PC friert ein, Benutzung nur im abgesicherten Modus möglich

Austin09 · 13.10.2014, 09:12

Hallo,

folgendes Problem liegt bei mir vor:

Windows startet normal, dann kann ich ca. 1 Minute (variiert) normal arbeiten und auf einmal wird alles sehr langsam bzw. kommt einem "Einfrieren" gleich. Normales benutzen unmöglich. Dann mache ich den PC aus und starte im abgesicherten Modus. Hier funktioniert alles grundsätzlich einwandfrei, solange ich nicht zu viel auf einmal mache.

Ich habe den PC daraufhin auf seine Werkeinstellungen zurückgestellt.
2 Tage hat alles normal funktioniert und jetzt habe ich dasselbe Problem wieder.
(installiert habe ich in der Zwischenzeit nur Spotify und Driver Booster)

Für mich als Laien wirkt es auffäliig, dass die Prozesse im Task Manager ohne etwas zu tuen von Anfangs (nach dem Starten) ca. 70 auf bis zu 85 hochgehen, obwohl ich fast nichts installiert habe und auch während der Beobachtung nichts tue. Einige werden auch doppelt angezeigt. Im abgesicherten Modus sind es lediglich bis zu 30.

Kann mich jemand beim Auffinden des Fehlers unterstützen? Oder hat der Laptop nach 3 Jahren Nutzung seinen Selbstzerstörungsmodus aktiviert?

VG Simon

Warlord711 · 13.10.2014, 09:19

Hallo Austin09

Mein Name ist Timo und ich werde Dir bei deinem Problem behilflich sein.

Bitte arbeite alle Schritte der Reihe nach ab.
Hier findest du die Anleitung für Hilfesuchende
Lese die Anleitungen sorgfältig. Sollte es Probleme geben, bitte stoppen und hier so gut es geht beschreiben.
Nur Scans durchführen zu denen Du von einem Helfer aufgefordert wirst.
Bitte kein Crossposting ( posten in mehreren Foren).
Installiere oder Deinstalliere während der Bereinigung keine Software ausser Du wurdest dazu aufgefordert.
Lese Dir die Anleitung zuerst vollständig durch. Sollte etwas unklar sein, frage bevor Du beginnst.
Poste die Logfiles direkt in deinen Thread. Nicht anhängen ausser ich fordere Dich dazu auf.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist immer der sicherste Weg.

Wir "arbeiten" hier alle freiwillig und in unserer Freizeit *hust*. Daher kann es bei Antworten zu Verzögerungen kommen.
Solltest du innerhalb 48 Std keine Antwort von mir erhalten, dann schreib mit eine PM
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis ich oder jemand vom Team sagt, dass Du clean bist.

Dann schauen wir mal, ob Malware dafür verantwortlich ist.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Austin09 · 13.10.2014, 11:03

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-10-2014 02
Ran by ... (administrator) on ...-VAIO on 13-10-2014 11:00:08
Running from C:\Users\...\Desktop
Loaded Profile: ... (Available profiles: ...)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Windows\System32\rundll32.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [518784 2011-03-29] (Conexant Systems, Inc.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [790176 2011-03-31] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [657056 2011-03-31] (Atheros Commnucations)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [226672 2011-02-17] (Alps Electric Co., Ltd.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareTray.exe [8886592 2014-08-27] ()
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-13] (Intel Corporation)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [2757312 2011-02-15] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] => c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [648032 2010-11-27] (Sony Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SystemExplorerAutoStart] => "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-627948766-355836689-784361957-1000\...\Run: [Spotify Web Helper] => C:\Users\Simon Hatje\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-11] (Spotify Ltd)
HKU\S-1-5-21-627948766-355836689-784361957-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-10-11] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-627948766-355836689-784361957-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
HKU\S-1-5-21-627948766-355836689-784361957-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sony.eu/vaioportal
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {06159813-1682-4CD9-A658-8A0B85D3B03C} URL = hxxp://de.shopping.com/?linkin_id=8056363
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - {94A6C879-23E8-442E-A3FF-5DC8039DF798} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKCU - {AEC4F932-E01E-498F-9D32-0FFF55C4EA44} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-21/4?satitle={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Simon Hatje\AppData\Roaming\Mozilla\Firefox\Profiles\9txadibd.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

Chrome: 
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-03-31] (Atheros) [File not signed]
S2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [75936 2011-03-31] (Atheros Commnucations) [File not signed]
S2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2361344 2011-03-29] (Realsil Microelectronics Inc.) [File not signed]
S2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareService.exe [706864 2014-08-27] ()
S2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [259192 2011-01-29] (Sony Corporation)
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [887000 2011-01-20] (Sony Corporation)
S3 VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [1021112 2011-03-30] (Sony Corporation)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2014-10-11] (Intel Corporation)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [389240 2014-07-10] (BitDefender S.R.L.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-13 11:00 - 2014-10-13 11:38 - 00009666 _____ () C:\Users\Simon Hatje\Desktop\FRST.txt
2014-10-13 10:45 - 2014-10-13 11:32 - 00000000 ____D () C:\FRST
2014-10-13 10:44 - 2014-10-13 10:44 - 00000484 _____ () C:\Users\Simon Hatje\Desktop\defogger_disable.log
2014-10-13 10:44 - 2014-10-13 10:44 - 00000000 _____ () C:\Users\Simon Hatje\defogger_reenable
2014-10-13 10:39 - 2014-10-13 10:39 - 00380416 _____ () C:\Users\Simon Hatje\Desktop\Gmer-19357.exe
2014-10-13 10:38 - 2014-10-13 10:38 - 02110464 _____ (Farbar) C:\Users\Simon Hatje\Desktop\FRST64.exe
2014-10-13 10:36 - 2014-10-13 10:36 - 00050477 _____ () C:\Users\Simon Hatje\Desktop\Defogger.exe
2014-10-13 09:38 - 2014-10-13 09:38 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Macromedia
2014-10-13 09:31 - 2014-10-13 09:31 - 00001155 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-13 09:31 - 2014-10-13 09:31 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Mozilla
2014-10-13 09:31 - 2014-10-13 09:31 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Mozilla
2014-10-13 09:31 - 2014-10-13 09:31 - 00000000 ____D () C:\ProgramData\Mozilla
2014-10-13 09:31 - 2014-10-13 09:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-13 09:31 - 2014-10-13 09:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-13 09:01 - 2014-10-13 09:01 - 974540800 _____ () C:\Users\Simon Hatje\Desktop\DE-Cleaner-RettungsCDv3_5_1.iso
2014-10-13 08:50 - 2014-10-13 08:50 - 03836936 _____ (Piriform Ltd) C:\Users\Simon Hatje\Desktop\ccsetup418_slim.exe
2014-10-13 08:50 - 2014-10-13 08:50 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-13 08:37 - 2014-10-13 08:37 - 00000000 ___RD () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-10-13 08:34 - 2014-10-13 08:40 - 00011603 _____ () C:\Users\Simon Hatje\Desktop\hijackthis.log
2014-10-13 08:34 - 2014-10-13 08:34 - 00388608 _____ (Trend Micro Inc.) C:\Users\Simon Hatje\Desktop\HiJackThis204.exe
2014-10-13 08:20 - 2014-10-13 08:20 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-13 05:43 - 2014-08-16 07:56 - 12289024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 09055232 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 02466816 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 01538048 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 01188864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00735232 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00495616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-10-13 05:43 - 2014-08-16 07:56 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-10-13 05:43 - 2014-08-16 07:55 - 01538048 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-13 05:43 - 2014-08-16 07:55 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-13 05:43 - 2014-08-16 07:36 - 06025728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 01266176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 00981504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 00132096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 11019264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 02086400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 01466368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-13 05:43 - 2014-08-16 07:35 - 00345600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-13 05:43 - 2014-08-16 07:35 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-10-13 05:43 - 2014-08-16 07:35 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-10-13 05:43 - 2014-08-16 07:05 - 01638912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-13 05:43 - 2014-08-16 06:48 - 01638912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-12 22:56 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-10-12 22:56 - 2012-03-01 08:38 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-10-12 22:56 - 2012-03-01 08:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-10-12 22:56 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-10-12 22:56 - 2012-03-01 07:37 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-10-12 22:56 - 2012-03-01 07:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-10-12 22:56 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-10-12 22:02 - 2014-10-12 22:02 - 00264706 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2014-10-12 22:00 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-10-12 22:00 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-10-12 22:00 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-10-12 22:00 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-10-12 22:00 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-10-12 22:00 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-10-12 22:00 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-10-12 22:00 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-10-12 21:27 - 2014-10-12 21:35 - 00000000 ____D () C:\OETemp
2014-10-12 21:13 - 2014-10-12 21:13 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Lavasoft
2014-10-12 20:28 - 2014-10-12 20:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2014-10-12 20:23 - 2014-10-12 20:23 - 00000000 ____D () C:\Program Files\Lavasoft
2014-10-12 20:22 - 2014-10-12 20:22 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-10-12 20:05 - 2014-10-12 21:08 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-10-12 20:05 - 2014-10-12 20:10 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-10-12 20:05 - 2014-10-12 20:05 - 00001387 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-10-12 20:05 - 2014-10-12 20:05 - 00000656 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-10-12 20:05 - 2014-10-12 20:05 - 00000628 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-10-12 20:05 - 2014-10-12 20:05 - 00000458 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-10-12 20:05 - 2014-10-12 20:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-10-12 20:05 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-10-12 19:58 - 2014-10-12 19:58 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-10-12 19:13 - 2014-10-12 19:13 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\{F49C98F4-0A54-432B-BA79-F0FCAB2CA543}
2014-10-12 10:20 - 2014-10-12 10:20 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\{EFBB0261-4D61-47C7-B5BD-5518B9319659}
2014-10-12 09:17 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-12 09:17 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-12 09:01 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-10-12 09:01 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-10-12 09:00 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-10-12 09:00 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-10-12 09:00 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-10-12 09:00 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-10-12 09:00 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-10-12 09:00 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-10-12 09:00 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-10-12 09:00 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-10-12 09:00 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-10-12 09:00 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-10-12 09:00 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-10-12 09:00 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-10-12 08:59 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-10-12 08:59 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-10-12 08:59 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-10-12 08:59 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-10-12 08:59 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-10-12 08:59 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-10-12 08:59 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-10-12 08:59 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-10-12 08:59 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-10-12 08:59 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-10-12 08:59 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-10-12 08:59 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-10-12 08:59 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-10-12 08:59 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-10-12 08:59 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-10-12 08:59 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-10-12 08:59 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-10-12 08:59 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-10-12 08:59 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-10-12 08:59 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-10-12 08:59 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-10-12 08:59 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-10-12 08:59 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-10-12 08:59 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-10-12 08:59 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-10-12 08:59 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-10-12 08:59 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-10-12 08:59 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-10-12 08:59 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-10-12 08:59 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-10-12 08:59 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-10-12 08:59 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-10-12 08:58 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-10-12 08:58 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-10-12 08:58 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-10-12 08:58 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-10-12 08:58 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-10-12 08:58 - 2013-10-12 04:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-10-12 08:58 - 2013-10-12 04:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-10-12 08:58 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-10-12 08:58 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-10-12 08:58 - 2013-10-12 03:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-10-12 08:58 - 2013-10-12 03:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-10-12 08:58 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-10-12 08:58 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-10-12 08:58 - 2013-08-27 11:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-10-12 08:58 - 2013-08-27 11:01 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-10-12 08:58 - 2013-08-27 10:21 - 01077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-10-12 08:58 - 2013-05-13 07:51 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-10-12 08:58 - 2013-05-13 07:51 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-10-12 08:58 - 2013-05-13 07:51 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-10-12 08:58 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-10-12 08:58 - 2013-05-13 06:45 - 01160192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-10-12 08:58 - 2013-05-13 06:45 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-10-12 08:58 - 2013-05-13 06:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-10-12 08:58 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-10-12 08:58 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-10-12 08:58 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-10-12 08:57 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-10-12 08:57 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-10-12 08:57 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-12 08:57 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-10-12 08:57 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-10-12 08:57 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-10-12 08:57 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-10-12 08:57 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-10-12 08:57 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-10-12 08:57 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-10-12 08:57 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-10-12 08:57 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-10-12 08:57 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-12 08:57 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-12 08:57 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-10-12 08:57 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-10-12 08:57 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-10-12 08:57 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-12 08:57 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-12 08:57 - 2013-09-25 04:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-10-12 08:57 - 2013-09-25 03:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-10-12 08:57 - 2013-07-04 14:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-10-12 08:57 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-10-12 08:57 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-10-12 08:57 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-10-12 08:57 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-10-12 08:57 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-10-12 08:57 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-10-12 08:57 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-10-12 08:57 - 2011-02-23 06:56 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-10-12 08:57 - 2011-02-23 06:55 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-10-12 08:57 - 2011-02-23 06:55 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-10-12 08:57 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-10-12 08:54 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-10-12 08:54 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-10-12 08:54 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-10-12 08:54 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-10-12 08:54 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-10-12 08:54 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-10-12 08:54 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-10-12 08:54 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-10-12 08:54 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-10-12 08:54 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-10-12 08:53 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-12 08:53 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-12 08:37 - 2014-10-13 08:44 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-12 08:37 - 2014-10-12 08:44 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-12 08:37 - 2014-10-12 08:44 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-12 08:37 - 2014-10-12 08:44 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-10-12 08:37 - 2014-10-12 08:37 - 00000000 ____D () C:\Windows\system32\Macromed
2014-10-12 08:28 - 2014-10-12 08:28 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\{1BB4981B-7B08-4887-8F1C-BE9657BF99F3}
2014-10-11 20:07 - 2014-10-11 20:36 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Windows Live
2014-10-11 20:06 - 2014-10-11 20:15 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Windows Live Writer
2014-10-11 20:06 - 2014-10-11 20:12 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Windows Live Writer
2014-10-11 20:06 - 2014-10-11 20:07 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\{7BF463F3-1BAA-4E49-9F88-B33CF5334DDD}
2014-10-11 16:00 - 2014-10-12 08:37 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Adobe
2014-10-11 15:57 - 2014-10-11 15:57 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\OpenOffice
2014-10-11 15:55 - 2014-10-11 16:05 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-10-11 15:55 - 2014-10-11 15:55 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2014-10-11 15:43 - 2014-10-11 15:41 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ILMHAE.DLL
2014-10-11 15:43 - 2014-10-11 15:41 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ID4BHAE.DLL
2014-10-11 15:43 - 2014-10-11 15:41 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
2014-10-11 15:42 - 2014-10-11 15:42 - 00000000 ____D () C:\Program Files (x86)\epson
2014-10-11 15:42 - 2011-08-10 00:00 - 00464384 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll
2014-10-11 15:42 - 2009-10-16 00:00 - 00132560 _____ (Seiko Epson Corporation) C:\Windows\system32\esdevapp.exe
2014-10-11 15:42 - 2009-10-16 00:00 - 00013824 _____ (Seiko Epson Corporation) C:\Windows\system32\esxcdev.dll
2014-10-11 15:36 - 2014-10-11 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2014-10-11 15:36 - 2014-10-11 15:42 - 00000000 ____D () C:\ProgramData\EPSON
2014-10-11 15:36 - 2014-10-11 15:36 - 00000000 ____D () C:\Program Files\Common Files\EPSON
2014-10-11 15:35 - 2014-10-11 15:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-10-11 15:35 - 2009-09-30 18:01 - 00088064 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_IBCBHAE.DLL
2014-10-11 15:26 - 2014-10-11 15:26 - 09889352 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2014-10-11 15:26 - 2014-10-11 15:26 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-10-11 15:26 - 2014-10-11 15:26 - 00941272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-11 15:26 - 2014-10-11 15:26 - 00359128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2014-10-11 15:26 - 2014-10-11 15:26 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-10-11 15:26 - 2014-10-11 15:26 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-11 15:26 - 2014-10-11 15:26 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-10-11 15:25 - 2014-07-02 12:14 - 03826628 _____ () C:\Windows\system32\nvcoproc.bin
2014-10-11 15:24 - 2014-10-11 15:24 - 31512520 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 24196896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 22994208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 16122344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 15294296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 14498552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 13922752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 13835208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 12866008 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-10-11 15:24 - 2014-10-11 15:24 - 11283344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 11222048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 04247000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 03989960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 02814656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 01890080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434052.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 01539928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434052.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 00944928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 00907096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 00903624 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 00869152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-10-11 15:24 - 2014-10-11 15:24 - 00000000 ____H () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2014-10-11 15:24 - 2014-10-11 15:24 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-10-11 15:24 - 2012-07-26 06:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-10-11 15:24 - 2012-07-26 06:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-10-11 15:24 - 2012-07-26 04:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-10-11 15:24 - 2012-06-02 16:35 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-10-11 15:23 - 2014-10-11 15:23 - 00589000 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys
2014-10-11 15:21 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-10-11 15:21 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-10-11 15:21 - 2012-02-17 06:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-11 15:21 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-10-11 15:19 - 2014-10-11 15:19 - 00003226 _____ () C:\Windows\System32\Tasks\Driver Booster Scan
2014-10-11 15:19 - 2014-10-11 15:19 - 00003170 _____ () C:\Windows\System32\Tasks\Driver Booster Update
2014-10-11 15:19 - 2014-10-11 15:19 - 00002866 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Simon Hatje)
2014-10-11 15:19 - 2014-10-11 15:19 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\IObit
2014-10-11 15:19 - 2014-10-11 15:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster
2014-10-11 15:19 - 2014-10-11 15:19 - 00000000 ____D () C:\ProgramData\IObit
2014-10-11 15:19 - 2014-10-11 15:19 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-11 15:17 - 2014-10-11 15:29 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Spotify
2014-10-11 15:17 - 2014-10-11 15:17 - 00001783 _____ () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-10-11 15:16 - 2014-10-11 21:10 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Spotify
2014-10-11 15:15 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-10-11 15:15 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-10-11 15:15 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-10-11 15:15 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-10-11 15:15 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-10-11 15:15 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-10-11 15:15 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-10-11 15:15 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-10-11 15:15 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-10-11 15:15 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-10-11 15:14 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-10-11 15:14 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-10-11 15:14 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-10-11 15:14 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-10-11 14:47 - 2014-10-11 16:00 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Adobe
2014-10-11 13:10 - 2014-10-13 08:37 - 00003982 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{C13D5A7C-E532-4301-8EF1-AEE0A112F1A4}
2014-10-11 13:07 - 2014-10-11 21:23 - 00000000 ___RD () C:\Users\Simon Hatje\Desktop\Simon
2014-10-11 13:01 - 2014-10-11 12:58 - 00000000 ____D () C:\Program Files\Sony
2014-10-11 13:00 - 2014-10-13 08:43 - 00696870 _____ () C:\Windows\system32\perfh007.dat
2014-10-11 13:00 - 2014-10-13 08:43 - 00148134 _____ () C:\Windows\system32\perfc007.dat
2014-10-11 13:00 - 2014-10-11 23:01 - 00000000 ____D () C:\Users\Simon Hatje\Documents\Bluetooth Folder
2014-10-11 13:00 - 2014-10-11 13:00 - 00001401 _____ () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-10-11 13:00 - 2014-10-11 13:00 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Intel Corporation
2014-10-11 13:00 - 2014-10-11 13:00 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Atheros
2014-10-11 13:00 - 2014-10-11 13:00 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\BMExplorer
2014-10-11 13:00 - 2014-10-11 12:59 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-10-11 13:00 - 2014-10-11 12:59 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-10-11 12:59 - 2014-10-13 08:37 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\VirtualStore
2014-10-11 12:59 - 2014-10-11 13:00 - 00001435 _____ () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\de
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\0407
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\winrm
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\WCN
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\slmgr
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\de
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\0407
2014-10-11 12:58 - 2014-10-11 12:58 - 00001957 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music Unlimited powered by Qriocity.lnk
2014-10-11 12:58 - 2014-10-11 12:58 - 00000000 ___RH () C:\Windows\SysWOW64\Drivers\104D_Sony_VPCEH1Z1E.mrk
2014-10-11 12:58 - 2014-10-11 12:58 - 00000000 ___RH () C:\Windows\system32\Drivers\104D_Sony_VPCEH1Z1E.mrk
2014-10-11 12:57 - 2014-10-13 10:44 - 00000000 ____D () C:\Users\Simon Hatje
2014-10-11 12:57 - 2014-10-13 08:37 - 00075256 _____ () C:\Users\Simon Hatje\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-11 12:57 - 2014-10-11 13:00 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Sony Corporation
2014-10-11 12:57 - 2014-10-11 12:57 - 00031539 _____ () C:\Windows\ie8_main.log
2014-10-11 12:57 - 2014-10-11 12:57 - 00000020 ___SH () C:\Users\Simon Hatje\ntuser.ini
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Vorlagen
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Startmenü
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Netzwerkumgebung
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Lokale Einstellungen
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Eigene Dateien
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Druckumgebung
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Documents\Eigene Musik
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Documents\Eigene Bilder
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\AppData\Local\Verlauf
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\AppData\Local\Anwendungsdaten
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Anwendungsdaten
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 ____D () C:\Windows\SysWOW64\VAIO Startup Setting Tool
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 ____D () C:\Windows\pss
2014-10-11 12:57 - 2014-10-11 12:31 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Macromedia
2014-10-11 12:57 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-11 12:57 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Programme
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-10-11 12:51 - 2014-10-11 13:00 - 00000000 ____D () C:\ProgramData\Atheros
2014-10-11 12:49 - 2014-10-11 12:49 - 00002017 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care.lnk
2014-10-11 12:49 - 2014-10-11 12:49 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2014-10-11 12:48 - 2014-10-11 12:48 - 00262144 _____ () C:\Windows\ocsetup_install_OEMHelpCustomization.etl
2014-10-11 12:48 - 2014-10-11 12:48 - 00028728 _____ () C:\Windows\ocsetup_cbs_install_OEMHelpCustomization.txt
2014-10-11 12:48 - 2014-10-11 12:48 - 00002193 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Smart Network.lnk
2014-10-11 12:48 - 2014-10-11 12:48 - 00001271 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Transfer.lnk
2014-10-11 12:48 - 2014-10-11 12:48 - 00000000 ____D () C:\VAIO Sample Contents
2014-10-11 12:48 - 2014-10-11 12:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-10-11 12:47 - 2014-10-11 12:47 - 00002265 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Data Restore Tool.lnk
2014-10-11 12:47 - 2014-10-11 12:47 - 00002068 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Gate.lnk
2014-10-11 12:47 - 2014-10-11 12:47 - 00001848 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Easy Connect.lnk
2014-10-11 12:47 - 2014-10-11 12:47 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-10-11 12:47 - 2014-10-11 12:47 - 00000000 ____D () C:\ProgramData\Skype
2014-10-11 12:47 - 2014-10-11 12:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-10-11 12:46 - 2014-10-11 12:46 - 97167020 _____ (Axialis Software) C:\Windows\system32\VAIO Hero Screensaver - Summer 2011.scr
2014-10-11 12:46 - 2014-10-11 12:46 - 00000000 ____D () C:\Program Files (x86)\Nascom
2014-10-11 12:46 - 2011-02-18 17:09 - 00000007 _____ () C:\Windows\SysWOW64\scr_version.txt
2014-10-11 12:45 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-10-11 12:45 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-10-11 12:44 - 2014-10-11 12:45 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayStation Extras
2014-10-11 12:44 - 2014-10-11 12:44 - 00001185 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Keyboard.lnk
2014-10-11 12:44 - 2014-10-11 12:44 - 00000000 ___HD () C:\SPLASH.SYS
2014-10-11 12:44 - 2014-10-11 12:44 - 00000000 ___HD () C:\SPLASH.000
2014-10-11 12:43 - 2014-10-11 12:44 - 00321168 _____ () C:\lv.log
2014-10-11 12:43 - 2014-10-11 12:43 - 00000000 ____D () C:\Program Files (x86)\Downloaded Installations
2014-10-11 12:39 - 2014-10-11 12:39 - 00001139 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB.lnk
2014-10-11 12:39 - 2014-10-11 12:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB
2014-10-11 12:39 - 2014-10-11 12:39 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-10-11 12:39 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-10-11 12:39 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-10-11 12:39 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-10-11 12:37 - 2014-10-11 12:37 - 00002435 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
2014-10-11 12:37 - 2014-10-11 12:37 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-10-11 12:35 - 2014-10-11 12:35 - 00001299 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Gallery.lnk
2014-10-11 12:35 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-10-11 12:35 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-10-11 12:35 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-10-11 12:35 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-10-11 12:35 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-10-11 12:35 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-10-11 12:33 - 2014-10-11 12:33 - 00000040 ____H () C:\Windows\system32\ivireg.ivr
2014-10-11 12:33 - 2014-10-11 12:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel
2014-10-11 12:33 - 2014-10-11 12:33 - 00000000 ____D () C:\ProgramData\Corel
2014-10-11 12:33 - 2014-10-11 12:33 - 00000000 ____D () C:\Program Files (x86)\Corel
2014-10-11 12:33 - 2009-05-26 14:32 - 00019968 _____ (ArcSoft, Inc.) C:\Windows\system32\Drivers\ArcSoftKsUFilter.sys
2014-10-11 12:33 - 2008-09-04 17:06 - 00055808 _____ (ArcSoft, Inc.) C:\Windows\system\ArcSoftKsUFilter.dll
2014-10-11 12:33 - 2007-04-17 11:51 - 00014112 _____ (InterVideo) C:\Windows\system32\Drivers\regi.sys
2014-10-11 12:33 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-10-11 12:33 - 2005-04-27 16:36 - 00245408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unicows.dll
2014-10-11 12:33 - 2003-03-18 22:14 - 00499712 ____R (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-10-11 12:33 - 2003-02-21 04:42 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-10-11 12:33 - 1995-07-31 13:44 - 00212480 _____ (Eastman Kodak) C:\Windows\SysWOW64\PCDLIB32.DLL
2014-10-11 12:32 - 2014-10-11 12:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Webcam Suite
2014-10-11 12:32 - 2014-10-11 12:33 - 00000000 ____D () C:\Program Files (x86)\ArcSoft
2014-10-11 12:32 - 2014-10-11 12:32 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2014-10-11 12:32 - 2014-10-11 12:32 - 00000000 ____D () C:\ProgramData\ArcSoft
2014-10-11 12:31 - 2014-10-12 19:53 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-10-11 12:31 - 2014-10-11 16:01 - 00000000 ____D () C:\ProgramData\Adobe
2014-10-11 12:31 - 2014-10-11 12:32 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-10-11 12:31 - 2014-10-11 12:31 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-10-11 12:31 - 2014-10-11 12:31 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-10-11 12:30 - 2014-10-11 12:30 - 00000000 ____D () C:\Windows\en
2014-10-11 12:29 - 2014-10-11 12:30 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\uk
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\tr
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\sv
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\sk
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\ru
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\ro
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\pl
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\no
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\it
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\hu
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\el
2014-10-11 12:28 - 2014-10-11 12:28 - 00001374 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
2014-10-11 12:28 - 2014-10-11 12:28 - 00001305 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\nl
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\fr
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\fi
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\de
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\da
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\cs
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\bg
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-10-11 12:27 - 2014-10-11 12:27 - 00001458 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2014-10-11 12:25 - 2014-10-11 12:30 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-10-11 12:25 - 2014-10-11 12:25 - 00002486 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2014-10-11 12:24 - 2014-10-11 12:24 - 00000000 ____D () C:\Windows\PCHEALTH
2014-10-11 12:24 - 2014-10-11 12:24 - 00000000 ____D () C:\Program Files\Windows Live
2014-10-11 12:23 - 2014-10-11 12:39 - 00000597 _____ () C:\Windows\DirectX.log
2014-10-11 12:23 - 2014-10-11 12:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-10-11 12:23 - 2014-10-11 12:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-10-11 12:23 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-10-11 12:23 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-10-11 12:23 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-10-11 12:23 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-10-11 12:23 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-10-11 12:23 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-10-11 12:21 - 2014-10-11 15:25 - 00000000 ____D () C:\temp
2014-10-11 12:21 - 2014-10-11 12:57 - 00000000 ____D () C:\Windows\System32\Tasks\SONY
2014-10-11 12:21 - 2014-10-11 12:21 - 00001991 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Manual.lnk
2014-10-11 12:21 - 2014-10-11 12:21 - 00001527 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Control Center.lnk
2014-10-11 12:21 - 2014-10-11 12:21 - 00001151 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-10-11 12:21 - 2014-10-11 12:21 - 00000000 ____D () C:\Documentation
2014-10-11 12:21 - 2014-10-11 12:21 - 00000000 ____D () C:\_FS_SWRINFO
2014-10-11 12:20 - 2014-10-11 12:20 - 00000000 ____D () C:\Windows\Sonysys
2014-10-11 12:19 - 2014-10-12 20:20 - 00000000 ____D () C:\ProgramData\McAfee
2014-10-11 12:18 - 2014-10-11 13:00 - 00000000 ____D () C:\Windows\System32\Tasks\Sony Corporation
2014-10-11 12:18 - 2014-10-11 12:48 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-10-11 12:18 - 2014-10-11 12:34 - 00000000 ____D () C:\Program Files\Common Files\Sony Shared
2014-10-11 12:18 - 2014-10-11 12:18 - 00521448 _____ (Sun Microsystems, Inc.) C:\Windows\system32\deployJava1.dll
2014-10-11 12:18 - 2014-10-11 12:18 - 00472808 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2014-10-11 12:18 - 2014-10-11 12:18 - 00189216 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaws.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00171808 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaw.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00171808 _____ (Sun Microsystems, Inc.) C:\Windows\system32\java.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00153376 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00000000 ____D () C:\ProgramData\Sun
2014-10-11 12:18 - 2014-10-11 12:18 - 00000000 ____D () C:\Program Files\Java
2014-10-11 12:18 - 2014-10-11 12:18 - 00000000 ____D () C:\Program Files (x86)\Java
2014-10-11 12:16 - 2014-10-11 12:16 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2014-10-11 12:16 - 2014-10-11 12:16 - 00000000 ____D () C:\Windows\SysWOW64\sda
2014-10-11 12:16 - 2014-10-11 12:16 - 00000000 ____D () C:\Program Files\Apoint
2014-10-11 12:16 - 2014-10-11 12:16 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-10-11 12:16 - 2011-03-29 08:16 - 09888360 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2014-10-11 12:16 - 2011-02-01 13:06 - 00008192 _____ () C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-10-11 12:16 - 2010-10-19 16:34 - 00056344 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys
2014-10-11 12:15 - 2014-10-11 15:25 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-11 12:15 - 2014-10-11 15:25 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-10-11 12:14 - 2014-10-11 15:25 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-10-11 12:14 - 2014-10-11 15:24 - 18626304 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-10-11 12:14 - 2014-10-11 15:24 - 17555104 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-10-11 12:14 - 2014-10-11 15:24 - 03196816 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-10-11 12:14 - 2014-10-11 15:24 - 00026353 _____ () C:\Windows\system32\nvinfo.pb
2014-10-11 12:14 - 2014-10-11 12:14 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-10-11 12:14 - 2011-03-29 11:14 - 01359976 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco642040.dll
2014-10-11 12:14 - 2011-03-29 11:13 - 01359976 _____ (NVIDIA Corporation) C:\Windows\system32\nvgenco642040.dll
2014-10-11 12:14 - 2011-03-29 11:12 - 01614440 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco642090.dll
2014-10-11 12:14 - 2011-03-29 11:11 - 00067176 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-10-11 12:14 - 2011-03-29 11:11 - 00057960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-10-11 12:14 - 2011-03-29 11:11 - 00011240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvBridge.kmd
2014-10-11 12:13 - 2014-10-11 12:13 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf
2014-10-11 12:12 - 2014-10-11 12:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2014-10-11 12:12 - 2014-10-11 12:12 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite
2014-10-11 12:11 - 2014-10-11 12:11 - 00000000 ____D () C:\Program Files\CONEXANT
2014-10-11 12:10 - 2014-10-11 12:10 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-10-11 12:09 - 2014-10-11 12:49 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-11 12:08 - 2014-10-13 08:44 - 01331379 _____ () C:\Windows\WindowsUpdate.log
2014-10-11 12:08 - 2014-10-11 12:16 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-10-11 12:08 - 2014-10-11 12:08 - 00000000 ____D () C:\Intel
2014-10-11 12:08 - 2011-02-16 14:34 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2014-10-11 12:06 - 2014-10-11 12:51 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-10-11 12:04 - 2014-10-11 12:04 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-10-11 12:04 - 2014-10-11 12:04 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-13 08:44 - 2009-07-14 06:45 - 00020992 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-13 08:44 - 2009-07-14 06:45 - 00020992 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-13 08:43 - 2009-07-14 07:13 - 01612484 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-13 08:36 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-13 08:36 - 2009-07-14 06:51 - 00036893 _____ () C:\Windows\setupact.log
2014-10-13 08:23 - 2009-07-14 06:45 - 00316440 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-13 05:13 - 2011-02-11 01:03 - 01589650 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-10-12 20:19 - 2010-11-21 05:47 - 00007278 _____ () C:\Windows\PFRO.log
2014-10-12 19:53 - 2011-03-15 04:36 - 00000000 ____D () C:\Windows\ShellNew
2014-10-12 19:53 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\L2Schemas
2014-10-12 19:12 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-10-11 15:54 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-10-11 15:26 - 2011-03-29 09:42 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-10-11 15:24 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-11 15:14 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\restore
2014-10-11 13:01 - 2009-07-14 07:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-10-11 13:01 - 2009-07-14 07:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-10-11 12:59 - 2011-03-15 04:36 - 00000000 ____D () C:\Program Files\Windows Journal
2014-10-11 12:59 - 2009-07-14 07:37 - 00000000 ____D () C:\Windows\DigitalLocker
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\com
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Speech
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\IME
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-10-11 12:56 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-10-11 12:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-10-11 12:54 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-10-11 12:51 - 2011-02-11 00:48 - 00000000 ____D () C:\Windows\Panther
2014-10-11 12:51 - 2009-07-14 06:46 - 00004059 _____ () C:\Windows\DtcInstall.log
2014-10-11 12:51 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-10-11 12:48 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-10-11 12:44 - 2010-11-18 12:03 - 00000087 ____H () C:\splash.idx
2014-10-11 12:34 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system
2014-10-11 12:22 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-10-11 12:21 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Resources
2014-10-11 12:20 - 2011-02-11 00:52 - 00000012 _____ () C:\Windows\csup.txt
2014-10-11 12:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-10-11 12:12 - 2011-03-31 15:32 - 00246804 _____ () C:\Windows\system32\Drivers\AtherosBt.bin
2014-10-11 12:12 - 2011-03-31 15:32 - 00001262 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_26.dfu
2014-10-11 12:12 - 2011-03-31 15:32 - 00001204 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40_0x02.dfu
2014-10-11 12:12 - 2011-03-31 15:32 - 00001204 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40.dfu
2014-10-11 12:08 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Globalization
2014-10-11 12:04 - 2011-02-11 00:55 - 00003652 _____ () C:\Windows\TSSysprep.log
2014-10-11 12:04 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2011-02-11 00:52

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-10-2014 02
Ran by ... at 2014-10-13 11:39:02
Running from C:\Users\...\Desktop
Boot Mode: Safe Mode (with Networking)
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Ad-Aware Antivirus (Disabled - Out of date) {D87B6541-12A1-DAEA-0033-9B8057AAB996}
AS: Ad-Aware Antivirus (Disabled - Out of date) {631A84A5-349B-D564-3A83-A0F22C2DF32B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: Ad-Aware Firewall (Disabled) {E040E464-58CE-DBB2-2B6C-32B5A979FEED}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ActiveX контрола на Windows Live Mesh за отдалечени връзки (HKLM-x32\...\{B3BA4D1C-23EF-4859-9C11-1B2CCB7FADBB}) (Version: 15.4.5722.2 - Microsoft Corporation)
ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (HKLM-x32\...\{376D59B1-42D9-4FA2-B6CC-E346B6BE14F5}) (Version: 15.4.5722.2 - Microsoft Corporation)
Ad-Aware Antivirus (HKLM\...\{E39A80AE-0CC0-43EE-AB6B-BE11DC4F969F}_AdAwareUpdater) (Version: 11.3.6321.0 - Lavasoft)
AdAwareInstaller (Version: 11.3.6321.0 - Lavasoft) Hidden
AdAwareUpdater (Version: 11.3.6321.0 - Lavasoft) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 2.5.1.17730 - Adobe Systems Inc.) Hidden
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader X MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.0.0 - Adobe Systems Incorporated)
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version:  - ALPS ELECTRIC CO., LTD.)
AntimalwareEngine (Version: 3.0.0.56 - Lavasoft) Hidden
ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{61438020-DDD4-42FA-99A2-50225441980A}) (Version: 2.0.1.142 - ArcSoft)
ArcSoft WebCam Companion 4 (HKLM-x32\...\{C793AD32-2BB8-4CC4-ABD3-A1469C21593C}) (Version: 4.0.21.392 - ArcSoft)
Bing Bar (HKLM-x32\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.3.0.95 - Atheros Communications)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.0.53 - Conexant)
Control ActiveX Windows Live Mesh pentru conexiuni la distanță (HKLM-x32\...\{260E3D78-94E6-47EC-8E29-46301572BB1E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.0.5.800 - Corel Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Driver Booster (HKLM-x32\...\Driver Booster_is1) (Version: 1.5 - IObit)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version:  - SEIKO EPSON Corporation)
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.0.0.1046 - Intel Corporation)
Java Auto Updater (x32 Version: 2.0.2.4 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 22 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416022FF}) (Version: 6.0.220 - Oracle)
Java(TM) 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Media Gallery (Version: 1.5.0.16020 - Your Company Name) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.0.50401.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 32.0.3 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NVIDIA Install Application (Version: 2.1002.154.1150 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.10.0514 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.10.0514 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.10.0514 - NVIDIA Corporation)
NVIDIA Systemsteuerung 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.5.02.12220 - Sony Corporation)
PMB VAIO Edition Guide (x32 Version: 1.5.00.02250 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (Version: 1.5.00.04010 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (x32 Version: 1.5.00.02250 - Sony Corporation) Hidden
PMB VAIO Edition Plug-in (x32 Version: 1.5.00.04060 - Sony Corporation) Hidden
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7600.77 - Realtek Semiconductor Corp.)
Remote Keyboard (x32 Version: 1.1.1.03020 - Sony Corporation) Hidden
Remote Play with PlayStation 3 (x32 Version: 1.1.0.15070 - Sony Corporation) Hidden
Skype™ 5.1 (HKLM-x32\...\{E633D396-5188-4E9D-8F6B-BFB8BF3467E8}) (Version: 5.1.104 - Skype Technologies S.A.)
Sony Corporation (Version: 1.0.0 - Default Company Name) Hidden
Spotify (HKCU\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
System Explorer 5.9.4 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version:  - Mister Group)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (HKLM-x32\...\{8E34682C-8118-31F1-BC4C-98CD9675E1C2}.KB2836939v3) (Version: 3 - Microsoft Corporation)
Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (HKLM-x32\...\{241E7104-937A-4366-AD57-8FDDDB003939}) (Version: 15.4.5722.2 - Microsoft Corporation)
VAIO - Media Gallery (HKLM-x32\...\{FA870BF1-44A1-4B7D-93E1-C101369AF0C1}) (Version: 1.5.0.16020 - Sony Corporation)
VAIO - PMB VAIO Edition Guide (HKLM-x32\...\InstallShield_{339F9B4D-00CB-4C1C-BED8-EC86A9AB602A}) (Version: 1.5.00.02250 - Sony Corporation)
VAIO - PMB VAIO Edition Plug-in (HKLM-x32\...\InstallShield_{270380EB-8812-42E1-8289-53700DB840D2}) (Version: 1.5.00.04060 - Sony Corporation)
VAIO - Remote Play mit PlayStation®3 (HKLM-x32\...\{07441A52-E208-478A-92B7-5C337CA8C131}) (Version: 1.1.0.15070 - Sony Corporation)
VAIO - Remote-Tastatur  (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.0.1.03020 - Sony Corporation)
VAIO Care (HKLM-x32\...\{36C5BBF0-E5BF-4DE1-B684-7E90B0C93FB5}) (Version: 6.4.0.15030 - Sony Corporation)
VAIO Care (x32 Version: 6.4.0.15030 - Sony Corporation) Hidden
VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.5.0.03040 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.6.0.13140 - Sony Corporation)
VAIO Data Restore Tool (x32 Version: 1.6.0.13140 - Sony Corporation) Hidden
VAIO Easy Connect (HKLM-x32\...\{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 1.0.0.03050 - Sony Corporation)
VAIO Event Service (HKLM-x32\...\{73D8886A-D416-4687-B609-0D3836BA410C}) (Version: 5.5.0.03040 - Sony Corporation)
VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.3.0.11090 - Sony Corporation)
VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.4.0.03240 - Sony Corporation)
VAIO Hardware Diagnostics (x32 Version: 4.2.0.14280 - Sony Corporation) Hidden
VAIO Hero Screensaver - Summer 2011 Screensaver (HKLM-x32\...\VAIO Hero Screensaver - Summer 2011 Screensaver) (Version:  - )
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 1.0.0.14150 - Sony Corporation)
VAIO Improvement Validation (HKLM\...\{75C95C84-264F-4CC7-8A7E-346444E6C7C1}) (Version: 1.0.4.01190 - Sony Corporation)
VAIO Quick Web Access (HKLM-x32\...\splashtop) (Version: 1.4.5.3 - Sony Corporation)
VAIO Quick Web Access (x32 Version: 1.4.5.3 - Sony Corporation) Hidden
VAIO Sample Contents (HKLM-x32\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.4.2.09010 - Sony Corporation)
VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.5.0.02280 - Sony Corporation)
VAIO Update (HKLM-x32\...\{5BEE8F1F-BD32-4553-8107-500439E43BD7}) (Version: 5.4.0.15300 - Sony Corporation)
VAIO-Handbuch (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 2.0.0.02250 - Sony Corporation)
VAIO-Support für Übertragungen (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.4.0.14230 - Sony Corporation)
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VESx64 (Version: 1.0.0 - Sony Corporation) Hidden
VESx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VIx64 (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VSNx64 (Version: 1.0.0 - Sony Corporation) Hidden
VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogaléria (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalleri (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotótár (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Корпорація Майкрософт) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (HKLM-x32\...\{09B7C7EB-3140-4B5E-842F-9C79A7137139}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM-x32\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Meshin etäyhteyksien ActiveX-komponentti (HKLM-x32\...\{4CF6F287-5121-483C-A5A2-07BDE19D8B4E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Корпорація Майкрософт) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven asennustyökalu (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven sähköposti (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven valokuvavalikoima (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Елемент керування Windows Live Mesh ActiveX для віддалених підключень (HKLM-x32\...\{6756D5CA-3E31-4308-9BF0-79DFD1AF196E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Основи Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотоколекція Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {2059D53C-F02A-460E-99D9-E0F46B8E299D} - System32\Tasks\Sony Corporation\VAIO Improvement Validation\VAIO Improvement Validation => C:\Program Files\Sony\VAIO Improvement Validation\viv.exe [2011-01-20] (Sony Corporation)
Task: {527E5A4F-A1DE-4D07-AEB9-588D2C310042} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2011-02-15] (Sony Corporation)
Task: {7CFEDF23-69AA-48C4-BA74-616EE36B32DD} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update 5 => C:\Program Files\Sony\VAIO Update 5\VAIOUpdt.exe [2011-03-30] (Sony Corporation)
Task: {8EF1C513-9A9F-4644-A921-ED0D5BB706FF} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCsystray.exe [2011-02-16] (Sony Corporation)
Task: {9985F7BE-1B39-47F1-9A48-5D4F13E80ADB} - System32\Tasks\Sony Corporation\VAIO Smart Network\VSN Logon Start => C:\Program Files\Sony\VAIO Smart Network\VSNClient
Task: {99ED857C-5217-4B00-B062-3EC54FF3EDF8} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCOneClick.exe [2011-02-16] (Sony Corporation)
Task: {C3DB20B8-CBCA-4757-81E8-C1147F65CC1F} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2014-09-26] (IObit)
Task: {C6C7E3ED-39E8-4242-8C27-21AF85F3FB33} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2014-09-26] (IObit)
Task: {D5FF1485-F3EE-4F86-BF2F-3B21EBEC9F71} - System32\Tasks\SONY\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2010-11-16] (Sony Corporation)
Task: {E64543DA-159E-4376-B624-E872833837E9} - System32\Tasks\SONY\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2010-11-16] (Sony Corporation)
Task: {F3AF91D2-FC81-4500-AFBA-0F36FFC0344C} - System32\Tasks\Driver Booster SkipUAC (Simon Hatje) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe [2014-09-26] (IObit)
Task: {FD7B045F-A511-4869-A884-8F54E9E863B5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-12] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe

==================== Loaded Modules (whitelisted) =============

2014-08-27 12:52 - 2014-08-27 12:52 - 02745168 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareShellExtension.dll
2014-08-27 12:53 - 2014-08-27 12:53 - 03396400 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\RCF.dll
2014-08-27 12:53 - 2014-08-27 12:53 - 00123744 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\boost_filesystem-vc100-mt-1_55.dll
2014-08-27 12:53 - 2014-08-27 12:53 - 00024408 _____ () C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\boost_system-vc100-mt-1_55.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"

========================= Accounts: ==========================

Administrator (S-1-5-21-627948766-355836689-784361957-500 - Administrator - Disabled)
Gast (S-1-5-21-627948766-355836689-784361957-501 - Limited - Disabled)
Simon Hatje (S-1-5-21-627948766-355836689-784361957-1000 - Administrator - Enabled) => C:\Users\Simon Hatje

==================== Faulty Device Manager Devices =============

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/13/2014 11:00:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 09:44:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 09:30:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 09:21:12 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 09:11:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 09:06:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 08:47:05 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 08:39:06 AM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to execute command from the offline queue: uninstall "SMDiagnostics, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil".  The error returned was Error: The specified assembly is not installed.
.

Error: (10/13/2014 08:39:06 AM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to execute command from the offline queue: uninstall "System.ServiceModel, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil".  The error returned was Error: The specified assembly is not installed.
.

Error: (10/13/2014 08:39:06 AM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to execute command from the offline queue: uninstall "System.Runtime.Serialization, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil".  The error returned was Error: The specified assembly is not installed.
.


System errors:
=============
Error: (10/13/2014 11:36:56 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (10/13/2014 11:36:56 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (10/13/2014 11:34:48 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (10/13/2014 11:34:48 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (10/13/2014 11:29:48 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (10/13/2014 11:29:48 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (10/13/2014 11:27:42 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (10/13/2014 11:27:42 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Server" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1068

Error: (10/13/2014 11:25:40 AM) (Source: iaStor) (EventID: 9) (User: )
Description: Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht geantwortet.

