Trojaner-Board - Mailwarebytes meldet Infektion- Trojan.Agent...

Vielen Dank für den Hinweis, ich dachte es wäre besser, alles anzuhängen, sorry mein Fehler.
[CODE]Frst:
FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-12-2013 01

Ran by Ivan (administrator) on IVANKATZER on 13-12-2013 03:50:13

Running from C:\Users\Ivan\Downloads

Windows 8.1 Pro (X64) OS Language: German Standard

Internet Explorer Version 11

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Microsoft Corporation) C:\Windows\System32\dasHost.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\livecomm.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.16384_none_fa1dc1539b4180d8\TiWorker.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe

(Google Inc.) C:\Users\Ivan\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Ivan\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Ivan\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Ivan\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Ivan\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Ivan\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Ivan\AppData\Local\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Users\Ivan\AppData\Local\Google\Chrome\Application\chrome.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)

HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)

HKLM\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5694640 2013-08-16] (VIA)

HKLM\...\Policies\Explorer: [NoViewContextMenu] 0

HKLM\...\Policies\Explorer: [NoFind] 0

HKCU\...\Run: [Spotify Web Helper] - C:\Users\Ivan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1168896 2013-12-12] (Spotify Ltd)

HKCU\...\Policies\Explorer: [DisallowRun] 1

HKCU\...\Policies\Explorer: [NoCDBurning] 1

HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)

HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1673680 2013-10-23] (APN)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/

hxxp://www.giga.de/androidnews/

BHO: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)

BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)

BHO-x32: Citavi Picker - {609D670F-B735-4da7-AC6D-F3BD358E325E} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)

BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport_x64.dll (APN LLC.)

Toolbar: HKLM-x32 - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 

Chrome: 

=======

CHR HomePage: 

CHR RestoreOnStartup: "hxxp://www.google.com", "hxxp://www.giga.de/", "hxxp://www.giga.de/androidnews/"

CHR DefaultSearchKeyword: google.de

CHR DefaultSearchProvider: Google

CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}

CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}

CHR Extension: (Avira SearchFree Toolbar plus Web Protection) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaacalgebmfelllfiaoknifldpngjh\25.62074_0

CHR Extension: (Google Drive) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0

CHR Extension: (YouTube) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0

CHR Extension: (Google Search) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0

CHR Extension: (Springpad) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkmopoamfjnmppabeaphohombnjcjgla\6_0

CHR Extension: (AdBlock) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0

CHR Extension: (Pocket) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk\0.600_0

CHR Extension: (Google Wallet) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0

CHR Extension: (Citavi Picker) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\piehhloihgjjiomhieeddiidpekaajio\2013.9.20_0

CHR Extension: (Gmail) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

CHR HKLM-x32\...\Chrome\Extension: [aaaaacalgebmfelllfiaoknifldpngjh] - C:\ProgramData\AskPartnerNetwork\Toolbar\AVIRA-V7\CRX\ToolbarCR.crx

CHR HKLM-x32\...\Chrome\Extension: [mkcedibhemacmilmkpndpkoidlnmgngg] - C:\Users\Ivan\ChromeExtensions\mkcedibhemacmilmkpndpkoidlnmgngg\amazon.crx

CHR HKLM-x32\...\Chrome\Extension: [piehhloihgjjiomhieeddiidpekaajio] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Chrome\ChromePicker.crx
 

==================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)

R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)

S4 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-23] (APN LLC.)

S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 9\DfsdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)

S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.RTM\RpcAgentSrv.exe [72344 2008-11-25] (SiSoftware)

R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-12-11] (VIA Technologies, Inc.)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

S3 WO_LiveService; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 9\LiveTunerService.exe [885088 2013-05-07] ()
 

==================== Drivers (Whitelisted) ====================
 

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [84720 2013-12-09] (Avira Operations GmbH & Co. KG)

S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)

S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)

S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)

S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)

R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)

S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-08-23] (Microsoft Corporation)

R2 LiveTunerPM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 9\LiveTunerProcessMonitor64.sys [12824 2011-03-08] ()

S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)

S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)

R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)

S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)

S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.RTM\WNt500x64\Sandra.sys [23112 2009-08-07] (SiSoftware)

S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)

R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2000-01-01] (Synaptics Incorporated)

S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)

S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

S3 cpuz136; \??\C:\Users\Ivan\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [x]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-12-13 03:50 - 2013-12-13 03:50 - 00013134 _____ C:\Users\Ivan\Downloads\FRST.txt

2013-12-13 03:44 - 2013-12-13 03:44 - 00000000 ____D C:\FRST

2013-12-13 03:42 - 2013-12-13 03:43 - 01927462 _____ (Farbar) C:\Users\Ivan\Downloads\FRST64.exe

2013-12-13 02:59 - 2013-12-13 02:59 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Ivan\Downloads\mbam-setup-1.75.0.1300 (1).exe

2013-12-13 02:55 - 2013-12-13 02:55 - 00001125 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Malwarebytes

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-12-13 02:55 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2013-12-13 02:54 - 2013-12-13 02:54 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Ivan\Downloads\mbam-setup-1.75.0.1300.exe

2013-12-13 02:07 - 2013-12-13 02:07 - 00979064 _____ C:\Users\Ivan\Downloads\win81_x64_rc1.7z

2013-12-13 01:48 - 2013-12-13 01:48 - 00000828 __RSH C:\ProgramData\ntuser.pol

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Avira

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\ProgramData\AskPartnerNetwork

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\ProgramData\APN

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork

2013-12-13 01:42 - 2013-12-13 01:42 - 00002086 _____ C:\Users\Public\Desktop\Avira Control Center.lnk

2013-12-13 01:42 - 2013-12-13 01:42 - 00000000 ____D C:\ProgramData\Avira

2013-12-13 01:42 - 2013-12-13 01:42 - 00000000 ____D C:\Program Files (x86)\Avira

2013-12-13 01:42 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys

2013-12-13 01:42 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys

2013-12-13 01:42 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys

2013-12-13 01:42 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys

2013-12-13 01:32 - 2013-12-13 01:33 - 129598176 _____ C:\Users\Ivan\Downloads\avira_free_antivirus_de.exe

2013-12-13 01:25 - 2013-12-13 01:25 - 00001226 _____ C:\Users\Public\Desktop\HD VDeck.lnk

2013-12-13 01:25 - 2013-12-13 01:25 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information

2013-12-13 01:24 - 2013-12-13 01:24 - 01545259 _____ (Igor Pavlov) C:\Users\Ivan\Downloads\mb_utility_intel_irst.exe

2013-12-13 01:24 - 2013-12-13 01:24 - 00000000 ____D C:\Windows\system32\SRSLabs

2013-12-13 01:24 - 2013-12-13 01:24 - 00000000 ____D C:\Program Files\VIA

2013-12-13 01:24 - 2013-08-07 09:39 - 00689664 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viahduaa.sys

2013-12-13 01:24 - 2013-07-30 09:15 - 03322368 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIAPropPageExt.dll

2013-12-13 01:24 - 2013-07-29 07:59 - 27518208 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll

2013-12-13 01:24 - 2013-07-29 07:59 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll

2013-12-13 01:24 - 2013-07-29 07:59 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll

2013-12-13 01:24 - 2013-07-29 07:59 - 00660224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll

2013-12-13 01:24 - 2013-07-24 09:57 - 00866304 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIASysFx.dll

2013-12-13 01:24 - 2013-07-22 07:40 - 01984512 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO264.DLL

2013-12-13 01:24 - 2013-07-22 07:40 - 01716736 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMAPO232.DLL

2013-12-13 01:24 - 2013-07-22 07:40 - 00388096 _____ (Creative Technology Ltd.) C:\Windows\system32\VMWRP64.DLL

2013-12-13 01:24 - 2013-03-28 09:57 - 01845424 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaMicArrayAPO.dll

2013-12-13 01:24 - 2012-12-11 11:01 - 00070776 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\VtSrdAPO.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 01161336 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaKaraokeApo.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00248952 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Dts2APO.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00123512 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaKaraokePropPageExt.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00095352 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaMicArrayPropPageExt.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00092280 _____ (VIA Technologies, Inc.) C:\Windows\system32\Dts2PropPageExt.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00055416 _____ (TODO: <Company name>) C:\Windows\system32\PropPageExt.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00027768 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViakaraokeSrv.exe

2013-12-13 01:24 - 2012-11-15 03:06 - 00083968 _____ (QSound Labs, Inc.) C:\Windows\system32\nQAPO.dll

2013-12-13 01:24 - 2012-06-28 09:54 - 00086016 _____ (QSound Labs, Inc.) C:\Windows\system32\nQPropPageExt.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\EEP64H.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\EEP64A.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\EED64H.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\EED64A.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00137056 _____ (Dolby Laboratories) C:\Windows\system32\EEL64H.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00137056 _____ (Dolby Laboratories) C:\Windows\system32\EEL64A.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00120160 _____ (Dolby Laboratories) C:\Windows\system32\EEA64H.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00120160 _____ (Dolby Laboratories) C:\Windows\system32\EEA64A.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00075104 _____ (Dolby Laboratories) C:\Windows\system32\EEG64H.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00075104 _____ (Dolby Laboratories) C:\Windows\system32\EEG64A.dll

2013-12-13 01:24 - 2011-09-27 11:13 - 00879616 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO64.DLL

2013-12-13 01:24 - 2011-09-27 11:13 - 00739328 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMAPO32.DLL

2013-12-13 01:24 - 2011-09-27 11:13 - 00619520 _____ (Creative Technology Ltd.) C:\Windows\system32\VMTHX64.DLL

2013-12-13 01:24 - 2011-09-27 11:13 - 00554496 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMTHX32.DLL

2013-12-13 01:24 - 2011-09-27 11:13 - 00057856 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPLD64.DLL

2013-12-13 01:24 - 2010-10-26 11:54 - 00053760 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPCN64.DLL

2013-12-13 01:24 - 2009-07-31 04:40 - 00025600 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\VMfilt64.sys

2013-12-13 01:23 - 2013-12-13 01:25 - 00000000 ____D C:\Program Files (x86)\VIA

2013-12-13 01:23 - 2007-04-11 08:35 - 00414632 ____N (Microsoft Corporation) C:\Windows\difxapi.dll

2013-12-13 01:20 - 2013-12-13 01:20 - 15617292 _____ (Igor Pavlov) C:\Users\Ivan\Downloads\mb_driver_via_usb3_w8.1.exe

2013-12-13 01:18 - 2013-12-13 01:18 - 138345026 _____ (Igor Pavlov) C:\Users\Ivan\Downloads\mb_driver_audio_via_w8.1.exe

2013-12-13 01:15 - 2013-12-13 01:15 - 01302385 _____ (Igor Pavlov) C:\Users\Ivan\Downloads\mb_driver_chipset_intel_7series.exe

2013-12-13 01:12 - 2013-12-13 01:25 - 00000309 _____ C:\Windows\setupact.log

2013-12-13 01:12 - 2013-12-13 01:12 - 00000000 _____ C:\Windows\setuperr.log

2013-12-13 01:11 - 2013-12-13 01:11 - 01804472 _____ C:\Windows\SysWOW64\PerfStringBackup.INI

2013-12-13 01:11 - 2013-12-13 01:11 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Intel Corporation

2013-12-13 01:10 - 2013-12-13 01:25 - 00000000 ____D C:\Gigabyte updates

2013-12-13 01:10 - 2013-12-13 01:10 - 00000000 ____D C:\Users\Ivan\Intel

2013-12-13 01:10 - 2013-12-13 01:10 - 00000000 ____D C:\ProgramData\Intel

2013-12-13 01:10 - 2013-12-13 01:10 - 00000000 ____D C:\Program Files\Intel

2013-12-13 01:06 - 2013-12-13 01:06 - 14717504 _____ (Igor Pavlov) C:\Users\Ivan\Downloads\mb_driver_intel_irst_7series.exe

2013-12-13 00:31 - 2013-12-13 00:31 - 15247088 _____ C:\Users\Ivan\Downloads\SeaBootBuilderr_Dell_Pharaoh_KC47_ZPE.exe

2013-12-13 00:11 - 2013-12-13 00:11 - 00000000 ____D C:\winaam

2013-12-13 00:10 - 2013-12-13 00:10 - 00126375 _____ C:\Users\Ivan\Downloads\winaam-292.zip

2013-12-13 00:05 - 2013-12-13 00:58 - 14024704 _____ C:\Users\Ivan\AppData\Roaming\Sandra.mdb

2013-12-13 00:03 - 2013-12-13 00:03 - 00002120 _____ C:\Users\Public\Desktop\SiSoftware Sandra Lite 2014.RTM.lnk

2013-12-13 00:03 - 2013-12-13 00:03 - 00000000 ____D C:\Program Files\SiSoftware

2013-12-13 00:02 - 2013-12-13 00:02 - 67530368 _____ (SiSoftware                                                  ) C:\Users\Ivan\Downloads\san2010b.exe

2013-12-12 23:58 - 2013-12-12 23:58 - 00000000 ____D C:\Users\Ivan\SystemRequirementsLab

2013-12-12 23:57 - 2013-12-12 23:57 - 00405504 _____ C:\Users\Ivan\Downloads\intel_srldetect_4.5.13.0.msi

2013-12-12 23:57 - 2013-12-12 23:57 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab

2013-12-12 23:41 - 2013-12-13 03:47 - 00104916 _____ C:\Windows\PFRO.log

2013-12-12 23:08 - 2013-12-13 02:45 - 00007605 _____ C:\Users\Ivan\AppData\Local\Resmon.ResmonCfg

2013-12-12 23:04 - 2013-11-12 00:41 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2013-12-12 23:04 - 2013-11-12 00:40 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2013-12-12 23:04 - 2013-11-12 00:27 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll

2013-12-12 23:04 - 2013-11-12 00:24 - 00840704 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll

2013-12-12 23:04 - 2013-11-11 03:48 - 00039768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys

2013-12-12 23:04 - 2013-11-09 12:55 - 00325464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS

2013-12-12 23:04 - 2013-11-09 07:37 - 01756160 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe

2013-12-12 23:04 - 2013-11-09 06:56 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe

2013-12-12 23:04 - 2013-11-08 11:26 - 00358896 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll

2013-12-12 23:04 - 2013-11-08 06:23 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll

2013-12-12 23:04 - 2013-11-08 05:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll

2013-12-12 23:04 - 2013-11-08 05:42 - 00366080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll

2013-12-12 23:04 - 2013-11-08 05:28 - 13177344 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll

2013-12-12 23:04 - 2013-11-08 05:26 - 11674624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll

2013-12-12 23:04 - 2013-11-08 05:16 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll

2013-12-12 23:04 - 2013-11-08 05:15 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll

2013-12-12 23:04 - 2013-11-08 05:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll

2013-12-12 23:04 - 2013-11-08 04:41 - 01302528 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll

2013-12-12 23:04 - 2013-11-08 04:14 - 00922624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll

2013-12-12 23:04 - 2013-11-05 15:19 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll

2013-12-12 23:04 - 2013-11-05 15:03 - 00637952 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe

2013-12-12 23:04 - 2013-11-05 14:57 - 00479744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe

2013-12-12 23:04 - 2013-11-05 14:33 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll

2013-12-12 23:04 - 2013-11-05 14:32 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll

2013-12-12 23:04 - 2013-11-04 18:13 - 01530200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys

2013-12-12 23:04 - 2013-11-04 18:13 - 00382808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys

2013-12-12 23:04 - 2013-11-04 14:07 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll

2013-12-12 23:04 - 2013-11-04 12:50 - 02143744 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll

2013-12-12 23:04 - 2013-11-04 11:32 - 02570240 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll

2013-12-12 23:04 - 2013-11-04 03:28 - 01816576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll

2013-12-12 23:04 - 2013-11-04 02:30 - 01765376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll

2013-12-12 23:04 - 2013-11-01 12:39 - 00086872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys

2013-12-12 23:04 - 2013-11-01 07:08 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll

2013-12-12 23:04 - 2013-11-01 06:57 - 00544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll

2013-12-12 23:04 - 2013-10-31 01:58 - 00372568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys

2013-12-12 23:04 - 2013-10-31 01:42 - 07399256 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2013-12-12 23:04 - 2013-10-31 01:33 - 01642016 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi

2013-12-12 23:04 - 2013-10-31 01:33 - 01506680 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe

2013-12-12 23:04 - 2013-10-31 01:33 - 01476184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi

2013-12-12 23:04 - 2013-10-31 01:33 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe

2013-12-12 23:04 - 2013-10-26 02:54 - 00146776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\SerCx2.sys

2013-12-12 23:04 - 2013-10-24 10:31 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll

2013-12-12 23:04 - 2013-10-24 10:12 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll

2013-12-12 23:04 - 2013-10-17 12:21 - 02896896 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll

2013-12-12 23:04 - 2013-10-17 11:36 - 02266624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll

2013-12-12 23:04 - 2013-10-05 15:21 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll

2013-12-12 23:04 - 2013-10-05 15:21 - 00516496 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll

2013-12-12 23:04 - 2013-10-05 13:05 - 01765384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll

2013-12-12 23:04 - 2013-10-05 13:05 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll

2013-12-12 00:22 - 2013-12-13 00:13 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\NVIDIA

2013-12-12 00:19 - 2013-12-12 00:19 - 00000000 ____D C:\Users\Ivan\AppData\Local\Chromium

2013-12-12 00:18 - 2013-12-12 00:19 - 00000000 ____D C:\Users\Ivan\Documents\Rockstar Games

2013-12-12 00:15 - 2013-12-12 00:15 - 00000000 ____D C:\Program Files (x86)\Rockstar Games

2013-12-11 07:28 - 2013-12-11 07:28 - 00000222 _____ C:\Users\Ivan\Desktop\L.A. Noire.url

2013-12-11 03:40 - 2013-12-11 03:41 - 00000000 ___HD C:\Windows\msdownld.tmp

2013-12-11 03:40 - 2013-12-11 03:40 - 00292184 _____ (Microsoft Corporation) C:\Users\Ivan\Downloads\dxwebsetup.exe

2013-12-11 03:21 - 2013-12-11 03:21 - 01762824 _____ (Microsoft Corporation) C:\Users\Ivan\Downloads\vcredist_x86.exe

2013-12-11 02:55 - 2013-12-11 02:59 - 699528640 _____ (Futuremark) C:\Users\Ivan\Downloads\PCMark_Vantage_v120_installer.exe

2013-12-11 02:28 - 2013-12-11 02:28 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf

2013-12-11 02:28 - 2013-12-11 02:28 - 00000000 ____D C:\Program Files\Synaptics

2013-12-11 02:28 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-12-11 02:28 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-12-11 02:28 - 2013-11-23 05:34 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2013-12-11 02:28 - 2013-11-23 05:13 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

2013-12-11 02:28 - 2013-11-23 04:32 - 04105728 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll

2013-12-11 02:28 - 2013-11-23 04:10 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe

2013-12-11 02:28 - 2013-10-19 09:53 - 00075360 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll

2013-12-11 02:28 - 2013-10-19 08:14 - 00070680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll

2013-12-11 02:28 - 2013-10-15 09:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll

2013-12-11 02:28 - 2013-10-15 09:03 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll

2013-12-11 02:28 - 2000-01-01 01:00 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll

2013-12-11 02:28 - 2000-01-01 01:00 - 00034544 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys

2013-12-11 02:27 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-12-11 02:27 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-12-11 02:27 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-12-11 02:27 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-12-11 02:27 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-12-11 02:27 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-12-11 02:27 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-12-11 02:27 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-12-11 02:27 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-12-11 02:27 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-12-11 02:27 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-12-11 02:27 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-12-11 02:27 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-12-11 02:27 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-12-11 02:27 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-12-11 02:27 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe

2013-12-11 02:27 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll

2013-12-11 02:27 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll

2013-12-11 02:27 - 2013-11-08 08:21 - 04191744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2013-12-11 02:26 - 2013-12-11 02:26 - 00000000 ____D C:\Program Files (x86)\Intel

2013-12-11 02:26 - 2013-08-21 08:16 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll

2013-12-11 02:22 - 2013-12-11 02:22 - 00002153 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk

2013-12-11 02:21 - 2013-12-13 03:47 - 00000000 ____D C:\ProgramData\NVIDIA

2013-12-11 02:21 - 2013-11-14 12:56 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll

2013-12-11 02:21 - 2013-11-14 12:56 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2013-12-11 02:21 - 2013-11-11 16:02 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll

2013-12-11 02:21 - 2013-11-11 16:02 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll

2013-12-11 02:21 - 2013-11-11 16:01 - 03467927 _____ C:\Windows\system32\nvcoproc.bin

2013-12-11 02:21 - 2013-11-11 16:01 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll

2013-12-11 02:21 - 2013-11-11 16:01 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

2013-12-11 02:21 - 2013-11-11 16:01 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll

2013-12-11 02:21 - 2013-11-11 16:01 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll

2013-12-11 02:20 - 2013-11-14 12:57 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll

2013-12-11 02:20 - 2013-11-14 12:57 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys

2013-12-11 02:20 - 2013-11-14 12:57 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2013-12-11 02:20 - 2013-11-14 12:56 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00023754 _____ C:\Windows\system32\nvinfo.pb

2013-12-11 02:06 - 2013-10-30 18:03 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

2013-12-11 02:06 - 2013-10-30 18:02 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll

2013-12-11 02:04 - 2013-12-11 02:06 - 255488144 _____ (NVIDIA Corporation) C:\Users\Ivan\Downloads\331.82-desktop-win8-win7-winvista-64bit-international-whql.exe

2013-12-11 02:03 - 2013-12-13 03:48 - 00898873 _____ C:\Windows\WindowsUpdate.log

2013-12-10 02:41 - 2013-12-10 05:59 - 00000000 ____D C:\Users\Ivan\Desktop\Ram kaufne

2013-12-10 01:28 - 2013-12-10 01:28 - 00000885 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk

2013-12-10 01:28 - 2013-12-10 01:28 - 00000000 ____D C:\Program Files\CPUID

2013-12-10 01:27 - 2013-12-10 01:27 - 01460512 _____ (                                                            ) C:\Users\Ivan\Downloads\cpu-z_1.67.1-setup-en.exe

2013-12-10 01:12 - 2013-12-10 01:12 - 00000000 ____D C:\ProgramData\McAfee

2013-12-10 01:11 - 2013-12-10 01:11 - 02294160 _____ C:\Users\Ivan\Downloads\avira_free_antivirus.exe

2013-12-09 22:45 - 2013-12-09 22:45 - 00000000 ____D C:\Users\Ivan\Desktop\DX

2013-12-09 22:40 - 2013-12-09 22:41 - 100273008 _____ (Microsoft Corporation) C:\Users\Ivan\Downloads\directx_Jun2010redist.exe

2013-12-08 18:18 - 2013-12-08 18:25 - 00000000 ____D C:\Users\Ivan\AppData\Local\gamemaker_studio

2013-12-08 18:18 - 2013-12-08 18:18 - 00000000 ____D C:\Users\Ivan\Documents\GameMaker

2013-12-08 18:18 - 2013-12-08 18:18 - 00000000 ____D C:\ProgramData\gamemaker_studio

2013-12-08 17:48 - 2013-12-12 23:34 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

2013-11-27 22:37 - 2013-12-11 02:08 - 00000000 ____D C:\Users\Ivan\AppData\Local\NVIDIA Corporation

2013-11-26 16:11 - 2013-11-27 23:27 - 00000000 ____D C:\Users\Ivan\Documents\Uni-PDF

2013-11-23 20:23 - 2013-12-10 13:51 - 00000000 ____D C:\Windows\Minidump

2013-11-23 20:23 - 2013-12-10 13:49 - 855937094 _____ C:\Windows\MEMORY.DMP

2013-11-20 21:36 - 2012-03-14 05:00 - 00385024 _____ (CANON INC.) C:\Windows\system32\CNMLMAT.DLL

2013-11-20 20:41 - 2013-11-20 20:42 - 00000000 ____D C:\Emulator

2013-11-17 05:18 - 2013-11-17 05:18 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-17 05:18 - 2013-11-17 05:18 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-16 17:03 - 2013-11-05 21:21 - 21196664 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2013-11-16 17:03 - 2013-11-05 19:51 - 18642504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2013-11-16 17:03 - 2013-11-05 17:20 - 13925888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll

2013-11-16 17:03 - 2013-11-05 17:11 - 18577408 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll

2013-11-16 17:03 - 2013-10-10 12:26 - 02801664 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll

2013-11-16 17:03 - 2013-10-10 12:05 - 01019392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll

2013-11-16 17:03 - 2013-10-10 11:34 - 01085952 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll

2013-11-16 17:03 - 2013-10-10 11:27 - 00869888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll

2013-11-16 17:02 - 2013-10-23 12:29 - 00044936 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll

2013-11-16 17:02 - 2013-10-23 12:21 - 00155480 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys

2013-11-16 17:02 - 2013-10-23 12:13 - 00171864 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_8086.dll

2013-11-16 17:02 - 2013-10-22 09:18 - 01287064 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2013-11-16 17:02 - 2013-10-22 09:18 - 00096088 _____ (Microsoft Corporation) C:\Windows\system32\embeddedapplauncher.exe

2013-11-16 17:02 - 2013-10-22 08:55 - 02328872 _____ (Microsoft Corporation) C:\Windows\explorer.exe

2013-11-16 17:02 - 2013-10-22 07:03 - 02065448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe

2013-11-16 17:02 - 2013-10-22 06:15 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll

2013-11-16 17:02 - 2013-10-22 05:04 - 00618496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll

2013-11-16 17:02 - 2013-10-22 05:02 - 01036288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2013-11-16 17:02 - 2013-10-22 03:38 - 01362944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll

2013-11-16 17:02 - 2013-10-22 03:22 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll

2013-11-16 17:02 - 2013-10-22 03:13 - 01704448 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2013-11-16 17:02 - 2013-10-22 03:07 - 02617344 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2013-11-16 17:02 - 2013-10-22 02:47 - 02295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2013-11-16 17:02 - 2013-10-19 09:51 - 00481392 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll

2013-11-16 17:02 - 2013-10-19 08:12 - 00380656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll

2013-11-16 17:02 - 2013-10-19 06:37 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-11-16 17:02 - 2013-10-19 05:48 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\comdlg32.dll

2013-11-16 17:02 - 2013-10-19 05:03 - 00531968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comdlg32.dll

2013-11-16 17:02 - 2013-10-19 04:26 - 01231360 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll

2013-11-16 17:02 - 2013-10-19 04:14 - 00888832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll

2013-11-16 17:02 - 2013-10-17 16:42 - 01399176 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll

2013-11-16 17:02 - 2013-10-17 15:04 - 01204968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll

2013-11-16 17:02 - 2013-10-16 10:34 - 00518656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe

2013-11-16 17:02 - 2013-10-16 10:33 - 00631296 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe

2013-11-16 17:02 - 2013-10-13 04:06 - 00258904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdyboost.sys

2013-11-16 17:02 - 2013-10-13 03:43 - 00708616 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll

2013-11-16 17:02 - 2013-10-11 14:24 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll

2013-11-16 17:02 - 2013-10-11 14:03 - 00621056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll

2013-11-16 17:02 - 2013-10-10 17:44 - 00031064 _____ (Microsoft Corporation) C:\Windows\system32\ploptin.dll

2013-11-16 17:02 - 2013-10-10 17:26 - 00317616 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll

2013-11-16 17:02 - 2013-10-10 17:26 - 00104320 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll

2013-11-16 17:02 - 2013-10-10 17:23 - 03395920 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll

2013-11-16 17:02 - 2013-10-10 15:53 - 00235960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll

2013-11-16 17:02 - 2013-10-10 15:53 - 00088272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll

2013-11-16 17:02 - 2013-10-10 12:53 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll

2013-11-16 17:02 - 2013-10-10 12:38 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll

2013-11-16 17:02 - 2013-10-10 12:21 - 00139776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll

2013-11-16 17:02 - 2013-10-09 06:40 - 00385528 _____ C:\Windows\system32\ApnDatabase.xml

2013-11-16 17:02 - 2013-10-08 11:28 - 00523096 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\acpi.sys

2013-11-16 17:02 - 2013-10-08 11:13 - 02551640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2013-11-16 17:02 - 2013-10-08 07:46 - 00113152 _____ (Microsoft Corporation) C:\Windows\system32\shsetup.dll

