| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Windows 7: eBay und eMail "gehackt" - Keine Antivirus SoftwareWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
01.01.2015, 18:43
| #1 |
| |  Windows 7: eBay und eMail "gehackt" - Keine Antivirus Software Hallo Leute, vor ca. 4 Tagen bekam ich diverse Nachrichten bei eBay. Dort wurde ich gefragt welche Spiegelreflexkamera ich denn genau verkaufe. Ganz verdutzt schaute ich mir dann meine laufenden Auktionen an und sah das ich eine Nikon D4 und ein Cannondale Fahrrad "verkaufen" würde..... Nunja ich habe die Auktionen abbrechen lassen, meine Passwörter geändert und gesehen das eine Umleitung meiner eMails vorhanden war. Ich muss auch ehrlich gestehen, das ich seit Jahren ohne Firewall (außer Windows) oder Antivirus Programme surfe. Ab und an, mache ich einen kleinen OnlineCheck....was ja anscheinend nicht viel taugen mag. So, da ich mir nun nicht ganz sicher bin ob ich nicht etwas auf meinem Computer habe, würde ich euch gerne bitten mir zu helfen. Betriebssystem Windows 7 Festplatten: C: (256GB SSD), E: (1TB File Storage), F: (2TB externe Filestorages). F: bei allen Scanes nageschlossen und eingeschaltet! Laufwerksemulationen abschalten mit Defogger: CHECK! (Denke mal nicht das ich soetwas besitze...habe es aber mal trotzdem gemacht...ich denke mal das sind Tools wie DaemonTools oder Alcohol?) FRST.txt Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-01-2015
Ran by Kagarie (administrator) on BLACKPEARL on 01-01-2015 18:22:01
Running from C:\Users\Kagarie\Desktop
Loaded Profile: Kagarie (Available profiles: Kagarie)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe
(Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
() C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
(Micro-Star International) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(Micro-Star International) C:\MSI\Smart Utilities\SuperRAIDSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7637208 2014-07-15] (Realtek Semiconductor)
HKLM\...\Run: [MBCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\MBCfg64.dll,RunDLLEntry MBCfg64
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-06-27] (Intel Corporation)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [764472 2012-09-19] ()
HKU\S-1-5-18\...\Policies\system: [DisableLockWorkstation] 0
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-158159729-1652388842-3101315649-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-158159729-1652388842-3101315649-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Kagarie\AppData\Roaming\Mozilla\Firefox\Profiles\1pz1b3pw.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_235.dll ()
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_235.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Extension: Adblock Plus - C:\Users\Kagarie\AppData\Roaming\Mozilla\Firefox\Profiles\1pz1b3pw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-01-01]
Chrome:
=======
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 ECOSERVICE; C:\Program Files (x86)\MSI\ECO Center\ECO_Service.exe [2240680 2014-09-04] (Micro-Star International Co., Ltd.)
R2 GamingApp_Service; C:\Program Files (x86)\MSI\MSI Gaming APP\GamingApp_Service.exe [20512 2014-03-13] (Micro-Star Int'l Co., Ltd.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [329104 2014-10-03] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-09-03] (Intel Corporation)
S3 MSIBIOSData_CC; C:\Program Files (x86)\MSI\Command Center\BIOSData\MSIBIOSDataService.exe [2099712 2014-10-21] (MSI) [File not signed]
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4026880 2014-09-26] (MSI) [File not signed]
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2117632 2014-11-05] () [File not signed]
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4157440 2014-09-26] () [File not signed]
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [1993216 2014-09-26] () [File not signed]
S3 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2242048 2014-10-21] () [File not signed]
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2063360 2014-07-28] () [File not signed]
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [575488 2014-10-29] () [File not signed]
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [103992 2012-10-26] (MSI)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1732048 2014-11-27] (Micro-Star International)
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [344576 2014-04-17] (Qualcomm Atheros) [File not signed]
R2 SuperRAIDSvc; C:\MSI\Smart Utilities\SuperRAIDSvc.exe [29648 2014-08-13] (Micro-Star International)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [18384 2014-08-07] (Intel(R) Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 AcpiCtlDrv; C:\Windows\System32\DRIVERS\AcpiCtlDrv.sys [25880 2012-07-17] (Intel Corporation)
R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [82096 2014-04-10] (Qualcomm Atheros, Inc.)
R2 iocbios2; C:\Program Files (x86)\Intel\Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [28912 2014-06-17] (Intel Corporation)
R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [129200 2014-03-27] (Qualcomm Atheros, Inc.)
R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [126976 2014-09-03] (Intel Corporation)
R3 NTIOLib_1_0_4; C:\Program Files (x86)\MSI\Live Update\NTIOLib_X64.sys [14136 2010-10-22] (MSI)
S3 NTIOLib_1_0_6; C:\Program Files (x86)\Setup Files\Ms7918v250\NTIOLib_X64.sys [11888 2011-01-06] (MSI) [File not signed]
R3 NTIOLib_ECO; C:\Program Files (x86)\MSI\ECO Center\NTIOLib_X64.sys [13808 2014-01-06] (MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
S3 NTIOLib_MB; C:\Program Files (x86)\MSI\MSI Gaming APP\Lib\NTIOLib_X64.sys [13808 2014-03-13] (MSI)
S3 NTIOLib_MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 NTIOLib_MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
S3 NTIOLib_MSIFrequency_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\CPU_Frequency\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSIRatio_CC; C:\Program Files (x86)\MSI\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 NTIOLib_MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
R3 NTIOLib_MSI_RAID; C:\MSI\Smart Utilities\NTIOLib_X64.sys [13808 2014-03-17] (MSI)
S3 cpuz138; \??\C:\Windows\TEMP\cpuz138\cpuz138_x64.sys [X]
S3 GPUZ; \??\C:\Windows\TEMP\GPUZ.sys [X]
S3 NTIOLib_1_0_C; \??\D:\NTIOLib_X64.sys [X]
R2 sbapifs; system32\DRIVERS\sbapifs.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
U3 aswMBR; \??\C:\Users\Kagarie\AppData\Local\Temp\aswMBR.sys [X]
U3 aswVmm; \??\C:\Users\Kagarie\AppData\Local\Temp\aswVmm.sys [X]
U3 uxdyiuog; \??\C:\Users\Kagarie\AppData\Local\Temp\uxdyiuog.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-01 18:22 - 2015-01-01 18:22 - 00011483 _____ () C:\Users\Kagarie\Desktop\FRST.txt
2015-01-01 18:21 - 2015-01-01 18:21 - 02123264 _____ (Farbar) C:\Users\Kagarie\Desktop\FRST64.exe
2015-01-01 18:20 - 2015-01-01 18:20 - 00000476 _____ () C:\Users\Kagarie\Desktop\defogger_disable.log
2015-01-01 18:20 - 2015-01-01 18:20 - 00000000 _____ () C:\Users\Kagarie\defogger_reenable
2015-01-01 18:18 - 2015-01-01 18:18 - 00050477 _____ () C:\Users\Kagarie\Desktop\Defogger.exe
2015-01-01 18:08 - 2015-01-01 18:08 - 00000000 ____D () C:\Users\Kagarie\AppData\Local\PackageAware
2015-01-01 18:01 - 2015-01-01 18:01 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2015-01-01 16:48 - 2015-01-01 16:51 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2015-01-01 16:48 - 2015-01-01 16:48 - 00135384 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-01-01 16:48 - 2015-01-01 16:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-01-01 16:46 - 2015-01-01 16:46 - 00000000 ____D () C:\Windows\system32\appmgmt
2015-01-01 16:45 - 2015-01-01 16:45 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-01-01 16:24 - 2015-01-01 18:22 - 00000000 ____D () C:\FRST
2015-01-01 15:59 - 2015-01-01 16:09 - 00000016 _____ () C:\Windows\system32\config\software.szfi
2015-01-01 15:42 - 2015-01-01 16:47 - 00000000 ____D () C:\ProgramData\STOPzilla!