Error: (10/13/2014 11:25:39 AM) (Source: iaStor) (EventID: 9) (User: )
Description: Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht geantwortet.


Microsoft Office Sessions:
=========================
Error: (10/13/2014 11:00:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 09:44:49 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 09:30:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 09:21:12 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 09:11:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 09:06:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 08:47:05 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2014 08:39:06 AM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to execute command from the offline queue: uninstall "SMDiagnostics, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil".  The error returned was Error: The specified assembly is not installed.
.

Error: (10/13/2014 08:39:06 AM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to execute command from the offline queue: uninstall "System.ServiceModel, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil".  The error returned was Error: The specified assembly is not installed.
.

Error: (10/13/2014 08:39:06 AM) (Source: .NET Runtime Optimization Service) (EventID: 1107) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_64) - Failed to execute command from the offline queue: uninstall "System.Runtime.Serialization, Version=3.0.0.0, Culture=Neutral, PublicKeyToken=b77a5c561934e089, processorArchitecture=msil".  The error returned was Error: The specified assembly is not installed.
.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz
Percentage of memory in use: 10%
Total physical RAM: 6125.86 MB
Available physical RAM: 5476.69 MB
Total Pagefile: 12249.92 MB
Available Pagefile: 11617.34 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:582.44 GB) (Free:461.45 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 554743C7)
Partition 1: (Not Active) - (Size=13.6 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=582.4 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Warlord711 · 13.10.2014, 14:46

Welches Antiviren Programm nutzt du ?

Das Lavasoft scheint nicht aktuell zu sein.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Starte noch einmal FRST.

Ändere keine der Voreinstellungen und drücke auf Scan.
Wenn der Scan abgeschlossen ist, werden ein neues Logfile FRST.txt erstellt und auf dem Desktop gespeichert.
Poste den Inhalt dieses Logfiles bitte hier in deinen Thread.

Austin09 · 14.10.2014, 13:21

Ad-Awarae Antivirus hatte ich mir downgeloaded, aber es hat nicht funktioniert aus irgendwelchen Gründen. Da steht immer Service Unavailable wenn ich es starte.

Ein anderes habe ich nicht, hatte den PC ja auch vor 2 Tagen auf Werkeinstellung gesetzt und das McAfee sofort deinstalliert.

Ok mache ich eben!

So,

Beim Adw Cleaner hat er mir 2 Textdateien ausgespuckt:

[SO] :

Code:

ATTFilter

# AdwCleaner v4.000 - Bericht erstellt am 14/10/2014 um 08:42:02
# DB v2014-10-13.5
# Aktualisiert 12/10/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Simon Hatje - SIMONHATJE-VAIO
# Gestartet von : C:\Users\Simon Hatje\Desktop\AdwCleaner_4.000.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Tasks ] *****

Task Gelöscht : Driver Booster Scan
Task Gelöscht : Driver Booster Update

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_ad-aware-free-antivirus[1]_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_ad-aware-free-antivirus[1]_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Wert Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe]
Wert Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe]
Wert Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe]
Wert Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe]
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\adawarebp
Schlüssel Gelöscht : HKLM\SOFTWARE\DeviceVM
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DeviceVM

***** [ Browser ] *****

-\\ Internet Explorer v8.0.7601.18571


-\\ Mozilla Firefox v32.0.3 (x86 de)


*************************

AdwCleaner[R0].txt - [2265 octets] - [14/10/2014 08:28:59]
AdwCleaner[S0].txt - [2123 octets] - [14/10/2014 08:42:02]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2183 octets] ##########

[RO]:

Code:

ATTFilter

# AdwCleaner v4.000 - Bericht erstellt am 14/10/2014 um 08:28:56
# Aktualisiert 12/10/2014 von Xplode
# Datenbank : 2014-10-13.5
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Simon Hatje - SIMONHATJE-VAIO
# Gestartet von : C:\Users\Simon Hatje\Desktop\AdwCleaner_4.000.exe
# Option : Suchen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Tasks ] *****

Task Gefunden : Driver Booster Scan
Task Gefunden : Driver Booster Update

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\adawarebp
Schlüssel Gefunden : HKCU\Software\Softonic
Schlüssel Gefunden : [x64] HKCU\Software\Softonic
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{7D86A08B-0A8F-4BE0-B693-F05E6947E780}
Schlüssel Gefunden : HKLM\SOFTWARE\DeviceVM
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_ad-aware-free-antivirus[1]_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_ad-aware-free-antivirus[1]_RASMANCS
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\DeviceVM
Wert Gefunden : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe]
Wert Gefunden : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe]
Wert Gefunden : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe]
Wert Gefunden : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe]

***** [ Browser ] *****

-\\ Internet Explorer v8.0.7601.18571


-\\ Mozilla Firefox v32.0.3 (x86 de)


*************************

AdwCleaner[R0].txt - [2117 octets] - [14/10/2014 08:28:59]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2177 octets] ##########

Junkware Removal Tool:

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.2 (10.09.2014:1)
OS: Windows 7 Home Premium x64
Ran by Simon Hatje on 14.10.2014 at 13:27:49,43
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Simon Hatje\appdata\local\{1BB4981B-7B08-4887-8F1C-BE9657BF99F3}
Successfully deleted: [Empty Folder] C:\Users\Simon Hatje\appdata\local\{36ADC27C-B45A-4523-9E3A-E3641FB81063}
Successfully deleted: [Empty Folder] C:\Users\Simon Hatje\appdata\local\{7BF463F3-1BAA-4E49-9F88-B33CF5334DDD}
Successfully deleted: [Empty Folder] C:\Users\Simon Hatje\appdata\local\{EFBB0261-4D61-47C7-B5BD-5518B9319659}
Successfully deleted: [Empty Folder] C:\Users\Simon Hatje\appdata\local\{F49C98F4-0A54-432B-BA79-F0FCAB2CA543}



~~~ FireFox

Emptied folder: C:\Users\Simon Hatje\AppData\Roaming\mozilla\firefox\profiles\9txadibd.default\minidumps [1 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 14.10.2014 at 13:46:49,18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Malwarebytes Anti Malware:

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 14.10.2014
Suchlauf-Zeit: 13:49:31
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.03.04.09
Rootkit Datenbank: v2014.10.11.01
Lizenz: Testversion
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Simon Hatje

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 236498
Verstrichene Zeit: 15 Min, 3 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)

und der erneute FRST Scan:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-10-2014 02
Ran by Simon Hatje (administrator) on SIMONHATJE-VAIO on 14-10-2014 14:08:00
Running from C:\Users\Simon Hatje\Desktop
Loaded Profile: Simon Hatje (Available profiles: Simon Hatje)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [518784 2011-03-29] (Conexant Systems, Inc.)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [790176 2011-03-31] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [657056 2011-03-31] (Atheros Commnucations)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint\Apoint.exe [226672 2011-02-17] (Alps Electric Co., Ltd.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdAwareTray] => C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareTray.exe [8886592 2014-08-27] ()
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-13] (Intel Corporation)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [2757312 2011-02-15] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] => c:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe [648032 2010-11-27] (Sony Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SystemExplorerAutoStart] => "C:\Program Files (x86)\System Explorer\SystemExplorer.exe" /TRAY
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-627948766-355836689-784361957-1000\...\Run: [Spotify Web Helper] => C:\Users\Simon Hatje\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-11] (Spotify Ltd)
HKU\S-1-5-21-627948766-355836689-784361957-1000\...\Run: [EPLTarget\P0000000000000000] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIHAE.EXE [283232 2014-10-11] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-627948766-355836689-784361957-1000\...\Run: [Spybot-S&D Cleaning] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
HKU\S-1-5-21-627948766-355836689-784361957-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-627948766-355836689-784361957-1000\...\RunOnce: [Report] => C:\AdwCleaner\AdwCleaner[S0].txt [2267 2014-10-14] ()
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sony.eu/vaioportal
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {06159813-1682-4CD9-A658-8A0B85D3B03C} URL = hxxp://de.shopping.com/?linkin_id=8056363
SearchScopes: HKCU - {94A6C879-23E8-442E-A3FF-5DC8039DF798} URL = hxxp://services.zinio.com/search?s={searchTerms}&rf=sonyslices
SearchScopes: HKCU - {AEC4F932-E01E-498F-9D32-0FFF55C4EA44} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-21/4?satitle={searchTerms}
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> c:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Simon Hatje\AppData\Roaming\Mozilla\Firefox\Profiles\9txadibd.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\4.0.50401.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Program Files (x86)\IObit Apps Toolbar\FF [Not Found]

Chrome: 
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [146592 2011-03-31] (Atheros) [File not signed]
S2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [75936 2011-03-31] (Atheros Commnucations) [File not signed]
S2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2361344 2011-03-29] (Realsil Microelectronics Inc.) [File not signed]
S2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareService.exe [706864 2014-08-27] ()
S2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [259192 2011-01-29] (Sony Corporation)
S2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
S2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
S2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [105024 2011-02-23] (ArcSoft, Inc.)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [887000 2011-01-20] (Sony Corporation)
S3 VUAgent; C:\Program Files\Sony\VAIO Update 5\VUAgent.exe [1021112 2011-03-30] (Sony Corporation)
S3 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-10-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [100312 2014-10-11] (Intel Corporation)
S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [389240 2014-07-10] (BitDefender S.R.L.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-14 14:05 - 2014-10-14 14:05 - 00001166 _____ () C:\Users\Simon Hatje\Desktop\mbam.txt
2014-10-14 13:48 - 2014-10-14 13:49 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-14 13:48 - 2014-10-14 13:48 - 00001098 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-10-14 13:48 - 2014-10-14 13:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-10-14 13:48 - 2014-10-14 13:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-10-14 13:48 - 2014-10-14 13:48 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-10-14 13:48 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-10-14 13:48 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-10-14 13:48 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-10-14 13:46 - 2014-10-14 13:46 - 00001330 _____ () C:\Users\Simon Hatje\Desktop\JRT.txt
2014-10-14 13:27 - 2014-10-14 13:27 - 00000000 ____D () C:\Windows\ERUNT
2014-10-14 08:16 - 2014-10-14 08:42 - 00000000 ____D () C:\AdwCleaner
2014-10-13 22:00 - 2014-10-13 22:00 - 00000000 ___RD () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2014-10-13 21:49 - 2014-10-13 21:49 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Simon Hatje\Desktop\mbam-setup-2.0.2.1012.exe
2014-10-13 21:47 - 2014-10-13 21:47 - 01705755 _____ (Thisisu) C:\Users\Simon Hatje\Desktop\JRT.exe
2014-10-13 21:38 - 2014-10-13 21:38 - 01976320 _____ () C:\Users\Simon Hatje\Desktop\AdwCleaner_4.000.exe
2014-10-13 13:10 - 2014-10-13 13:10 - 00002784 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-13 11:54 - 2014-10-13 11:54 - 00000549 _____ () C:\Users\Simon Hatje\Desktop\Gmer.txt
2014-10-13 11:39 - 2014-10-13 11:39 - 00036114 _____ () C:\Users\Simon Hatje\Desktop\Addition.txt
2014-10-13 11:00 - 2014-10-14 14:08 - 00000938 _____ () C:\Users\Simon Hatje\Desktop\FRST.txt
2014-10-13 10:45 - 2014-10-14 14:14 - 00000000 ____D () C:\FRST
2014-10-13 10:44 - 2014-10-14 14:07 - 00000484 _____ () C:\Users\Simon Hatje\Desktop\defogger_disable.log
2014-10-13 10:44 - 2014-10-13 10:44 - 00000000 _____ () C:\Users\Simon Hatje\defogger_reenable
2014-10-13 10:39 - 2014-10-13 10:39 - 00380416 _____ () C:\Users\Simon Hatje\Desktop\Gmer-19357.exe
2014-10-13 10:38 - 2014-10-13 10:38 - 02110464 _____ (Farbar) C:\Users\Simon Hatje\Desktop\FRST64.exe
2014-10-13 10:36 - 2014-10-13 10:36 - 00050477 _____ () C:\Users\Simon Hatje\Desktop\Defogger.exe
2014-10-13 09:38 - 2014-10-13 09:38 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Macromedia
2014-10-13 09:31 - 2014-10-13 09:31 - 00001155 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-13 09:31 - 2014-10-13 09:31 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Mozilla
2014-10-13 09:31 - 2014-10-13 09:31 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Mozilla
2014-10-13 09:31 - 2014-10-13 09:31 - 00000000 ____D () C:\ProgramData\Mozilla
2014-10-13 09:31 - 2014-10-13 09:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-13 09:31 - 2014-10-13 09:31 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-13 09:01 - 2014-10-13 09:01 - 974540800 _____ () C:\Users\Simon Hatje\Desktop\DE-Cleaner-RettungsCDv3_5_1.iso
2014-10-13 08:50 - 2014-10-13 08:50 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-13 08:34 - 2014-10-13 08:40 - 00011603 _____ () C:\Users\Simon Hatje\Desktop\hijackthis.log
2014-10-13 08:34 - 2014-10-13 08:34 - 00388608 _____ (Trend Micro Inc.) C:\Users\Simon Hatje\Desktop\HiJackThis204.exe
2014-10-13 08:20 - 2014-10-13 08:20 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-13 05:43 - 2014-08-16 07:56 - 12289024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 09055232 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 02466816 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 01538048 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 01188864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00735232 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00495616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00134144 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00064512 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-13 05:43 - 2014-08-16 07:56 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-10-13 05:43 - 2014-08-16 07:56 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-10-13 05:43 - 2014-08-16 07:55 - 01538048 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-13 05:43 - 2014-08-16 07:55 - 00174592 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-13 05:43 - 2014-08-16 07:36 - 06025728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 01266176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 00981504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 00627712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 00132096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-13 05:43 - 2014-08-16 07:36 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 11019264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 02086400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 01466368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-13 05:43 - 2014-08-16 07:35 - 00345600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-13 05:43 - 2014-08-16 07:35 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-10-13 05:43 - 2014-08-16 07:35 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-13 05:43 - 2014-08-16 07:35 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-10-13 05:43 - 2014-08-16 07:05 - 01638912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-13 05:43 - 2014-08-16 06:48 - 01638912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-12 22:56 - 2012-03-01 08:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-10-12 22:56 - 2012-03-01 08:38 - 00220672 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-10-12 22:56 - 2012-03-01 08:33 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-10-12 22:56 - 2012-03-01 08:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-10-12 22:56 - 2012-03-01 07:37 - 00172544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-10-12 22:56 - 2012-03-01 07:33 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-10-12 22:56 - 2012-03-01 07:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-10-12 22:02 - 2014-10-12 22:02 - 00264706 _____ () C:\Windows\msxml4-KB2758694-enu.LOG
2014-10-12 22:00 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-10-12 22:00 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-10-12 22:00 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-10-12 22:00 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-10-12 22:00 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-10-12 22:00 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-10-12 22:00 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-10-12 22:00 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-10-12 21:27 - 2014-10-12 21:35 - 00000000 ____D () C:\OETemp
2014-10-12 21:13 - 2014-10-12 21:13 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Lavasoft
2014-10-12 20:28 - 2014-10-12 20:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2014-10-12 20:23 - 2014-10-12 20:23 - 00000000 ____D () C:\Program Files\Lavasoft
2014-10-12 20:22 - 2014-10-12 20:22 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-10-12 20:05 - 2014-10-12 21:08 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-10-12 20:05 - 2014-10-12 20:10 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-10-12 20:05 - 2014-10-12 20:05 - 00001387 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-10-12 20:05 - 2014-10-12 20:05 - 00000656 _____ () C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job
2014-10-12 20:05 - 2014-10-12 20:05 - 00000628 _____ () C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job
2014-10-12 20:05 - 2014-10-12 20:05 - 00000458 _____ () C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job
2014-10-12 20:05 - 2014-10-12 20:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-10-12 20:05 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-10-12 19:58 - 2014-10-12 19:58 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-10-12 09:17 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-12 09:17 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-12 09:01 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-10-12 09:01 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-10-12 09:00 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-10-12 09:00 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-10-12 09:00 - 2013-05-10 07:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-10-12 09:00 - 2013-05-10 05:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-10-12 09:00 - 2013-04-26 07:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-10-12 09:00 - 2013-04-26 06:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2014-10-12 09:00 - 2012-11-23 05:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-10-12 09:00 - 2011-05-24 13:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2014-10-12 09:00 - 2011-05-24 12:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2014-10-12 09:00 - 2011-05-24 12:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2014-10-12 09:00 - 2011-05-24 12:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2014-10-12 09:00 - 2011-05-24 12:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2014-10-12 08:59 - 2014-03-04 11:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-10-12 08:59 - 2014-03-04 11:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2014-10-12 08:59 - 2014-03-04 11:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-10-12 08:59 - 2014-03-04 11:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-10-12 08:59 - 2014-03-04 11:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-10-12 08:59 - 2014-03-04 11:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-10-12 08:59 - 2014-03-04 11:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-10-12 08:59 - 2014-03-04 11:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-10-12 08:59 - 2014-03-04 11:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-10-12 08:59 - 2014-03-04 10:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-10-12 08:59 - 2014-03-04 10:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-10-12 08:59 - 2014-01-24 04:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-10-12 08:59 - 2013-08-02 04:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-10-12 08:59 - 2013-08-02 04:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 04:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 03:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-10-12 08:59 - 2013-08-02 02:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 02:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 02:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-10-12 08:59 - 2013-08-02 02:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-10-12 08:59 - 2013-07-20 12:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-10-12 08:59 - 2013-07-20 12:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-10-12 08:59 - 2013-01-24 08:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-10-12 08:59 - 2012-07-05 00:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-10-12 08:59 - 2012-07-05 00:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-10-12 08:59 - 2012-07-05 00:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-10-12 08:59 - 2012-07-04 23:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-10-12 08:59 - 2012-07-04 23:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-10-12 08:59 - 2012-05-05 10:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-10-12 08:59 - 2012-05-05 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-10-12 08:59 - 2011-12-16 10:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2014-10-12 08:59 - 2011-12-16 09:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2014-10-12 08:59 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-10-12 08:59 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-10-12 08:59 - 2011-02-18 12:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-10-12 08:59 - 2011-02-18 07:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-10-12 08:59 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-10-12 08:58 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-10-12 08:58 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-10-12 08:58 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-10-12 08:58 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-10-12 08:58 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-10-12 08:58 - 2013-10-12 04:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-10-12 08:58 - 2013-10-12 04:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-10-12 08:58 - 2013-10-12 04:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-10-12 08:58 - 2013-10-12 04:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-10-12 08:58 - 2013-10-12 03:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-10-12 08:58 - 2013-10-12 03:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-10-12 08:58 - 2013-10-12 03:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-10-12 08:58 - 2013-10-12 03:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-10-12 08:58 - 2013-08-27 11:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2014-10-12 08:58 - 2013-08-27 11:01 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2014-10-12 08:58 - 2013-08-27 10:21 - 01077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2014-10-12 08:58 - 2013-05-13 07:51 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-10-12 08:58 - 2013-05-13 07:51 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-10-12 08:58 - 2013-05-13 07:51 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-10-12 08:58 - 2013-05-13 07:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2014-10-12 08:58 - 2013-05-13 06:45 - 01160192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-10-12 08:58 - 2013-05-13 06:45 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-10-12 08:58 - 2013-05-13 06:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-10-12 08:58 - 2013-05-13 05:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2014-10-12 08:58 - 2013-05-13 05:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2014-10-12 08:58 - 2013-05-13 05:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2014-10-12 08:57 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-10-12 08:57 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-10-12 08:57 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-12 08:57 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-10-12 08:57 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-10-12 08:57 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-10-12 08:57 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-10-12 08:57 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-10-12 08:57 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-10-12 08:57 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-10-12 08:57 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-10-12 08:57 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-10-12 08:57 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-12 08:57 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-12 08:57 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-10-12 08:57 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-10-12 08:57 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-10-12 08:57 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-12 08:57 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-12 08:57 - 2013-09-25 04:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-10-12 08:57 - 2013-09-25 03:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-10-12 08:57 - 2013-07-04 14:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-10-12 08:57 - 2012-05-14 07:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-10-12 08:57 - 2011-10-15 08:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-10-12 08:57 - 2011-10-15 07:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-10-12 08:57 - 2011-08-27 07:37 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-10-12 08:57 - 2011-08-27 07:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2014-10-12 08:57 - 2011-08-27 06:26 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-10-12 08:57 - 2011-08-27 06:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2014-10-12 08:57 - 2011-02-23 06:56 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-10-12 08:57 - 2011-02-23 06:55 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2014-10-12 08:57 - 2011-02-23 06:55 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-10-12 08:57 - 2011-02-23 06:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-10-12 08:54 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-10-12 08:54 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-10-12 08:54 - 2013-10-12 04:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-10-12 08:54 - 2013-10-12 04:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-10-12 08:54 - 2013-10-12 04:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-10-12 08:54 - 2013-10-12 04:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-10-12 08:54 - 2013-10-12 04:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-10-12 08:54 - 2013-08-28 03:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-10-12 08:54 - 2012-06-06 08:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2014-10-12 08:54 - 2012-06-06 07:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2014-10-12 08:53 - 2011-11-19 16:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-12 08:53 - 2011-11-19 16:01 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-12 08:37 - 2014-10-14 08:46 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-12 08:37 - 2014-10-12 08:44 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-12 08:37 - 2014-10-12 08:44 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-12 08:37 - 2014-10-12 08:44 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-10-12 08:37 - 2014-10-12 08:37 - 00000000 ____D () C:\Windows\system32\Macromed
2014-10-11 20:07 - 2014-10-11 20:36 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Windows Live
2014-10-11 20:06 - 2014-10-11 20:15 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Windows Live Writer
2014-10-11 20:06 - 2014-10-11 20:12 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Windows Live Writer
2014-10-11 16:00 - 2014-10-12 08:37 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Adobe
2014-10-11 15:57 - 2014-10-11 15:57 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\OpenOffice
2014-10-11 15:55 - 2014-10-11 16:05 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2014-10-11 15:55 - 2014-10-11 15:55 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2014-10-11 15:43 - 2014-10-11 15:41 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ILMHAE.DLL
2014-10-11 15:43 - 2014-10-11 15:41 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_ID4BHAE.DLL
2014-10-11 15:43 - 2014-10-11 15:41 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
2014-10-11 15:42 - 2014-10-11 15:42 - 00000000 ____D () C:\Program Files (x86)\epson
2014-10-11 15:42 - 2011-08-10 00:00 - 00464384 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll
2014-10-11 15:42 - 2009-10-16 00:00 - 00132560 _____ (Seiko Epson Corporation) C:\Windows\system32\esdevapp.exe
2014-10-11 15:42 - 2009-10-16 00:00 - 00013824 _____ (Seiko Epson Corporation) C:\Windows\system32\esxcdev.dll
2014-10-11 15:36 - 2014-10-11 15:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2014-10-11 15:36 - 2014-10-11 15:42 - 00000000 ____D () C:\ProgramData\EPSON
2014-10-11 15:36 - 2014-10-11 15:36 - 00000000 ____D () C:\Program Files\Common Files\EPSON
2014-10-11 15:35 - 2014-10-11 15:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-10-11 15:35 - 2009-09-30 18:01 - 00088064 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_IBCBHAE.DLL
2014-10-11 15:26 - 2014-10-11 15:26 - 09889352 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2014-10-11 15:26 - 2014-10-11 15:26 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-10-11 15:26 - 2014-10-11 15:26 - 00941272 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-10-11 15:26 - 2014-10-11 15:26 - 00359128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsPStor.sys
2014-10-11 15:26 - 2014-10-11 15:26 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-10-11 15:26 - 2014-10-11 15:26 - 00073800 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-10-11 15:26 - 2014-10-11 15:26 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-10-11 15:25 - 2014-07-02 12:14 - 03826628 _____ () C:\Windows\system32\nvcoproc.bin