2013-11-16 17:02 - 2013-10-08 06:58 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shsetup.dll

2013-11-16 17:02 - 2013-10-08 06:50 - 00656384 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll

2013-11-16 17:02 - 2013-10-08 06:48 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll

2013-11-16 17:02 - 2013-10-08 06:15 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll

2013-11-16 17:02 - 2013-10-08 06:09 - 01160704 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Web.Http.dll

2013-11-16 17:02 - 2013-10-08 05:50 - 00903168 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll

2013-11-16 17:02 - 2013-10-08 05:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Web.Http.dll

2013-11-16 17:02 - 2013-10-07 08:21 - 00054776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2013-11-16 17:02 - 2013-10-07 03:13 - 03532288 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2013-11-16 17:02 - 2013-10-05 16:25 - 00057176 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\stornvme.sys

2013-11-16 17:02 - 2013-10-05 15:21 - 00699840 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll

2013-11-16 17:02 - 2013-10-05 13:05 - 00578952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll

2013-11-16 17:02 - 2013-10-05 12:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys

2013-11-16 17:02 - 2013-10-05 10:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe

2013-11-16 17:02 - 2013-10-05 10:18 - 01011712 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll

2013-11-16 17:02 - 2013-10-05 10:07 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll

2013-11-16 17:02 - 2013-10-05 09:56 - 01147904 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll

2013-11-16 17:02 - 2013-10-05 09:55 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\miutils.dll

2013-11-16 17:02 - 2013-10-05 09:40 - 00795648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll

2013-11-16 17:02 - 2013-10-05 09:24 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\miutils.dll

2013-11-16 17:02 - 2013-10-05 09:21 - 00920064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll

2013-11-16 17:02 - 2013-10-05 09:15 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\pcsvDevice.dll

2013-11-16 17:02 - 2013-10-05 08:43 - 00578560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll

2013-11-16 17:02 - 2013-10-05 08:39 - 06639616 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll

2013-11-16 17:02 - 2013-10-05 08:35 - 00411648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll

2013-11-16 17:02 - 2013-10-05 08:32 - 05769728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll

2013-11-16 17:02 - 2013-10-04 09:10 - 00533504 _____ (Microsoft Corporation) C:\Windows\system32\AppReadiness.dll

2013-11-16 17:02 - 2013-09-19 06:04 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll

2013-11-16 17:02 - 2013-09-17 10:06 - 01067080 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll

2013-11-16 17:02 - 2013-09-17 10:06 - 00465960 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll

2013-11-16 17:02 - 2013-09-17 08:01 - 00270848 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys

2013-11-16 17:02 - 2013-09-17 07:31 - 00883184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll

2013-11-16 17:02 - 2013-09-17 07:31 - 00326024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll

2013-11-16 17:02 - 2013-09-17 05:37 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\dafBth.dll

2013-11-16 17:02 - 2013-09-14 15:07 - 02134120 _____ (Microsoft Corporation) C:\Windows\system32\d3d9.dll

2013-11-16 17:02 - 2013-09-14 15:00 - 00391512 _____ (Microsoft Corporation) C:\Windows\system32\tsmf.dll

2013-11-16 17:02 - 2013-09-14 13:39 - 01799944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d9.dll

2013-11-16 17:02 - 2013-09-14 13:33 - 00345552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsmf.dll

2013-11-16 17:02 - 2013-09-14 11:05 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe

2013-11-16 17:02 - 2013-09-14 10:11 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll

2013-11-16 17:02 - 2013-09-13 09:22 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\ftp.exe

2013-11-16 17:02 - 2013-09-13 08:47 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ftp.exe

2013-11-16 17:02 - 2013-09-12 09:45 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\eappgnui.dll

2013-11-16 17:02 - 2013-09-12 09:08 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\eapp3hst.dll

2013-11-16 17:02 - 2013-09-12 09:08 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\WiFiDisplay.dll

2013-11-16 17:02 - 2013-09-12 09:02 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappgnui.dll

2013-11-16 17:02 - 2013-09-12 08:44 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\eapphost.dll

2013-11-16 17:02 - 2013-09-12 08:37 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapp3hst.dll

2013-11-16 17:02 - 2013-09-12 08:37 - 00184832 _____ (Microsoft Corporation) C:\Windows\system32\dafWfdProvider.dll

2013-11-16 17:02 - 2013-09-12 08:21 - 00262144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eapphost.dll

2013-11-16 17:02 - 2013-09-12 08:16 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\eappcfg.dll

2013-11-16 17:02 - 2013-09-12 08:01 - 00272896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eappcfg.dll

2013-11-16 17:02 - 2013-09-10 06:26 - 04599808 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll

2013-11-16 17:02 - 2013-09-10 05:52 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\msched.dll

2013-11-16 17:02 - 2013-09-10 05:34 - 03934208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll

2013-11-15 14:15 - 2013-11-15 14:18 - 00000150 _____ C:\Users\Ivan\Desktop\Weltbild.txt

2013-11-14 15:49 - 2013-11-18 02:18 - 00000000 ____D C:\Fraps

2013-11-14 15:49 - 2013-11-14 15:49 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps

2013-11-14 15:13 - 2013-10-05 15:21 - 01341288 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2013-11-14 15:13 - 2013-10-05 09:39 - 01067008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2013-11-14 15:12 - 2013-10-13 03:48 - 00136536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys

2013-11-14 15:12 - 2013-10-12 22:48 - 00828416 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL

2013-11-14 15:12 - 2013-10-12 22:34 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL

2013-11-14 01:22 - 2013-11-14 01:30 - 00000000 ____D C:\Tes5-edit

2013-11-14 01:08 - 2013-11-14 01:08 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe

2013-11-14 01:08 - 2013-11-14 01:08 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe

2013-11-14 01:08 - 2013-11-14 01:08 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe

2013-11-14 01:08 - 2013-11-14 01:08 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2013-11-14 01:08 - 2013-11-14 01:08 - 00000000 ____D C:\Program Files (x86)\Java

2013-11-14 01:03 - 2013-11-14 01:03 - 00000000 ____D C:\BOSS

2013-11-13 22:03 - 2013-11-13 22:04 - 00000000 ____D C:\Windows\system32\MRT

2013-11-13 22:03 - 2013-11-07 16:00 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2013-11-13 21:13 - 2013-10-16 16:58 - 01943536 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2013-11-13 21:13 - 2013-10-16 14:54 - 01581968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
 

==================== One Month Modified Files and Folders =======
 

2013-12-13 03:50 - 2013-12-13 03:50 - 00013134 _____ C:\Users\Ivan\Downloads\FRST.txt

2013-12-13 03:48 - 2013-12-11 02:03 - 00898873 _____ C:\Windows\WindowsUpdate.log

2013-12-13 03:48 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sru

2013-12-13 03:47 - 2013-12-12 23:41 - 00104916 _____ C:\Windows\PFRO.log

2013-12-13 03:47 - 2013-12-11 02:21 - 00000000 ____D C:\ProgramData\NVIDIA

2013-12-13 03:47 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2013-12-13 03:47 - 2013-08-22 14:25 - 00524288 ___SH C:\Windows\system32\config\BBI

2013-12-13 03:45 - 2013-10-26 14:52 - 00000000 ____D C:\Users\Ivan

2013-12-13 03:44 - 2013-12-13 03:44 - 00000000 ____D C:\FRST

2013-12-13 03:43 - 2013-12-13 03:42 - 01927462 _____ (Farbar) C:\Users\Ivan\Downloads\FRST64.exe

2013-12-13 03:36 - 2013-10-27 23:50 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1302934777-1200874132-3831346741-1001

2013-12-13 03:03 - 2013-10-27 23:48 - 00001138 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001UA.job

2013-12-13 02:59 - 2013-12-13 02:59 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Ivan\Downloads\mbam-setup-1.75.0.1300 (1).exe

2013-12-13 02:55 - 2013-12-13 02:55 - 00001125 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Malwarebytes

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-12-13 02:54 - 2013-12-13 02:54 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Ivan\Downloads\mbam-setup-1.75.0.1300.exe

2013-12-13 02:45 - 2013-12-12 23:08 - 00007605 _____ C:\Users\Ivan\AppData\Local\Resmon.ResmonCfg

2013-12-13 02:07 - 2013-12-13 02:07 - 00979064 _____ C:\Users\Ivan\Downloads\win81_x64_rc1.7z

2013-12-13 01:57 - 2013-10-26 14:54 - 00000000 ___RD C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2013-12-13 01:48 - 2013-12-13 01:48 - 00000828 __RSH C:\ProgramData\ntuser.pol

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Avira

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\ProgramData\AskPartnerNetwork

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\ProgramData\APN

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork

2013-12-13 01:42 - 2013-12-13 01:42 - 00002086 _____ C:\Users\Public\Desktop\Avira Control Center.lnk

2013-12-13 01:42 - 2013-12-13 01:42 - 00000000 ____D C:\ProgramData\Avira

2013-12-13 01:42 - 2013-12-13 01:42 - 00000000 ____D C:\Program Files (x86)\Avira

2013-12-13 01:42 - 2013-08-22 16:36 - 00000000 ___HD C:\Windows\system32\GroupPolicy

2013-12-13 01:33 - 2013-12-13 01:32 - 129598176 _____ C:\Users\Ivan\Downloads\avira_free_antivirus_de.exe

2013-12-13 01:25 - 2013-12-13 01:25 - 00001226 _____ C:\Users\Public\Desktop\HD VDeck.lnk

2013-12-13 01:25 - 2013-12-13 01:25 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information

2013-12-13 01:25 - 2013-12-13 01:23 - 00000000 ____D C:\Program Files (x86)\VIA

2013-12-13 01:25 - 2013-12-13 01:12 - 00000309 _____ C:\Windows\setupact.log

2013-12-13 01:25 - 2013-12-13 01:10 - 00000000 ____D C:\Gigabyte updates

2013-12-13 01:24 - 2013-12-13 01:24 - 01545259 _____ (Igor Pavlov) C:\Users\Ivan\Downloads\mb_utility_intel_irst.exe

2013-12-13 01:24 - 2013-12-13 01:24 - 00000000 ____D C:\Windows\system32\SRSLabs

2013-12-13 01:24 - 2013-12-13 01:24 - 00000000 ____D C:\Program Files\VIA

2013-12-13 01:20 - 2013-12-13 01:20 - 15617292 _____ (Igor Pavlov) C:\Users\Ivan\Downloads\mb_driver_via_usb3_w8.1.exe

2013-12-13 01:18 - 2013-12-13 01:18 - 138345026 _____ (Igor Pavlov) C:\Users\Ivan\Downloads\mb_driver_audio_via_w8.1.exe

2013-12-13 01:15 - 2013-12-13 01:15 - 01302385 _____ (Igor Pavlov) C:\Users\Ivan\Downloads\mb_driver_chipset_intel_7series.exe

2013-12-13 01:12 - 2013-12-13 01:12 - 00000000 _____ C:\Windows\setuperr.log

2013-12-13 01:11 - 2013-12-13 01:11 - 01804472 _____ C:\Windows\SysWOW64\PerfStringBackup.INI

2013-12-13 01:11 - 2013-12-13 01:11 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Intel Corporation

2013-12-13 01:11 - 2013-08-23 00:24 - 00765378 _____ C:\Windows\system32\perfh007.dat

2013-12-13 01:11 - 2013-08-23 00:24 - 00159696 _____ C:\Windows\system32\perfc007.dat

2013-12-13 01:10 - 2013-12-13 01:10 - 00000000 ____D C:\Users\Ivan\Intel

2013-12-13 01:10 - 2013-12-13 01:10 - 00000000 ____D C:\ProgramData\Intel

2013-12-13 01:10 - 2013-12-13 01:10 - 00000000 ____D C:\Program Files\Intel

2013-12-13 01:10 - 2013-10-29 14:37 - 00000000 ____D C:\Users\Ivan\Desktop\Cube World

2013-12-13 01:06 - 2013-12-13 01:06 - 14717504 _____ (Igor Pavlov) C:\Users\Ivan\Downloads\mb_driver_intel_irst_7series.exe

2013-12-13 01:06 - 2013-10-28 01:42 - 00000000 ____D C:\Program Files (x86)\Steam

2013-12-13 00:58 - 2013-12-13 00:05 - 14024704 _____ C:\Users\Ivan\AppData\Roaming\Sandra.mdb

2013-12-13 00:31 - 2013-12-13 00:31 - 15247088 _____ C:\Users\Ivan\Downloads\SeaBootBuilderr_Dell_Pharaoh_KC47_ZPE.exe

2013-12-13 00:13 - 2013-12-12 00:22 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\NVIDIA

2013-12-13 00:11 - 2013-12-13 00:11 - 00000000 ____D C:\winaam

2013-12-13 00:10 - 2013-12-13 00:10 - 00126375 _____ C:\Users\Ivan\Downloads\winaam-292.zip

2013-12-13 00:03 - 2013-12-13 00:03 - 00002120 _____ C:\Users\Public\Desktop\SiSoftware Sandra Lite 2014.RTM.lnk

2013-12-13 00:03 - 2013-12-13 00:03 - 00000000 ____D C:\Program Files\SiSoftware

2013-12-13 00:02 - 2013-12-13 00:02 - 67530368 _____ (SiSoftware                                                  ) C:\Users\Ivan\Downloads\san2010b.exe

2013-12-12 23:58 - 2013-12-12 23:58 - 00000000 ____D C:\Users\Ivan\SystemRequirementsLab

2013-12-12 23:57 - 2013-12-12 23:57 - 00405504 _____ C:\Users\Ivan\Downloads\intel_srldetect_4.5.13.0.msi

2013-12-12 23:57 - 2013-12-12 23:57 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab

2013-12-12 23:37 - 2013-10-28 13:18 - 00000000 ____D C:\ProgramData\Ashampoo

2013-12-12 23:36 - 2013-10-28 13:05 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Samsung

2013-12-12 23:36 - 2013-10-28 13:05 - 00000000 ____D C:\Users\Ivan\AppData\Local\Samsung

2013-12-12 23:36 - 2013-10-28 13:01 - 00000000 ____D C:\ProgramData\Samsung

2013-12-12 23:36 - 2013-10-28 13:01 - 00000000 ____D C:\Program Files (x86)\Samsung