2015-01-01 15:42 - 2015-01-01 16:47 - 00000000 ____D () C:\Program Files (x86)\STOPzilla!
2015-01-01 15:42 - 2015-01-01 16:31 - 00000480 _____ () C:\Windows\system32\Drivers\kgpcpy.cfg
2015-01-01 15:28 - 2015-01-01 15:28 - 00001995 _____ () C:\Users\Kagarie\Desktop\JDownloader 2.lnk
2015-01-01 15:28 - 2015-01-01 15:28 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2015-01-01 15:27 - 2015-01-01 16:30 - 00000000 ____D () C:\Program Files\JDownloader v2.0
2015-01-01 15:06 - 2015-01-01 15:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RocketDock
2015-01-01 15:06 - 2015-01-01 15:06 - 00000000 ____D () C:\Program Files (x86)\RocketDock
2015-01-01 14:57 - 2015-01-01 15:00 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-01 14:57 - 2015-01-01 14:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-01-01 14:52 - 2015-01-01 14:52 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2015-01-01 14:52 - 2015-01-01 14:52 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2015-01-01 14:30 - 2015-01-01 14:30 - 00000000 ____D () C:\ProgramData\Panda Security
2015-01-01 14:07 - 2015-01-01 14:07 - 00000000 ____D () C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2015-01-01 14:06 - 2015-01-01 14:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-01-01 14:06 - 2015-01-01 14:06 - 00000000 ____D () C:\Windows\PCHEALTH
2015-01-01 14:06 - 2015-01-01 14:06 - 00000000 ____D () C:\Program Files\Microsoft SQL Server
2015-01-01 14:06 - 2015-01-01 14:06 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2015-01-01 14:06 - 2015-01-01 14:06 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server
2015-01-01 14:03 - 2015-01-01 14:52 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-01-01 14:03 - 2015-01-01 14:06 - 00000000 ____D () C:\Program Files\Microsoft Office
2015-01-01 14:03 - 2015-01-01 14:03 - 00000000 __RHD () C:\MSOCache
2015-01-01 14:03 - 2015-01-01 14:03 - 00000000 ____D () C:\Users\Kagarie\AppData\Local\Microsoft Help
2015-01-01 14:03 - 2015-01-01 14:03 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2015-01-01 14:03 - 2015-01-01 14:03 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2015-01-01 14:03 - 2015-01-01 14:03 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2015-01-01 14:00 - 2015-01-01 14:58 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\WinRAR
2015-01-01 14:00 - 2015-01-01 14:57 - 00000000 ____D () C:\Program Files\WinRAR
2015-01-01 13:56 - 2014-12-13 06:09 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-01-01 13:56 - 2014-12-13 04:33 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-01-01 13:56 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-01-01 13:56 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-01-01 13:56 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-01-01 13:56 - 2014-07-09 03:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-01-01 13:56 - 2014-07-09 03:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-01-01 13:56 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2015-01-01 13:56 - 2014-07-09 02:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2015-01-01 13:56 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2015-01-01 13:56 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2015-01-01 13:56 - 2014-07-09 02:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2015-01-01 13:56 - 2014-07-08 23:39 - 00419704 _____ () C:\Windows\system32\locale.nls
2015-01-01 13:56 - 2014-07-08 23:30 - 00419704 _____ () C:\Windows\SysWOW64\locale.nls
2015-01-01 13:38 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-01-01 13:38 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-01-01 13:38 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-12-31 17:49 - 2014-12-31 17:49 - 00000000 ____D () C:\Users\Kagarie\AppData\Local\Macromedia
2014-12-31 15:31 - 2014-12-31 20:23 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\vlc
2014-12-31 15:30 - 2014-12-31 15:30 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-12-31 13:05 - 2014-12-31 13:05 - 00000000 ____D () C:\Windows\pss
2014-12-31 12:57 - 2014-12-31 12:57 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\LolClient
2014-12-31 05:57 - 2014-12-31 05:57 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-12-31 05:57 - 2014-12-31 05:57 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-12-31 05:57 - 2014-12-31 05:57 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-12-31 05:56 - 2014-12-30 23:00 - 00000000 ____D () C:\Windows\Panther
2014-12-31 05:23 - 2014-12-31 05:23 - 00000022 _____ () C:\Windows\GPU-Z.INI
2014-12-31 05:22 - 2014-12-31 05:23 - 00000000 ____D () C:\Users\Kagarie\Documents\3DMark
2014-12-31 05:22 - 2014-12-31 05:22 - 00000000 ____D () C:\Users\Kagarie\AppData\Local\Futuremark
2014-12-31 05:21 - 2014-05-08 10:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-12-31 05:19 - 2013-10-02 03:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-12-31 05:19 - 2013-10-02 03:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-12-31 05:19 - 2013-10-02 03:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-12-31 05:19 - 2013-10-02 02:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-12-31 05:19 - 2013-10-02 02:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-12-31 05:19 - 2013-10-02 02:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-12-31 05:19 - 2013-10-02 02:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-12-31 05:19 - 2013-10-02 01:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-12-31 05:19 - 2013-10-02 01:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-12-31 05:19 - 2013-10-02 01:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-12-31 05:19 - 2013-10-02 01:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-12-31 05:19 - 2013-10-02 01:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-12-31 05:19 - 2013-10-02 00:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-12-31 05:19 - 2013-10-02 00:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-12-31 05:19 - 2013-10-02 00:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-12-31 05:19 - 2013-10-01 23:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-12-31 05:19 - 2012-08-23 15:13 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-12-31 05:19 - 2012-08-23 15:12 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\terminpt.sys
2014-12-31 05:19 - 2012-08-23 15:10 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpvideominiport.sys
2014-12-31 05:19 - 2012-08-23 15:08 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbGD.sys
2014-12-31 05:19 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpendp_winip.dll
2014-12-31 05:19 - 2012-08-23 11:51 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\rdpendp_winip.dll
2014-12-31 05:07 - 2014-12-31 05:07 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-31 05:01 - 2014-12-31 05:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-31 05:01 - 2014-11-27 16:40 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-31 04:55 - 2014-10-18 03:03 - 04121600 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-12-31 04:55 - 2014-10-18 02:32 - 03209728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-12-31 04:55 - 2014-07-07 03:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-12-31 04:55 - 2014-07-07 03:05 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-12-31 04:55 - 2014-07-07 03:05 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-12-31 04:55 - 2014-07-07 03:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-12-31 04:55 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-12-31 04:55 - 2014-07-07 02:40 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-12-31 04:55 - 2014-07-07 02:40 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-12-31 04:55 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-12-31 04:54 - 2014-06-27 03:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-12-31 04:54 - 2014-06-27 02:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-12-31 04:53 - 2014-12-31 04:53 - 00000198 _____ () C:\Windows\DirectX.log
