage of memory in use: 14%
Total physical RAM: 16351.13 MB
Available physical RAM: 13994.13 MB
Total Pagefile: 18783.13 MB
Available Pagefile: 15867.72 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:111.45 GB) (Free:3.86 GB) NTFS
Drive d: (System-reserviert) (Fixed) (Total:0.34 GB) (Free:0.03 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive j: () (Fixed) (Total:931.51 GB) (Free:892.51 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6F2A194A)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 111.8 GB) (Disk ID: 112F8A2E)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.4 GB) - (Type=07 NTFS)

==================== End of log ============================

--- --- ---

Gmer

Code:

ATTFilter

GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-06-19 09:20:11
Windows 6.2.9200  x64 \Device\Harddisk1\DR1 -> \Device\00000037 OCZ-AGILITY3 rev.2.25 111,79GB
Running: Gmer-19357.exe; Driver: C:\Users\LILHOM~1\AppData\Local\Temp\ugriapow.sys


---- Kernel code sections - GMER 2.1 ----

.text   C:\Windows\System32\win32k.sys!W32pServiceTable                                                                                              fffff9600011ad00 15 bytes [00, A9, F3, 01, 80, 64, 6D, ...]
.text   C:\Windows\System32\win32k.sys!W32pServiceTable + 16                                                                                         fffff9600011ad10 11 bytes [00, 91, FC, FF, 00, BF, CA, ...]

---- Threads - GMER 2.1 ----

Thread  C:\Windows\system32\csrss.exe [5172:308]                                                                                                     fffff96000338268
Thread  C:\Windows\system32\csrss.exe [4456:408]                                                                                                     fffff960008ca2d0

---- Registry - GMER 2.1 ----

Reg     HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{5BB877E2-EB25-4852-B46F-E14B20C54452}\Connection@Name  isatap.fritz.box
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed                                                            -937385388
Reg     HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0026832f02e6                                                                  
Reg     HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{5BB877E2-EB25-4852-B46F-E14B20C54452}@ReusableType                        0
Reg     HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{5BB877E2-EB25-4852-B46F-E14B20C54452}@DefunctTimestamp                    0xE3 0xA9 0x83 0x55 ...
Reg     HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch                                                                             1357
Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\GWX\Usage@UsageTime                                                                           0x9A 0xE8 0xCF 0x2D ...
Reg     HKCU\Software\Microsoft\Windows\Windows Error Reporting@LastRateLimitedDumpGenerationTime                                                    0x19 0x34 0x0F 0x50 ...

---- EOF - GMER 2.1 ----

schrauber · 20.06.2015, 07:14

Windows Repair Tool laufen lassen:
Windows reparieren - so geht's - Anleitungen

20.06.2015, 07:14	#5
schrauber /// the machine /// TB-Ausbilder	Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten Windows Repair Tool laufen lassen: Windows reparieren - so geht's - Anleitungen __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten

Log-Analyse und Auswertung: Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten