|
Log-Analyse und Auswertung: Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht startenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
19.06.2015, 08:49 | #1 |
| Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten Hallo, es geht darum, dass sich mein PC aufhängt, sobald ich den Windows(8.1)-Updatebereich betreten möchte. Aus diesem Grund wollte ich mal schauen ob vielleicht Adware auf meinem PC liegt, welcher vielleicht etwas damit zutun haben könnte. Nun kommt die Fehlermeldung wenn ich den ADwareCleaner starten möchte, dass 'sqlite3.dll' nicht geladen werden kann. Woanders steht, dass es mit einem Viren oder Adware zusammenhängen könnte. MBAM hat die letzten 2 Tage nichts gefunden, Avast nun ebenso wenig. PS: Ich habe gerade gesehen das ich wohl im falschen Unterforum bin. Tut mir leid, bin einfach nur der Anleitung gefolgt :x Geändert von Lilhomer (19.06.2015 um 09:05 Uhr) |
19.06.2015, 09:07 | #2 |
/// the machine /// TB-Ausbilder | Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten Hi,
__________________Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke. So funktioniert es: Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
19.06.2015, 10:02 | #3 |
| Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten Okay, verstanden.
__________________Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1) Log created at 09:12 on 19/06/2015 (Lilhomers) Checking for autostart values... HKCU\~\Run values retrieved. HKLM\~\Run values retrieved. Checking for services/drivers... -=E.O.F=- Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-06-2015 Ran by Lilhomers (administrator) on LILHOMER on 19-06-2015 09:13:44 Running from C:\Users\Lilhomers\Desktop Loaded Profiles: Lilhomers (Available Profiles: Lilhomers) Platform: Windows 8.1 Pro (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (Avast Software s.r.o.) J:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Windows\SysWOW64\PnkBstrA.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe () C:\Windows\SysWOW64\PnkBstrB.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\InputMethod\KOR\KorIME.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Avast Software s.r.o.) J:\Program Files\AVAST Software\Avast\AvastUI.exe () J:\Program Files (x86)\DiskBoss\bin\diskbsa.exe (NetEase) J:\Program Files (x86)\Netease\CloudMusic\cloudmusic.exe (NetEase) J:\Program Files (x86)\Netease\CloudMusic\cloudmusic.exe (NetEase) J:\Program Files (x86)\Netease\CloudMusic\cloudmusic.exe (CMedia) C:\Program Files\ASUS Essence STX II Audio Device\Customapp\AsusAudioCenter.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [Cmaudio8788] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\CmiCnfgSTXII.dll,CMICtrlWnd HKLM\...\Run: [Cmaudio8788GX] => C:\Windows\syswow64\HsMgr.exe [200704 2008-07-11] () HKLM\...\Run: [Cmaudio8788GX64] => C:\Windows\system\HsMgr64.exe [282112 2008-07-11] () HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-05-28] (NVIDIA Corporation) HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-04-10] (Oracle Corporation) HKLM-x32\...\Run: [AvastUI.exe] => J:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-05] (Avast Software s.r.o.) HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\Run: [Steam] => J:\Program Files (x86)\Steam\steam.exe [2892992 2015-06-04] (Valve Corporation) HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3095840 2015-04-30] (Nota Inc.) HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\Run: [cloudmusic] => J:\Program Files (x86)\Netease\CloudMusic\cloudmusic.exe [331664 2015-04-30] (NetEase) HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28917376 2015-05-14] (Skype Technologies S.A.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => J:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-06-03] (Avast Software s.r.o.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-3862967198-3418230011-351970294-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre8\bin\ssv.dll [2015-05-30] (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> J:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-03] (Avast Software s.r.o.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre8\bin\jp2ssv.dll [2015-05-30] (Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre8\bin\ssv.dll [2015-05-30] (Oracle Corporation) BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> J:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-03] (Avast Software s.r.o.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll [2015-05-30] (Oracle Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Lilhomers\AppData\Roaming\Mozilla\Firefox\Profiles\dG9XeQe7.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_160.dll [2015-06-19] () FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre8\bin\dtplugin\npDeployJava1.dll [2015-05-30] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre8\bin\plugin2\npjp2.dll [2015-05-30] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_160.dll [2015-06-19] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll [2015-04-17] (Adobe Systems, Inc.) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2000-01-01] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2000-01-01] (Intel Corporation) FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll [2015-05-30] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll [2015-05-30] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-05-28] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-05-28] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-29] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-29] (Google Inc.) FF Extension: Avira Browser Safety - C:\Users\Lilhomers\AppData\Roaming\Mozilla\Firefox\Profiles\dG9XeQe7.default\Extensions\abs@avira.com [2015-05-29] FF Extension: Adblock Plus - C:\Users\Lilhomers\AppData\Roaming\Mozilla\Firefox\Profiles\dG9XeQe7.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-01] FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - J:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - J:\Program Files\AVAST Software\Avast\WebRep\FF [2015-06-03] FF Extension: No Name - J:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found] Chrome: ======= CHR Profile: C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (ProxFlow) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aakchaleigkohafkfjfjbblobjifikek [2015-06-05] CHR Extension: (Google Drive) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-06-05] CHR Extension: (YouTube) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-06-05] CHR Extension: (Adblock for Youtube™) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2015-06-05] CHR Extension: (Google Search) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-06-05] CHR Extension: (AdBlock) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-06-05] CHR Extension: (Avast Online Security) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-06-05] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-05] CHR Extension: (Ghostery) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2015-06-05] CHR Extension: (Google Wallet) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-06-05] CHR Extension: (uMatrix) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ogfcmafjalglgifnmanfmnieipoejdcf [2015-06-05] CHR Extension: (Gmail) - C:\Users\Lilhomers\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-06-05] CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - J:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-05] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; J:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-03] (Avast Software s.r.o.) S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-21] (Microsoft Corporation) R2 DiskBoss Service; J:\Program Files (x86)\DiskBoss\bin\diskbsa.exe [118784 2015-06-04] () [File not signed] S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [235744 2015-06-03] (EasyAntiCheat Ltd) R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-28] (NVIDIA Corporation) S4 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed] S4 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) S4 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2000-01-01] (Intel Corporation) R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008 2015-05-28] (NVIDIA Corporation) R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23006864 2015-05-28] (NVIDIA Corporation) R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2015-06-13] () R2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [282296 2015-06-18] () S4 TunngleService; J:\Program Files (x86)\Tunngle\TnglCtrl.exe [792016 2015-02-09] (Tunngle.net GmbH) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-06-03] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-06-03] (Avast Software s.r.o.) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-06-03] (Avast Software s.r.o.) R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-06-03] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-06-03] (Avast Software s.r.o.) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-03] (Avast Software s.r.o.) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-06-03] (Avast Software s.r.o.) R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-06-03] () R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2000-01-01] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-28] (NVIDIA Corporation) R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39056 2015-05-28] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-05-28] (NVIDIA Corporation) S3 RTCore64; J:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13536 2015-05-25] () R3 STXIIService; C:\Windows\system32\drivers\STXII.sys [2736640 2014-02-18] (C-Media Inc) R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation) S3 IntcAzAudAddService; \SystemRoot\system32\drivers\RTKVHD64.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-19 09:13 - 2015-06-19 09:13 - 02109952 _____ (Farbar) C:\Users\Lilhomers\Desktop\FRST64.exe 2015-06-19 09:13 - 2015-06-19 09:13 - 00015812 _____ C:\Users\Lilhomers\Desktop\FRST.txt 2015-06-19 09:13 - 2015-06-19 09:13 - 00000000 ____D C:\FRST 2015-06-19 09:12 - 2015-06-19 09:12 - 00000480 _____ C:\Users\Lilhomers\Desktop\defogger_disable.log 2015-06-19 09:12 - 2015-06-19 09:12 - 00000000 _____ C:\Users\Lilhomers\defogger_reenable 2015-06-19 09:06 - 2015-06-19 09:06 - 00050477 _____ C:\Users\Lilhomers\Desktop\Defogger.exe 2015-06-19 08:42 - 2015-06-19 08:42 - 00000578 _____ C:\Users\Lilhomers\Desktop\Neues Textdokument.txt 2015-06-19 08:14 - 2015-06-19 08:14 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\DiskBoss 2015-06-19 08:13 - 2015-06-19 08:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiskBoss 2015-06-18 01:32 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\Windows\system32\fhcpl.dll 2015-06-18 01:32 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll 2015-06-18 01:32 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll 2015-06-18 01:32 - 2015-05-02 01:33 - 00410739 _____ C:\Windows\system32\ApnDatabase.xml 2015-06-18 01:32 - 2015-05-01 03:13 - 06521800 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe 2015-06-18 01:32 - 2015-05-01 03:13 - 01488000 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll 2015-06-18 01:32 - 2015-05-01 03:13 - 00261376 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll 2015-06-18 00:01 - 2015-06-18 00:01 - 00002583 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Excel Viewer.lnk 2015-06-18 00:00 - 2015-06-18 00:00 - 00000090 _____ C:\Users\Lilhomers\Desktop\Download Excel Viewer from Official Microsoft Download Center.url 2015-06-18 00:00 - 2015-06-18 00:00 - 00000000 ____D C:\Program Files (x86)\MSECache 2015-06-16 23:06 - 2015-06-17 20:09 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Real 2015-06-16 23:06 - 2015-06-17 20:09 - 00000000 ____D C:\Program Files (x86)\Real 2015-06-16 23:06 - 2015-06-16 23:06 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Real 2015-06-16 23:04 - 2015-06-17 20:08 - 00000000 ____D C:\ProgramData\Real 2015-06-16 22:57 - 2015-06-16 22:57 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\BaiduYunKernel 2015-06-16 22:57 - 2015-06-16 22:57 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\BaiduYunGuanjia 2015-06-16 22:57 - 2015-06-16 22:57 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\baidu 2015-06-13 23:46 - 2015-06-18 19:16 - 00282296 _____ C:\Windows\SysWOW64\PnkBstrB.xtr 2015-06-13 23:46 - 2015-06-18 19:16 - 00282296 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2015-06-13 23:46 - 2015-06-18 19:15 - 00215128 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2015-06-13 23:46 - 2015-06-14 12:03 - 00000000 ____D C:\Users\Lilhomers\Documents\BFBC2 2015-06-13 23:46 - 2015-06-13 23:54 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe 2015-06-13 23:46 - 2015-06-13 23:46 - 02434856 _____ C:\Windows\SysWOW64\pbsvc_bc2.exe 2015-06-13 23:46 - 2015-06-13 23:46 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\PunkBuster 2015-06-13 11:03 - 2015-06-13 11:03 - 00000101 _____ C:\Users\Lilhomers\Desktop\EUIV- Suggestions - Paradox Interactive Forums.url 2015-06-12 11:31 - 2015-06-12 11:31 - 00000799 _____ C:\DelFix.txt 2015-06-12 11:31 - 2015-06-12 11:31 - 00000000 ____D C:\Windows\ERUNT 2015-06-11 08:55 - 2015-06-11 08:57 - 00000000 ____D C:\ProgramData\BlueStacks 2015-06-11 08:54 - 2015-06-11 09:22 - 00000000 ____D C:\ProgramData\BlueStacksSetup 2015-06-10 16:20 - 2015-05-16 00:01 - 00133288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-06-10 16:20 - 2015-05-15 23:05 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-06-10 16:20 - 2015-05-15 22:47 - 00355328 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2015-06-10 16:20 - 2015-05-15 22:23 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-06-10 16:20 - 2015-05-15 21:42 - 03682304 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-06-10 16:20 - 2015-05-15 21:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-06-10 16:20 - 2015-05-15 21:31 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-06-10 16:20 - 2015-05-15 21:28 - 02223104 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-06-10 16:20 - 2015-05-15 21:28 - 00408064 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll 2015-06-10 16:20 - 2015-05-15 21:28 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-06-10 16:20 - 2015-05-15 21:27 - 00891904 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-06-10 16:20 - 2015-05-15 21:21 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-06-10 16:20 - 2015-05-15 21:21 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-06-10 16:20 - 2015-05-15 21:19 - 00721920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-06-10 16:20 - 2015-05-15 21:19 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-06-10 07:21 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-06-10 07:21 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-06-10 07:21 - 2015-05-25 15:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-06-10 07:21 - 2015-05-25 15:07 - 01430528 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-06-10 07:21 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-06-10 07:21 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-06-10 07:21 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-06-10 07:21 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-06-10 07:21 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-06-10 07:21 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-06-10 07:21 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-06-10 07:21 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-06-10 07:21 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2015-06-10 07:21 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2015-06-10 07:21 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-06-10 07:21 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-06-10 07:21 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-06-10 07:21 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-06-10 07:21 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll 2015-06-10 07:21 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-06-10 07:21 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-06-10 07:21 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-06-10 07:21 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-06-10 07:21 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-06-10 07:21 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-06-10 07:21 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-06-10 07:21 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-06-10 07:21 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-06-10 07:21 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-06-10 07:21 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-06-10 07:21 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2015-06-10 07:21 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-06-10 07:21 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2015-06-10 07:21 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2015-06-10 07:21 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-06-10 07:21 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-06-10 07:21 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-06-10 07:21 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-06-10 07:21 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-06-10 07:21 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll 2015-06-10 07:21 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-06-10 07:21 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-06-10 07:21 - 2015-05-22 15:08 - 00700416 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-06-10 07:21 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-06-10 07:21 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-06-10 07:21 - 2015-05-21 15:08 - 01020928 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-06-10 07:21 - 2015-05-21 15:08 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-06-10 07:21 - 2015-05-21 15:08 - 00422912 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-06-10 07:21 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-06-10 07:21 - 2015-05-21 15:08 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-06-10 07:21 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2015-06-10 07:21 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll 2015-06-10 07:21 - 2015-04-17 00:07 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-06-08 19:23 - 2015-06-08 19:23 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\NVIDIA 2015-06-07 09:48 - 2015-06-07 09:48 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\AVAST Software 2015-06-06 18:01 - 2015-06-06 18:01 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\de.devolo.dLAN.Cockpit 2015-06-05 18:11 - 2015-06-03 12:45 - 00364472 _____ (Avast Software s.r.o.) C:\Windows\system32\aswBoot.exe 2015-06-03 17:07 - 2015-06-03 17:07 - 00000000 ____D C:\Users\Lilhomers\Documents\Freemake 2015-06-03 17:07 - 2015-06-03 17:07 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake 2015-06-03 17:07 - 2015-06-03 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake 2015-06-03 17:07 - 2015-06-03 17:07 - 00000000 ____D C:\ProgramData\Freemake 2015-06-03 16:35 - 2015-06-03 16:51 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\NVIDIA Corporation 2015-06-03 16:35 - 2015-06-03 16:51 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\NVIDIA 2015-06-03 16:34 - 2015-06-03 16:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-06-03 16:34 - 2015-05-28 09:04 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-06-03 16:34 - 2015-05-28 09:04 - 01320304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-06-03 16:34 - 2015-05-28 09:04 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-06-03 16:33 - 2015-06-12 11:07 - 00000000 ____D C:\ProgramData\NVIDIA 2015-06-03 16:33 - 2015-06-03 16:38 - 00000000 ____D C:\ProgramData\NVIDIA Corporation 2015-06-03 16:33 - 2015-06-03 16:34 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation 2015-06-03 16:33 - 2015-05-28 09:04 - 42719888 _____ C:\Windows\system32\nvcompiler.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 37741712 _____ C:\Windows\SysWOW64\nvcompiler.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 30480528 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 22946960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 17486856 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 16185352 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 15864064 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 14987528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 14495448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 13304280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 12852152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 11830512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 10995528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-06-03 16:33 - 2015-05-28 09:04 - 03379680 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 02986392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435306.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435306.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 01050440 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00982856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00878816 _____ C:\Windows\system32\nvmcumd.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00503408 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00407112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-06-03 16:33 - 2015-05-28 09:04 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00117576 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00112968 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00052880 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00048784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00039056 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys 2015-06-03 16:33 - 2015-05-28 09:04 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2015-06-03 16:33 - 2015-05-28 09:04 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-06-03 16:33 - 2015-05-28 09:04 - 00030966 _____ C:\Windows\system32\nvinfo.pb 2015-06-03 16:33 - 2015-05-28 06:15 - 06872904 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-06-03 16:33 - 2015-05-28 06:15 - 03491984 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-06-03 16:33 - 2015-05-28 06:15 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-06-03 16:33 - 2015-05-28 06:15 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-06-03 16:33 - 2015-05-28 06:15 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-06-03 16:33 - 2015-05-28 06:15 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-06-03 16:33 - 2015-05-28 05:52 - 00571024 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe 2015-06-03 16:33 - 2015-05-27 12:48 - 04408727 _____ C:\Windows\system32\nvcoproc.bin 2015-06-03 16:32 - 2015-06-19 08:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation 2015-06-03 12:45 - 2015-06-12 11:07 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update 2015-06-03 12:45 - 2015-06-05 18:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software 2015-06-03 12:45 - 2015-06-03 12:45 - 01047320 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSnx.sys 2015-06-03 12:45 - 2015-06-03 12:45 - 00442264 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswSP.sys 2015-06-03 12:45 - 2015-06-03 12:45 - 00272248 _____ C:\Windows\system32\Drivers\aswVmm.sys 2015-06-03 12:45 - 2015-06-03 12:45 - 00137288 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswStm.sys 2015-06-03 12:45 - 2015-06-03 12:45 - 00093528 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswRdr2.sys 2015-06-03 12:45 - 2015-06-03 12:45 - 00089944 _____ (Avast Software s.r.o.) C:\Windows\system32\Drivers\aswMonFlt.sys 2015-06-03 12:45 - 2015-06-03 12:45 - 00065736 _____ C:\Windows\system32\Drivers\aswRvrt.sys 2015-06-03 12:45 - 2015-06-03 12:45 - 00043112 _____ (Avast Software s.r.o.) C:\Windows\avastSS.scr 2015-06-03 12:45 - 2015-06-03 12:45 - 00029168 _____ C:\Windows\system32\Drivers\aswHwid.sys 2015-06-03 12:45 - 2015-06-03 12:45 - 00000000 ____D C:\Program Files\avast software 2015-06-03 12:44 - 2015-06-05 18:08 - 00000000 ____D C:\ProgramData\AVAST Software 2015-06-03 12:38 - 2015-03-03 15:17 - 00295552 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2015-06-03 11:42 - 2015-06-03 11:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2015-06-03 11:01 - 2015-04-30 22:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-06-03 11:01 - 2015-04-30 22:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-06-03 10:41 - 2015-06-03 10:41 - 00235744 _____ (EasyAntiCheat Ltd) C:\Windows\SysWOW64\EasyAntiCheat.exe 2015-06-03 10:27 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2015-06-03 10:27 - 2014-06-10 00:13 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2015-06-02 20:35 - 2015-05-28 09:04 - 01571696 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-06-02 19:46 - 2015-06-02 19:46 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z 2015-06-02 15:47 - 2015-06-11 18:18 - 00000080 _____ C:\Users\Lilhomers\AppData\Local剜捯獫慴慇敭屳呇⁁屖湥楴汴浥湥湩潦 2015-06-02 15:40 - 2015-06-02 15:40 - 00007605 _____ C:\Users\Lilhomers\AppData\Local\Resmon.ResmonCfg 2015-06-02 15:14 - 2015-06-02 15:14 - 00000000 ____D C:\Users\Lilhomers\Documents\Road Redemption 2015-06-02 15:12 - 2015-06-02 15:12 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer 2015-06-02 15:12 - 2015-06-02 15:12 - 00000000 ____D C:\Program Files\Reference Assemblies 2015-06-02 15:12 - 2015-06-02 15:12 - 00000000 ____D C:\Program Files\MSBuild 2015-06-02 15:12 - 2015-06-02 15:12 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies 2015-06-02 15:12 - 2015-06-02 15:12 - 00000000 ____D C:\Program Files (x86)\MSBuild 2015-06-02 15:12 - 2013-08-03 06:48 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll 2015-06-02 15:12 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll 2015-06-02 13:42 - 2015-06-02 13:42 - 00000000 ____D C:\$WINDOWS.~BT 2015-06-02 13:35 - 2015-06-02 13:35 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server 2015-06-02 13:35 - 2015-06-02 13:35 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2015-06-02 11:42 - 2015-06-02 14:10 - 00000000 ____D C:\Windows\pss 2015-06-01 19:33 - 2015-06-01 19:33 - 00000000 ____D C:\ProgramData\Mozilla 2015-06-01 19:22 - 2015-06-16 12:26 - 00241664 ___SH C:\Users\Lilhomers\Desktop\Thumbs.db 2015-06-01 17:36 - 2015-06-01 17:36 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Gyazo 2015-06-01 17:19 - 2015-06-02 13:35 - 00000000 ____D C:\Windows\SysWOW64\directx 2015-06-01 15:22 - 2015-06-01 15:22 - 00000000 ____D C:\ProgramData\Mr Blade Designs 2015-06-01 15:21 - 2015-06-05 18:02 - 00000000 ____D C:\Program Files (x86)\numix 2015-06-01 13:31 - 2015-06-01 13:31 - 00000000 ____D C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8 2015-06-01 13:23 - 2015-06-01 14:13 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\UltraUXThemePatcher 2015-06-01 12:25 - 2015-06-02 14:10 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OpenIV 2015-06-01 12:25 - 2015-06-01 12:25 - 00001326 _____ C:\Users\Lilhomers\Desktop\OpenIV.lnk 2015-06-01 07:43 - 2015-06-01 07:43 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\GWX 2015-05-31 19:27 - 2015-05-31 19:27 - 00000000 ____D C:\Users\Lilhomers\Documents\Paradox Interactive 2015-05-30 20:51 - 2015-06-14 01:13 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job 2015-05-30 20:51 - 2015-05-30 20:51 - 00003864 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier 2015-05-30 20:49 - 2015-06-14 11:05 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Adobe 2015-05-30 17:03 - 2015-06-02 14:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron 2015-05-30 17:03 - 2015-05-30 17:03 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Chromium 2015-05-30 15:16 - 2015-06-16 22:18 - 00000000 ____D C:\Users\Lilhomers\Documents\My Cheat Tables 2015-05-30 14:57 - 2015-06-03 16:35 - 00000000 ____D C:\ProgramData\boost_interprocess 2015-05-30 11:22 - 2015-05-30 11:22 - 00000000 ____D C:\Users\Public\Documents\Tunngle 2015-05-30 11:22 - 2015-05-30 11:22 - 00000000 ____D C:\Users\Lilhomers\Documents\Tunngle 2015-05-30 11:22 - 2015-05-30 11:22 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Tunngle 2015-05-30 11:22 - 2015-05-30 11:22 - 00000000 ____D C:\ProgramData\Tunngle 2015-05-30 11:22 - 2015-05-30 11:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tunngle 2015-05-30 11:22 - 2009-09-16 07:02 - 00031232 _____ (Tunngle.net) C:\Windows\system32\Drivers\tap0901t.sys 2015-05-30 11:02 - 2015-05-30 11:02 - 00000000 ____D C:\Users\Lilhomers\Tracing 2015-05-30 11:00 - 2015-05-30 11:00 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Skype 2015-05-30 10:59 - 2015-06-18 21:20 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Skype 2015-05-30 10:59 - 2015-05-30 10:59 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-05-30 10:59 - 2015-05-30 10:59 - 00000000 ____D C:\ProgramData\Skype 2015-05-30 10:59 - 2015-05-30 10:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-05-30 07:46 - 2015-06-01 12:25 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\New Technology Studio 2015-05-30 07:46 - 2015-05-30 07:46 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\New Technology Studio 2015-05-30 07:42 - 2015-06-13 23:45 - 00035152 _____ C:\Windows\DirectX.log 2015-05-30 07:42 - 2015-06-10 18:09 - 00000000 ____D C:\Program Files\Rockstar Games 2015-05-30 07:42 - 2015-06-10 18:09 - 00000000 ____D C:\Program Files (x86)\Rockstar Games 2015-05-30 07:42 - 2015-05-30 07:42 - 00000000 ____D C:\Users\Lilhomers\Documents\Rockstar Games 2015-05-30 07:42 - 2015-05-30 07:42 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Rockstar Games 2015-05-30 07:42 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2015-05-30 07:05 - 2015-05-30 07:05 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\WinRAR 2015-05-30 06:05 - 2015-05-30 06:05 - 00000000 ____D C:\Windows\system32\appmgmt 2015-05-30 06:02 - 2015-05-30 06:02 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2015-05-30 06:02 - 2015-05-30 06:02 - 00000000 ____D C:\ProgramData\Intel 2015-05-30 06:02 - 2015-05-30 06:02 - 00000000 ____D C:\Program Files (x86)\Intel 2015-05-30 06:02 - 2000-01-01 02:00 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll 2015-05-30 06:02 - 2000-01-01 02:00 - 00100312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys 2015-05-30 06:02 - 2000-01-01 02:00 - 00016344 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll 2015-05-30 06:01 - 2015-05-31 13:13 - 00000000 ___HD C:\Program Files (x86)\Temp 2015-05-30 06:01 - 2015-05-30 06:01 - 00000000 ____H C:\ProgramData\DP45977C.lfl 2015-05-30 06:00 - 2015-05-30 06:00 - 00000000 ____D C:\ProgramData\SlimWare Utilities, Inc 2015-05-30 06:00 - 2015-05-30 06:00 - 00000000 ____D C:\Intel 2015-05-30 05:58 - 2015-05-30 05:58 - 00000000 ____D C:\Users\Public\Documents\Downloaded Installers 2015-05-30 05:58 - 2015-05-30 05:58 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\SlimWare Utilities Inc 2015-05-30 05:50 - 2015-05-30 06:02 - 00000000 ____D C:\Program Files\Intel 2015-05-30 05:49 - 2015-05-30 05:49 - 00000000 ____D C:\ProgramData\IntelDLM 2015-05-30 05:48 - 2015-05-30 05:48 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Intel 2015-05-30 05:40 - 2015-05-30 05:40 - 00000864 _____ C:\Users\Public\Desktop\网易云音乐.lnk 2015-05-30 05:40 - 2015-05-30 05:40 - 00000864 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\网易云音乐.lnk 2015-05-30 05:40 - 2015-05-30 05:40 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Netease 2015-05-30 05:40 - 2015-05-30 05:40 - 00000000 ____D C:\ProgramData\NetEaseWinDA 2015-05-30 05:40 - 2015-05-30 05:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\网易云音乐 2015-05-30 05:34 - 2015-05-31 13:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2015-05-30 05:34 - 2015-05-30 05:34 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll 2015-05-30 05:34 - 2015-05-30 05:34 - 00111616 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll 2015-05-30 05:34 - 2015-05-30 05:34 - 00051139 _____ C:\Windows\CMICNFGSTXII.INI.cfl 2015-05-30 05:34 - 2015-05-30 05:34 - 00001025 _____ C:\Windows\CMICNFGSTXII.INI.imi 2015-05-30 05:34 - 2015-05-30 05:34 - 00000964 _____ C:\Windows\system\CMICNFGSTXII.INI 2015-05-30 05:34 - 2015-05-30 05:34 - 00000137 _____ C:\Windows\system\Dlap.pfx 2015-05-30 05:34 - 2015-05-30 05:34 - 00000004 _____ C:\Windows\SysWOW64\ê¬Îw 2015-05-30 05:34 - 2015-05-30 05:34 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\ASUS 2015-05-30 05:34 - 2015-05-30 05:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS Essence STX II Audio Device 2015-05-30 05:34 - 2015-05-30 05:34 - 00000000 ____D C:\Program Files\ASUS Essence STX II Audio Device 2015-05-30 05:34 - 2015-05-30 05:34 - 00000000 ____D C:\Program Files (x86)\OpenAL 2015-05-30 05:34 - 2014-02-18 07:04 - 02736640 _____ (C-Media Inc) C:\Windows\system32\Drivers\STXII.sys 2015-05-30 05:34 - 2014-02-18 07:04 - 00315392 _____ (C-Media Electronics Inc.) C:\Windows\SysWOW64\CmiFltr_STXII.dll 2015-05-30 05:34 - 2014-02-18 07:04 - 00315392 _____ (C-Media Electronics Inc.) C:\Windows\system\CmiFltr_STXII.dll 2015-05-30 05:34 - 2014-02-18 07:04 - 00032768 _____ (C-Media Electronics Inc.) C:\Windows\system32\cmudaxp_STXII.dll 2015-05-30 05:34 - 2014-02-11 09:03 - 00000505 ____N C:\Windows\cmudaxp_STXII.ini 2015-05-30 05:34 - 2014-01-27 05:05 - 13463552 ____N (C-Media Corporation) C:\Windows\SysWOW64\CmiCnfgSTXII.dll 2015-05-30 05:34 - 2014-01-08 06:08 - 00465408 ____N (C-Media Electronics Inc.) C:\Windows\system32\cmasioSTXII64.dll 2015-05-30 05:34 - 2014-01-08 06:08 - 00303104 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\cmasioSTXII.dll 2015-05-30 05:34 - 2013-12-05 10:15 - 00005277 ____N C:\Windows\CMICNFGSTXII.INI.cfg 2015-05-30 05:34 - 2013-11-29 06:23 - 04650496 ____N C:\Windows\system32\CmiCnfgSTXII.cpl 2015-05-30 05:34 - 2013-11-25 06:01 - 00832000 ____N C:\Windows\system32\cmeauASUSSTX2.exe 2015-05-30 05:34 - 2013-11-22 05:35 - 00000058 ____N C:\Windows\system32\cmasioSTXII64.ini 2015-05-30 05:34 - 2013-11-22 05:35 - 00000054 ____N C:\Windows\SysWOW64\cmasioSTXII.ini 2015-05-30 05:34 - 2013-10-16 04:55 - 00143360 ____N C:\Windows\SysWOW64\VmixP8.dll 2015-05-30 05:34 - 2012-01-06 03:30 - 00212992 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\HsSrv2.dll 2015-05-30 05:34 - 2012-01-06 03:30 - 00212992 ____N (C-Media Electronics Inc.) C:\Windows\SysWOW64\HsSrv.dll 2015-05-30 05:34 - 2012-01-06 03:30 - 00122880 ____N (C-Media Electronics Inc.) C:\Windows\system\HsSrv642.dll 2015-05-30 05:34 - 2012-01-06 03:30 - 00122880 ____N (C-Media Electronics Inc.) C:\Windows\system\HsSrv64.dll 2015-05-30 05:34 - 2009-08-19 10:00 - 00359424 ____N C:\Windows\system32\CmiInstallResAll64.dll 2015-05-30 05:34 - 2008-07-11 09:04 - 00200704 ____N C:\Windows\SysWOW64\HsMgr.exe 2015-05-30 05:34 - 2008-07-11 09:03 - 00282112 ____N C:\Windows\system\HsMgr64.exe 2015-05-30 05:34 - 2007-12-13 11:12 - 00122880 ____N (CMedia Electronics Inc.) C:\Windows\SysWOW64\Cm_Oal.dll 2015-05-30 05:34 - 2007-12-13 11:12 - 00122880 ____N (CMedia Electronics Inc.) C:\Windows\system32\Cm_Oal.dll 2015-05-30 05:34 - 2006-10-05 23:45 - 00524768 ____R (Microsoft Corporation) C:\Windows\difxapi.dll 2015-05-30 05:34 - 2006-09-13 20:21 - 00200704 ____N (C-Media) C:\Windows\SysWOW64\Cmpaoxy.dll 2015-05-30 05:32 - 2014-11-21 06:06 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe.bak 2015-05-30 05:32 - 2014-11-21 06:06 - 00821696 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll.bak 2015-05-30 05:32 - 2014-11-21 06:06 - 00603648 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll.bak 2015-05-30 05:31 - 2015-05-30 05:31 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-05-30 05:31 - 2015-05-30 05:31 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Shark007 2015-05-30 05:31 - 2015-05-30 05:31 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Advanced 2015-05-30 05:31 - 2015-05-30 05:31 - 00000000 ____D C:\ProgramData\Shark007 2015-05-30 05:31 - 2015-05-30 05:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Shark007 Codecs 2015-05-30 05:31 - 2015-05-30 05:31 - 00000000 ____D C:\Program Files\Shark007 2015-05-30 05:31 - 2015-03-04 20:45 - 00260184 _____ C:\Windows\system32\unrar64.dll 2015-05-30 05:31 - 2015-02-28 12:22 - 03571200 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll 2015-05-30 05:31 - 2015-02-18 13:00 - 01929216 _____ (MPC-HC Team) C:\Windows\system32\VSFilter.dll 2015-05-30 05:31 - 2014-11-21 06:06 - 01478144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe.bak 2015-05-30 05:31 - 2014-11-21 06:06 - 00705008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll.bak 2015-05-30 05:31 - 2014-11-21 06:06 - 00484352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll.bak 2015-05-30 05:31 - 2013-04-06 03:26 - 01679360 _____ C:\Windows\SysWOW64\ac3filter.acm.new 2015-05-30 05:31 - 2013-04-06 00:27 - 02231296 _____ C:\Windows\system32\ac3filter.acm.new 2015-05-30 05:31 - 2013-04-06 00:27 - 02231296 _____ C:\Windows\system32\ac3filter.acm 2015-05-30 05:31 - 2013-04-06 00:27 - 00324608 _____ (IntelleSoft) C:\Windows\system32\BugTrap-x64.dll 2015-05-30 05:31 - 2009-08-11 21:22 - 00580096 _____ C:\Windows\system32\ac3filter.acm.old 2015-05-30 05:31 - 2009-01-23 01:51 - 00124909 _____ (Open Source Software community project) C:\Windows\system32\pthreadGC2.dll 2015-05-30 05:30 - 2015-05-30 05:31 - 00000000 ____D C:\ProgramData\Advanced 2015-05-30 05:28 - 2015-06-05 18:08 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Notepad++ 2015-05-30 05:28 - 2015-05-30 06:28 - 00000000 ____D C:\Program Files (x86)\Gyazo 2015-05-30 05:28 - 2015-05-30 05:28 - 00003762 _____ C:\Windows\System32\Tasks\GyazoUpdateTaskMachine 2015-05-30 05:28 - 2015-05-30 05:28 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++ 2015-05-30 05:28 - 2015-05-30 05:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++ 2015-05-30 05:28 - 2015-05-30 05:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo 2015-05-30 05:27 - 2015-05-30 05:27 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-05-30 05:27 - 2015-05-30 05:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-05-30 00:23 - 2015-05-30 00:23 - 00000000 ____D C:\Program Files\Common Files\Atheros 2015-05-30 00:18 - 2015-05-30 00:21 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Hero_Siege 2015-05-30 00:14 - 2015-05-30 00:14 - 00000000 ____D C:\SteamLibrary 2015-05-30 00:13 - 2015-05-30 00:13 - 01199175 _____ C:\Windows\unins001.exe 2015-05-30 00:13 - 2015-05-30 00:13 - 01198049 _____ C:\Windows\unins000.exe 2015-05-30 00:13 - 2015-05-30 00:13 - 00021131 _____ C:\Windows\unins001.dat 2015-05-30 00:13 - 2015-05-30 00:13 - 00010826 _____ C:\Windows\unins000.dat 2015-05-30 00:13 - 2015-05-30 00:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-05-30 00:13 - 2015-05-30 00:13 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-05-30 00:13 - 2015-05-30 00:13 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2015-05-30 00:13 - 2014-06-05 08:07 - 01177088 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\libeay32.dll 2015-05-30 00:13 - 2014-06-05 08:07 - 00271360 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\ssleay32.dll 2015-05-30 00:13 - 2014-06-05 08:07 - 00271360 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Windows\SysWOW64\libssl32.dll 2015-05-30 00:13 - 2014-06-01 19:53 - 00460104 _____ (AutoIt Team) C:\Windows\SysWOW64\autoitx3.dll 2015-05-30 00:13 - 2014-01-25 14:30 - 00131072 _____ (Sereby Corporation) C:\Windows\SysWOW64\AiORuntimes.dll 2015-05-30 00:13 - 2013-12-23 15:44 - 00163480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 01070232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomctl.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00660120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomct2.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00617896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00444328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshflxgd.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00416408 _____ (Microsoft Corporation ) C:\Windows\SysWOW64\comct332.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00279192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatgrd.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00259736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msflxgrd.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00253080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdatlst.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00222360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tabctl32.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00219288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\richtx32.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00218776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dblist32.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00212112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mci32.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00179352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmask32.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00170920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comct232.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00131728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msinet.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00130712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstdfmt.dll 2015-05-30 00:13 - 2013-12-20 01:48 - 00127640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswinsck.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00119960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscomm32.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00108696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msstkprp.dll 2015-05-30 00:13 - 2013-12-20 01:48 - 00104088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\picclp32.ocx 2015-05-30 00:13 - 2013-12-20 01:48 - 00084624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysinfo.ocx 2015-05-30 00:13 - 2013-08-31 21:40 - 03115385 _____ (Red Hat) C:\Windows\SysWOW64\cygwin1.dll 2015-05-30 00:13 - 2012-06-14 15:36 - 00107520 _____ C:\Windows\SysWOW64\zlib1.dll 2015-05-30 00:13 - 2012-04-03 17:11 - 00138752 _____ C:\Windows\SysWOW64\libpng15.dll 2015-05-30 00:13 - 2011-10-12 04:09 - 04033440 _____ (Intel Corporation) C:\Windows\SysWOW64\libmmd.dll 2015-05-30 00:13 - 2011-10-01 09:16 - 00445016 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll 2015-05-30 00:13 - 2011-10-01 09:16 - 00109144 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\openal32.dll 2015-05-30 00:13 - 2011-01-12 14:36 - 01054208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71u.dll 2015-05-30 00:13 - 2011-01-12 14:25 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71DEU.dll 2015-05-30 00:13 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ITA.dll 2015-05-30 00:13 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71FRA.dll 2015-05-30 00:13 - 2011-01-12 14:25 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ESP.dll 2015-05-30 00:13 - 2011-01-12 14:25 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71ENU.dll 2015-05-30 00:13 - 2011-01-12 14:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71KOR.dll 2015-05-30 00:13 - 2011-01-12 14:25 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71JPN.dll 2015-05-30 00:13 - 2011-01-12 14:25 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71CHT.dll 2015-05-30 00:13 - 2011-01-12 14:25 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71CHS.dll 2015-05-30 00:13 - 2011-01-12 14:19 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll 2015-05-30 00:13 - 2011-01-12 13:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl71.dll 2015-05-30 00:13 - 2010-06-27 18:44 - 00053248 _____ (Adobe Systems, Incorporated) C:\Windows\system\plugin.dll 2015-05-30 00:13 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2015-05-30 00:13 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2015-05-30 00:13 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2015-05-30 00:13 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2015-05-30 00:13 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2015-05-30 00:13 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2015-05-30 00:13 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2015-05-30 00:13 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2015-05-30 00:13 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2015-05-30 00:13 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2015-05-30 00:13 - 2010-03-18 21:21 - 00799568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdia100.dll 2015-05-30 00:13 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2015-05-30 00:13 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2015-05-30 00:13 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2015-05-30 00:13 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2015-05-30 00:13 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2015-05-30 00:13 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2015-05-30 00:13 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2015-05-30 00:13 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2015-05-30 00:13 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2015-05-30 00:13 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2015-05-30 00:13 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2015-05-30 00:13 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2015-05-30 00:13 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2015-05-30 00:13 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2015-05-30 00:13 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2015-05-30 00:13 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2015-05-30 00:13 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2015-05-30 00:13 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_42.dll 2015-05-30 00:13 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2015-05-30 00:13 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_42.dll 2015-05-30 00:13 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2015-05-30 00:13 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2015-05-30 00:13 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2015-05-30 00:13 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2015-05-30 00:13 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2015-05-30 00:13 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2015-05-30 00:13 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2015-05-30 00:13 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2015-05-30 00:13 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2015-05-30 00:13 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2015-05-30 00:13 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_41.dll 2015-05-30 00:13 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_41.dll 2015-05-30 00:13 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2015-05-30 00:13 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2015-05-30 00:13 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2015-05-30 00:13 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2015-05-30 00:13 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2015-05-30 00:13 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2015-05-30 00:13 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2015-05-30 00:13 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2015-05-30 00:13 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2015-05-30 00:13 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2015-05-30 00:13 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2015-05-30 00:13 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2015-05-30 00:13 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_40.dll 2015-05-30 00:13 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_40.dll 2015-05-30 00:13 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2015-05-30 00:13 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2015-05-30 00:13 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2015-05-30 00:13 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll |
19.06.2015, 10:05 | #4 |
| Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten Part2 FRST Code:
ATTFilter 2015-05-30 00:13 - 2008-08-26 07:40 - 00162304 _____ C:\Windows\SysWOW64\libpng13.dll 2015-05-30 00:13 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2015-05-30 00:13 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2015-05-30 00:13 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2015-05-30 00:13 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2015-05-30 00:13 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2015-05-30 00:13 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2015-05-30 00:13 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2015-05-30 00:13 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_39.dll 2015-05-30 00:13 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_39.dll 2015-05-30 00:13 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2015-05-30 00:13 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2015-05-30 00:13 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2015-05-30 00:13 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2015-05-30 00:13 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2015-05-30 00:13 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2015-05-30 00:13 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2015-05-30 00:13 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2015-05-30 00:13 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2015-05-30 00:13 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2015-05-30 00:13 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2015-05-30 00:13 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_38.dll 2015-05-30 00:13 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_38.dll 2015-05-30 00:13 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2015-05-30 00:13 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2015-05-30 00:13 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2015-05-30 00:13 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2015-05-30 00:13 - 2008-03-14 18:21 - 01008128 _____ (GnuWin32 <hxxp://gnuwin32.sourceforge.net>) C:\Windows\SysWOW64\libiconv2.dll 2015-05-30 00:13 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2015-05-30 00:13 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2015-05-30 00:13 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2015-05-30 00:13 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2015-05-30 00:13 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2015-05-30 00:13 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2015-05-30 00:13 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_37.dll 2015-05-30 00:13 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_37.dll 2015-05-30 00:13 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2015-05-30 00:13 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2015-05-30 00:13 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2015-05-30 00:13 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2015-05-30 00:13 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2015-05-30 00:13 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2015-05-30 00:13 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_2.dll 2015-05-30 00:13 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_2.dll 2015-05-30 00:13 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2015-05-30 00:13 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2015-05-30 00:13 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_36.dll 2015-05-30 00:13 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcompiler_36.dll 2015-05-30 00:13 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2015-05-30 00:13 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2015-05-30 00:13 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2015-05-30 00:13 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2015-05-30 00:13 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2015-05-30 00:13 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2015-05-30 00:13 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_35.dll 2015-05-30 00:13 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcompiler_35.dll 2015-05-30 00:13 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2015-05-30 00:13 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2015-05-30 00:13 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2015-05-30 00:13 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2015-05-30 00:13 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2015-05-30 00:13 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2015-05-30 00:13 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_34.dll 2015-05-30 00:13 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcompiler_34.dll 2015-05-30 00:13 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2015-05-30 00:13 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2015-05-30 00:13 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2015-05-30 00:13 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2015-05-30 00:13 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2015-05-30 00:13 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2015-05-30 00:13 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2015-05-30 00:13 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2015-05-30 00:13 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2015-05-30 00:13 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2015-05-30 00:13 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\d3dcompiler_33.dll 2015-05-30 00:13 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcompiler_33.dll 2015-05-30 00:13 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2015-05-30 00:13 - 2007-01-30 23:04 - 00339968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr70.dll 2015-05-30 00:13 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2015-05-30 00:13 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2015-05-30 00:13 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2015-05-30 00:13 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2015-05-30 00:13 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2015-05-30 00:13 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2015-05-30 00:13 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2015-05-30 00:13 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2015-05-30 00:13 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2015-05-30 00:13 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2015-05-30 00:13 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2015-05-30 00:13 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2015-05-30 00:13 - 2006-08-26 01:28 - 01017344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70u.dll 2015-05-30 00:13 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ITA.dll 2015-05-30 00:13 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70FRA.dll 2015-05-30 00:13 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ESP.dll 2015-05-30 00:13 - 2006-08-26 01:15 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70DEU.dll 2015-05-30 00:13 - 2006-08-26 01:15 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70ENU.dll 2015-05-30 00:13 - 2006-08-26 01:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70KOR.dll 2015-05-30 00:13 - 2006-08-26 01:15 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70JPN.dll 2015-05-30 00:13 - 2006-08-26 01:15 - 00045056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70CHT.dll 2015-05-30 00:13 - 2006-08-26 01:15 - 00040960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70CHS.dll 2015-05-30 00:13 - 2006-08-26 01:07 - 01024000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc70.dll 2015-05-30 00:13 - 2006-08-26 00:17 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atl70.dll 2015-05-30 00:13 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2015-05-30 00:13 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2015-05-30 00:13 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2015-05-30 00:13 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2015-05-30 00:13 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2015-05-30 00:13 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2015-05-30 00:13 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2015-05-30 00:13 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2015-05-30 00:13 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2015-05-30 00:13 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2015-05-30 00:13 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2015-05-30 00:13 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2015-05-30 00:13 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2015-05-30 00:13 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2015-05-30 00:13 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2015-05-30 00:13 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2015-05-30 00:13 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2015-05-30 00:13 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2015-05-30 00:13 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2015-05-30 00:13 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2015-05-30 00:13 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2015-05-30 00:13 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2015-05-30 00:13 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2015-05-30 00:13 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2015-05-30 00:13 - 2005-05-06 14:52 - 00103424 _____ (GNU <www.gnu.org>) C:\Windows\SysWOW64\libintl3.dll 2015-05-30 00:13 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2015-05-30 00:13 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2015-05-30 00:13 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2015-05-30 00:13 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2015-05-30 00:13 - 2005-01-20 20:25 - 00054784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvci70.dll 2015-05-30 00:13 - 2002-01-05 06:40 - 00487424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp70.dll 2015-05-30 00:13 - 1996-01-12 04:00 - 00935632 _____ (Microsoft Corporation) C:\Windows\system\vb40016.dll 2015-05-30 00:13 - 1996-01-12 04:00 - 00722192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vb40032.dll 2015-05-30 00:13 - 1994-11-17 14:00 - 00210944 _____ C:\Windows\system\msvcrt10.dll 2015-05-30 00:13 - 1993-05-11 20:00 - 00398416 _____ (Microsoft Corporation) C:\Windows\system\vbrun300.dll 2015-05-30 00:13 - 1992-10-21 01:00 - 00356992 _____ (Microsoft Corporation) C:\Windows\system\vbrun200.dll 2015-05-30 00:13 - 1991-05-10 02:00 - 00271264 _____ C:\Windows\system\vbrun100.dll 2015-05-30 00:12 - 2015-06-19 08:38 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-05-30 00:12 - 2015-06-19 07:52 - 00003772 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-05-30 00:12 - 2015-05-30 00:12 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll 2015-05-30 00:12 - 2015-05-30 00:12 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll 2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\Windows\SysWOW64\Adobe 2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\ProgramData\Sun 2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\ProgramData\Oracle 2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\Program Files\Java 2015-05-30 00:12 - 2015-05-30 00:12 - 00000000 ____D C:\Program Files (x86)\Java 2015-05-29 23:57 - 2015-06-12 11:13 - 00507068 _____ C:\Windows\system32\perfh012.dat 2015-05-29 23:57 - 2015-06-12 11:13 - 00135332 _____ C:\Windows\system32\perfc012.dat 2015-05-29 23:57 - 2015-05-29 23:57 - 00159486 _____ C:\Windows\system32\perfi012.dat 2015-05-29 23:57 - 2015-05-29 23:57 - 00033362 _____ C:\Windows\system32\perfd012.dat 2015-05-29 23:57 - 2015-05-29 23:57 - 00000000 ____D C:\Windows\SysWOW64\ko 2015-05-29 23:57 - 2015-05-29 23:57 - 00000000 ____D C:\Windows\system32\ko 2015-05-29 23:54 - 2013-08-21 23:59 - 00000468 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Messenger Center.lnk 2015-05-29 23:54 - 2013-08-21 23:59 - 00000468 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Player Center.lnk 2015-05-29 23:52 - 2015-05-29 23:52 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Steam 2015-05-29 23:51 - 2015-05-29 23:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2015-05-29 23:50 - 2015-05-29 22:58 - 00000000 ____D C:\Windows\Panther 2015-05-29 23:50 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2015-05-29 23:50 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2015-05-29 23:50 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2015-05-29 23:50 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2015-05-29 23:50 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2015-05-29 23:50 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2015-05-29 23:49 - 2015-06-19 08:21 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-05-29 23:49 - 2015-05-29 23:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-05-29 23:49 - 2015-05-29 23:49 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-05-29 23:49 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-05-29 23:49 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-05-29 23:49 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-05-29 23:48 - 2015-05-29 23:48 - 00000000 ____D C:\NVIDIA 2015-05-29 23:48 - 2015-05-12 08:27 - 17540416 _____ (NVIDIA Corporation) C:\Windows\system32\SET9EA7.tmp 2015-05-29 23:48 - 2015-05-12 08:27 - 15048816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\SETA5DC.tmp 2015-05-29 23:48 - 2015-05-12 08:27 - 12849056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\SETA279.tmp 2015-05-29 23:48 - 2015-05-12 08:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\SET695E.tmp 2015-05-29 23:45 - 2015-05-29 23:45 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\AviraSpeedup 2015-05-29 23:29 - 2015-03-20 05:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\compstui.dll 2015-05-29 23:29 - 2015-03-20 05:08 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\puiobj.dll 2015-05-29 23:29 - 2015-03-20 04:37 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\puiobj.dll 2015-05-29 23:29 - 2015-03-20 04:07 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll 2015-05-29 23:29 - 2015-03-02 03:43 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\rastapi.dll 2015-05-29 23:29 - 2015-03-02 03:21 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastapi.dll 2015-05-29 23:29 - 2015-01-06 05:01 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys 2015-05-29 23:29 - 2015-01-06 04:59 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys 2015-05-29 23:29 - 2015-01-06 03:12 - 00185856 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll 2015-05-29 23:29 - 2015-01-06 03:02 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll 2015-05-29 23:29 - 2014-11-15 21:05 - 00801584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll 2015-05-29 23:29 - 2014-11-15 08:29 - 00962216 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll 2015-05-29 23:29 - 2014-11-14 08:57 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll 2015-05-29 23:29 - 2014-11-14 07:03 - 00885760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll 2015-05-29 23:29 - 2014-11-10 20:06 - 02485056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2015-05-29 23:29 - 2014-11-10 20:06 - 00473408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2015-05-29 23:29 - 2014-11-10 20:06 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2015-05-29 23:29 - 2014-11-10 20:06 - 00136512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys 2015-05-29 23:29 - 2014-11-10 04:57 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys 2015-05-29 23:29 - 2014-11-10 03:37 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL 2015-05-29 23:29 - 2014-11-10 03:34 - 01084416 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL 2015-05-29 23:29 - 2014-11-10 03:26 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL 2015-05-29 23:29 - 2014-11-10 03:20 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll 2015-05-29 23:29 - 2014-11-10 03:09 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL 2015-05-29 23:29 - 2014-11-10 03:08 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll 2015-05-29 23:29 - 2014-11-10 03:06 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll 2015-05-29 23:29 - 2014-11-10 02:57 - 00624640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll 2015-05-29 23:29 - 2014-11-10 02:57 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll 2015-05-29 23:29 - 2014-11-08 06:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys 2015-05-29 23:29 - 2014-11-08 05:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys 2015-05-29 23:29 - 2014-11-08 05:56 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp 2015-05-29 23:29 - 2014-11-08 05:56 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll 2015-05-29 23:29 - 2014-11-08 05:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll 2015-05-29 23:29 - 2014-11-08 05:24 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll 2015-05-29 23:29 - 2014-11-08 05:13 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp 2015-05-29 23:29 - 2014-11-08 05:13 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll 2015-05-29 23:29 - 2014-11-08 05:13 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll 2015-05-29 23:29 - 2014-11-08 04:48 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll 2015-05-29 23:29 - 2014-11-08 04:38 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll 2015-05-29 23:29 - 2014-11-08 04:17 - 00143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll 2015-05-29 23:29 - 2014-11-08 04:03 - 00733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll 2015-05-29 23:29 - 2014-11-08 03:58 - 04837376 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll 2015-05-29 23:29 - 2014-11-08 03:49 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe 2015-05-29 23:29 - 2014-11-07 05:58 - 00952896 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll 2015-05-29 23:29 - 2014-11-07 05:20 - 00786120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll 2015-05-29 23:29 - 2014-11-05 04:12 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL 2015-05-29 23:29 - 2014-11-05 04:12 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL 2015-05-29 23:29 - 2014-11-05 04:06 - 00514048 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll 2015-05-29 23:29 - 2014-11-05 03:44 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2015-05-29 23:29 - 2014-11-05 03:43 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2015-05-29 23:29 - 2014-11-05 03:41 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll 2015-05-29 23:29 - 2014-11-05 03:39 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL 2015-05-29 23:29 - 2014-11-05 03:39 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL 2015-05-29 23:29 - 2014-11-05 03:33 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll 2015-05-29 23:29 - 2014-11-05 03:21 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll 2015-05-29 23:29 - 2014-11-05 03:20 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll 2015-05-29 23:29 - 2014-11-05 03:18 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll 2015-05-29 23:29 - 2014-11-05 03:14 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll 2015-05-29 23:29 - 2014-11-05 03:06 - 00555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll 2015-05-29 23:29 - 2014-11-04 21:33 - 00058176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys 2015-05-29 23:29 - 2014-11-04 21:25 - 00059712 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys 2015-05-29 23:29 - 2014-11-04 21:25 - 00051008 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys 2015-05-29 23:29 - 2014-11-04 08:55 - 00026112 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys 2015-05-29 23:29 - 2014-11-04 08:54 - 00108544 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys 2015-05-29 23:29 - 2014-11-04 08:54 - 00032256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys 2015-05-29 23:29 - 2014-11-04 08:54 - 00030208 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys 2015-05-29 23:29 - 2014-11-04 08:27 - 00128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe 2015-05-29 23:29 - 2014-11-04 07:01 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe 2015-05-29 23:29 - 2014-10-31 02:51 - 18823168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll 2015-05-29 23:29 - 2014-10-31 02:10 - 15158784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll 2015-05-29 23:29 - 2014-10-29 05:05 - 00551232 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys 2015-05-29 23:29 - 2014-10-29 03:55 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll 2015-05-29 23:29 - 2014-10-29 03:13 - 00169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll 2015-05-29 23:29 - 2014-10-21 03:59 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll 2015-05-29 23:29 - 2014-10-21 03:19 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll 2015-05-29 23:29 - 2014-10-21 02:50 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll 2015-05-29 23:29 - 2014-10-21 02:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll 2015-05-29 23:29 - 2014-10-21 02:31 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll 2015-05-29 23:29 - 2014-10-21 02:30 - 01454080 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe 2015-05-29 23:29 - 2014-10-21 02:20 - 01142272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll 2015-05-29 23:29 - 2014-10-17 06:56 - 00039744 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys 2015-05-29 23:29 - 2014-10-17 05:35 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys 2015-05-29 23:29 - 2014-04-16 01:35 - 00028352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aspnet_counters.dll 2015-05-29 23:29 - 2014-04-16 01:34 - 00029888 _____ (Microsoft Corporation) C:\Windows\system32\aspnet_counters.dll 2015-05-29 23:28 - 2015-04-16 08:17 - 00325464 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS 2015-05-29 23:28 - 2015-04-14 00:37 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\authz.dll 2015-05-29 23:28 - 2015-04-14 00:34 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authz.dll 2015-05-29 23:28 - 2015-04-10 02:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll 2015-05-29 23:28 - 2015-04-10 02:17 - 01018880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll 2015-05-29 23:28 - 2015-04-09 00:41 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rgb9rast.dll 2015-05-29 23:28 - 2015-04-02 00:42 - 03097600 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll 2015-05-29 23:28 - 2015-04-02 00:30 - 02483712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll 2015-05-29 23:28 - 2015-04-01 06:21 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe 2015-05-29 23:28 - 2015-04-01 06:18 - 00468480 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll 2015-05-29 23:28 - 2015-04-01 06:17 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll 2015-05-29 23:28 - 2015-04-01 06:08 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll 2015-05-29 23:28 - 2015-04-01 05:46 - 03633664 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll 2015-05-29 23:28 - 2015-04-01 05:17 - 02551808 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll 2015-05-29 23:28 - 2015-04-01 05:17 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe 2015-05-29 23:28 - 2015-04-01 04:53 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll 2015-05-29 23:28 - 2015-04-01 04:53 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe 2015-05-29 23:28 - 2015-04-01 04:45 - 02749952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll 2015-05-29 23:28 - 2015-04-01 04:45 - 00699392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll 2015-05-29 23:28 - 2015-04-01 04:14 - 01920000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll 2015-05-29 23:28 - 2015-04-01 04:12 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe 2015-05-29 23:28 - 2014-11-17 22:17 - 00672984 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe 2015-05-29 23:28 - 2014-11-17 22:17 - 00273240 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe 2015-05-29 23:28 - 2014-11-14 08:54 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll 2015-05-29 23:28 - 2014-11-14 08:46 - 02171904 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll 2015-05-29 23:20 - 2015-06-10 16:16 - 00000000 ____D C:\Windows\system32\appraiser 2015-05-29 23:20 - 2015-06-05 18:10 - 00000000 ___SD C:\Windows\system32\GWX 2015-05-29 23:20 - 2015-05-29 23:20 - 00000000 ___SD C:\Windows\SysWOW64\GWX 2015-05-29 23:13 - 2015-06-10 08:13 - 00000000 ____D C:\Windows\system32\MRT 2015-05-29 23:13 - 2015-06-10 08:11 - 140135120 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-05-29 23:10 - 2015-03-17 19:26 - 00467776 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS 2015-05-29 23:10 - 2015-03-09 04:02 - 00057856 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys 2015-05-29 23:10 - 2015-02-04 01:58 - 00264000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2015-05-29 23:10 - 2015-02-04 01:58 - 00114496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdNisDrv.sys 2015-05-29 23:10 - 2015-02-04 01:58 - 00044024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2015-05-29 23:10 - 2015-02-03 01:53 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\winshfhc.dll 2015-05-29 23:10 - 2015-02-03 01:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winshfhc.dll 2015-05-29 23:10 - 2015-01-27 05:44 - 00933888 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe 2015-05-29 23:10 - 2015-01-24 03:51 - 00816128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\calc.exe 2015-05-29 23:10 - 2015-01-23 09:17 - 00723072 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll 2015-05-29 23:10 - 2015-01-23 07:02 - 00560392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll 2015-05-29 23:10 - 2014-11-10 04:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupStatusProvider.dll 2015-05-29 23:10 - 2014-11-10 03:51 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceSetupStatusProvider.dll 2015-05-29 23:10 - 2014-10-31 01:39 - 01970432 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2015-05-29 23:10 - 2014-10-31 01:38 - 01612992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2015-05-29 23:10 - 2014-10-31 00:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2015-05-29 23:10 - 2014-10-31 00:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2015-05-29 23:09 - 2015-05-01 01:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-05-29 23:09 - 2015-05-01 00:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-05-29 23:09 - 2015-04-10 03:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-05-29 23:09 - 2015-04-10 02:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-05-29 23:09 - 2015-04-10 02:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll 2015-05-29 23:09 - 2015-04-10 02:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2015-05-29 23:09 - 2015-04-10 02:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll 2015-05-29 23:09 - 2015-04-09 00:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-05-29 23:09 - 2015-04-03 02:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll 2015-05-29 23:09 - 2015-04-03 02:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll 2015-05-29 23:09 - 2015-04-02 00:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll 2015-05-29 23:09 - 2015-04-02 00:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll 2015-05-29 23:09 - 2015-04-01 05:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll 2015-05-29 23:09 - 2015-04-01 04:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll 2015-05-29 23:09 - 2015-03-23 23:59 - 07476032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-05-29 23:09 - 2015-03-23 23:59 - 01733952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-05-29 23:09 - 2015-03-23 23:59 - 00360480 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-05-29 23:09 - 2015-03-23 23:58 - 01498872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-05-29 23:09 - 2015-03-23 23:45 - 00257216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sechost.dll 2015-05-29 23:09 - 2015-03-20 06:12 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll 2015-05-29 23:09 - 2015-03-20 06:10 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-05-29 23:09 - 2015-03-20 06:10 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-05-29 23:09 - 2015-03-20 05:17 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-05-29 23:09 - 2015-03-20 04:41 - 00369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tracerpt.exe 2015-05-29 23:09 - 2015-03-20 04:40 - 00950784 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-05-29 23:09 - 2015-03-20 04:16 - 00749568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll 2015-05-29 23:09 - 2015-03-20 03:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys 2015-05-29 23:09 - 2015-03-14 10:20 - 01385256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll 2015-05-29 23:09 - 2015-03-14 10:13 - 01124352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll 2015-05-29 23:09 - 2015-03-13 04:58 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll 2015-05-29 23:09 - 2015-03-13 04:37 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll 2015-05-29 23:09 - 2015-03-13 04:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys 2015-05-29 23:09 - 2015-03-13 03:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll 2015-05-29 23:09 - 2015-03-13 02:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll 2015-05-29 23:09 - 2015-03-06 04:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll 2015-05-29 23:09 - 2015-03-04 03:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll 2015-05-29 23:09 - 2015-03-04 03:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll 2015-05-29 23:09 - 2015-02-21 01:49 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll 2015-05-29 23:09 - 2015-02-20 05:03 - 00358912 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-05-29 23:09 - 2015-02-20 04:58 - 00044032 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-05-29 23:09 - 2015-02-20 04:20 - 00301056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2015-05-29 23:09 - 2015-02-20 04:15 - 00035840 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2015-05-29 23:09 - 2015-02-05 22:24 - 01113920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys 2015-05-29 23:09 - 2015-02-03 02:03 - 03551744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_47.dll 