2014-12-31 04:53 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-12-31 04:53 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-12-31 04:53 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-12-31 04:53 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-12-31 04:53 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-12-31 04:53 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-12-31 04:53 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-12-31 04:53 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-12-31 04:53 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-12-31 04:53 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-12-31 04:53 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-12-31 04:53 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-12-31 04:53 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-12-31 04:53 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-12-31 04:37 - 2011-04-09 07:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-12-31 04:37 - 2011-04-09 06:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-12-31 04:30 - 2014-12-04 03:50 - 00830976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-31 04:30 - 2014-12-04 03:50 - 00741376 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-31 04:30 - 2014-12-04 03:50 - 00413184 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-31 04:30 - 2014-12-04 03:50 - 00396800 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-31 04:30 - 2014-12-04 03:50 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-31 04:30 - 2014-12-04 03:50 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-31 04:30 - 2014-12-04 03:44 - 01083392 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-31 04:30 - 2014-12-02 00:28 - 01232040 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2014-12-31 04:30 - 2014-11-27 02:43 - 00389296 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-31 04:30 - 2014-11-27 02:10 - 00342200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-31 04:30 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-31 04:30 - 2014-11-22 04:06 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-12-31 04:30 - 2014-11-22 04:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-12-31 04:30 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-31 04:30 - 2014-11-22 03:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-12-31 04:30 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-31 04:30 - 2014-11-22 03:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-12-31 04:30 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-31 04:30 - 2014-11-22 03:41 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-12-31 04:30 - 2014-11-22 03:40 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-12-31 04:30 - 2014-11-22 03:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-12-31 04:30 - 2014-11-22 03:35 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-12-31 04:30 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-31 04:30 - 2014-11-22 03:34 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-12-31 04:30 - 2014-11-22 03:26 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-12-31 04:30 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-31 04:30 - 2014-11-22 03:22 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-12-31 04:30 - 2014-11-22 03:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-12-31 04:30 - 2014-11-22 03:14 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-12-31 04:30 - 2014-11-22 03:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-12-31 04:30 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-31 04:30 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-31 04:30 - 2014-11-22 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-12-31 04:30 - 2014-11-22 03:06 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-12-31 04:30 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-31 04:30 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-31 04:30 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-31 04:30 - 2014-11-22 02:59 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-12-31 04:30 - 2014-11-22 02:58 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-12-31 04:30 - 2014-11-22 02:56 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-12-31 04:30 - 2014-11-22 02:54 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-12-31 04:30 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-31 04:30 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-31 04:30 - 2014-11-22 02:47 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-12-31 04:30 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-31 04:30 - 2014-11-22 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-12-31 04:30 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-31 04:30 - 2014-11-22 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-12-31 04:30 - 2014-11-22 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-12-31 04:30 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-31 04:30 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-31 04:30 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-31 04:30 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-31 04:30 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-31 04:30 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-31 04:30 - 2014-11-22 02:21 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-12-31 04:30 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-31 04:30 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-31 04:30 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-31 04:30 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-31 04:30 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-31 04:30 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-31 04:30 - 2014-11-11 04:09 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-31 04:30 - 2014-11-11 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-31 04:30 - 2014-11-11 02:56 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-31 04:30 - 2014-10-14 03:16 - 00686592 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-12-31 04:30 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-12-31 04:30 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-12-31 04:30 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-12-31 04:30 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-12-31 04:30 - 2014-08-01 12:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-12-31 04:30 - 2014-08-01 12:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-12-31 04:30 - 2014-06-24 04:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-12-31 04:30 - 2014-06-24 03:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-12-31 04:30 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-12-31 04:30 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-12-31 04:30 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-12-31 04:30 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-12-31 04:30 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-12-31 04:30 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-12-31 04:29 - 2014-11-11 04:45 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-12-31 04:29 - 2014-11-11 04:45 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2014-12-31 04:29 - 2014-11-11 04:35 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-12-31 04:29 - 2014-11-11 04:21 - 00551424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-12-31 04:29 - 2014-11-11 04:21 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2014-12-31 04:29 - 2014-11-11 04:13 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-12-31 04:29 - 2014-11-11 04:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2014-12-31 04:29 - 2014-11-11 03:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-12-31 04:29 - 2014-11-07 04:24 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-12-31 04:29 - 2014-11-07 04:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-12-31 04:29 - 2014-10-30 03:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-31 04:29 - 2014-10-30 02:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-31 04:29 - 2014-10-14 03:20 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-12-31 04:29 - 2014-10-14 03:16 - 01463808 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-12-31 04:29 - 2014-10-14 03:16 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-12-31 04:29 - 2014-10-14 03:16 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-12-31 04:29 - 2014-10-14 03:13 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-12-31 04:29 - 2014-10-14 02:50 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-12-31 04:29 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-12-31 04:29 - 2014-10-14 02:49 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-12-31 04:29 - 2014-10-14 02:48 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-12-31 04:29 - 2014-10-14 02:46 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-12-31 04:29 - 2014-10-03 03:07 - 02024448 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-31 04:29 - 2014-10-03 03:07 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-12-31 04:29 - 2014-10-03 03:07 - 00347648 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-31 04:29 - 2014-10-03 03:07 - 00311296 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-31 04:29 - 2014-10-03 03:07 - 00182272 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-31 04:29 - 2014-10-03 03:06 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-12-31 04:29 - 2014-10-03 03:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-12-31 04:29 - 2014-10-03 03:06 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-12-31 04:29 - 2014-10-03 03:06 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-12-31 04:29 - 2014-10-03 03:06 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-31 04:29 - 2014-10-03 02:46 - 01179648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-31 04:29 - 2014-10-03 02:46 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-12-31 04:29 - 2014-10-03 02:46 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-12-31 04:29 - 2014-10-03 02:46 - 00249344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-31 04:29 - 2014-10-03 02:46 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-31 04:29 - 2014-10-03 02:46 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-31 04:29 - 2014-10-03 02:46 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-12-31 04:29 - 2014-10-03 02:46 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-31 04:29 - 2014-09-25 03:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-12-31 04:29 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-12-31 04:29 - 2014-09-04 11:23 - 00425472 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-12-31 04:29 - 2014-09-04 06:06 - 00373248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-12-31 04:29 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-12-31 04:29 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-12-31 04:29 - 2014-07-16 04:23 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-12-31 04:29 - 2014-07-16 04:23 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-12-31 04:29 - 2014-07-16 03:56 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-12-31 04:29 - 2014-07-16 03:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-12-31 04:28 - 2014-10-25 03:19 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-12-31 04:28 - 2014-10-25 03:08 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-12-31 04:28 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-12-31 04:28 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-12-31 04:28 - 2014-10-14 03:16 - 03243008 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-12-31 04:28 - 2014-10-14 02:49 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-12-31 04:28 - 2014-10-09 07:49 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-12-31 04:28 - 2014-09-18 22:32 - 00112568 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-12-31 04:28 - 2014-09-18 22:29 - 01942016 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-12-31 04:28 - 2014-09-18 02:43 - 01806848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-12-31 04:28 - 2014-09-18 02:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-12-31 04:28 - 2014-08-23 03:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-12-31 04:28 - 2014-08-23 02:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-12-31 04:28 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-12-31 04:28 - 2014-07-16 04:23 - 00236032 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-12-31 04:28 - 2014-07-16 04:23 - 00151040 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-12-31 04:28 - 2014-07-16 03:56 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-12-31 04:28 - 2014-07-16 03:39 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-12-31 04:28 - 2014-07-16 03:38 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-12-31 04:28 - 2012-04-26 06:30 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-12-31 04:28 - 2012-04-26 06:23 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-12-31 01:33 - 2014-12-31 01:33 - 00000000 ____D () C:\ProgramData\Riot Games
2014-12-31 01:31 - 2014-12-31 01:31 - 00001613 _____ () C:\Users\Public\Desktop\League of Legends.lnk
2014-12-31 01:31 - 2014-12-31 01:31 - 00000000 ____D () C:\Riot Games
2014-12-31 01:31 - 2014-12-31 01:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2014-12-31 01:31 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-12-31 01:31 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-12-31 01:31 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-12-31 01:31 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-12-31 01:31 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-12-31 01:30 - 2014-12-31 01:31 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\Riot Games
2014-12-31 01:15 - 2014-12-31 01:15 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2014-12-31 01:15 - 2014-12-31 01:15 - 00000388 _____ () C:\Windows\LkmdfCoInst.log
2014-12-31 01:15 - 2014-12-31 01:15 - 00000000 ____D () C:\Users\Kagarie\AppData\Local\Logitech
2014-12-31 01:15 - 2014-12-31 01:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2014-12-31 01:15 - 2014-12-31 01:15 - 00000000 ____D () C:\ProgramData\LogiShrd
2014-12-31 01:15 - 2014-12-31 01:15 - 00000000 ____D () C:\ProgramData\Apple
2014-12-31 01:15 - 2014-12-31 01:15 - 00000000 ____D () C:\Program Files\Logitech Gaming Software
2014-12-31 01:15 - 2014-12-31 01:15 - 00000000 ____D () C:\Program Files\Bonjour
2014-12-31 01:15 - 2014-12-31 01:15 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-12-31 01:14 - 2014-12-31 01:14 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\Logitech
2014-12-31 01:14 - 2014-12-31 01:14 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\Logishrd
2014-12-31 01:02 - 2014-12-31 01:03 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\Mozilla
2014-12-31 01:02 - 2014-12-31 01:03 - 00000000 ____D () C:\Users\Kagarie\AppData\Local\Mozilla
2014-12-31 01:02 - 2014-12-31 01:02 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-12-31 01:02 - 2014-12-31 01:02 - 00000000 ____D () C:\ProgramData\Mozilla
2014-12-31 01:02 - 2014-12-31 01:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-12-31 01:02 - 2014-12-31 01:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-12-31 00:33 - 2014-12-31 00:33 - 00000000 ____D () C:\Users\Kagarie\AppData\Local\Creative
2014-12-31 00:29 - 2014-12-31 00:34 - 00003284 _____ () C:\Windows\System32\Tasks\SamsungMagician
2014-12-31 00:29 - 2014-12-31 00:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2014-12-31 00:28 - 2014-12-31 00:28 - 00000000 ____D () C:\ProgramData\Samsung
2014-12-31 00:24 - 2014-12-31 00:28 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-12-31 00:24 - 2014-12-31 00:24 - 00000000 ____D () C:\Temp
2014-12-31 00:24 - 2014-12-31 00:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2014-12-31 00:14 - 2014-12-31 00:14 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\Macromedia
2014-12-31 00:13 - 2014-12-31 17:45 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-31 00:13 - 2014-12-31 17:45 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-31 00:13 - 2014-12-31 00:13 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-12-31 00:13 - 2014-12-31 00:13 - 00000000 ____D () C:\Windows\system32\Macromed
2014-12-31 00:12 - 2014-12-31 17:46 - 00000000 ____D () C:\Users\Kagarie\AppData\Local\Adobe
2014-12-31 00:09 - 2014-12-31 00:09 - 00000144 _____ () C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2014-12-31 00:04 - 2014-12-31 00:04 - 00000159 ___RH () C:\Windows\ctfile.rfc
2014-12-31 00:04 - 2014-12-31 00:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2014-12-31 00:04 - 2014-12-31 00:04 - 00000000 ____D () C:\ProgramData\Creative
2014-12-31 00:04 - 2014-02-21 11:21 - 00089600 _____ () C:\Windows\system32\CmdRtr64.DLL
2014-12-31 00:04 - 2014-02-21 11:20 - 00074240 _____ () C:\Windows\SysWOW64\CmdRtr.DLL
2014-12-31 00:04 - 2014-02-21 11:19 - 00366080 _____ () C:\Windows\system32\APOMgr64.DLL
2014-12-31 00:04 - 2014-02-21 11:17 - 00274944 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2014-12-31 00:04 - 2014-02-21 10:57 - 00041088 ____N (Creative Technology Ltd.) C:\Windows\system32\MBCfg64.dll
2014-12-31 00:04 - 2014-02-21 10:57 - 00038016 ____N (Creative Technology Ltd.) C:\Windows\SysWOW64\MBCfg32.dll
2014-12-31 00:04 - 2014-01-23 17:26 - 00013741 ____N () C:\Windows\SysWOW64\MBCfg32.ini
2014-12-31 00:04 - 2014-01-23 17:26 - 00013741 ____N () C:\Windows\system32\MBCfg64.ini
2014-12-31 00:04 - 2013-12-24 13:43 - 00375424 ____N (Creative Technology Ltd.) C:\Windows\system32\ChezSC64.DLL
2014-12-31 00:04 - 2013-12-24 13:42 - 00327296 ____N (Creative Technology Ltd.) C:\Windows\SysWOW64\ChezSC32.DLL
2014-12-31 00:04 - 2013-12-24 13:29 - 00002835 ____N () C:\Windows\MBCfg_SP_APOIM.ini
2014-12-31 00:04 - 2013-12-24 13:29 - 00002783 ____N () C:\Windows\MBCfg_APOIM.ini
2014-12-31 00:04 - 2013-12-24 13:29 - 00002747 ____N () C:\Windows\MBCfg_HP_APOIM.ini
2014-12-31 00:04 - 2013-11-20 11:24 - 00005856 ____N () C:\Windows\SysWOW64\MBCfgUninstall32.ini
2014-12-31 00:04 - 2013-11-20 11:24 - 00005856 ____N () C:\Windows\system32\MBCfgUninstall64.ini
2014-12-31 00:04 - 2013-04-23 10:54 - 00148096 ____N (Creative Technology Ltd.) C:\Windows\system32\MBCfg64.exe
2014-12-31 00:04 - 2013-04-23 10:53 - 00138880 ____N (Creative Technology Ltd.) C:\Windows\SysWOW64\MBCfg32.exe
2014-12-31 00:04 - 2013-04-23 10:53 - 00015488 ____N (Creative Technology Ltd.) C:\Windows\SysWOW64\ResDefA.exe
2014-12-31 00:04 - 2000-05-11 01:00 - 00090112 ____N (Creative Technology Ltd.) C:\Windows\Updreg.EXE
2014-12-31 00:03 - 2015-01-01 16:33 - 00006469 _____ () C:\Windows\SysWOW64\Gms.log
2014-12-31 00:03 - 2014-12-31 00:03 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-12-31 00:03 - 2014-12-31 00:03 - 00000000 ____D () C:\Program Files\Realtek
2014-12-31 00:03 - 2014-12-31 00:03 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-12-31 00:03 - 2014-12-31 00:03 - 00000000 ____D () C:\Program Files (x86)\Creative
2014-12-31 00:03 - 2014-07-15 19:01 - 04012632 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-12-31 00:03 - 2014-07-15 15:30 - 00950488 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-12-31 00:03 - 2014-07-15 11:14 - 01277681 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-12-31 00:03 - 2014-07-11 15:10 - 02000152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2014-12-31 00:03 - 2014-07-11 15:10 - 01728792 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2014-12-31 00:03 - 2014-07-09 16:57 - 02808024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-12-31 00:03 - 2014-07-07 14:07 - 02860760 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-12-31 00:03 - 2014-07-04 11:07 - 01024728 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-12-31 00:03 - 2014-06-17 13:32 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-12-31 00:03 - 2014-06-09 10:59 - 00560328 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-12-31 00:03 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-12-31 00:03 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-12-31 00:03 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-12-31 00:03 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-12-31 00:03 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-12-31 00:03 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-12-31 00:03 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2014-12-31 00:03 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-12-31 00:03 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-12-31 00:03 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-12-31 00:03 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-12-31 00:03 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-12-31 00:03 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-12-31 00:03 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-12-31 00:03 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-12-31 00:03 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-12-31 00:03 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-12-31 00:03 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-12-31 00:03 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-12-31 00:03 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-12-31 00:03 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-12-31 00:03 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-12-31 00:03 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-12-31 00:03 - 2009-11-18 07:12 - 00032344 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\MBfilt64.sys
2014-12-31 00:02 - 2014-12-31 00:03 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-12-31 00:02 - 2014-12-31 00:02 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf
2014-12-31 00:02 - 2014-06-27 11:30 - 00795120 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2014-12-31 00:02 - 2014-06-27 11:30 - 00383472 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hub.sys
2014-12-31 00:02 - 2014-06-27 11:30 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll
2014-12-31 00:02 - 2014-06-27 11:30 - 00020464 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2014-12-31 00:02 - 2014-05-19 10:47 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-12-31 00:01 - 2014-12-31 05:20 - 00000425 _____ () C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2014-12-31 00:01 - 2014-12-31 00:01 - 00018610 _____ () C:\Windows\system32\results.xml
2014-12-31 00:01 - 2014-10-03 17:37 - 00082432 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2014-12-31 00:01 - 2014-10-03 17:37 - 00074240 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
2014-12-31 00:00 - 2015-01-01 13:33 - 00000000 ___HD () C:\MSIServiceCfg_CC
2014-12-31 00:00 - 2014-10-03 17:36 - 23390216 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2014-12-31 00:00 - 2014-10-03 17:36 - 07773376 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2014-12-31 00:00 - 2014-10-03 17:36 - 05866864 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2014-12-31 00:00 - 2014-10-03 17:36 - 04619992 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2014-12-31 00:00 - 2014-10-03 17:36 - 02020352 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll
2014-12-31 00:00 - 2014-10-03 17:36 - 00688640 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll
2014-12-31 00:00 - 2014-10-03 17:36 - 00457616 _____ () C:\Windows\system32\igfxTray.exe
2014-12-31 00:00 - 2014-10-03 17:36 - 00329104 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe
2014-12-31 00:00 - 2014-10-03 17:36 - 00304016 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe
2014-12-31 00:00 - 2014-10-03 17:36 - 00273408 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll
2014-12-31 00:00 - 2014-10-03 17:36 - 00246672 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2014-12-31 00:00 - 2014-06-24 16:40 - 00212436 _____ () C:\Windows\system32\resTHA.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00203652 _____ () C:\Windows\system32\resELL.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00199508 _____ () C:\Windows\system32\resRUS.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00182244 _____ () C:\Windows\system32\resARA.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00181684 _____ () C:\Windows\system32\resJPN.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00181204 _____ () C:\Windows\system32\resHEB.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00175956 _____ () C:\Windows\system32\resFRA.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00175828 _____ () C:\Windows\system32\resHUN.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00174148 _____ () C:\Windows\system32\resKOR.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00173844 _____ () C:\Windows\system32\resDEU.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00173588 _____ () C:\Windows\system32\resITA.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00173332 _____ () C:\Windows\system32\resROM.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00173300 _____ () C:\Windows\system32\resSKY.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00173300 _____ () C:\Windows\system32\resESN.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00172884 _____ () C:\Windows\system32\resPLK.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00172516 _____ () C:\Windows\system32\resNLD.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00171716 _____ () C:\Windows\system32\resPTB.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00171700 _____ () C:\Windows\system32\resTRK.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00171636 _____ () C:\Windows\system32\resCSY.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00171172 _____ () C:\Windows\system32\resPTG.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00170996 _____ () C:\Windows\system32\resFIN.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00170404 _____ () C:\Windows\system32\resHRV.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00169860 _____ () C:\Windows\system32\resSLV.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00169844 _____ () C:\Windows\system32\resSVE.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00168628 _____ () C:\Windows\system32\resNOR.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00167972 _____ () C:\Windows\system32\resDAN.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00166500 _____ () C:\Windows\system32\resENU.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00164660 _____ () C:\Windows\system32\resCHT.cui
2014-12-31 00:00 - 2014-06-24 16:40 - 00163492 _____ () C:\Windows\system32\resCHS.cui
2014-12-31 00:00 - 2014-06-24 16:39 - 02813952 _____ () C:\Windows\system32\iglhxa64.cpa
2014-12-31 00:00 - 2014-06-24 16:39 - 01137080 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2014-12-31 00:00 - 2014-06-24 16:39 - 01132960 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2014-12-31 00:00 - 2014-06-24 16:39 - 00451576 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2014-12-31 00:00 - 2014-06-24 16:39 - 00220392 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2014-12-31 00:00 - 2014-06-24 16:39 - 00184312 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2014-12-31 00:00 - 2014-06-24 16:39 - 00182784 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v3650.dll
2014-12-31 00:00 - 2014-06-24 16:39 - 00094208 _____ () C:\Windows\system32\IccLibDll_x64.dll
2014-12-31 00:00 - 2014-06-24 16:39 - 00044025 _____ () C:\Windows\system32\iglhxo64.vp
2014-12-31 00:00 - 2014-06-24 16:39 - 00043816 _____ () C:\Windows\system32\iglhxc64_dev.vp
2014-12-31 00:00 - 2014-06-24 16:39 - 00043494 _____ () C:\Windows\system32\iglhxc64.vp
2014-12-31 00:00 - 2014-06-24 16:39 - 00043298 _____ () C:\Windows\system32\iglhxg64_dev.vp
2014-12-31 00:00 - 2014-06-24 16:39 - 00043256 _____ () C:\Windows\system32\iglhxg64.vp
2014-12-31 00:00 - 2014-06-24 16:39 - 00042079 _____ () C:\Windows\system32\iglhxo64_dev.vp
2014-12-31 00:00 - 2014-06-24 16:39 - 00001125 _____ () C:\Windows\system32\iglhxa64.vp
2014-12-31 00:00 - 2013-02-08 11:04 - 00000000 _____ () C:\RAMDiskImage.img
2014-12-30 23:58 - 2014-12-31 05:20 - 00000000 ____D () C:\Intel
2014-12-30 23:58 - 2014-12-30 23:58 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ICCWDT_01009.Wdf
2014-12-30 23:58 - 2014-12-30 23:58 - 00000000 ____D () C:\uninstall
2014-12-30 23:58 - 2014-12-30 23:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Intel Extreme Tuning Utility
2014-12-30 23:58 - 2014-12-30 23:58 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services
2014-12-30 23:58 - 2014-12-30 23:58 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition
2014-12-30 23:58 - 2014-12-30 23:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft Synchronization Services
2014-12-30 23:58 - 2014-12-30 23:58 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-12-30 23:58 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-12-30 23:58 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-12-30 23:58 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-12-30 23:58 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-12-30 23:57 - 2014-12-31 00:19 - 00000000 ____D () C:\ProgramData\Intel
2014-12-30 23:57 - 2014-12-31 00:02 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-30 23:57 - 2014-12-30 23:57 - 00000000 ___HD () C:\MSIECO
2014-12-30 23:57 - 2014-12-30 23:57 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2014-12-30 23:57 - 2014-12-30 23:57 - 00000000 ____D () C:\Users\Kagarie\Intel
2014-12-30 23:55 - 2015-01-01 14:50 - 00000000 ____D () C:\ProgramData\Package Cache
2014-12-30 23:55 - 2014-12-31 00:01 - 00000000 ____D () C:\Program Files\Intel
2014-12-30 23:25 - 2014-12-30 23:25 - 00000000 ____D () C:\Program Files (x86)\Setup Files
2014-12-30 23:20 - 2014-12-31 13:04 - 00000000 ____D () C:\MSI
2014-12-30 23:20 - 2014-12-31 00:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2014-12-30 23:20 - 2014-12-31 00:55 - 00000000 ____D () C:\Program Files (x86)\MSI
2014-12-30 23:20 - 2014-04-30 16:23 - 00011248 _____ (Windows (R) Win 7 DDK provider) C:\Windows\acpimof.dll
2014-12-30 23:17 - 2014-12-30 23:17 - 00000000 __SHD () C:\Users\Kagarie\AppData\Local\EmieUserList
2014-12-30 23:17 - 2014-12-30 23:17 - 00000000 __SHD () C:\Users\Kagarie\AppData\Local\EmieSiteList
2014-12-30 23:13 - 2014-12-31 00:24 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-12-30 23:13 - 2014-12-30 23:13 - 00000000 ____D () C:\ProgramData\Qualcomm
2014-12-30 23:13 - 2014-12-30 23:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros
2014-12-30 23:13 - 2014-12-30 23:13 - 00000000 ____D () C:\Program Files\Qualcomm Atheros
2014-12-30 23:12 - 2015-01-01 13:51 - 01593540 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-12-30 23:12 - 2014-12-30 23:12 - 00000000 ____D () C:\ProgramData\Downloaded Installations
2014-12-30 23:00 - 2015-01-01 18:20 - 00000000 ____D () C:\Users\Kagarie
2014-12-30 23:00 - 2015-01-01 17:32 - 01081942 _____ () C:\Windows\WindowsUpdate.log
2014-12-30 23:00 - 2015-01-01 14:54 - 00087320 _____ () C:\Users\Kagarie\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-30 23:00 - 2014-12-30 23:00 - 00001693 _____ () C:\Windows\system32\WinToolkit_RunOnce_Log.log
2014-12-30 23:00 - 2014-12-30 23:00 - 00001421 _____ () C:\Users\Kagarie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-30 23:00 - 2014-12-30 23:00 - 00000020 ___SH () C:\Users\Kagarie\ntuser.ini
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\Vorlagen
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\Startmenü
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\Netzwerkumgebung