2013-12-12 23:34 - 2013-12-08 17:48 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

2013-12-12 23:07 - 2013-10-26 14:55 - 00000000 __RDO C:\Users\Ivan\SkyDrive

2013-12-12 23:05 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData

2013-12-12 23:05 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\WinStore

2013-12-12 23:05 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\MediaViewer

2013-12-12 23:05 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\FileManager

2013-12-12 23:05 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Camera

2013-12-12 22:29 - 2013-10-28 01:25 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Spotify

2013-12-12 22:06 - 2013-10-28 01:26 - 00000000 ____D C:\Users\Ivan\AppData\Local\Spotify

2013-12-12 00:19 - 2013-12-12 00:19 - 00000000 ____D C:\Users\Ivan\AppData\Local\Chromium

2013-12-12 00:19 - 2013-12-12 00:18 - 00000000 ____D C:\Users\Ivan\Documents\Rockstar Games

2013-12-12 00:15 - 2013-12-12 00:15 - 00000000 ____D C:\Program Files (x86)\Rockstar Games

2013-12-12 00:12 - 2013-10-28 19:24 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\CodeBlocks

2013-12-11 16:03 - 2013-10-27 23:48 - 00001086 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001Core.job

2013-12-11 07:48 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache

2013-12-11 07:28 - 2013-12-11 07:28 - 00000222 _____ C:\Users\Ivan\Desktop\L.A. Noire.url

2013-12-11 04:08 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\NDF

2013-12-11 03:41 - 2013-12-11 03:40 - 00000000 ___HD C:\Windows\msdownld.tmp

2013-12-11 03:41 - 2013-10-29 14:36 - 00000000 ____D C:\Windows\SysWOW64\directx

2013-12-11 03:40 - 2013-12-11 03:40 - 00292184 _____ (Microsoft Corporation) C:\Users\Ivan\Downloads\dxwebsetup.exe

2013-12-11 03:21 - 2013-12-11 03:21 - 01762824 _____ (Microsoft Corporation) C:\Users\Ivan\Downloads\vcredist_x86.exe

2013-12-11 02:59 - 2013-12-11 02:55 - 699528640 _____ (Futuremark) C:\Users\Ivan\Downloads\PCMark_Vantage_v120_installer.exe

2013-12-11 02:35 - 2013-08-22 15:44 - 00376656 _____ C:\Windows\system32\FNTCACHE.DAT

2013-12-11 02:28 - 2013-12-11 02:28 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf

2013-12-11 02:28 - 2013-12-11 02:28 - 00000000 ____D C:\Program Files\Synaptics

2013-12-11 02:26 - 2013-12-11 02:26 - 00000000 ____D C:\Program Files (x86)\Intel

2013-12-11 02:22 - 2013-12-11 02:22 - 00002153 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk

2013-12-11 02:22 - 2013-10-27 23:52 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2013-12-11 02:21 - 2013-10-27 23:52 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2013-12-11 02:21 - 2013-10-27 23:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2013-12-11 02:21 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Help

2013-12-11 02:08 - 2013-11-27 22:37 - 00000000 ____D C:\Users\Ivan\AppData\Local\NVIDIA Corporation

2013-12-11 02:08 - 2013-11-06 02:41 - 00000000 ____D C:\Users\Ivan\AppData\Local\NVIDIA

2013-12-11 02:06 - 2013-12-11 02:04 - 255488144 _____ (NVIDIA Corporation) C:\Users\Ivan\Downloads\331.82-desktop-win8-win7-winvista-64bit-international-whql.exe

2013-12-10 14:19 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness

2013-12-10 13:51 - 2013-11-23 20:23 - 00000000 ____D C:\Windows\Minidump

2013-12-10 13:49 - 2013-11-23 20:23 - 855937094 _____ C:\Windows\MEMORY.DMP

2013-12-10 05:59 - 2013-12-10 02:41 - 00000000 ____D C:\Users\Ivan\Desktop\Ram kaufne

2013-12-10 01:28 - 2013-12-10 01:28 - 00000885 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk

2013-12-10 01:28 - 2013-12-10 01:28 - 00000000 ____D C:\Program Files\CPUID

2013-12-10 01:27 - 2013-12-10 01:27 - 01460512 _____ (                                                            ) C:\Users\Ivan\Downloads\cpu-z_1.67.1-setup-en.exe

2013-12-10 01:12 - 2013-12-10 01:12 - 00000000 ____D C:\ProgramData\McAfee

2013-12-10 01:12 - 2013-10-28 12:12 - 00000000 ____D C:\Users\Ivan\AppData\Local\Adobe

2013-12-10 01:11 - 2013-12-10 01:11 - 02294160 _____ C:\Users\Ivan\Downloads\avira_free_antivirus.exe

2013-12-09 22:45 - 2013-12-09 22:45 - 00000000 ____D C:\Users\Ivan\Desktop\DX

2013-12-09 22:41 - 2013-12-09 22:40 - 100273008 _____ (Microsoft Corporation) C:\Users\Ivan\Downloads\directx_Jun2010redist.exe

2013-12-09 11:37 - 2013-12-13 01:42 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys

2013-12-09 11:37 - 2013-12-13 01:42 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys

2013-12-09 11:37 - 2013-12-13 01:42 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys

2013-12-09 11:37 - 2013-12-13 01:42 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys

2013-12-08 18:25 - 2013-12-08 18:18 - 00000000 ____D C:\Users\Ivan\AppData\Local\gamemaker_studio

2013-12-08 18:18 - 2013-12-08 18:18 - 00000000 ____D C:\Users\Ivan\Documents\GameMaker

2013-12-08 18:18 - 2013-12-08 18:18 - 00000000 ____D C:\ProgramData\gamemaker_studio

2013-12-08 17:55 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2013-12-05 15:58 - 2013-10-27 23:48 - 00004082 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001UA

2013-12-05 15:58 - 2013-10-27 23:48 - 00003702 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001Core

2013-12-05 00:15 - 2013-10-26 14:50 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI

2013-12-04 23:36 - 2013-11-07 03:20 - 00012288 ___SH C:\Users\Ivan\Desktop\Thumbs.db

2013-12-04 01:05 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2013-12-04 01:05 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2013-11-29 17:56 - 2013-11-06 02:38 - 01096480 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll

2013-11-29 17:56 - 2013-11-06 02:38 - 00979744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll

2013-11-29 00:00 - 2013-11-04 22:17 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\vlc

2013-11-27 23:27 - 2013-11-26 16:11 - 00000000 ____D C:\Users\Ivan\Documents\Uni-PDF

2013-11-26 12:54 - 2013-12-11 02:28 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-26 11:11 - 2013-12-11 02:28 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-26 10:41 - 2013-12-11 02:27 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-26 09:57 - 2013-12-11 02:27 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-26 09:38 - 2013-12-11 02:27 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-26 09:35 - 2013-12-11 02:27 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-26 09:16 - 2013-12-11 02:27 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-26 09:02 - 2013-12-11 02:27 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-26 08:48 - 2013-12-11 02:27 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-26 08:32 - 2013-12-11 02:27 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-11-26 08:26 - 2013-12-11 02:27 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-26 08:07 - 2013-12-11 02:27 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-26 07:40 - 2013-12-11 02:27 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-26 07:34 - 2013-12-11 02:27 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-26 07:34 - 2013-12-11 02:27 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-11-26 07:33 - 2013-12-11 02:27 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-26 07:27 - 2013-12-11 02:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-23 05:34 - 2013-12-11 02:28 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2013-11-23 05:13 - 2013-12-11 02:28 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

2013-11-23 04:32 - 2013-12-11 02:28 - 04105728 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll

2013-11-23 04:10 - 2013-12-11 02:28 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe

2013-11-20 20:42 - 2013-11-20 20:41 - 00000000 ____D C:\Emulator

2013-11-19 20:21 - 2013-10-26 14:54 - 00000000 ___RD C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-11-19 15:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\migwiz

2013-11-19 15:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\PolicyDefinitions

2013-11-19 11:30 - 2013-10-28 00:19 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

2013-11-18 02:18 - 2013-11-14 15:49 - 00000000 ____D C:\Fraps

2013-11-17 05:18 - 2013-11-17 05:18 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-17 05:18 - 2013-11-17 05:18 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-16 19:04 - 2013-11-06 12:54 - 00000000 ____D C:\Users\Ivan\AppData\Local\Skyrim

2013-11-15 14:18 - 2013-11-15 14:15 - 00000150 _____ C:\Users\Ivan\Desktop\Weltbild.txt

2013-11-14 15:49 - 2013-11-14 15:49 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Fraps

2013-11-14 12:57 - 2013-12-11 02:20 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll

2013-11-14 12:57 - 2013-12-11 02:20 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys

2013-11-14 12:57 - 2013-12-11 02:20 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll

2013-11-14 12:56 - 2013-12-11 02:21 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll

2013-11-14 12:56 - 2013-12-11 02:21 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2013-11-14 12:56 - 2013-12-11 02:20 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll

2013-11-14 12:56 - 2013-12-11 02:20 - 00023754 _____ C:\Windows\system32\nvinfo.pb

2013-11-14 01:30 - 2013-11-14 01:22 - 00000000 ____D C:\Tes5-edit

2013-11-14 01:08 - 2013-11-14 01:08 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe

2013-11-14 01:08 - 2013-11-14 01:08 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe

2013-11-14 01:08 - 2013-11-14 01:08 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe

2013-11-14 01:08 - 2013-11-14 01:08 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2013-11-14 01:08 - 2013-11-14 01:08 - 00000000 ____D C:\Program Files (x86)\Java

2013-11-14 01:03 - 2013-11-14 01:03 - 00000000 ____D C:\BOSS

2013-11-14 00:48 - 2013-10-26 14:54 - 00000000 ____D C:\Users\Ivan\AppData\Local\VirtualStore

2013-11-13 22:04 - 2013-11-13 22:03 - 00000000 ____D C:\Windows\system32\MRT
 

Files to move or delete:

====================

C:\Users\Ivan\Cube.exe

C:\Users\Ivan\CubeLauncher.exe

C:\Users\Ivan\FreeImage.dll

C:\Users\Ivan\msvcp110.dll

C:\Users\Ivan\msvcr110.dll

C:\Users\Ivan\resource1.dat

C:\Users\Ivan\resource2.dat

C:\Users\Ivan\unins000.dat

C:\Users\Ivan\unins000.exe

C:\Users\Ivan\vccorlib110.dll

C:\Users\Ivan\XAudio2_8.dll

C:\Users\Ivan\zlib1.dll
 
 

Some content of TEMP:

====================

C:\Users\Ivan\AppData\Local\Temp\avgnt.exe

C:\Users\Ivan\AppData\Local\Temp\Offercast_AVIRAV7_.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-12-11 07:38
 

==================== End Of Log ============================

--- --- ---

Code:

Addition(Frist):

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-12-2013 01

Ran by Ivan at 2013-12-13 03:51:15

Running from C:\Users\Ivan\Downloads

Boot Mode: Normal

==========================================================
 
 

==================== Security Center ========================
 

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: Avira Desktop (Disabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

AS: Avira Desktop (Disabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 

==================== Installed Programs ======================
 

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)

Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)

Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05)

Ashampoo WinOptimizer 9 v.9.04.31 (x32 Version: 9.04.31)

Audacity 2.0.5 (x32 Version: 2.0.5)

Avira Free Antivirus (x32 Version: 14.0.2.286)

Avira SearchFree Toolbar (x32 Version: 12.6.0.1898)

Blender (Version: 2.68a)

BOSS (x32 Version: 2.1.1)

Canon MG3100 series MP Drivers

Citavi 4 (x32 Version: 4.2.0.11)

CodeBlocks (HKCU Version: 12.11)

CPUID CPU-Z 1.67.1

Fraps (remove only) (x32)

GeForce Experience NvStream Client Components (Version: 1.6.28)

Google Chrome (HKCU Version: 31.0.1650.63)

Intel(R) Rapid Storage Technology (Version: 12.8.0.1016)

Java 7 Update 45 (64-bit) (Version: 7.0.450)

Java 7 Update 45 (x32 Version: 7.0.450)

Java Auto Updater (x32 Version: 2.1.9.8)

L.A. Noire (x32)

Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)

Mathematica Extras 9.0 (4055459) (Version: 9.0.1)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)

Nexus Mod Manager (Version: 0.45.7)

NVIDIA 3D Vision Controller-Treiber 331.82 (Version: 331.82)

NVIDIA 3D Vision Treiber 331.82 (Version: 331.82)

NVIDIA GeForce Experience 1.8 (Version: 1.8)

NVIDIA Grafiktreiber 331.82 (Version: 331.82)

NVIDIA Install Application (Version: 2.1002.142.992)

NVIDIA LED Visualizer 1.0 (Version: 1.0)

NVIDIA Network Service (Version: 1.0)

NVIDIA PhysX (x32 Version: 9.13.0725)

NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725)

NVIDIA ShadowPlay 10.10.5 (Version: 10.10.5)

NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3182)

NVIDIA Systemsteuerung 331.82 (Version: 331.82)

NVIDIA Update 10.10.5 (Version: 10.10.5)

NVIDIA Update Core (Version: 10.10.5)

NVIDIA Virtual Audio 1.2.12 (Version: 1.2.12)

OpenOffice 4.0.1 (x32 Version: 4.01.9714)

Paint.NET v3.5.11 (Version: 3.61.0)

Platform (x32 Version: 1.39)

Rockstar Games Social Club (x32 Version: 1.1.0.6)

SAMSUNG USB Driver for Mobile Phones (Version: 1.5.27.0)

SHIELD Streaming (Version: 1.6.75)

Sid Meier's Civilization V (x32)

SiSoftware Sandra Lite 2014.RTM (Version: 20.10.2014.2)

Spotify (HKCU Version: 0.9.6.81.gd359a796)

Steam (x32 Version: 1.0.0.0)

System Requirements Lab for Intel (x32 Version: 4.5.13.0)

The Elder Scrolls V: Skyrim (x32)

VIA Plattform-Geräte-Manager (x32 Version: 1.39)

VLC media player 2.1.0 (Version: 2.1.0)

Wolfram Mathematica 9 (M-WIN-L 9.0.1 4055652) (Version: 9.0.1)
 

==================== Restore Points  =========================
 

26-11-2013 20:47:28 Geplanter Prüfpunkt

05-12-2013 21:58:40 Geplanter Prüfpunkt

08-12-2013 16:55:53 DirectX wurde installiert

09-12-2013 21:50:22 DirectX wurde installiert

09-12-2013 22:08:42 DirectX wurde installiert

11-12-2013 01:26:05 SlimDrivers Installing Drivers

11-12-2013 01:27:31 SlimDrivers Installing Drivers

11-12-2013 02:17:33 DirectX wurde installiert

11-12-2013 23:14:10 DirectX wurde installiert

12-12-2013 22:35:24 Removed Samsung Kies

13-12-2013 00:23:32 Installed Platform
 

==================== Hosts content: ==========================
 

2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 

==================== Scheduled Tasks (whitelisted) =============
 

Task: {006A7B67-3908-442B-839C-B08115E064AF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001Core => C:\Users\Ivan\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-27] (Google Inc.)

Task: {044C0ECB-D77C-4D85-A7C5-01275585901D} - System32\Tasks\Microsoft\Windows\Autochk\Proxy => Rundll32.exe /d acproxy.dll,PerformAutochkOperations

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask

Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => WSClient.dllWSClient.dll,RefreshBannedAppsList

Task: {0CDA7F67-716F-4559-B04D-B637BE0C0E28} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe aepdu.dll,AePduRunUpdate

Task: {0D8A891D-890C-4808-84D8-2F436AB14653} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe

Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask

Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate

Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)

Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\System32\tzsync.exe [2013-08-22] (Microsoft Corporation)

Task: {3BA18DA4-3665-41B5-B21D-FA5C1C85503C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001UA => C:\Users\Ivan\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-27] (Google Inc.)

Task: {3C649983-F1C4-4143-A29A-BC21BBA28FCE} - System32\Tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector => Rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART

Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance

Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup

Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task

Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask

Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState

Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task

Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => C:\Windows\System32\AppXDeploymentClient.dll [2013-11-08] (Microsoft Corporation)

Task: {A216000C-66D3-4E66-8A6E-D98AB5762D3C} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => BthUdTask.exe

Task: {A693A6E9-FB8C-46CA-932B-88DC7684BE1C} - System32\Tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange => Rundll32.exe bfe.dll,BfeOnServiceStartTypeChange

Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask

Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => WSClient.dllWSClient.dll,WSpTLR licensing

Task: {E49F9143-1490-4B8D-A2E3-52C4644E3F43} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\System32\MRT.exe [2013-11-07] (Microsoft Corporation)

Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001Core.job => C:\Users\Ivan\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001UA.job => C:\Users\Ivan\AppData\Local\Google\Update\GoogleUpdate.exe
 

==================== Loaded Modules (whitelisted) =============
 

2013-11-20 20:22 - 2013-11-20 20:22 - 00183808 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\ErrorReporting.dll

2013-12-13 01:42 - 2013-12-09 11:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
 

==================== Alternate Data Streams (whitelisted) =========
 

AlternateDataStreams: C:\Users\Ivan\SkyDrive:ms-properties
 

==================== Safe Mode (whitelisted) ===================
 
 

==================== Faulty Device Manager Devices =============
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (12/13/2013 01:23:36 AM) (Source: Microsoft-Windows-CAPI2) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/13/2013 01:11:06 AM) (Source: Perflib) (User: )

Description: rdyboost4
 

Error: (12/12/2013 11:35:29 PM) (Source: Microsoft-Windows-CAPI2) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/12/2013 10:52:22 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: CivilizationV_Tablet.exe, Version: 1.0.3.144, Zeitstempel: 0x52586904

Name des fehlerhaften Moduls: CivilizationV_Tablet.exe, Version: 1.0.3.144, Zeitstempel: 0x52586904

Ausnahmecode: 0xc0000005

Fehleroffset: 0x000b3f52

ID des fehlerhaften Prozesses: 0xc40

Startzeit der fehlerhaften Anwendung: 0xCivilizationV_Tablet.exe0

Pfad der fehlerhaften Anwendung: CivilizationV_Tablet.exe1

Pfad des fehlerhaften Moduls: CivilizationV_Tablet.exe2

Berichtskennung: CivilizationV_Tablet.exe3

Vollständiger Name des fehlerhaften Pakets: CivilizationV_Tablet.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: CivilizationV_Tablet.exe5
 

Error: (12/12/2013 10:05:59 PM) (Source: Application Hang) (User: )

Description: Programm LiveComm.exe, Version 17.5.9600.20315 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
 

Prozess-ID: 9a0
 

Startzeit: 01cef77ce1867150
 

Endzeit: 4294967295
 

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exe
 

Berichts-ID: 300ec757-6371-11e3-8270-902b34583dea
 

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe
 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
 

Error: (12/12/2013 04:12:01 PM) (Source: Application Hang) (User: )

Description: Programm LiveComm.exe, Version 17.5.9600.20315 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
 

Prozess-ID: 360
 

Startzeit: 01cef61f81fe4736
 

Endzeit: 4294967295
 

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exe
 

Berichts-ID: bf6fc879-633f-11e3-826f-902b34583dea
 

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe
 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1
 

Error: (12/12/2013 00:14:15 AM) (Source: Microsoft-Windows-CAPI2) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert

.
 

Error: (12/11/2013 05:35:11 AM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: CivilizationV.exe, Version: 1.0.3.144, Zeitstempel: 0x52585e86

Name des fehlerhaften Moduls: CvGameCore_Expansion2.dll, Version: 3.0.3.0, Zeitstempel: 0x52585faa

Ausnahmecode: 0xc0000005

Fehleroffset: 0x000201cd

ID des fehlerhaften Prozesses: 0x1840

Startzeit der fehlerhaften Anwendung: 0xCivilizationV.exe0

Pfad der fehlerhaften Anwendung: CivilizationV.exe1

Pfad des fehlerhaften Moduls: CivilizationV.exe2

Berichtskennung: CivilizationV.exe3

Vollständiger Name des fehlerhaften Pakets: CivilizationV.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: CivilizationV.exe5
 

Error: (12/11/2013 05:32:11 AM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: CivilizationV_DX11.exe, Version: 1.0.3.144, Zeitstempel: 0x525863c1

Name des fehlerhaften Moduls: CvGameCore_Expansion2.dll, Version: 3.0.3.0, Zeitstempel: 0x52585faa

Ausnahmecode: 0xc0000005

Fehleroffset: 0x000201cd

ID des fehlerhaften Prozesses: 0xe34

Startzeit der fehlerhaften Anwendung: 0xCivilizationV_DX11.exe0

Pfad der fehlerhaften Anwendung: CivilizationV_DX11.exe1

Pfad des fehlerhaften Moduls: CivilizationV_DX11.exe2

Berichtskennung: CivilizationV_DX11.exe3

Vollständiger Name des fehlerhaften Pakets: CivilizationV_DX11.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: CivilizationV_DX11.exe5
 

Error: (12/11/2013 05:27:49 AM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: CivilizationV_Tablet.exe, Version: 1.0.3.144, Zeitstempel: 0x52586904

Name des fehlerhaften Moduls: CvGameCore_Expansion2.dll, Version: 3.0.3.0, Zeitstempel: 0x52585faa

Ausnahmecode: 0xc0000005

Fehleroffset: 0x000201cd

ID des fehlerhaften Prozesses: 0xd10

Startzeit der fehlerhaften Anwendung: 0xCivilizationV_Tablet.exe0

Pfad der fehlerhaften Anwendung: CivilizationV_Tablet.exe1

Pfad des fehlerhaften Moduls: CivilizationV_Tablet.exe2

Berichtskennung: CivilizationV_Tablet.exe3

Vollständiger Name des fehlerhaften Pakets: CivilizationV_Tablet.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: CivilizationV_Tablet.exe5
 
 

System errors:

=============

Error: (12/13/2013 02:38:47 AM) (Source: DCOM) (User: IVANKATZER)

Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 

Error: (12/13/2013 02:38:47 AM) (Source: DCOM) (User: IVANKATZER)

Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 

Error: (12/13/2013 01:46:37 AM) (Source: Service Control Manager) (User: )

Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Gerätezuordnungsdienst" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 

%%1056
 

Error: (12/13/2013 01:45:42 AM) (Source: Service Control Manager) (User: )

Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Netzwerkverbindungsbroker" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 

%%1056
 

Error: (12/13/2013 01:45:37 AM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Windows Driver Foundation - Benutzermodus-Treiberframework" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (12/13/2013 01:45:37 AM) (Source: Service Control Manager) (User: )

Description: Dienst "Diagnosesystemhost" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (12/13/2013 01:45:37 AM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Überwachung verteilter Verknüpfungen (Client)" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (12/13/2013 01:45:37 AM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Superfetch" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (12/13/2013 01:45:37 AM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Programmkompatibilitäts-Assistent-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
 

Error: (12/13/2013 01:45:37 AM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Netzwerkverbindungen" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 100 Millisekunden durchgeführt: Neustart des Diensts.
 
 

Microsoft Office Sessions:

=========================

Error: (12/13/2013 01:23:36 AM) (Source: Microsoft-Windows-CAPI2)(User: )

Description: 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert
 

Error: (12/13/2013 01:11:06 AM) (Source: Perflib)(User: )

Description: rdyboost4
 

Error: (12/12/2013 11:35:29 PM) (Source: Microsoft-Windows-CAPI2)(User: )

Description: 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert
 

Error: (12/12/2013 10:52:22 PM) (Source: Application Error)(User: )

Description: CivilizationV_Tablet.exe1.0.3.14452586904CivilizationV_Tablet.exe1.0.3.14452586904c0000005000b3f52c4001cef77d254e303cC:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\CivilizationV_Tablet.exeC:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\CivilizationV_Tablet.exeada0c57a-6377-11e3-8270-902b34583dea
 

Error: (12/12/2013 10:05:59 PM) (Source: Application Hang)(User: )

Description: LiveComm.exe17.5.9600.203159a001cef77ce18671504294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exe300ec757-6371-11e3-8270-902b34583deamicrosoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
 

Error: (12/12/2013 04:12:01 PM) (Source: Application Hang)(User: )

Description: LiveComm.exe17.5.9600.2031536001cef61f81fe47364294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\LiveComm.exebf6fc879-633f-11e3-826f-902b34583deamicrosoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1
 

Error: (12/12/2013 00:14:15 AM) (Source: Microsoft-Windows-CAPI2)(User: )

Description: 

Details:

AddLegacyDriverFiles: Unable to back up image of binary Microsoft-Verbindungsschichterkennungsprotokoll.
 

System Error:

Zugriff verweigert
 

Error: (12/11/2013 05:35:11 AM) (Source: Application Error)(User: )

Description: CivilizationV.exe1.0.3.14452585e86CvGameCore_Expansion2.dll3.0.3.052585faac0000005000201cd184001cef62a09254c06C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\CivilizationV.exeC:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Assets\DLC\Expansion2\CvGameCore_Expansion2.dll9e48b556-621d-11e3-826f-902b34583dea
 

Error: (12/11/2013 05:32:11 AM) (Source: Application Error)(User: )

Description: CivilizationV_DX11.exe1.0.3.144525863c1CvGameCore_Expansion2.dll3.0.3.052585faac0000005000201cde3401cef6297b905ce2C:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\CivilizationV_DX11.exeC:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Assets\DLC\Expansion2\CvGameCore_Expansion2.dll338e4ea1-621d-11e3-826f-902b34583dea
 

Error: (12/11/2013 05:27:49 AM) (Source: Application Error)(User: )

Description: CivilizationV_Tablet.exe1.0.3.14452586904CvGameCore_Expansion2.dll3.0.3.052585faac0000005000201cdd1001cef628d7bd05cdC:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\CivilizationV_Tablet.exeC:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Assets\DLC\Expansion2\CvGameCore_Expansion2.dll96f78ec7-621c-11e3-826f-902b34583dea
 
 

==================== Memory info =========================== 
 

Percentage of memory in use: 25%

Total physical RAM: 4058.09 MB

Available physical RAM: 3031.74 MB

Total Pagefile: 8154.09 MB

Available Pagefile: 6619.79 MB

Total Virtual: 131072 MB

Available Virtual: 131071.83 MB
 

==================== Drives ================================
 

Drive c: () (Fixed) (Total:465.66 GB) (Free:374.6 GB) NTFS
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: 06DAEC2C)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=466 GB) - (Type=07 NTFS)
 

========================================================

Disk: 5 (Size: 4 GB) (Disk ID: 6F20736B)

No partition Table on disk 5.

Disk 5 is a removable device.
 

==================== End Of Log ============================

[CODE]GEmer:
GMER Logfile:

Code:

GMER 2.1.19163 - hxxp://www.gmer.net

Rootkit scan 2013-12-13 04:16:45

Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\00000032 ST500DM002-1BD142 rev.KC45 465,76GB

Running: gmer_2.1.19163.exe; Driver: C:\Users\Ivan\AppData\Local\Temp\uwriauog.sys
 
 

---- User code sections - GMER 2.1 ----
 

.text   C:\Windows\System32\spoolsv.exe[1384] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 506                                                    00007ffb8bf1169a 4 bytes [F1, 8B, FB, 7F]

.text   C:\Windows\System32\spoolsv.exe[1384] C:\Windows\system32\PSAPI.DLL!GetModuleBaseNameA + 514                                                    00007ffb8bf116a2 4 bytes [F1, 8B, FB, 7F]

.text   C:\Windows\System32\spoolsv.exe[1384] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 118                                                       00007ffb8bf1181a 4 bytes [F1, 8B, FB, 7F]

.text   C:\Windows\System32\spoolsv.exe[1384] C:\Windows\system32\PSAPI.DLL!QueryWorkingSet + 142                                                       00007ffb8bf11832 4 bytes [F1, 8B, FB, 7F]
 

---- Threads - GMER 2.1 ----
 

Thread  C:\Windows\system32\csrss.exe [580:616]                                                                                                         fffff960008394d0

Thread  C:\Windows\System32\SettingSyncHost.exe [4692:4688]                                                                                             00007ffb7c5164f4

Thread  C:\Windows\System32\SettingSyncHost.exe [4692:4672]                                                                                             00007ffb80ab4b30
 

---- Registry - GMER 2.1 ----
 

Reg     HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@SystemStartTime                                                                               0xAB 0xAF 0x15 0xB0 ...

Reg     HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData@SystemLastStartTime                                                                           0x80 0xAF 0x01 0x25 ...

Reg     HKLM\SYSTEM\CurrentControlSet\Control\CMF\SqmData\BootLanguages@de-DE                                                                           45

Reg     HKLM\SYSTEM\CurrentControlSet\Control\GraphicsDrivers\Configuration\HIT6021X220WB7600338_19_07D7_B5^326524B6E6F40C588CBEEE5343087B4C@Timestamp  0xF0 0xA4 0x9A 0xB0 ...

Reg     HKLM\SYSTEM\CurrentControlSet\Control\Lsa@LsaPid                                                                                                624

Reg     HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Kernel\RNG@RNGAuxiliarySeed                                                               -3700457

Reg     HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server@InstanceID                                                                                a3b29526-8133-42e8-90ff-be53b32

Reg     HKLM\SYSTEM\CurrentControlSet\Control\WDI\Config@ServerName                                                                                     \BaseNamedObjects\WDI_{a5f18038-ccbd-4914-a3b4-1c3afd131d57}

Reg     HKLM\SYSTEM\CurrentControlSet\Services\rdyboost\Parameters@ReadyBootPlanAge                                                                     1

Reg     HKLM\SYSTEM\CurrentControlSet\Services\rdyboost\Parameters@LastBootPlanUserTime                                                                 ?Fr?, ?Dez ?13 ?13, 03:48:53??????@???????@???????????????@????

Reg     HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Epoch@Epoch                                                                                 2237

Reg     HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile@EnableFirewall                                      1

Reg     HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile@EnableFirewall                                    1

Reg     HKLM\SYSTEM\CurrentControlSet\Services\srvnet\Parameters@MajorSequence                                                                          46

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel@AllItemsIconView                                                           1

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel@StartupPage                                                                1

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Shutdown@CleanShutdown                                                                  1

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastWindowsRequestBucketDrainTime                                        0x86 0xDF 0x22 0x38 ...

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastWindowsLargeRequestBucketDrainTime                                   0x86 0xDF 0x22 0x38 ...

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@OtherBandwidthBucketCounter                                              6675

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastOtherRequestBucketDrainTime                                          0x86 0xDF 0x22 0x38 ...

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@GlobalBandwidthBucketCounter                                             1538320

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastGlobalRequestBucketDrainTime                                         0x86 0xDF 0x22 0x38 ...

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\PolicyData@LastUploadTime                                                           0x76 0xD5 0x6F 0x38 ...

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\Live\Roaming\RegistrarData@LastRenewCollectionsInterest                                          0xA9 0x2D 0xC5 0xED ...

Reg     HKCU\Software\Microsoft\Windows\CurrentVersion\SettingSync\SyncData@PendingOperations                                                           2
 

---- EOF - GMER 2.1 ----

--- --- ---

Code:

Mailwarebytes:

Malwarebytes Anti-Malware (Test) 1.75.0.1300

www.malwarebytes.org
 

Datenbank Version: v2013.12.12.08
 

Windows 8 x64 NTFS

Internet Explorer 11.0.9600.16476

Ivan :: IVANKATZER [Administrator]
 

Schutz: Aktiviert
 

13.12.2013 03:00:54

MBAM-log-2013-12-13 (03-44-50).txt
 

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|F:\|G:\|H:\|I:\|K:\|)

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 393065

Laufzeit: 30 Minute(n), 55 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Windows Utils (PUP.Optional.NetData.A) -> Keine Aktion durchgeführt.
 

Infizierte Registrierungswerte: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Dateiobjekte der Registrierung: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Verzeichnisse: 1

C:\Users\Ivan\AppData\Roaming\Windows Net Data (PUP.Optional.NetData.A) -> Keine Aktion durchgeführt.
 

Infizierte Dateien: 8

C:\$Recycle.Bin\S-1-5-21-1302934777-1200874132-3831346741-1001\$R8NUAKQ.exe (Rogue.Agent) -> Keine Aktion durchgeführt.

C:\$Recycle.Bin\S-1-5-21-1302934777-1200874132-3831346741-1001\$RW0LD3Z.exe (PUP.Optional.Softonic.A) -> Keine Aktion durchgeführt.

C:\Users\Ivan\Documents\Uni-PDF\Inforamtik Programme\c++\H7.2.exe (Rogue.Agent) -> Keine Aktion durchgeführt.

C:\Users\Ivan\Server.exe (Trojan.Agent) -> Keine Aktion durchgeführt.

C:\Users\Ivan\AppData\Roaming\Windows Net Data\well.dat (PUP.Optional.NetData.A) -> Keine Aktion durchgeführt.

C:\Users\Ivan\AppData\Roaming\Windows Net Data\id.dat (PUP.Optional.NetData.A) -> Keine Aktion durchgeführt.

C:\Users\Ivan\AppData\Roaming\Windows Net Data\net.exe (PUP.Optional.NetData.A) -> Keine Aktion durchgeführt.

C:\Users\Ivan\AppData\Roaming\Windows Net Data\uninstaller.exe (PUP.Optional.NetData.A) -> Keine Aktion durchgeführt.
 

(Ende)

Code:

# AdwCleaner v3.015 - Bericht erstellt am 17/12/2013 um 15:05:00

# Updated 10/12/2013 von Xplode

# Betriebssystem : Windows 8.1 Pro  (64 bits)

# Benutzername : Ivan - IVANKATZER

# Gestartet von : C:\Users\Ivan\Downloads\adwcleaner.exe

# Option : Löschen
 

***** [ Dienste ] *****
 
 

***** [ Dateien / Ordner ] *****
 

Ordner Gelöscht : C:\Users\Ivan\AppData\Local\DownloadGuide
 

***** [ Verknüpfungen ] *****
 
 

***** [ Registrierungsdatenbank ] *****
 

Schlüssel Gelöscht : HKCU\Software\OCS

Schlüssel Gelöscht : HKCU\Software\Softonic
 

***** [ Browser ] *****
 

-\\ Internet Explorer v0.0.0.0
 
 

-\\ Google Chrome v
 

[ Datei : C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 

*************************
 

AdwCleaner[R0].txt - [991 octets] - [17/12/2013 15:00:55]

AdwCleaner[S0].txt - [818 octets] - [17/12/2013 15:05:00]
 

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [877 octets] ##########

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-12-2013 01

Ran by Ivan (administrator) on IVANKATZER on 17-12-2013 15:21:46

Running from C:\Users\Ivan\Downloads

Windows 8.1 Pro (X64) OS Language: German Standard

Internet Explorer Version 11

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Microsoft Corporation) C:\Windows\System32\dasHost.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe

() C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 9\LiveTunerService.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20315_x64__8wekyb3d8bbwe\livecomm.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Ashampoo Development GmbH & Co. KG) C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 9\LiveTuner.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

(Microsoft Corporation) C:\Windows\WinStore\WSHost.exe

(Microsoft Corporation) C:\Windows\System32\WWAHost.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [Ashampoo WinOptimizer Live-Tuner] - C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 9\LiveTuner.exe [2883936 2013-05-07] (Ashampoo Development GmbH & Co. KG)

HKLM\...\Policies\Explorer: [NoViewContextMenu] 0

HKLM\...\Policies\Explorer: [NoFind] 0

HKCU\...\Policies\Explorer: [DisallowRun] 1

HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)

HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.giga.de/

hxxp://www.giga.de/androidnews/

BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: Citavi Picker - {609D670F-B735-4da7-AC6D-F3BD358E325E} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)

BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 

Chrome: 

=======

CHR HomePage: 

CHR RestoreOnStartup: "hxxp://www.google.com", "hxxp://www.giga.de/", "hxxp://www.giga.de/androidnews/"

CHR DefaultSearchKeyword: google.de

CHR DefaultSearchProvider: Google

CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}

CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding}

CHR Extension: (Google Drive) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0

CHR Extension: (YouTube) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0

CHR Extension: (Google Search) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0

CHR Extension: (Springpad) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkmopoamfjnmppabeaphohombnjcjgla\6_0

CHR Extension: (AdBlock) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.16_0

CHR Extension: (Pocket) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjcnijlhddpbdemagnpefmlkjdagkogk\0.600_0

CHR Extension: (Google Wallet) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.5.0_0

CHR Extension: (Citavi Picker) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\piehhloihgjjiomhieeddiidpekaajio\2013.9.20_0

CHR Extension: (Gmail) - C:\Users\Ivan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0

CHR HKLM-x32\...\Chrome\Extension: [mkcedibhemacmilmkpndpkoidlnmgngg] - C:\Users\Ivan\ChromeExtensions\mkcedibhemacmilmkpndpkoidlnmgngg\amazon.crx

CHR HKLM-x32\...\Chrome\Extension: [piehhloihgjjiomhieeddiidpekaajio] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Chrome\ChromePicker.crx
 

==================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)

S3 DfSdkS; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 9\DfsdkS64.exe [544768 2009-08-24] (mst software GmbH, Germany)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)

S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.RTM\RpcAgentSrv.exe [72344 2008-11-25] (SiSoftware)

R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27768 2012-12-11] (VIA Technologies, Inc.)

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)

R2 WO_LiveService; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 9\LiveTunerService.exe [885088 2013-05-07] ()
 

==================== Drivers (Whitelisted) ====================
 

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)

S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)

S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)

S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)

S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)

R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)

S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-08-23] (Microsoft Corporation)

R2 LiveTunerPM; C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 9\LiveTunerProcessMonitor64.sys [12824 2011-03-08] ()

S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)

S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)

R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)

S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)

S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.RTM\WNt500x64\Sandra.sys [23112 2009-08-07] (SiSoftware)

S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)

R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2000-01-01] (Synaptics Incorporated)

S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-10-05] (Microsoft Corporation)

S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

S3 cpuz136; \??\C:\Users\Ivan\AppData\Local\Temp\cpuz136\cpuz136_x64.sys [x]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-12-17 15:21 - 2013-12-17 15:21 - 00010368 _____ C:\Users\Ivan\Downloads\FRST.txt

2013-12-17 15:20 - 2013-12-17 15:20 - 01928078 _____ (Farbar) C:\Users\Ivan\Downloads\FRST64.exe

2013-12-17 15:16 - 2013-12-17 15:16 - 00000000 ____D C:\Users\Ivan\Downloads\Bilder

2013-12-17 15:09 - 2013-12-17 15:09 - 00000956 _____ C:\Users\Ivan\Desktop\AdwCleaner[S0].txt

2013-12-17 15:07 - 2013-12-17 15:07 - 00001472 _____ C:\Windows\PFRO.log

2013-12-17 14:58 - 2013-12-17 15:05 - 00000000 ____D C:\AdwCleaner

2013-12-16 23:14 - 2013-12-17 15:00 - 05535744 ___SH C:\Users\Ivan\Downloads\Thumbs.db

2013-12-16 02:11 - 2013-12-16 02:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0

2013-12-16 02:11 - 2013-12-16 02:11 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs

2013-12-16 02:01 - 2013-12-16 02:13 - 00000000 ____D C:\ProgramData\Package Cache

2013-12-15 21:28 - 2013-12-17 15:08 - 00160165 _____ C:\Windows\WindowsUpdate.log

2013-12-13 05:55 - 2013-12-13 05:56 - 00000000 ____D C:\BIOS

2013-12-13 05:38 - 2013-12-13 05:38 - 00000000 ____D C:\Hyundai

2013-12-13 04:58 - 2013-12-13 04:58 - 00001121 _____ C:\Users\Ivan\Desktop\SandraLite.sis

2013-12-13 03:44 - 2013-12-13 03:44 - 00000000 ____D C:\FRST

2013-12-13 02:55 - 2013-12-13 02:55 - 00001125 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Malwarebytes

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-12-13 02:55 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2013-12-13 01:48 - 2013-12-13 01:48 - 00000828 __RSH C:\ProgramData\ntuser.pol

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Avira

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\ProgramData\APN

2013-12-13 01:42 - 2013-12-13 01:42 - 00002086 _____ C:\Users\Public\Desktop\Avira Control Center.lnk

2013-12-13 01:42 - 2013-12-13 01:42 - 00000000 ____D C:\ProgramData\Avira

2013-12-13 01:42 - 2013-12-13 01:42 - 00000000 ____D C:\Program Files (x86)\Avira

2013-12-13 01:42 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys

2013-12-13 01:42 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys

2013-12-13 01:42 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys

2013-12-13 01:42 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys

2013-12-13 01:25 - 2013-12-13 01:25 - 00001226 _____ C:\Users\Public\Desktop\HD VDeck.lnk

2013-12-13 01:25 - 2013-12-13 01:25 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information

2013-12-13 01:24 - 2013-12-13 01:24 - 00000000 ____D C:\Windows\system32\SRSLabs

2013-12-13 01:24 - 2013-12-13 01:24 - 00000000 ____D C:\Program Files\VIA

2013-12-13 01:24 - 2013-08-07 09:39 - 00689664 _____ (VIA Technologies, Inc.) C:\Windows\system32\Drivers\viahduaa.sys

2013-12-13 01:24 - 2013-07-30 09:15 - 03322368 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIAPropPageExt.dll

2013-12-13 01:24 - 2013-07-29 07:59 - 27518208 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll

2013-12-13 01:24 - 2013-07-29 07:59 - 02103040 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll

2013-12-13 01:24 - 2013-07-29 07:59 - 00922880 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll

2013-12-13 01:24 - 2013-07-29 07:59 - 00660224 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll

2013-12-13 01:24 - 2013-07-24 09:57 - 00866304 _____ (VIA Technologies, Inc.) C:\Windows\system32\VIASysFx.dll

2013-12-13 01:24 - 2013-07-22 07:40 - 01984512 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO264.DLL

2013-12-13 01:24 - 2013-07-22 07:40 - 01716736 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMAPO232.DLL

2013-12-13 01:24 - 2013-07-22 07:40 - 00388096 _____ (Creative Technology Ltd.) C:\Windows\system32\VMWRP64.DLL

2013-12-13 01:24 - 2013-03-28 09:57 - 01845424 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaMicArrayAPO.dll

2013-12-13 01:24 - 2012-12-11 11:01 - 00070776 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\VtSrdAPO.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 01161336 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViaKaraokeApo.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00248952 _____ (Windows (R) Codename Longhorn DDK provider) C:\Windows\system32\Dts2APO.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00123512 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaKaraokePropPageExt.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00095352 _____ (VIA Technologies,Inc.) C:\Windows\system32\ViaMicArrayPropPageExt.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00092280 _____ (VIA Technologies, Inc.) C:\Windows\system32\Dts2PropPageExt.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00055416 _____ (TODO: <Company name>) C:\Windows\system32\PropPageExt.dll

2013-12-13 01:24 - 2012-12-11 11:00 - 00027768 _____ (VIA Technologies, Inc.) C:\Windows\system32\ViakaraokeSrv.exe

2013-12-13 01:24 - 2012-11-15 03:06 - 00083968 _____ (QSound Labs, Inc.) C:\Windows\system32\nQAPO.dll

2013-12-13 01:24 - 2012-06-28 09:54 - 00086016 _____ (QSound Labs, Inc.) C:\Windows\system32\nQPropPageExt.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\EEP64H.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 07163744 _____ (Dolby Laboratories) C:\Windows\system32\EEP64A.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\EED64H.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00433504 _____ (Dolby Laboratories) C:\Windows\system32\EED64A.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00137056 _____ (Dolby Laboratories) C:\Windows\system32\EEL64H.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00137056 _____ (Dolby Laboratories) C:\Windows\system32\EEL64A.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00120160 _____ (Dolby Laboratories) C:\Windows\system32\EEA64H.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00120160 _____ (Dolby Laboratories) C:\Windows\system32\EEA64A.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00075104 _____ (Dolby Laboratories) C:\Windows\system32\EEG64H.dll

2013-12-13 01:24 - 2011-12-15 06:16 - 00075104 _____ (Dolby Laboratories) C:\Windows\system32\EEG64A.dll

2013-12-13 01:24 - 2011-09-27 11:13 - 00879616 _____ (Creative Technology Ltd.) C:\Windows\system32\VMAPO64.DLL

2013-12-13 01:24 - 2011-09-27 11:13 - 00739328 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMAPO32.DLL

2013-12-13 01:24 - 2011-09-27 11:13 - 00619520 _____ (Creative Technology Ltd.) C:\Windows\system32\VMTHX64.DLL

2013-12-13 01:24 - 2011-09-27 11:13 - 00554496 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\VMTHX32.DLL

2013-12-13 01:24 - 2011-09-27 11:13 - 00057856 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPLD64.DLL

2013-12-13 01:24 - 2010-10-26 11:54 - 00053760 _____ (Creative Technology Ltd.) C:\Windows\system32\VMPPCN64.DLL

2013-12-13 01:24 - 2009-07-31 04:40 - 00025600 _____ (Creative Technology Ltd.) C:\Windows\system32\Drivers\VMfilt64.sys

2013-12-13 01:23 - 2013-12-13 01:25 - 00000000 ____D C:\Program Files (x86)\VIA

2013-12-13 01:23 - 2007-04-11 08:35 - 00414632 ____N (Microsoft Corporation) C:\Windows\difxapi.dll

2013-12-13 01:11 - 2013-12-13 01:11 - 01804472 _____ C:\Windows\SysWOW64\PerfStringBackup.INI

2013-12-13 01:11 - 2013-12-13 01:11 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Intel Corporation

2013-12-13 01:10 - 2013-12-13 01:25 - 00000000 ____D C:\Gigabyte updates

2013-12-13 01:10 - 2013-12-13 01:10 - 00000000 ____D C:\Users\Ivan\Intel

2013-12-13 01:10 - 2013-12-13 01:10 - 00000000 ____D C:\ProgramData\Intel

2013-12-13 00:11 - 2013-12-13 00:11 - 00000000 ____D C:\winaam

2013-12-13 00:05 - 2013-12-13 16:07 - 14045184 _____ C:\Users\Ivan\AppData\Roaming\Sandra.mdb

2013-12-13 00:03 - 2013-12-13 00:03 - 00002120 _____ C:\Users\Public\Desktop\SiSoftware Sandra Lite 2014.RTM.lnk

2013-12-13 00:03 - 2013-12-13 00:03 - 00000000 ____D C:\Program Files\SiSoftware

2013-12-12 23:58 - 2013-12-12 23:58 - 00000000 ____D C:\Users\Ivan\SystemRequirementsLab

2013-12-12 23:57 - 2013-12-12 23:57 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab

2013-12-12 23:08 - 2013-12-16 00:50 - 00007605 _____ C:\Users\Ivan\AppData\Local\Resmon.ResmonCfg

2013-12-12 23:04 - 2013-11-12 00:41 - 00189952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2013-12-12 23:04 - 2013-11-12 00:40 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2013-12-12 23:04 - 2013-11-12 00:27 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll

2013-12-12 23:04 - 2013-11-12 00:24 - 00840704 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll

2013-12-12 23:04 - 2013-11-11 03:48 - 00039768 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys

2013-12-12 23:04 - 2013-11-09 12:55 - 00325464 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS

2013-12-12 23:04 - 2013-11-09 07:37 - 01756160 _____ (Microsoft Corporation) C:\Windows\system32\WMPDMC.exe

2013-12-12 23:04 - 2013-11-09 06:56 - 01391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPDMC.exe

2013-12-12 23:04 - 2013-11-08 11:26 - 00358896 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll

2013-12-12 23:04 - 2013-11-08 06:23 - 00449024 _____ (Microsoft Corporation) C:\Windows\system32\appmgr.dll

2013-12-12 23:04 - 2013-11-08 05:43 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentClient.dll

2013-12-12 23:04 - 2013-11-08 05:42 - 00366080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appmgr.dll

2013-12-12 23:04 - 2013-11-08 05:28 - 13177344 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll

2013-12-12 23:04 - 2013-11-08 05:26 - 11674624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll

2013-12-12 23:04 - 2013-11-08 05:16 - 00225792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll

2013-12-12 23:04 - 2013-11-08 05:15 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppXDeploymentClient.dll

2013-12-12 23:04 - 2013-11-08 05:07 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winbici.dll

2013-12-12 23:04 - 2013-11-08 04:41 - 01302528 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll

2013-12-12 23:04 - 2013-11-08 04:14 - 00922624 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll

2013-12-12 23:04 - 2013-11-05 15:19 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll

2013-12-12 23:04 - 2013-11-05 15:03 - 00637952 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe

2013-12-12 23:04 - 2013-11-05 14:57 - 00479744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe

2013-12-12 23:04 - 2013-11-05 14:33 - 00584192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncCore.dll

2013-12-12 23:04 - 2013-11-05 14:32 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncCore.dll

2013-12-12 23:04 - 2013-11-04 18:13 - 01530200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys

2013-12-12 23:04 - 2013-11-04 18:13 - 00382808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys

2013-12-12 23:04 - 2013-11-04 14:07 - 01843712 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll

2013-12-12 23:04 - 2013-11-04 12:50 - 02143744 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll

2013-12-12 23:04 - 2013-11-04 11:32 - 02570240 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll

2013-12-12 23:04 - 2013-11-04 03:28 - 01816576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll

2013-12-12 23:04 - 2013-11-04 02:30 - 01765376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll

2013-12-12 23:04 - 2013-11-01 12:39 - 00086872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys

2013-12-12 23:04 - 2013-11-01 07:08 - 00747008 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll

2013-12-12 23:04 - 2013-11-01 06:57 - 00544768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll

2013-12-12 23:04 - 2013-10-31 01:58 - 00372568 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys

2013-12-12 23:04 - 2013-10-31 01:42 - 07399256 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2013-12-12 23:04 - 2013-10-31 01:33 - 01642016 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi

2013-12-12 23:04 - 2013-10-31 01:33 - 01506680 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe

2013-12-12 23:04 - 2013-10-31 01:33 - 01476184 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi

2013-12-12 23:04 - 2013-10-31 01:33 - 01345536 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe

2013-12-12 23:04 - 2013-10-26 02:54 - 00146776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\SerCx2.sys

2013-12-12 23:04 - 2013-10-24 10:31 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\CredentialMigrationHandler.dll

2013-12-12 23:04 - 2013-10-24 10:12 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredentialMigrationHandler.dll

2013-12-12 23:04 - 2013-10-17 12:21 - 02896896 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll

2013-12-12 23:04 - 2013-10-17 11:36 - 02266624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll

2013-12-12 23:04 - 2013-10-05 15:21 - 02140888 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll

2013-12-12 23:04 - 2013-10-05 15:21 - 00516496 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll

2013-12-12 23:04 - 2013-10-05 13:05 - 01765384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll

2013-12-12 23:04 - 2013-10-05 13:05 - 00406400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll

2013-12-12 00:22 - 2013-12-13 00:13 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\NVIDIA

2013-12-12 00:19 - 2013-12-12 00:19 - 00000000 ____D C:\Users\Ivan\AppData\Local\Chromium

2013-12-12 00:18 - 2013-12-12 00:19 - 00000000 ____D C:\Users\Ivan\Documents\Rockstar Games

2013-12-12 00:15 - 2013-12-12 00:15 - 00000000 ____D C:\Program Files (x86)\Rockstar Games

2013-12-11 07:28 - 2013-12-11 07:28 - 00000222 _____ C:\Users\Ivan\Desktop\L.A. Noire.url

2013-12-11 03:40 - 2013-12-11 03:41 - 00000000 ___HD C:\Windows\msdownld.tmp

2013-12-11 02:28 - 2013-12-11 02:28 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf

2013-12-11 02:28 - 2013-12-11 02:28 - 00000000 ____D C:\Program Files\Synaptics

2013-12-11 02:28 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-12-11 02:28 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-12-11 02:28 - 2013-11-23 05:34 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2013-12-11 02:28 - 2013-11-23 05:13 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

2013-12-11 02:28 - 2013-11-23 04:32 - 04105728 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll

2013-12-11 02:28 - 2013-11-23 04:10 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe

2013-12-11 02:28 - 2013-10-19 09:53 - 00075360 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll

2013-12-11 02:28 - 2013-10-19 08:14 - 00070680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll

2013-12-11 02:28 - 2013-10-15 09:54 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll

2013-12-11 02:28 - 2013-10-15 09:03 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll

2013-12-11 02:28 - 2000-01-01 01:00 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll

2013-12-11 02:28 - 2000-01-01 01:00 - 00034544 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel.sys

2013-12-11 02:27 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-12-11 02:27 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-12-11 02:27 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-12-11 02:27 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-12-11 02:27 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-12-11 02:27 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-12-11 02:27 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-12-11 02:27 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-12-11 02:27 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-12-11 02:27 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-12-11 02:27 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-12-11 02:27 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-12-11 02:27 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-12-11 02:27 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-12-11 02:27 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-12-11 02:27 - 2013-11-09 07:34 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe

2013-12-11 02:27 - 2013-11-09 07:34 - 00287744 _____ (Microsoft Corporation) C:\Windows\system32\mdmregistration.dll

2013-12-11 02:27 - 2013-11-09 06:52 - 00240128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mdmregistration.dll

2013-12-11 02:27 - 2013-11-08 08:21 - 04191744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2013-12-11 02:26 - 2013-12-11 02:26 - 00000000 ____D C:\Program Files (x86)\Intel

2013-12-11 02:26 - 2013-08-21 08:16 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll

2013-12-11 02:22 - 2013-12-11 02:22 - 00002153 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk

2013-12-11 02:21 - 2013-12-17 15:07 - 00000000 ____D C:\ProgramData\NVIDIA

2013-12-11 02:21 - 2013-11-14 12:56 - 00061216 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll

2013-12-11 02:21 - 2013-11-14 12:56 - 00053024 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2013-12-11 02:21 - 2013-11-11 16:02 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll

2013-12-11 02:21 - 2013-11-11 16:02 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll

2013-12-11 02:21 - 2013-11-11 16:01 - 03467927 _____ C:\Windows\system32\nvcoproc.bin

2013-12-11 02:21 - 2013-11-11 16:01 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll

2013-12-11 02:21 - 2013-11-11 16:01 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

2013-12-11 02:21 - 2013-11-11 16:01 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll

2013-12-11 02:21 - 2013-11-11 16:01 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll

2013-12-11 02:20 - 2013-11-14 12:57 - 01510176 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco64.dll

2013-12-11 02:20 - 2013-11-14 12:57 - 00196384 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys

2013-12-11 02:20 - 2013-11-14 12:57 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 18293608 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 12613408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2013-12-11 02:20 - 2013-11-14 12:56 - 11600432 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 11514624 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 09691888 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll

2013-12-11 02:20 - 2013-11-14 12:56 - 00023754 _____ C:\Windows\system32\nvinfo.pb

2013-12-11 02:06 - 2013-10-30 18:03 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

2013-12-11 02:06 - 2013-10-30 18:02 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll

2013-12-10 02:41 - 2013-12-10 05:59 - 00000000 ____D C:\Users\Ivan\Desktop\Ram kaufne

2013-12-10 01:28 - 2013-12-10 01:28 - 00000885 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk

2013-12-10 01:28 - 2013-12-10 01:28 - 00000000 ____D C:\Program Files\CPUID

2013-12-10 01:12 - 2013-12-10 01:12 - 00000000 ____D C:\ProgramData\McAfee

2013-12-09 22:45 - 2013-12-09 22:45 - 00000000 ____D C:\Users\Ivan\Desktop\DX

2013-12-08 18:18 - 2013-12-08 18:25 - 00000000 ____D C:\Users\Ivan\AppData\Local\gamemaker_studio

2013-12-08 18:18 - 2013-12-08 18:18 - 00000000 ____D C:\Users\Ivan\Documents\GameMaker

2013-12-08 18:18 - 2013-12-08 18:18 - 00000000 ____D C:\ProgramData\gamemaker_studio

2013-12-08 17:48 - 2013-12-12 23:34 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

2013-11-27 22:37 - 2013-12-11 02:08 - 00000000 ____D C:\Users\Ivan\AppData\Local\NVIDIA Corporation

2013-11-26 16:11 - 2013-11-27 23:27 - 00000000 ____D C:\Users\Ivan\Documents\Uni-PDF

2013-11-23 20:23 - 2013-12-15 19:22 - 00000000 ____D C:\Windows\Minidump

2013-11-23 20:23 - 2013-12-15 18:37 - 471531614 _____ C:\Windows\MEMORY.DMP

2013-11-20 21:36 - 2012-03-14 05:00 - 00385024 _____ (CANON INC.) C:\Windows\system32\CNMLMAT.DLL