2015-05-29 23:09 - 2015-02-03 02:02 - 04298240 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_47.dll 2015-05-29 23:09 - 2015-01-30 05:01 - 00097792 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys 2015-05-29 23:09 - 2015-01-30 05:00 - 00167424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys 2015-05-29 23:09 - 2015-01-30 04:03 - 01488896 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll 2015-05-29 23:09 - 2015-01-30 04:03 - 01464832 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll 2015-05-29 23:09 - 2015-01-30 03:44 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll 2015-05-29 23:09 - 2015-01-30 03:42 - 01204224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll 2015-05-29 23:09 - 2015-01-30 03:29 - 00035840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\atlthunk.dll 2015-05-29 23:09 - 2015-01-30 02:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll 2015-05-29 23:09 - 2015-01-29 03:58 - 00347136 _____ (Microsoft Corporation) C:\Windows\system32\photowiz.dll 2015-05-29 23:09 - 2015-01-29 03:29 - 00290816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\photowiz.dll 2015-05-29 23:09 - 2015-01-29 03:04 - 00864256 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2015-05-29 23:09 - 2014-12-19 10:57 - 00788680 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2015-05-29 23:09 - 2014-12-19 10:25 - 00602776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2015-05-29 23:09 - 2014-12-19 08:26 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys 2015-05-29 23:09 - 2014-12-13 23:28 - 00513488 _____ C:\Windows\SysWOW64\locale.nls 2015-05-29 23:09 - 2014-12-13 23:28 - 00513488 _____ C:\Windows\system32\locale.nls 2015-05-29 23:09 - 2014-12-12 04:04 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe 2015-05-29 23:09 - 2014-12-09 05:45 - 00393728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll 2015-05-29 23:09 - 2014-12-09 03:56 - 00538624 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll 2015-05-29 23:09 - 2014-12-09 03:50 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll 2015-05-29 23:09 - 2014-11-14 08:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll 2015-05-29 23:09 - 2014-10-29 03:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-05-29 23:09 - 2014-10-29 03:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-05-29 23:09 - 2014-10-29 03:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-05-29 23:09 - 2014-10-29 03:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-05-29 23:09 - 2014-10-29 03:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-05-29 23:09 - 2014-10-29 03:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-05-29 23:08 - 2015-05-29 23:08 - 00000000 ___HD C:\Windows\system32\CanonIJ Uninstaller Information 2015-05-29 23:08 - 2015-05-29 23:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG5200 series 2015-05-29 23:08 - 2015-04-21 18:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2015-05-29 23:08 - 2015-04-21 17:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-05-29 23:08 - 2015-04-21 17:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2015-05-29 23:08 - 2015-03-30 07:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2015-05-29 23:08 - 2015-03-27 05:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2015-05-29 23:08 - 2015-03-27 04:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll 2015-05-29 23:08 - 2015-03-27 04:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-05-29 23:08 - 2015-03-13 06:03 - 00239424 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys 2015-05-29 23:08 - 2015-03-13 06:03 - 00154432 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys 2015-05-29 23:08 - 2015-03-11 03:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe 2015-05-29 23:08 - 2015-03-11 03:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe 2015-05-29 23:08 - 2015-03-06 05:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll 2015-05-29 23:08 - 2015-03-06 04:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll 2015-05-29 23:08 - 2015-03-04 12:25 - 00377152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\clfs.sys 2015-05-29 23:08 - 2015-03-04 05:04 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll 2015-05-29 23:08 - 2015-03-04 04:19 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll 2015-05-29 23:08 - 2015-02-24 10:32 - 00991552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys 2015-05-29 23:08 - 2015-02-20 04:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-05-29 23:08 - 2015-02-20 04:06 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-05-29 23:08 - 2015-02-18 01:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll 2015-05-29 23:08 - 2015-02-12 19:40 - 22291584 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-05-29 23:08 - 2015-02-12 19:34 - 19731824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-05-29 23:08 - 2015-02-08 01:57 - 01090048 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll 2015-05-29 23:08 - 2015-02-08 01:49 - 00791040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll 2015-05-29 23:08 - 2015-01-31 01:20 - 00203264 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll 2015-05-29 23:08 - 2015-01-30 04:02 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll 2015-05-29 23:08 - 2015-01-30 03:40 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll 2015-05-29 23:08 - 2015-01-30 03:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll 2015-05-29 23:08 - 2015-01-30 03:24 - 00339456 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll 2015-05-29 23:08 - 2015-01-30 03:24 - 00250880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll 2015-05-29 23:08 - 2015-01-30 03:16 - 00266752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll 2015-05-29 23:08 - 2015-01-30 03:08 - 00346112 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll 2015-05-29 23:08 - 2015-01-30 03:06 - 00278016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll 2015-05-29 23:08 - 2015-01-29 20:45 - 01763352 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2015-05-29 23:08 - 2015-01-29 20:34 - 01488040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2015-05-29 23:08 - 2015-01-29 03:11 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2015-05-29 23:08 - 2015-01-29 03:00 - 00210944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll 2015-05-29 23:08 - 2015-01-29 02:59 - 02773504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2015-05-29 23:08 - 2015-01-29 02:55 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2015-05-29 23:08 - 2015-01-29 02:50 - 00811008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll 2015-05-29 23:08 - 2015-01-29 02:49 - 02459136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll 2015-05-29 23:08 - 2015-01-28 04:24 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\StorageContextHandler.dll 2015-05-29 23:08 - 2015-01-28 03:47 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StorageContextHandler.dll 2015-05-29 23:08 - 2015-01-28 03:31 - 00402432 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2015-05-29 23:08 - 2015-01-28 03:11 - 00357376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2015-05-29 23:08 - 2015-01-28 01:47 - 02501368 _____ (Microsoft Corporation) C:\Windows\explorer.exe 2015-05-29 23:08 - 2015-01-28 01:41 - 02207488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe 2015-05-29 23:08 - 2015-01-27 06:22 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll 2015-05-29 23:08 - 2015-01-27 04:11 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2015-05-29 23:08 - 2015-01-16 00:43 - 00177984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-05-29 23:08 - 2015-01-12 04:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-05-29 23:08 - 2015-01-12 03:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-05-29 23:08 - 2014-12-11 07:36 - 00046456 _____ (Microsoft Corporation) C:\Windows\system32\LockScreenContentServer.exe 2015-05-29 23:08 - 2014-12-08 21:42 - 00535640 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll 2015-05-29 23:08 - 2014-12-08 21:42 - 00531616 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll 2015-05-29 23:08 - 2014-12-08 21:42 - 00448792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll 2015-05-29 23:08 - 2014-12-08 21:42 - 00413248 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll 2015-05-29 23:08 - 2014-12-08 21:42 - 00372408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll 2015-05-29 23:08 - 2014-12-08 21:42 - 00108944 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2015-05-29 23:08 - 2014-12-08 21:42 - 00038264 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe 2015-05-29 23:08 - 2014-12-08 21:42 - 00033584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe 2015-05-29 23:08 - 2014-12-06 05:17 - 00360448 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll 2015-05-29 23:08 - 2014-12-06 03:41 - 00391680 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll 2015-05-29 23:08 - 2014-12-06 03:35 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2015-05-29 23:08 - 2014-11-10 01:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-05-29 23:08 - 2014-11-10 01:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-05-29 23:08 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll 2015-05-29 23:08 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll 2015-05-29 23:07 - 2015-05-29 23:07 - 00000000 ___HD C:\ProgramData\CanonBJ 2015-05-29 23:07 - 2010-08-25 05:00 - 00361472 _____ (CANON INC.) C:\Windows\system32\CNMLMAE.DLL 2015-05-29 23:06 - 2015-06-02 14:10 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Mozilla 2015-05-29 23:04 - 2015-06-17 20:08 - 00000000 ____D C:\ProgramData\Package Cache 2015-05-29 23:04 - 2015-06-03 12:26 - 00000000 ____D C:\Program Files (x86)\Avira 2015-05-29 23:03 - 2015-06-19 08:19 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3862967198-3418230011-351970294-1001 2015-05-29 23:03 - 2015-05-29 23:03 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf 2015-05-29 23:03 - 2015-05-29 23:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-05-29 23:02 - 2015-06-19 09:07 - 00001134 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-29 23:02 - 2015-06-19 07:34 - 00001130 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-29 23:02 - 2015-05-29 23:03 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Google 2015-05-29 23:02 - 2015-05-29 23:02 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-05-29 23:02 - 2015-05-29 23:02 - 00003870 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-05-29 23:02 - 2015-05-29 23:02 - 00000000 ____D C:\Program Files (x86)\Google 2015-05-29 23:01 - 2015-06-17 20:09 - 00000000 __SHD C:\Users\Lilhomers\AppData\Local\EmieUserList 2015-05-29 23:01 - 2015-06-17 20:09 - 00000000 __SHD C:\Users\Lilhomers\AppData\Local\EmieSiteList 2015-05-29 23:01 - 2015-06-17 20:09 - 00000000 __SHD C:\Users\Lilhomers\AppData\Local\EmieBrowserModeList 2015-05-29 23:01 - 2015-05-29 23:01 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Macromedia 2015-05-29 22:58 - 2015-06-19 09:12 - 00000000 ____D C:\Users\Lilhomers 2015-05-29 22:58 - 2015-06-05 18:10 - 00000000 ___RD C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-29 22:58 - 2015-06-03 16:35 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\VirtualStore 2015-05-29 22:58 - 2015-05-29 22:58 - 00001450 _____ C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-05-29 22:58 - 2015-05-29 22:58 - 00000020 ___SH C:\Users\Lilhomers\ntuser.ini 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Vorlagen 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Startmenü 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Netzwerkumgebung 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Lokale Einstellungen 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Eigene Dateien 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Druckumgebung 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Documents\Eigene Musik 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Documents\Eigene Bilder 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\AppData\Local\Verlauf 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\AppData\Local\Anwendungsdaten 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 _SHDL C:\Users\Lilhomers\Anwendungsdaten 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Adobe 2015-05-29 22:58 - 2015-05-29 22:58 - 00000000 ____D C:\Users\Lilhomers\AppData\Local\Packages 2015-05-29 22:58 - 2014-11-21 13:08 - 00000000 ___RD C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-29 22:58 - 2014-11-21 13:08 - 00000000 ___RD C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility 2015-05-29 22:58 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk 2015-05-29 22:58 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk 2015-05-29 22:58 - 2013-08-22 17:36 - 00000000 ____D C:\Users\Lilhomers\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance 2015-05-29 22:55 - 2015-03-14 03:56 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-05-29 22:55 - 2015-03-14 03:51 - 00015360 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll 2015-05-29 22:55 - 2015-03-14 02:09 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll 2015-05-29 22:55 - 2014-10-18 08:50 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll 2015-05-29 22:54 - 2015-06-19 08:50 - 01910076 _____ C:\Windows\WindowsUpdate.log 2015-05-29 22:54 - 2015-05-29 22:54 - 00000000 ____D C:\Windows\CSC 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Vorlagen 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Startmenü 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Eigene Dateien 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Druckumgebung 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Programme 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\ProgramData\Vorlagen 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\ProgramData\Startmenü 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\ProgramData\Dokumente 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien 2015-05-29 22:52 - 2015-05-29 22:52 - 00000000 _SHDL C:\Dokumente und Einstellungen 2015-05-29 22:51 - 2015-06-02 13:40 - 00000000 __SHD C:\Recovery ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-19 09:02 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sru 2015-06-18 01:33 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp 2015-06-17 17:03 - 2013-08-22 16:46 - 00049884 _____ C:\Windows\setupact.log 2015-06-12 12:37 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache 2015-06-12 11:13 - 2014-11-21 05:35 - 02419892 _____ C:\Windows\system32\PerfStringBackup.INI 2015-06-12 11:13 - 2014-11-21 04:45 - 00764340 _____ C:\Windows\system32\perfh007.dat 2015-06-12 11:13 - 2014-11-21 04:45 - 00159160 _____ C:\Windows\system32\perfc007.dat 2015-06-12 11:07 - 2014-11-20 20:24 - 00550000 _____ C:\Windows\PFRO.log 2015-06-12 11:07 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\MediaViewer 2015-06-12 11:07 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-06-11 09:35 - 2013-08-22 17:36 - 00000000 __RHD C:\Users\Public\Libraries 2015-06-10 16:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\PolicyDefinitions 2015-06-10 16:17 - 2013-08-22 16:44 - 00338104 _____ C:\Windows\system32\FNTCACHE.DAT 2015-06-10 16:16 - 2014-11-21 13:07 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-06-10 16:16 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\security 2015-06-08 11:22 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI 2015-06-05 18:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore 2015-06-05 18:10 - 2014-11-21 05:13 - 00000000 ____D C:\Windows\ShellNew 2015-06-05 18:10 - 2014-11-21 05:13 - 00000000 ____D C:\Program Files\Windows Journal 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 __RSD C:\Windows\Media 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ImmersiveControlPanel 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\ras 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\zh-HK 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\uk-UA 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\tr-TR 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\th-TH 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sl-SI 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sk-SK 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\ro-RO 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\ras 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\lv-LV 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\lt-LT 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\hr-HR 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\he-IL 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\et-EE 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\en-GB 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\bg-BG 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\ar-SA 2015-06-05 18:10 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Globalization 2015-06-05 18:10 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Sysprep 2015-06-05 18:09 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\registration 2015-06-05 18:08 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Resources 2015-06-03 18:18 - 2014-11-21 13:15 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-06-03 18:18 - 2014-11-21 13:15 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-06-03 16:33 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\Help 2015-06-03 12:38 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\ELAM 2015-06-02 15:12 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\MUI 2015-06-02 15:12 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\MUI 2015-06-01 14:14 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\DesktopTileResources 2015-06-01 08:48 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\LiveKernelReports 2015-05-31 13:13 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF 2015-05-30 05:34 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\System 2015-05-30 01:11 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppCompat 2015-05-30 00:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness 2015-05-30 00:12 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Macromed 2015-05-30 00:12 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared 2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\SysWOW64\winrm 2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\SysWOW64\WCN 2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\SysWOW64\slmgr 2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\SysWOW64\Printing_Admin_Scripts 2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\system32\winrm 2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\system32\WCN 2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\system32\slmgr 2015-05-29 23:57 - 2014-11-21 04:45 - 00000000 ____D C:\Windows\system32\Printing_Admin_Scripts 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ___SD C:\Windows\system32\dsc 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\Com 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\SystemResetPlatform 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\migwiz 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Com 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\IME 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\FileManager 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Photo Viewer 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer 2015-05-29 23:57 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender 2015-05-29 23:57 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\oobe 2015-05-29 23:57 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\SysWOW64\Dism 2015-05-29 23:57 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\oobe 2015-05-29 23:57 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\Dism 2015-05-29 23:57 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\servicing 2015-05-29 23:49 - 2013-08-22 17:36 - 00262144 _____ C:\Windows\system32\config\BCD-Template 2015-05-29 23:36 - 2013-08-22 17:36 - 00000000 ___RD C:\Windows\ToastData 2015-05-29 23:36 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\SysWOW64\setup 2015-05-29 23:36 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\setup 2015-05-29 23:36 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI(644) 2015-05-29 23:36 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI(367) 2015-05-29 23:36 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI(1908) 2015-05-29 23:20 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-29 23:20 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2015-05-29 23:20 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-29 23:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sr-Latn-RS 2015-05-29 23:20 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\sr-Latn-CS 2015-05-29 22:55 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\system32\AdvancedInstallers 2015-05-29 22:52 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows NT 2015-05-29 22:52 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default 2015-05-29 22:51 - 2013-08-22 17:37 - 00002988 _____ C:\Windows\DtcInstall.log 2015-05-29 22:51 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\Recovery ==================== Files in the root of some directories ======= 2015-06-02 15:40 - 2015-06-02 15:40 - 0007605 _____ () C:\Users\Lilhomers\AppData\Local\Resmon.ResmonCfg 2015-05-30 06:01 - 2015-05-30 06:01 - 0000000 ____H () C:\ProgramData\DP45977C.lfl ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-06-16 12:44 ==================== End of log ============================ Code:
ATTFilter scan result of Farbar Recovery Scan Tool (x64) Version:13-06-2015 Ran by Lilhomers at 2015-06-19 09:14:16 Running from C:\Users\Lilhomers\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-3862967198-3418230011-351970294-500 - Administrator - Disabled) Gast (S-1-5-21-3862967198-3418230011-351970294-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3862967198-3418230011-351970294-1003 - Limited - Enabled) Lilhomers (S-1-5-21-3862967198-3418230011-351970294-1001 - Administrator - Enabled) => C:\Users\Lilhomers ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.160 - Adobe Systems Incorporated) Adobe Flash Player 18 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 18.0.0.160 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\{0E3C52E0-B4F1-4D1E-B172-E390813BD9FE}) (Version: 12.1.8.158 - Adobe Systems, Inc) Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.8 - Sereby Corporation) ASUS Essence STX II Audio Device (HKLM-x32\...\{1A01B996-F7F7-473C-9EA4-B22801713A83}) (Version: - ASUSTek Computer Inc.) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software) Battlefield: Bad Company 2 (HKLM-x32\...\Steam App 24960) (Version: - DICE) Canon MG5200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series) (Version: - ) CPUID CPU-Z 1.72.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation) DiskBoss 5.7.14 (HKLM-x32\...\DiskBoss) (Version: 5.7.14 - Flexense Computing Systems Ltd.) Europa Universalis IV (HKLM-x32\...\Steam App 236850) (Version: - Paradox Development Studio) Freemake Video Converter Version 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.124 - Google Inc.) Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North) Gyazo 2.4 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.) Hero Siege (HKLM-x32\...\Steam App 269210) (Version: - Elias Viglione) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.27 - Intel(R) Corporation) Hidden Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) LIMBO (HKLM-x32\...\Steam App 48000) (Version: - Playdead) Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation) Microsoft Office Excel Viewer (HKLM-x32\...\{95120000-003F-0407-0000-0000000FF1CE}) (Version: 12.0.6334.5000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{3c3aafc8-d898-43ec-998f-965ffdae065a}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) MSI Afterburner 4.1.1 (HKLM-x32\...\Afterburner) (Version: 4.1.1 - MSI Co., LTD) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.8.2 - Notepad++ Team) NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA 3D Vision Treiber 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.06 - NVIDIA Corporation) NVIDIA GeForce Experience 2.4.5.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.28 - NVIDIA Corporation) NVIDIA Grafiktreiber 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) ORION: Prelude (HKLM-x32\...\Steam App 104900) (Version: - Spiral Game Studios) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.988 - Even Balance, Inc.) RivaTuner Statistics Server 6.3.0 (HKLM-x32\...\RTSS) (Version: 6.3.0 - Unwinder) Road Redemption (HKLM-x32\...\Steam App 300380) (Version: - Dark Seas Interactive) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.0 - Rockstar Games) Rust (HKLM-x32\...\Steam App 252490) (Version: - Facepunch Studios) Saints Row IV (HKLM-x32\...\Steam App 206420) (Version: - Deep Silver Volition) Shark007 Advanced Codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 5.2.5 - Shark007) SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.5.28 - NVIDIA Corporation) Hidden Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.) SRWare Iron Version SRWare Iron 42.2250.1 (HKLM-x32\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: SRWare Iron 42.2250.1 - SRWare) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) The Forest (HKLM-x32\...\Steam App 242760) (Version: - Endnight Games Ltd) The Long Dark (HKLM-x32\...\Steam App 305620) (Version: - Hinterland Studio Inc.) Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.2 - Tunngle.net GmbH) Update for Korean Microsoft IME Standard Dictionary (HKLM\...\{75A54180-CA5E-47B8-AFBB-29337B976B21}) (Version: 16.0.662.1 - Microsoft Corporation) WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) x64 Components v5.2.5 (HKLM\...\Advanced x64Components_is1) (Version: 5.2.5 - Shark007) 网易云音乐 (HKLM-x32\...\网易云音乐) (Version: 1.7.0.89635 - 网易公司) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 15-06-2015 09:59:37 Geplanter Prüfpunkt 18-06-2015 00:00:53 Microsoft Office Excel Viewer wird installiert ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {3159DA06-64E2-48A2-8686-00E9002544F2} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattel\DiagTrackRunner.exe [2015-03-16] (Microsoft Corporation) Task: {420B6DB7-5AE1-4A08-B883-02DE47578D04} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-19] (Adobe Systems Incorporated) Task: {54AAFBA9-8746-4DEC-A923-7520443B3F8B} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2015-04-30] () Task: {7F1A023F-FB13-4909-AD54-731172887BD5} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation) Task: {9381E485-9BC1-40CE-9185-63A90E2DD08A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-06-10] (Microsoft Corporation) Task: {A1E1EE74-6A8D-43F4-B7F1-8E7054256233} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation) Task: {A692DE34-F8E7-45C6-9202-1DBD5E9F07CC} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks Task: {AC914350-FB96-470D-BCA2-60C40B0C8294} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_188_pepper.exe Task: {B3DCFACB-4683-4E7F-8AD7-212C244C881E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.) Task: {B595124F-C2EF-4F8D-92FC-0EBD6A87A64A} - System32\Tasks\avast! Emergency Update => J:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.) Task: {B5F56682-641E-4361-BB6C-8B733F8D9691} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation) Task: {D04E527A-A101-438D-A009-C8986211ABFB} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation) Task: {DFB33E0D-4D50-4AD7-A691-2E4B9F74C8E0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-29] (Google Inc.) Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_17_0_0_188_pepper.exe Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-06-13 23:46 - 2015-06-13 23:54 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2015-06-13 23:46 - 2015-06-18 19:16 - 00282296 _____ () C:\Windows\SysWOW64\PnkBstrB.exe 2015-06-03 16:33 - 2015-05-28 06:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-06-04 11:49 - 2015-06-04 11:49 - 00118784 _____ () J:\Program Files (x86)\DiskBoss\bin\diskbsa.exe 2015-06-03 12:45 - 2015-06-03 12:45 - 00104400 _____ () J:\Program Files\AVAST Software\Avast\log.dll 2015-06-03 12:45 - 2015-06-03 12:45 - 00081728 _____ () J:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-06-11 22:13 - 2015-06-11 22:13 - 02954752 _____ () J:\Program Files\AVAST Software\Avast\defs\15061102\algo.dll 2015-06-18 22:04 - 2015-06-18 22:04 - 02952704 _____ () J:\Program Files\AVAST Software\Avast\defs\15061801\algo.dll 2015-06-03 16:34 - 2015-05-28 09:04 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-06-03 12:45 - 2015-06-03 12:45 - 40540672 _____ () J:\Program Files\AVAST Software\Avast\libcef.dll 2015-06-04 11:41 - 2015-06-04 11:41 - 02797568 _____ () J:\Program Files (x86)\DiskBoss\bin\libdbs.dll 2015-06-04 11:38 - 2015-06-04 11:38 - 00729088 _____ () J:\Program Files (x86)\DiskBoss\bin\libpal.dll 2015-04-30 08:15 - 2015-04-30 08:15 - 00182160 _____ () J:\Program Files (x86)\Netease\CloudMusic\ExceptionHandler.dll 2015-04-30 08:15 - 2015-04-30 08:15 - 08673168 _____ () J:\Program Files (x86)\Netease\CloudMusic\cloudmusic.dll 2015-04-30 08:15 - 2015-04-30 08:15 - 38804368 _____ () J:\Program Files (x86)\Netease\CloudMusic\libcef.dll 2015-04-30 08:15 - 2015-04-30 08:15 - 02377104 _____ () J:\Program Files (x86)\Netease\CloudMusic\ffmpegsumo.dll 2015-04-30 08:15 - 2015-04-30 08:15 - 00246672 _____ () J:\Program Files (x86)\Netease\CloudMusic\swresample-0.dll 2015-04-30 08:15 - 2015-04-30 08:15 - 00112016 _____ () J:\Program Files (x86)\Netease\CloudMusic\libFLAC++_dynamic.dll 2015-04-30 08:15 - 2015-04-30 08:15 - 00587152 _____ () J:\Program Files (x86)\Netease\CloudMusic\avutil-52.dll 2015-04-30 08:15 - 2015-04-30 08:15 - 00262032 _____ () J:\Program Files (x86)\Netease\CloudMusic\libFLAC_dynamic.dll 2015-04-30 08:15 - 2015-04-30 08:15 - 00877968 _____ () J:\Program Files (x86)\Netease\CloudMusic\libglesv2.dll 2015-04-30 08:15 - 2015-04-30 08:15 - 00135056 _____ () J:\Program Files (x86)\Netease\CloudMusic\libegl.dll 2015-05-30 05:34 - 2013-12-16 05:05 - 00143360 ____N () C:\Program Files\ASUS Essence STX II Audio Device\Customapp\VmixP8.dll 2015-06-10 08:08 - 2015-06-05 20:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\libglesv2.dll 2015-06-10 08:08 - 2015-06-05 20:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.124\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-3862967198-3418230011-351970294-1001\Control Panel\Desktop\\Wallpaper -> J:\Program Files (x86)\Steam\userdata\91058852\760\remote\271590\screenshots\2015-06-06_00002.jpg DNS Servers: 192.168.178.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: Avira.ServiceHost => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: Intel(R) Capability Licensing Service Interface => 2 MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3 MSCONFIG\Services: jhi_service => 2 MSCONFIG\Services: MBAMScheduler => 2 MSCONFIG\Services: MBAMService => 2 MSCONFIG\Services: NvNetworkService => 2 MSCONFIG\Services: NvStreamSvc => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: Steam Client Service => 3 MSCONFIG\Services: Stereo Service => 2 MSCONFIG\Services: TunngleService => 3 HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\StartupApproved\Run: => "Gyazo" HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\StartupApproved\Run: => "cloudmusic" HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-3862967198-3418230011-351970294-1001\...