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\Lokale Einstellungen
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\Eigene Dateien
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\Druckumgebung
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\Documents\Eigene Musik
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\Documents\Eigene Bilder
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\AppData\Local\Verlauf
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\AppData\Local\Anwendungsdaten
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Kagarie\Anwendungsdaten
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Programme
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 __SHD () C:\Recovery
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 ____D () C:\Users\Kagarie\AppData\Roaming\Adobe
2014-12-30 23:00 - 2014-12-30 23:00 - 00000000 ____D () C:\Users\Kagarie\AppData\Local\VirtualStore
2014-12-30 23:00 - 2009-07-14 05:54 - 00000000 ___RD () C:\Users\Kagarie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-30 23:00 - 2009-07-14 05:49 - 00000000 ___RD () C:\Users\Kagarie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-01-01 18:03 - 2009-07-14 05:45 - 00016832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-01 18:03 - 2009-07-14 05:45 - 00016832 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-01 18:01 - 2009-07-14 05:51 - 00026733 _____ () C:\Windows\setupact.log
2015-01-01 16:37 - 2011-04-12 08:43 - 00699318 _____ () C:\Windows\system32\perfh007.dat
2015-01-01 16:37 - 2011-04-12 08:43 - 00149458 _____ () C:\Windows\system32\perfc007.dat
2015-01-01 16:37 - 2009-07-14 06:13 - 01620196 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-01 16:31 - 2010-11-21 04:47 - 00124422 _____ () C:\Windows\PFRO.log
2015-01-01 16:31 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-01 14:53 - 2009-07-14 05:45 - 00367024 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-01 14:52 - 2009-07-14 03:34 - 00000478 _____ () C:\Windows\win.ini
2015-01-01 14:06 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-01-01 14:03 - 2011-04-12 08:54 - 00000000 ____D () C:\Windows\ShellNew
2015-01-01 14:03 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-12-31 06:01 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache
2014-12-31 05:57 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-12-31 05:57 - 2009-07-14 05:46 - 00002814 _____ () C:\Windows\DtcInstall.log
2014-12-31 05:57 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-12-31 05:56 - 2011-04-12 08:54 - 00000000 ____D () C:\Windows\CSC
2014-12-31 05:55 - 2009-07-14 06:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-12-31 05:55 - 2009-07-14 06:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-12-31 05:20 - 2009-07-14 04:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-31 05:20 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-31 05:07 - 2014-08-16 13:52 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-31 05:07 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2014-12-30 23:11 - 2009-07-14 06:32 - 00000000 ____D () C:\Windows\system32\restore
2014-12-30 23:00 - 2009-07-14 04:20 - 00000000 __RHD () C:\Users\Default
2014-12-30 23:00 - 2009-07-14 04:20 - 00000000 ____D () C:\Program Files\Windows NT
Some content of TEMP:
====================
C:\Users\Kagarie\AppData\Local\Temp\proxy_vole1077601743443665743.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-12-31 04:45
==================== End Of Log ============================
Addition.txt Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-01-2015
Ran by Kagarie at 2015-01-01 18:22:13
Running from C:\Users\Kagarie\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
ACPI Driver Installer (HKLM-x32\...\553E35CD-0415-41bc-B39A-410375E88534) (Version: 2.1 - Intel Corporation)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.235 - Adobe Systems Incorporated)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.28.1006 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.34 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.20 - Intel(R) Corporation) Hidden
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\3FD0C489-0F02-481a-A3E1-9754CD396761) (Version: - Intel Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Mozilla Firefox 34.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 de)) (Version: 34.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.0.85 - MSI)
MSI ECO Center (HKLM-x32\...\{1E55202F-4D31-498A-8F72-97DCBA9F2866}_is1) (Version: 1.0.0.27 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.5 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 2.0.0.21 - MSI)
MSI Intel Extreme Tuning Utility (HKLM-x32\...\{56351c83-306c-4135-a570-2784d3025548}) (Version: 5.1.0.101 - Intel Corporation)
MSI Intel Extreme Tuning Utility (x32 Version: 5.1.0.101 - Intel Corporation) Hidden
MSI Live Update (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.0.012 - MSI)
MSI Smart Utilities (HKLM-x32\...\{009E5DF2-3F97-480B-89DA-F2D5E672E14A}_is1) (Version: 2.0.0.10 - MSI)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.42.1045 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.1.42.1045 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.42.1045 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (Version: 1.1.42.1045 - Qualcomm Atheros) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7293 - Realtek Semiconductor Corp.)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.7 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
Sound Blaster Cinema 2 (HKLM-x32\...\{B4F6F8CC-2C61-42CC-A4CC-76621F25BDC7}) (Version: 1.00.07 - Creative Technology Limited)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WinRAR 5.20 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-158159729-1652388842-3101315649-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
==================== Restore Points =========================
31-12-2014 01:31:21 Microsoft Visual C++ 2005 Redistributable wird installiert
31-12-2014 01:31:31 Installed League of Legends
31-12-2014 01:31:36 DirectX wurde installiert
31-12-2014 04:51:30 3DMark
31-12-2014 04:52:21 Windows Update
31-12-2014 05:19:17 Windows Update
31-12-2014 06:00:21 Windows Update
01-01-2015 13:50:50 Windows Update
01-01-2015 14:03:21 Installed Microsoft Office Professional Plus 2013
01-01-2015 14:03:25 PROPLUS
01-01-2015 14:50:05 3DMark
01-01-2015 14:51:03 Windows Update
01-01-2015 16:46:00 Removed Futuremark SystemInfo
01-01-2015 16:46:09 Removed Futuremark SystemInfo
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:34 - 2015-01-01 15:42 - 00000860 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {00087623-E769-40AA-A3D1-AF7E2EC923B3} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {2DDE3501-8288-4FFE-9720-14B8DC787B59} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {B240ECFA-9E08-43F6-AAA3-63A4A3272365} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {BA366E59-4843-4A50-A5CD-4BC348741EBF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {FE9B627E-F6EB-43DA-AE78-C75C3CCBED21} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
==================== Loaded Modules (whitelisted) =============
2014-12-31 00:04 - 2014-02-21 11:21 - 00089600 _____ () C:\Windows\SYSTEM32\CmdRtr64.DLL
2014-12-31 00:04 - 2014-02-21 11:19 - 00366080 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL
2014-12-31 00:00 - 2014-09-26 11:44 - 01993216 _____ () C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
2014-12-30 23:20 - 2005-07-18 13:43 - 00160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2014-12-31 00:55 - 2014-08-13 20:10 - 01723856 _____ () C:\MSI\Smart Utilities\SuperRAIDExt.DLL
2014-09-03 11:03 - 2014-09-03 11:03 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-12-31 01:02 - 2014-11-26 17:40 - 03758192 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
HKU\S-1-5-21-158159729-1652388842-3101315649-1000\Software\Classes\.exe: exefile => <===== ATTENTION!