2014-10-11 15:24 - 2014-10-11 15:24 - 31512520 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 24196896 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 22994208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 16122344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 15294296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 14498552 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 13922752 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 13835208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 12866008 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-10-11 15:24 - 2014-10-11 15:24 - 11283344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 11222048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 04247000 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 03989960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 02814656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 01890080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434052.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 01539928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434052.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 00944928 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 00907096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 00903624 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 00869152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-10-11 15:24 - 2014-10-11 15:24 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2014-10-11 15:24 - 2014-10-11 15:24 - 00000000 ____H () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Coinstaller_Critical.Wdf
2014-10-11 15:24 - 2014-10-11 15:24 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-10-11 15:24 - 2012-07-26 06:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-10-11 15:24 - 2012-07-26 06:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2014-10-11 15:24 - 2012-07-26 04:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2014-10-11 15:24 - 2012-06-02 16:35 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-10-11 15:23 - 2014-10-11 15:23 - 00589000 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys
2014-10-11 15:21 - 2012-02-17 08:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-10-11 15:21 - 2012-02-17 07:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-10-11 15:21 - 2012-02-17 06:58 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-11 15:21 - 2012-02-17 06:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-10-11 15:19 - 2014-10-11 15:19 - 00002866 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Simon Hatje)
2014-10-11 15:19 - 2014-10-11 15:19 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\IObit
2014-10-11 15:19 - 2014-10-11 15:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster
2014-10-11 15:19 - 2014-10-11 15:19 - 00000000 ____D () C:\ProgramData\IObit
2014-10-11 15:19 - 2014-10-11 15:19 - 00000000 ____D () C:\Program Files (x86)\IObit
2014-10-11 15:17 - 2014-10-11 15:29 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\Spotify
2014-10-11 15:17 - 2014-10-11 15:17 - 00001783 _____ () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2014-10-11 15:16 - 2014-10-11 21:10 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Spotify
2014-10-11 15:15 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-10-11 15:15 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-10-11 15:15 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-10-11 15:15 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-10-11 15:15 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-10-11 15:15 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-10-11 15:15 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-10-11 15:15 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-10-11 15:15 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-10-11 15:15 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-10-11 15:14 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-10-11 15:14 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-10-11 15:14 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-10-11 15:14 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-10-11 14:47 - 2014-10-11 16:00 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Adobe
2014-10-11 13:10 - 2014-10-13 22:00 - 00003982 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{C13D5A7C-E532-4301-8EF1-AEE0A112F1A4}
2014-10-11 13:07 - 2014-10-11 21:23 - 00000000 ___RD () C:\Users\Simon Hatje\Desktop\Simon
2014-10-11 13:01 - 2014-10-11 12:58 - 00000000 ____D () C:\Program Files\Sony
2014-10-11 13:00 - 2014-10-13 08:43 - 00696870 _____ () C:\Windows\system32\perfh007.dat
2014-10-11 13:00 - 2014-10-13 08:43 - 00148134 _____ () C:\Windows\system32\perfc007.dat
2014-10-11 13:00 - 2014-10-11 23:01 - 00000000 ____D () C:\Users\Simon Hatje\Documents\Bluetooth Folder
2014-10-11 13:00 - 2014-10-11 13:00 - 00001401 _____ () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-10-11 13:00 - 2014-10-11 13:00 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Intel Corporation
2014-10-11 13:00 - 2014-10-11 13:00 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Atheros
2014-10-11 13:00 - 2014-10-11 13:00 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\BMExplorer
2014-10-11 13:00 - 2014-10-11 12:59 - 00295922 _____ () C:\Windows\system32\perfi007.dat
2014-10-11 13:00 - 2014-10-11 12:59 - 00038104 _____ () C:\Windows\system32\perfd007.dat
2014-10-11 12:59 - 2014-10-13 08:37 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Local\VirtualStore
2014-10-11 12:59 - 2014-10-11 13:00 - 00001435 _____ () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\de
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\SysWOW64\0407
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\winrm
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\WCN
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\slmgr
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\de
2014-10-11 12:59 - 2014-10-11 12:59 - 00000000 ____D () C:\Windows\system32\0407
2014-10-11 12:58 - 2014-10-11 12:58 - 00001957 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music Unlimited powered by Qriocity.lnk
2014-10-11 12:58 - 2014-10-11 12:58 - 00000000 ___RH () C:\Windows\SysWOW64\Drivers\104D_Sony_VPCEH1Z1E.mrk
2014-10-11 12:58 - 2014-10-11 12:58 - 00000000 ___RH () C:\Windows\system32\Drivers\104D_Sony_VPCEH1Z1E.mrk
2014-10-11 12:57 - 2014-10-13 10:44 - 00000000 ____D () C:\Users\Simon Hatje
2014-10-11 12:57 - 2014-10-13 08:37 - 00075256 _____ () C:\Users\Simon Hatje\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-11 12:57 - 2014-10-11 13:00 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Sony Corporation
2014-10-11 12:57 - 2014-10-11 12:57 - 00031539 _____ () C:\Windows\ie8_main.log
2014-10-11 12:57 - 2014-10-11 12:57 - 00000020 ___SH () C:\Users\Simon Hatje\ntuser.ini
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Vorlagen
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Startmenü
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Netzwerkumgebung
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Lokale Einstellungen
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Eigene Dateien
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Druckumgebung
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Documents\Eigene Musik
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Documents\Eigene Bilder
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\AppData\Local\Verlauf
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\AppData\Local\Anwendungsdaten
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 _SHDL () C:\Users\Simon Hatje\Anwendungsdaten
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 ____D () C:\Windows\SysWOW64\VAIO Startup Setting Tool
2014-10-11 12:57 - 2014-10-11 12:57 - 00000000 ____D () C:\Windows\pss
2014-10-11 12:57 - 2014-10-11 12:31 - 00000000 ____D () C:\Users\Simon Hatje\AppData\Roaming\Macromedia
2014-10-11 12:57 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-11 12:57 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Simon Hatje\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Programme
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-10-11 12:56 - 2014-10-11 12:56 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-10-11 12:51 - 2014-10-11 13:00 - 00000000 ____D () C:\ProgramData\Atheros
2014-10-11 12:49 - 2014-10-11 12:49 - 00002017 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care.lnk
2014-10-11 12:49 - 2014-10-11 12:49 - 00000000 ___HD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Care
2014-10-11 12:48 - 2014-10-11 12:48 - 00262144 _____ () C:\Windows\ocsetup_install_OEMHelpCustomization.etl
2014-10-11 12:48 - 2014-10-11 12:48 - 00028728 _____ () C:\Windows\ocsetup_cbs_install_OEMHelpCustomization.txt
2014-10-11 12:48 - 2014-10-11 12:48 - 00002193 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Smart Network.lnk
2014-10-11 12:48 - 2014-10-11 12:48 - 00001271 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Transfer.lnk
2014-10-11 12:48 - 2014-10-11 12:48 - 00000000 ____D () C:\VAIO Sample Contents
2014-10-11 12:48 - 2014-10-11 12:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2014-10-11 12:47 - 2014-10-11 12:47 - 00002265 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Data Restore Tool.lnk
2014-10-11 12:47 - 2014-10-11 12:47 - 00002068 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Gate.lnk
2014-10-11 12:47 - 2014-10-11 12:47 - 00001848 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Easy Connect.lnk
2014-10-11 12:47 - 2014-10-11 12:47 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-10-11 12:47 - 2014-10-11 12:47 - 00000000 ____D () C:\ProgramData\Skype
2014-10-11 12:47 - 2014-10-11 12:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-10-11 12:46 - 2014-10-11 12:46 - 97167020 _____ (Axialis Software) C:\Windows\system32\VAIO Hero Screensaver - Summer 2011.scr
2014-10-11 12:46 - 2014-10-11 12:46 - 00000000 ____D () C:\Program Files (x86)\Nascom
2014-10-11 12:46 - 2011-02-18 17:09 - 00000007 _____ () C:\Windows\SysWOW64\scr_version.txt
2014-10-11 12:45 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-10-11 12:45 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-10-11 12:44 - 2014-10-11 12:45 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PlayStation Extras
2014-10-11 12:44 - 2014-10-11 12:44 - 00001185 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Remote Keyboard.lnk
2014-10-11 12:44 - 2014-10-11 12:44 - 00000000 ___HD () C:\SPLASH.SYS
2014-10-11 12:44 - 2014-10-11 12:44 - 00000000 ___HD () C:\SPLASH.000
2014-10-11 12:43 - 2014-10-11 12:44 - 00321168 _____ () C:\lv.log
2014-10-11 12:43 - 2014-10-11 12:43 - 00000000 ____D () C:\Program Files (x86)\Downloaded Installations
2014-10-11 12:39 - 2014-10-11 12:39 - 00001139 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB.lnk
2014-10-11 12:39 - 2014-10-11 12:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PMB
2014-10-11 12:39 - 2014-10-11 12:39 - 00000000 ____D () C:\Program Files (x86)\MSXML 4.0
2014-10-11 12:39 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-10-11 12:39 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-10-11 12:39 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-10-11 12:37 - 2014-10-11 12:37 - 00002435 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
2014-10-11 12:37 - 2014-10-11 12:37 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-10-11 12:35 - 2014-10-11 12:35 - 00001299 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Gallery.lnk
2014-10-11 12:35 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-10-11 12:35 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-10-11 12:35 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-10-11 12:35 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-10-11 12:35 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-10-11 12:35 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-10-11 12:35 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-10-11 12:33 - 2014-10-11 12:33 - 00000040 ____H () C:\Windows\system32\ivireg.ivr
2014-10-11 12:33 - 2014-10-11 12:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel
2014-10-11 12:33 - 2014-10-11 12:33 - 00000000 ____D () C:\ProgramData\Corel
2014-10-11 12:33 - 2014-10-11 12:33 - 00000000 ____D () C:\Program Files (x86)\Corel
2014-10-11 12:33 - 2009-05-26 14:32 - 00019968 _____ (ArcSoft, Inc.) C:\Windows\system32\Drivers\ArcSoftKsUFilter.sys
2014-10-11 12:33 - 2008-09-04 17:06 - 00055808 _____ (ArcSoft, Inc.) C:\Windows\system\ArcSoftKsUFilter.dll
2014-10-11 12:33 - 2007-04-17 11:51 - 00014112 _____ (InterVideo) C:\Windows\system32\Drivers\regi.sys
2014-10-11 12:33 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-10-11 12:33 - 2005-04-27 16:36 - 00245408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\unicows.dll
2014-10-11 12:33 - 2003-03-18 22:14 - 00499712 ____R (Microsoft Corporation) C:\Windows\SysWOW64\msvcp71.dll
2014-10-11 12:33 - 2003-02-21 04:42 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr71.dll
2014-10-11 12:33 - 1995-07-31 13:44 - 00212480 _____ (Eastman Kodak) C:\Windows\SysWOW64\PCDLIB32.DLL
2014-10-11 12:32 - 2014-10-11 12:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Webcam Suite
2014-10-11 12:32 - 2014-10-11 12:33 - 00000000 ____D () C:\Program Files (x86)\ArcSoft
2014-10-11 12:32 - 2014-10-11 12:32 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2014-10-11 12:32 - 2014-10-11 12:32 - 00000000 ____D () C:\ProgramData\ArcSoft
2014-10-11 12:31 - 2014-10-12 19:53 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-10-11 12:31 - 2014-10-11 16:01 - 00000000 ____D () C:\ProgramData\Adobe
2014-10-11 12:31 - 2014-10-11 12:32 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-10-11 12:31 - 2014-10-11 12:31 - 00000000 ____D () C:\Users\Default\AppData\Roaming\Macromedia
2014-10-11 12:31 - 2014-10-11 12:31 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\Macromedia
2014-10-11 12:30 - 2014-10-11 12:30 - 00000000 ____D () C:\Windows\en
2014-10-11 12:29 - 2014-10-11 12:30 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\uk
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\tr
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\sv
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\sk
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\ru
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\ro
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\pl
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\no
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\it
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\hu
2014-10-11 12:29 - 2014-10-11 12:29 - 00000000 ____D () C:\Windows\el
2014-10-11 12:28 - 2014-10-11 12:28 - 00001374 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
2014-10-11 12:28 - 2014-10-11 12:28 - 00001305 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\nl
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\fr
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\fi
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\de
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\da
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\cs
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Windows\bg
2014-10-11 12:28 - 2014-10-11 12:28 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-10-11 12:27 - 2014-10-11 12:27 - 00001458 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2014-10-11 12:25 - 2014-10-11 12:30 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-10-11 12:25 - 2014-10-11 12:25 - 00002486 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2014-10-11 12:24 - 2014-10-11 12:24 - 00000000 ____D () C:\Windows\PCHEALTH
2014-10-11 12:24 - 2014-10-11 12:24 - 00000000 ____D () C:\Program Files\Windows Live
2014-10-11 12:23 - 2014-10-11 12:39 - 00000597 _____ () C:\Windows\DirectX.log
2014-10-11 12:23 - 2014-10-11 12:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-10-11 12:23 - 2014-10-11 12:23 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-10-11 12:23 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-10-11 12:23 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-10-11 12:23 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-10-11 12:23 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-10-11 12:23 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-10-11 12:23 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-10-11 12:21 - 2014-10-11 15:25 - 00000000 ____D () C:\temp
2014-10-11 12:21 - 2014-10-11 12:57 - 00000000 ____D () C:\Windows\System32\Tasks\SONY
2014-10-11 12:21 - 2014-10-11 12:21 - 00001991 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Manual.lnk
2014-10-11 12:21 - 2014-10-11 12:21 - 00001527 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Control Center.lnk
2014-10-11 12:21 - 2014-10-11 12:21 - 00001151 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update.lnk
2014-10-11 12:21 - 2014-10-11 12:21 - 00000000 ____D () C:\Documentation
2014-10-11 12:21 - 2014-10-11 12:21 - 00000000 ____D () C:\_FS_SWRINFO
2014-10-11 12:20 - 2014-10-11 12:20 - 00000000 ____D () C:\Windows\Sonysys
2014-10-11 12:19 - 2014-10-12 20:20 - 00000000 ____D () C:\ProgramData\McAfee
2014-10-11 12:18 - 2014-10-11 13:00 - 00000000 ____D () C:\Windows\System32\Tasks\Sony Corporation
2014-10-11 12:18 - 2014-10-11 12:48 - 00000000 ____D () C:\Program Files (x86)\Sony
2014-10-11 12:18 - 2014-10-11 12:34 - 00000000 ____D () C:\Program Files\Common Files\Sony Shared
2014-10-11 12:18 - 2014-10-11 12:18 - 00521448 _____ (Sun Microsystems, Inc.) C:\Windows\system32\deployJava1.dll
2014-10-11 12:18 - 2014-10-11 12:18 - 00472808 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\deployJava1.dll
2014-10-11 12:18 - 2014-10-11 12:18 - 00189216 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaws.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00171808 _____ (Sun Microsystems, Inc.) C:\Windows\system32\javaw.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00171808 _____ (Sun Microsystems, Inc.) C:\Windows\system32\java.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00153376 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaws.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\javaw.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00145184 _____ (Sun Microsystems, Inc.) C:\Windows\SysWOW64\java.exe
2014-10-11 12:18 - 2014-10-11 12:18 - 00000000 ____D () C:\ProgramData\Sun
2014-10-11 12:18 - 2014-10-11 12:18 - 00000000 ____D () C:\Program Files\Java
2014-10-11 12:18 - 2014-10-11 12:18 - 00000000 ____D () C:\Program Files (x86)\Java
2014-10-11 12:16 - 2014-10-11 12:16 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_Apfiltr_01009.Wdf
2014-10-11 12:16 - 2014-10-11 12:16 - 00000000 ____D () C:\Windows\SysWOW64\sda
2014-10-11 12:16 - 2014-10-11 12:16 - 00000000 ____D () C:\Program Files\Apoint
2014-10-11 12:16 - 2014-10-11 12:16 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-10-11 12:16 - 2011-03-29 08:16 - 09888360 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RtsPStorIcon.dll
2014-10-11 12:16 - 2011-02-01 13:06 - 00008192 _____ () C:\Windows\system32\Drivers\IntelMEFWVer.dll
2014-10-11 12:16 - 2010-10-19 16:34 - 00056344 _____ (Intel Corporation) C:\Windows\system32\Drivers\HECIx64.sys
2014-10-11 12:15 - 2014-10-11 15:25 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-11 12:15 - 2014-10-11 15:25 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-10-11 12:14 - 2014-10-11 15:25 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-10-11 12:14 - 2014-10-11 15:24 - 18626304 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-10-11 12:14 - 2014-10-11 15:24 - 17555104 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-10-11 12:14 - 2014-10-11 15:24 - 03196816 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-10-11 12:14 - 2014-10-11 15:24 - 00026353 _____ () C:\Windows\system32\nvinfo.pb
2014-10-11 12:14 - 2014-10-11 12:14 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-10-11 12:14 - 2011-03-29 11:14 - 01359976 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco642040.dll
2014-10-11 12:14 - 2011-03-29 11:13 - 01359976 _____ (NVIDIA Corporation) C:\Windows\system32\nvgenco642040.dll
2014-10-11 12:14 - 2011-03-29 11:12 - 01614440 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco642090.dll
2014-10-11 12:14 - 2011-03-29 11:11 - 00067176 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-10-11 12:14 - 2011-03-29 11:11 - 00057960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-10-11 12:14 - 2011-03-29 11:11 - 00011240 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvBridge.kmd
2014-10-11 12:13 - 2014-10-11 12:13 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_btath_hcrp_01009.Wdf
2014-10-11 12:12 - 2014-10-11 12:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BT Program
2014-10-11 12:12 - 2014-10-11 12:12 - 00000000 ____D () C:\Program Files (x86)\Bluetooth Suite
2014-10-11 12:11 - 2014-10-11 12:11 - 00000000 ____D () C:\Program Files\CONEXANT
2014-10-11 12:10 - 2014-10-11 12:10 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-10-11 12:09 - 2014-10-11 12:49 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-11 12:08 - 2014-10-13 14:03 - 01477115 _____ () C:\Windows\WindowsUpdate.log
2014-10-11 12:08 - 2014-10-11 12:16 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-10-11 12:08 - 2014-10-11 12:08 - 00000000 ____D () C:\Intel
2014-10-11 12:08 - 2011-02-16 14:34 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2014-10-11 12:06 - 2014-10-11 12:51 - 00000000 ____D () C:\ProgramData\Sony Corporation
2014-10-11 12:04 - 2014-10-11 12:04 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-10-11 12:04 - 2014-10-11 12:04 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-14 08:43 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-14 08:43 - 2009-07-14 06:51 - 00037173 _____ () C:\Windows\setupact.log
2014-10-14 08:42 - 2010-11-21 05:47 - 00007592 _____ () C:\Windows\PFRO.log
2014-10-13 08:44 - 2009-07-14 06:45 - 00020992 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-13 08:44 - 2009-07-14 06:45 - 00020992 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-13 08:43 - 2009-07-14 07:13 - 01612484 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-13 08:23 - 2009-07-14 06:45 - 00316440 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-13 05:13 - 2011-02-11 01:03 - 01589650 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-10-12 19:53 - 2011-03-15 04:36 - 00000000 ____D () C:\Windows\ShellNew
2014-10-12 19:53 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\L2Schemas
2014-10-12 19:12 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-10-11 15:54 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-10-11 15:26 - 2011-03-29 09:42 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-10-11 15:24 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-11 15:14 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\restore
2014-10-11 13:01 - 2009-07-14 07:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-10-11 13:01 - 2009-07-14 07:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-10-11 12:59 - 2011-03-15 04:36 - 00000000 ____D () C:\Program Files\Windows Journal
2014-10-11 12:59 - 2009-07-14 07:37 - 00000000 ____D () C:\Windows\DigitalLocker
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\WinBioPlugIns
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-10-11 12:59 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\com
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Speech
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\IME
2014-10-11 12:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-10-11 12:56 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-10-11 12:56 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
2014-10-11 12:54 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-10-11 12:51 - 2011-02-11 00:48 - 00000000 ____D () C:\Windows\Panther
2014-10-11 12:51 - 2009-07-14 06:46 - 00004059 _____ () C:\Windows\DtcInstall.log
2014-10-11 12:51 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-10-11 12:48 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Help
2014-10-11 12:44 - 2010-11-18 12:03 - 00000087 ____H () C:\splash.idx
2014-10-11 12:34 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system
2014-10-11 12:22 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-10-11 12:21 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Resources
2014-10-11 12:20 - 2011-02-11 00:52 - 00000012 _____ () C:\Windows\csup.txt
2014-10-11 12:20 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-10-11 12:12 - 2011-03-31 15:32 - 00246804 _____ () C:\Windows\system32\Drivers\AtherosBt.bin
2014-10-11 12:12 - 2011-03-31 15:32 - 00001262 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_26.dfu
2014-10-11 12:12 - 2011-03-31 15:32 - 00001204 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40_0x02.dfu
2014-10-11 12:12 - 2011-03-31 15:32 - 00001204 _____ () C:\Windows\system32\Drivers\ramps_0x01020200_40.dfu
2014-10-11 12:08 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Globalization
2014-10-11 12:04 - 2011-02-11 00:55 - 00003652 _____ () C:\Windows\TSSysprep.log
2014-10-11 12:04 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

Some content of TEMP:
====================
C:\Users\Simon Hatje\AppData\Local\Temp\Quarantine.exe
C:\Users\Simon Hatje\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2011-02-11 00:52

==================== End Of Log ============================

--- --- ---

--- --- ---

Warlord711 · 14.10.2014, 14:11

Hattest du mal Bitdefender installiert gehabt ?

Austin09 · 14.10.2014, 21:53

Nein
Ein bekannter von mir hat auch Sony Vaio, ähnliche Probleme und dann mit einem austausch der Festplatte wieder den Normalzustand erreicht....

Warlord711 · 15.10.2014, 08:01

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

S3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [389240 2014-07-10] (BitDefender S.R.L.)
emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Downloade dir bitte

Farbar Service Scanner

Starte das Tool mit Doppelklick auf die FSS.exe
Gehe sicher, dass folgende Optionen angehakt sind.
- Internet Services
- Windows Firewall
- System Restore
- Security Center/Action Center
- Windows Update
- Windows Defender
- Other Services
Klicke auf Scan.
Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

Achtung, ESET Scan dauert lange:

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

14.10.2014, 14:11	#6
Warlord711 /// TB-Ausbilder	PC friert ein, Benutzung nur im abgesicherten Modus möglich Hattest du mal Bitdefender installiert gehabt ? __________________ --> PC friert ein, Benutzung nur im abgesicherten Modus möglich

PC friert ein, Benutzung nur im abgesicherten Modus möglich

Plagegeister aller Art und deren Bekämpfung: PC friert ein, Benutzung nur im abgesicherten Modus möglich