\StartupApproved\Run: => "Steam" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe FirewallRules: [{D7C0D5BB-7CB6-4CCB-A699-2CBB2053C60C}] => (Allow) J:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{F34D0BD1-42A4-4BE6-A781-53A7E2866CD0}] => (Allow) J:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{738AE88D-8D88-48C2-9EC2-BAB29FE1C362}] => (Allow) J:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{EB6E2BB3-98BB-4927-951F-B62D18D002E4}] => (Allow) J:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{11036621-C610-43CA-A1AE-32396D3D16B3}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\RoadRedemption\RoadRedemptionEarlyAccess.exe FirewallRules: [{5FD534CB-DFC0-4678-9861-C9F961D41AEB}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\RoadRedemption\RoadRedemptionEarlyAccess.exe FirewallRules: [TCP Query User{5D750AB3-C65A-46D1-8692-6320FCD56D9C}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{C69402B0-FBFE-42B5-8ECA-A514CF5E8646}C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{E2A851AB-3B3F-4B80-A1BF-0DF19BA0FD2A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{97134A51-B36B-4D13-9C93-28A1FBF4523B}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{CCE15871-7133-4EC8-9A67-2AA14354F5A1}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe FirewallRules: [{9B4FFD4E-7EE7-4EB7-B2E4-8BAF4D1BDEBA}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Saints Row IV\SaintsRowIV.exe FirewallRules: [{33913C99-9BD6-4CED-8A96-F08F2E543B5E}] => (Allow) J:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{59B00459-7A09-4B8A-9EB4-85EC79D81B1F}] => (Allow) J:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{5432BFA6-7BF2-429E-A9BF-F7F486ECB580}] => (Allow) J:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{831ABDDF-C8C4-48A5-9145-707C83B8A6CC}] => (Allow) J:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{9975F67B-539B-489F-AB66-8D7E6459BABF}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe FirewallRules: [{CF94B7D9-7F02-4EE0-9C88-581D115EBDFA}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Europa Universalis IV\eu4.exe FirewallRules: [TCP Query User{ADF0851F-688D-439D-AA7A-DDEEE0A21D9A}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{D1FE26E0-76A1-4E49-875D-4BBEAC115DE0}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{E2235CD4-CEEF-4B54-B458-A19EBF0CBC20}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe FirewallRules: [{2C1F7F52-80EF-4D6A-98A1-C0BAA29BA650}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Limbo\limbo.exe FirewallRules: [{6FCDECE1-9C4E-42B2-A304-CA733094F3C0}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\TheLongDark\tld.exe FirewallRules: [{E5D4F9E7-A987-4956-8E37-4690E1812F29}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\TheLongDark\tld.exe FirewallRules: [{A006606B-56E2-41F9-8818-7BEBAB07E6A7}] => (Allow) J:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{69D5E48C-B3DD-4A62-972C-F54139C95DAB}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe FirewallRules: [{F40F4615-E23A-4146-A7A8-22D22C99E249}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe FirewallRules: [{38BC3805-4186-4353-AA68-26D016D5CFC5}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe FirewallRules: [{5979EF81-D4AD-4768-A709-84017BDA0E60}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe FirewallRules: [{ACA80238-60B0-477B-9FA5-E3F30DE8306F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{7897BA15-8E53-4CD0-BD21-5E174A74EF20}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{A214125F-CA2C-434F-8F8E-6D80E8C7DA6A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{FA1A5DDA-E54C-4BC8-A16F-FD3EB11058F9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{04050701-8F09-4FD9-ADAC-4F02C6AFDFE3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{8CB6AC45-44DC-48B2-B793-E1F31ABB9341}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D4C43799-AA9E-4E48-B735-A5D2F86AA1A2}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{F9D19152-0EB8-4BBD-846E-88586CF57B2A}] => (Allow) C:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe FirewallRules: [{A623CFF9-B447-42A2-95E6-EC6295DDAC7F}] => (Allow) C:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe FirewallRules: [{86D8C889-8E31-4DEC-B311-662123E54645}] => (Allow) C:\SteamLibrary\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe FirewallRules: [{C402EEA6-9C4E-48F6-A349-A37FE580D69C}] => (Allow) C:\SteamLibrary\steamapps\common\Battlefield Bad Company 2\BFBC2Game.exe FirewallRules: [{3D02B400-D70A-4A1F-B3A9-BBBECE0D4776}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{9793616C-F3A7-43AF-A133-11C8309955F1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{99AECDA2-EEFB-4E28-B915-12C5F5140FB8}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{76C6F442-3315-4B79-A6C1-2C01EDBEA9EE}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{8431A970-B392-4C40-A784-E83BC68CC489}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe FirewallRules: [{657141CD-11EC-4515-B9B2-088B27FF08DF}] => (Allow) J:\Program Files (x86)\Steam\steamapps\common\Orion Dino Beatdown\Binaries\Win32\DinoHordeGame.exe FirewallRules: [{C183A519-C794-4F26-BF9E-B361EAC3F129}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{2F492275-AA3E-4DBC-995F-DEE7E2D3533B}] => (Allow) C:\SteamLibrary\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [TCP Query User{5BA88633-D364-4F3C-BF99-38DF1E64E921}J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe] => (Allow) J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe FirewallRules: [UDP Query User{C215D39D-5B75-495B-B243-70512C559F62}J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe] => (Allow) J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe FirewallRules: [{761D437F-473C-443E-A09F-52715D04C112}] => (Block) J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe FirewallRules: [{F8F63783-C904-49C5-B350-317F9317E9E7}] => (Block) J:\users\lilhomers\appdata\roaming\baidu\baiduyunguanjia\baiduyunguanjia.exe FirewallRules: [{DF442D3E-FD5B-4224-9CC7-E5FF40B0AE27}] => (Allow) C:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe FirewallRules: [{3F4541DE-9D00-48F3-9C24-D8E35F176FAB}] => (Allow) C:\SteamLibrary\steamapps\common\HeroSiege\bin\Hero_Siege.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (06/19/2015 08:51:38 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm Explorer.EXE, Version 6.3.9600.17667 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 12d4 Startzeit: 01d0aa519c0c3e8e Endzeit: 4294967295 Anwendungspfad: C:\Windows\Explorer.EXE Berichts-ID: 917a3a9f-164f-11e5-827b-f46d0461d4ca Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (06/19/2015 08:09:30 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm avastui.exe, Version 10.2.2218.944 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: a8 Startzeit: 01d0aa52b7ae2fa8 Endzeit: 60000 Anwendungspfad: J:\Program Files\AVAST Software\Avast\avastui.exe Berichts-ID: 9425999c-1649-11e5-827b-f46d0461d4ca Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (06/19/2015 08:08:17 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm Taskmgr.exe, Version 6.3.9600.17415 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1450 Startzeit: 01d0aa564d2208f8 Endzeit: 4 Anwendungspfad: C:\Windows\System32\Taskmgr.exe Berichts-ID: 92b21c98-1649-11e5-827b-f46d0461d4ca Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (06/18/2015 00:01:08 AM) (Source: MsiInstaller) (EventID: 1023) (User: Lilhomer) Description: Produkt: Microsoft Office Excel Viewer - Update "{5E5BD655-7AA9-47F9-BB6D-A1D8CE29AC86}" konnte nicht installiert werden. Fehlercode 1642. Weitere Informationen sind in der Protokolldatei C:\Users\LILHOM~1\AppData\Local\Temp\Microsoft Office Excel Viewer (0).log enthalten. Error: (06/18/2015 00:01:08 AM) (Source: MsiInstaller) (EventID: 1023) (User: Lilhomer) Description: Produkt: Microsoft Office Excel Viewer - Update "{47637B5E-81E0-4ECA-82F9-13FE9B204BE3}" konnte nicht installiert werden. Fehlercode 1642. Weitere Informationen sind in der Protokolldatei C:\Users\LILHOM~1\AppData\Local\Temp\Microsoft Office Excel Viewer (0).log enthalten. Error: (06/18/2015 00:00:54 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer". Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll. System Error: Zugriff verweigert . Error: (06/17/2015 11:59:58 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Programm Explorer.EXE, Version 6.3.9600.17667 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: d9c Startzeit: 01d0a8c16da93f21 Endzeit: 4294967295 Anwendungspfad: C:\Windows\Explorer.EXE Berichts-ID: 25261902-153c-11e5-827b-f46d0461d4ca Vollständiger Name des fehlerhaften Pakets: Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Error: (06/17/2015 08:09:02 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: Lilhomer) Description: Die Anwendung oder der Dienst "RealPlayer Update Service" konnte nicht neu gestartet werden. Error: (06/17/2015 07:49:55 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1". Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (06/16/2015 11:06:37 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1". Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". System errors: ============= Error: (06/18/2015 03:36:06 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (06/18/2015 03:35:36 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Error: (06/18/2015 03:28:38 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (06/18/2015 03:28:08 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Error: (06/18/2015 03:24:13 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (06/18/2015 03:23:43 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Error: (06/18/2015 03:07:03 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (06/18/2015 03:06:33 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Error: (06/18/2015 02:20:58 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (06/18/2015 02:20:28 PM) (Source: DCOM) (EventID: 10010) (User: Lilhomer) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Microsoft Office: ========================= Error: (06/19/2015 08:51:38 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Explorer.EXE6.3.9600.1766712d401d0aa519c0c3e8e4294967295C:\Windows\Explorer.EXE917a3a9f-164f-11e5-827b-f46d0461d4ca Error: (06/19/2015 08:09:30 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: avastui.exe10.2.2218.944a801d0aa52b7ae2fa860000J:\Program Files\AVAST Software\Avast\avastui.exe9425999c-1649-11e5-827b-f46d0461d4ca Error: (06/19/2015 08:08:17 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Taskmgr.exe6.3.9600.17415145001d0aa564d2208f84C:\Windows\System32\Taskmgr.exe92b21c98-1649-11e5-827b-f46d0461d4ca Error: (06/18/2015 00:01:08 AM) (Source: MsiInstaller) (EventID: 1023) (User: Lilhomer) Description: Microsoft Office Excel Viewer{5E5BD655-7AA9-47F9-BB6D-A1D8CE29AC86}1642C:\Users\LILHOM~1\AppData\Local\Temp\Microsoft Office Excel Viewer (0).log(NULL)(NULL) Error: (06/18/2015 00:01:08 AM) (Source: MsiInstaller) (EventID: 1023) (User: Lilhomer) Description: Microsoft Office Excel Viewer{47637B5E-81E0-4ECA-82F9-13FE9B204BE3}1642C:\Users\LILHOM~1\AppData\Local\Temp\Microsoft Office Excel Viewer (0).log(NULL)(NULL) Error: (06/18/2015 00:00:54 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Details: AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll. System Error: Zugriff verweigert Error: (06/17/2015 11:59:58 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Explorer.EXE6.3.9600.17667d9c01d0a8c16da93f214294967295C:\Windows\Explorer.EXE25261902-153c-11e5-827b-f46d0461d4ca Error: (06/17/2015 08:09:02 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: Lilhomer) Description: 0RealPlayerUpdateSvc.exeRealPlayer Update Service03026217859920 Error: (06/17/2015 07:49:55 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{9F3B20DF-76F2-47F4-9372-F0F56485A58D}\recordingmanager.exe Error: (06/16/2015 11:06:37 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{9F3B20DF-76F2-47F4-9372-F0F56485A58D}\recordingmanager.exe CodeIntegrity Errors: =================================== Date: 2015-06-05 14:54:38.900 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\OldNewExplorer\OldNewExplorer64.dll that did not meet the Windows signing level requirements. Date: 2015-06-05 13:54:33.153 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\OldNewExplorer\OldNewExplorer64.dll that did not meet the Windows signing level requirements. Date: 2015-06-05 12:37:00.994 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\OldNewExplorer\OldNewExplorer64.dll that did not meet the Windows signing level requirements. Date: 2015-06-05 12:02:47.175 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\OldNewExplorer\OldNewExplorer64.dll that did not meet the Windows signing level requirements. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-2600K CPU @ 3.40GHz Percentage of memory in use: 14% Total physical RAM: 16351.13 MB Available physical RAM: 13994.13 MB Total Pagefile: 18783.13 MB Available Pagefile: 15867.72 MB Total Virtual: 131072 MB Available Virtual: 131071.78 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:111.45 GB) (Free:3.86 GB) NTFS Drive d: (System-reserviert) (Fixed) (Total:0.34 GB) (Free:0.03 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive j: () (Fixed) (Total:931.51 GB) (Free:892.51 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6F2A194A) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 111.8 GB) (Disk ID: 112F8A2E) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=111.4 GB) - (Type=07 NTFS) ==================== End of log ============================ Gmer Code:
ATTFilter GMER 2.1.19357 - hxxp://www.gmer.net Rootkit scan 2015-06-19 09:20:11 Windows 6.2.9200 x64 \Device\Harddisk1\DR1 -> \Device\00000037 OCZ-AGILITY3 rev.2.25 111,79GB Running: Gmer-19357.exe; Driver: C:\Users\LILHOM~1\AppData\Local\Temp\ugriapow.sys ---- Kernel code sections - GMER 2.1 ---- .text C:\Windows\System32\win32k.sys!W32pServiceTable fffff9600011ad00 15 bytes [00, A9, F3, 01, 80, 64, 6D, ...] .text C:\Windows\System32\win32k.sys!W32pServiceTable + 16 fffff9600011ad10 11 bytes [00, 91, FC, FF, 00, BF, CA, ...] ---- Threads - GMER 2.1 ---- Thread C:\Windows\system32\csrss.exe [5172:308] fffff96000338268 Thread C:\Windows\system32\csrss.exe [4456:408] fffff960008ca2d0 ---- Registry - GMER 2.1 ---- Reg HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{5BB877E2-EB25-4852-B46F-E14B20C54452}\Connection@Name isatap.fritz.box Reg HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed -937385388 Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\0026832f02e6 Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{5BB877E2-EB25-4852-B46F-E14B20C54452}@ReusableType 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\iphlpsvc\Parameters\Isatap\{5BB877E2-EB25-4852-B46F-E14B20C54452}@DefunctTimestamp 0xE3 0xA9 0x83 0x55 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch2@Epoch 1357 Reg HKCU\Software\Microsoft\Windows\CurrentVersion\GWX\Usage@UsageTime 0x9A 0xE8 0xCF 0x2D ... Reg HKCU\Software\Microsoft\Windows\Windows Error Reporting@LastRateLimitedDumpGenerationTime 0x19 0x34 0x0F 0x50 ... ---- EOF - GMER 2.1 ---- |
20.06.2015, 07:14 | #5 |
/// the machine /// TB-Ausbilder | Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten Windows Repair Tool laufen lassen: Windows reparieren - so geht's - Anleitungen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
Themen zu Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten |
.dll, adware, aktiviere, aktivieren, automatisch, echtzeitschutz, fehlermeldung, geladen, gen, gmer, grund, hängen, hängt, nicht geladen, nicht mehr, nichts, pc hängt, pc hängt sich auf, pcs, programme, schutz, starte, starten, viren, windows |