HKU\S-1-5-21-158159729-1652388842-3101315649-1000\Software\Classes\exefile: <===== ATTENTION!
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Killer Network Manager.lnk => C:\Windows\pss\Killer Network Manager.lnk.CommonStartup
MSCONFIG\startupreg: Command Center => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe
MSCONFIG\startupreg: Live Update => C:\Program Files (x86)\MSI\Live Update\Live Update.exe /REMINDER
MSCONFIG\startupreg: Sound Blaster Cinema 2 => "C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\SBCinema2.exe" /r
========================= Accounts: ==========================
Administrator (S-1-5-21-158159729-1652388842-3101315649-500 - Administrator - Disabled)
Gast (S-1-5-21-158159729-1652388842-3101315649-501 - Limited - Disabled)
Kagarie (S-1-5-21-158159729-1652388842-3101315649-1000 - Administrator - Enabled) => C:\Users\Kagarie
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/01/2015 04:59:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm aswMBR.exe, Version 1.0.1.2252 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: ef8
Startzeit: 01d025dbd7010dfb
Endzeit: 0
Anwendungspfad: C:\Users\Kagarie\Desktop\aswMBR.exe
Berichts-ID: 1cef5ecf-91cf-11e4-823e-448a5bd2ada8
Error: (01/01/2015 04:57:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: aswMBR.exe, Version: 1.0.1.2252, Zeitstempel: 0x5465ba64
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.22703, Zeitstempel: 0x5385b23f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0002e39e
ID des fehlerhaften Prozesses: 0x200
Startzeit der fehlerhaften Anwendung: 0xaswMBR.exe0
Pfad der fehlerhaften Anwendung: aswMBR.exe1
Pfad des fehlerhaften Moduls: aswMBR.exe2
Berichtskennung: aswMBR.exe3
Error: (01/01/2015 04:33:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/01/2015 03:55:41 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Program Files (x86)\STOPzilla!\SZScanner.exe Files (x86)\STOPzilla!\SZScanner.exe" ; Beschreibung = STOPzilla Restore Point.; Fehler = 0x80042319).
Error: (01/01/2015 02:55:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/01/2015 02:51:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/01/2015 02:07:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/01/2015 01:54:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/01/2015 01:35:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/31/2014 00:59:38 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Die abhängige Assemblierung "Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
System errors:
=============
Error: (01/01/2015 04:31:32 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
is3srv
Error: (01/01/2015 01:51:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070308 fehlgeschlagen: Update für Windows 7 für x64-basierte Systeme (KB2970228)
Error: (01/01/2015 01:50:59 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070308 fehlgeschlagen: Update für Windows 7 für x64-basierte Systeme (KB2923545)
Error: (01/01/2015 01:50:59 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070308 fehlgeschlagen: Sicherheitsupdate für Windows 7 für x64-basierte Systeme (KB2984981)
Error: (01/01/2015 01:50:59 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070308 fehlgeschlagen: Update for Internet Explorer 11 for Windows 7 for x64-based Systems (KB3025390)
Error: (12/31/2014 05:10:23 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80242016 fehlgeschlagen: Update für Windows 7 für x64-basierte Systeme (KB2952664)
Error: (12/31/2014 05:07:44 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Windows Modules Installer" wurde mit folgendem Fehler beendet:
%%16405
Error: (12/31/2014 05:07:10 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Sicherheitsupdate für Microsoft .NET Framework 4.5 unter Windows 7, Vista, Windows Server 2008 und Windows Server 2008 R2 für x64 (KB2861208)
Error: (12/31/2014 05:56:20 AM) (Source: volmgr) (EventID: 46) (User: )
Description: Die Initialisierung des Speicherabbildes ist fehlgeschlagen.
Microsoft Office Sessions:
=========================
Error: (01/01/2015 04:59:11 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: aswMBR.exe1.0.1.2252ef801d025dbd7010dfb0C:\Users\Kagarie\Desktop\aswMBR.exe1cef5ecf-91cf-11e4-823e-448a5bd2ada8
Error: (01/01/2015 04:57:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: aswMBR.exe1.0.1.22525465ba64ntdll.dll6.1.7601.227035385b23fc00000050002e39e20001d025daee03dac2C:\Users\Kagarie\Desktop\aswMBR.exeC:\Windows\SysWOW64\ntdll.dllf3806b09-91ce-11e4-823e-448a5bd2ada8
Error: (01/01/2015 04:33:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/01/2015 03:55:41 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: C:\Program Files (x86)\STOPzilla!\SZScanner.exe Files (x86)\STOPzilla!\SZScanner.exe" STOPzilla Restore Point.0x80042319
Error: (01/01/2015 02:55:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/01/2015 02:51:35 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/01/2015 02:07:07 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/01/2015 01:54:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/01/2015 01:35:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (12/31/2014 00:59:38 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC90.MFC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"C:\Program Files (x86)\Creative\Sound Blaster Cinema 2\Sound Blaster Cinema 2\CTMFPlay.dll
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz
Percentage of memory in use: 26%
Total physical RAM: 8077.77 MB
Available physical RAM: 5901.94 MB
Total Pagefile: 16153.73 MB
Available Pagefile: 14240.27 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:232.79 GB) (Free:186.81 GB) NTFS
Drive e: (Storages) (Fixed) (Total:931.51 GB) (Free:931.34 GB) NTFS
Drive f: (Datensau) (Fixed) (Total:1863.01 GB) (Free:120.28 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 6F3F7F37)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 43B61E3D)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: 00124672)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End Of Log ============================
GMER Code:
ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-01-01 18:36:47
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 Samsung_SSD_840_EVO_250GB rev.EXT0CB6Q 232,89GB
Running: Gmer-19357.exe; Driver: C:\Users\Kagarie\AppData\Local\Temp\uxdyiuog.sys
---- Processes - GMER 2.1 ----
Library C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{EBC7AE71-1ED4-4C25-A434-2E8670A8654E}\offreg.dll (*** suspicious ***) @ C:\Windows\System32\svchost.exe [3052](2015-01-01 16:19:20) 000007fef4330000
---- EOF - GMER 2.1 ----
So ich hoffe ich habe alles richtig gemacht und alles richtig gepostet! Da ich ja zur Zeit keine Software zur Virus bekämpfung auf meinem Computer besitze, würde ich euch da gerne um Rat fragen. Was haltet ihr von der BitDefender Internet Security 2015? Ich bedanke mich schon einmal! MfG Mathieu |
| Themen zu Windows 7: eBay und eMail "gehackt" - Keine Antivirus Software |
| adware, antivirus, bonjour, browser, computer, defender, ebay, email, firefox, flash player, frage, helper, installation, launch, mozilla, realtek, registry, rundll, services.exe, software, svchost.exe, temp, updates, usb, vista, windows |
Baum-Darstellung