2013-11-20 20:41 - 2013-11-20 20:42 - 00000000 ____D C:\Emulator

2013-11-17 05:18 - 2013-11-17 05:18 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-17 05:18 - 2013-11-17 05:18 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
 

==================== One Month Modified Files and Folders =======
 

2013-12-17 15:22 - 2013-12-17 15:21 - 00010368 _____ C:\Users\Ivan\Downloads\FRST.txt

2013-12-17 15:20 - 2013-12-17 15:20 - 01928078 _____ (Farbar) C:\Users\Ivan\Downloads\FRST64.exe

2013-12-17 15:16 - 2013-12-17 15:16 - 00000000 ____D C:\Users\Ivan\Downloads\Bilder

2013-12-17 15:16 - 2013-12-15 21:28 - 00160165 _____ C:\Windows\WindowsUpdate.log

2013-12-17 15:09 - 2013-12-17 15:09 - 00000956 _____ C:\Users\Ivan\Desktop\AdwCleaner[S0].txt

2013-12-17 15:09 - 2013-10-28 02:54 - 00000000 ____D C:\Users\Ivan\Desktop\Minecraft

2013-12-17 15:07 - 2013-12-17 15:07 - 00001472 _____ C:\Windows\PFRO.log

2013-12-17 15:07 - 2013-12-11 02:21 - 00000000 ____D C:\ProgramData\NVIDIA

2013-12-17 15:07 - 2013-08-22 15:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2013-12-17 15:06 - 2013-08-22 14:25 - 00524288 ___SH C:\Windows\system32\config\BBI

2013-12-17 15:05 - 2013-12-17 14:58 - 00000000 ____D C:\AdwCleaner

2013-12-17 15:03 - 2013-10-27 23:48 - 00001138 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001UA.job

2013-12-17 15:00 - 2013-12-16 23:14 - 05535744 ___SH C:\Users\Ivan\Downloads\Thumbs.db

2013-12-17 15:00 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\sru

2013-12-17 14:57 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\AppReadiness

2013-12-16 03:48 - 2013-10-26 14:55 - 00000000 __RDO C:\Users\Ivan\SkyDrive

2013-12-16 03:47 - 2013-10-27 23:50 - 00003600 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1302934777-1200874132-3831346741-1001

2013-12-16 03:26 - 2013-10-28 01:42 - 00000000 ____D C:\Program Files (x86)\Steam

2013-12-16 03:22 - 2013-11-06 12:54 - 00000000 ____D C:\Users\Ivan\AppData\Local\Skyrim

2013-12-16 02:39 - 2013-11-04 22:17 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\vlc

2013-12-16 02:13 - 2013-12-16 02:01 - 00000000 ____D C:\ProgramData\Package Cache

2013-12-16 02:11 - 2013-12-16 02:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0

2013-12-16 02:11 - 2013-12-16 02:11 - 00000000 ____D C:\Program Files (x86)\Microsoft SDKs

2013-12-16 00:50 - 2013-12-12 23:08 - 00007605 _____ C:\Users\Ivan\AppData\Local\Resmon.ResmonCfg

2013-12-15 19:57 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\NDF

2013-12-15 19:22 - 2013-11-23 20:23 - 00000000 ____D C:\Windows\Minidump

2013-12-15 18:37 - 2013-11-23 20:23 - 471531614 _____ C:\Windows\MEMORY.DMP

2013-12-15 16:28 - 2013-10-28 23:21 - 00000000 ____D C:\Users\Ivan\Documents\Citavi 4

2013-12-15 16:03 - 2013-10-27 23:48 - 00001086 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001Core.job

2013-12-13 16:07 - 2013-12-13 00:05 - 14045184 _____ C:\Users\Ivan\AppData\Roaming\Sandra.mdb

2013-12-13 15:12 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\rescache

2013-12-13 05:56 - 2013-12-13 05:55 - 00000000 ____D C:\BIOS

2013-12-13 05:38 - 2013-12-13 05:38 - 00000000 ____D C:\Hyundai

2013-12-13 04:58 - 2013-12-13 04:58 - 00001121 _____ C:\Users\Ivan\Desktop\SandraLite.sis

2013-12-13 03:45 - 2013-10-26 14:52 - 00000000 ____D C:\Users\Ivan

2013-12-13 03:44 - 2013-12-13 03:44 - 00000000 ____D C:\FRST

2013-12-13 02:55 - 2013-12-13 02:55 - 00001125 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Malwarebytes

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-12-13 02:55 - 2013-12-13 02:55 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-12-13 01:57 - 2013-10-26 14:54 - 00000000 ___RD C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2013-12-13 01:48 - 2013-12-13 01:48 - 00000828 __RSH C:\ProgramData\ntuser.pol

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Avira

2013-12-13 01:43 - 2013-12-13 01:43 - 00000000 ____D C:\ProgramData\APN

2013-12-13 01:42 - 2013-12-13 01:42 - 00002086 _____ C:\Users\Public\Desktop\Avira Control Center.lnk

2013-12-13 01:42 - 2013-12-13 01:42 - 00000000 ____D C:\ProgramData\Avira

2013-12-13 01:42 - 2013-12-13 01:42 - 00000000 ____D C:\Program Files (x86)\Avira

2013-12-13 01:42 - 2013-08-22 16:36 - 00000000 ___HD C:\Windows\system32\GroupPolicy

2013-12-13 01:25 - 2013-12-13 01:25 - 00001226 _____ C:\Users\Public\Desktop\HD VDeck.lnk

2013-12-13 01:25 - 2013-12-13 01:25 - 00000000 ____D C:\Program Files (x86)\InstallShield Installation Information

2013-12-13 01:25 - 2013-12-13 01:23 - 00000000 ____D C:\Program Files (x86)\VIA

2013-12-13 01:25 - 2013-12-13 01:10 - 00000000 ____D C:\Gigabyte updates

2013-12-13 01:24 - 2013-12-13 01:24 - 00000000 ____D C:\Windows\system32\SRSLabs

2013-12-13 01:24 - 2013-12-13 01:24 - 00000000 ____D C:\Program Files\VIA

2013-12-13 01:11 - 2013-12-13 01:11 - 01804472 _____ C:\Windows\SysWOW64\PerfStringBackup.INI

2013-12-13 01:11 - 2013-12-13 01:11 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Intel Corporation

2013-12-13 01:11 - 2013-08-23 00:24 - 00765378 _____ C:\Windows\system32\perfh007.dat

2013-12-13 01:11 - 2013-08-23 00:24 - 00159696 _____ C:\Windows\system32\perfc007.dat

2013-12-13 01:10 - 2013-12-13 01:10 - 00000000 ____D C:\Users\Ivan\Intel

2013-12-13 01:10 - 2013-12-13 01:10 - 00000000 ____D C:\ProgramData\Intel

2013-12-13 01:10 - 2013-10-29 14:37 - 00000000 ____D C:\Users\Ivan\Desktop\Cube World

2013-12-13 00:13 - 2013-12-12 00:22 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\NVIDIA

2013-12-13 00:11 - 2013-12-13 00:11 - 00000000 ____D C:\winaam

2013-12-13 00:03 - 2013-12-13 00:03 - 00002120 _____ C:\Users\Public\Desktop\SiSoftware Sandra Lite 2014.RTM.lnk

2013-12-13 00:03 - 2013-12-13 00:03 - 00000000 ____D C:\Program Files\SiSoftware

2013-12-12 23:58 - 2013-12-12 23:58 - 00000000 ____D C:\Users\Ivan\SystemRequirementsLab

2013-12-12 23:57 - 2013-12-12 23:57 - 00000000 ____D C:\Program Files (x86)\SystemRequirementsLab

2013-12-12 23:37 - 2013-10-28 13:18 - 00000000 ____D C:\ProgramData\Ashampoo

2013-12-12 23:36 - 2013-10-28 13:05 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Samsung

2013-12-12 23:36 - 2013-10-28 13:05 - 00000000 ____D C:\Users\Ivan\AppData\Local\Samsung

2013-12-12 23:36 - 2013-10-28 13:01 - 00000000 ____D C:\ProgramData\Samsung

2013-12-12 23:36 - 2013-10-28 13:01 - 00000000 ____D C:\Program Files (x86)\Samsung

2013-12-12 23:34 - 2013-12-08 17:48 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam

2013-12-12 23:05 - 2013-08-22 16:36 - 00000000 ___RD C:\Windows\ToastData

2013-12-12 23:05 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\WinStore

2013-12-12 23:05 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\MediaViewer

2013-12-12 23:05 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\FileManager

2013-12-12 23:05 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Camera

2013-12-12 22:29 - 2013-10-28 01:25 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\Spotify

2013-12-12 22:06 - 2013-10-28 01:26 - 00000000 ____D C:\Users\Ivan\AppData\Local\Spotify

2013-12-12 00:19 - 2013-12-12 00:19 - 00000000 ____D C:\Users\Ivan\AppData\Local\Chromium

2013-12-12 00:19 - 2013-12-12 00:18 - 00000000 ____D C:\Users\Ivan\Documents\Rockstar Games

2013-12-12 00:15 - 2013-12-12 00:15 - 00000000 ____D C:\Program Files (x86)\Rockstar Games

2013-12-12 00:12 - 2013-10-28 19:24 - 00000000 ____D C:\Users\Ivan\AppData\Roaming\CodeBlocks

2013-12-11 07:28 - 2013-12-11 07:28 - 00000222 _____ C:\Users\Ivan\Desktop\L.A. Noire.url

2013-12-11 03:41 - 2013-12-11 03:40 - 00000000 ___HD C:\Windows\msdownld.tmp

2013-12-11 03:41 - 2013-10-29 14:36 - 00000000 ____D C:\Windows\SysWOW64\directx

2013-12-11 02:35 - 2013-08-22 15:44 - 00376656 _____ C:\Windows\system32\FNTCACHE.DAT

2013-12-11 02:28 - 2013-12-11 02:28 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf

2013-12-11 02:28 - 2013-12-11 02:28 - 00000000 ____D C:\Program Files\Synaptics

2013-12-11 02:26 - 2013-12-11 02:26 - 00000000 ____D C:\Program Files (x86)\Intel

2013-12-11 02:22 - 2013-12-11 02:22 - 00002153 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk

2013-12-11 02:22 - 2013-10-27 23:52 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2013-12-11 02:21 - 2013-10-27 23:52 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2013-12-11 02:21 - 2013-10-27 23:52 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2013-12-11 02:21 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\Help

2013-12-11 02:08 - 2013-11-27 22:37 - 00000000 ____D C:\Users\Ivan\AppData\Local\NVIDIA Corporation

2013-12-11 02:08 - 2013-11-06 02:41 - 00000000 ____D C:\Users\Ivan\AppData\Local\NVIDIA

2013-12-10 05:59 - 2013-12-10 02:41 - 00000000 ____D C:\Users\Ivan\Desktop\Ram kaufne

2013-12-10 01:28 - 2013-12-10 01:28 - 00000885 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk

2013-12-10 01:28 - 2013-12-10 01:28 - 00000000 ____D C:\Program Files\CPUID

2013-12-10 01:12 - 2013-12-10 01:12 - 00000000 ____D C:\ProgramData\McAfee

2013-12-10 01:12 - 2013-10-28 12:12 - 00000000 ____D C:\Users\Ivan\AppData\Local\Adobe

2013-12-09 22:45 - 2013-12-09 22:45 - 00000000 ____D C:\Users\Ivan\Desktop\DX

2013-12-09 11:37 - 2013-12-13 01:42 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys

2013-12-09 11:37 - 2013-12-13 01:42 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys

2013-12-09 11:37 - 2013-12-13 01:42 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys

2013-12-09 11:37 - 2013-12-13 01:42 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys

2013-12-08 18:25 - 2013-12-08 18:18 - 00000000 ____D C:\Users\Ivan\AppData\Local\gamemaker_studio

2013-12-08 18:18 - 2013-12-08 18:18 - 00000000 ____D C:\Users\Ivan\Documents\GameMaker

2013-12-08 18:18 - 2013-12-08 18:18 - 00000000 ____D C:\ProgramData\gamemaker_studio

2013-12-08 17:55 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2013-12-05 15:58 - 2013-10-27 23:48 - 00004082 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001UA

2013-12-05 15:58 - 2013-10-27 23:48 - 00003702 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1302934777-1200874132-3831346741-1001Core

2013-12-05 00:15 - 2013-10-26 14:50 - 01776918 _____ C:\Windows\system32\PerfStringBackup.INI

2013-12-04 23:36 - 2013-11-07 03:20 - 00012288 ___SH C:\Users\Ivan\Desktop\Thumbs.db

2013-12-04 01:05 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2013-12-04 01:05 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2013-11-29 17:56 - 2013-11-06 02:38 - 01096480 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll

2013-11-29 17:56 - 2013-11-06 02:38 - 00979744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll

2013-11-27 23:27 - 2013-11-26 16:11 - 00000000 ____D C:\Users\Ivan\Documents\Uni-PDF

2013-11-26 12:54 - 2013-12-11 02:28 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-26 11:11 - 2013-12-11 02:28 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-26 10:41 - 2013-12-11 02:27 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-26 09:57 - 2013-12-11 02:27 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-26 09:38 - 2013-12-11 02:27 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-26 09:35 - 2013-12-11 02:27 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-26 09:16 - 2013-12-11 02:27 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-26 09:02 - 2013-12-11 02:27 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-26 08:48 - 2013-12-11 02:27 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-26 08:32 - 2013-12-11 02:27 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-11-26 08:26 - 2013-12-11 02:27 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-26 08:07 - 2013-12-11 02:27 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-26 07:40 - 2013-12-11 02:27 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-26 07:34 - 2013-12-11 02:27 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-26 07:34 - 2013-12-11 02:27 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-11-26 07:33 - 2013-12-11 02:27 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-26 07:27 - 2013-12-11 02:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-23 05:34 - 2013-12-11 02:28 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2013-11-23 05:13 - 2013-12-11 02:28 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

2013-11-23 04:32 - 2013-12-11 02:28 - 04105728 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll

2013-11-23 04:10 - 2013-12-11 02:28 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe

2013-11-20 20:42 - 2013-11-20 20:41 - 00000000 ____D C:\Emulator

2013-11-19 20:21 - 2013-10-26 14:54 - 00000000 ___RD C:\Users\Ivan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-11-19 15:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\system32\migwiz

2013-11-19 15:47 - 2013-08-22 16:36 - 00000000 ____D C:\Windows\PolicyDefinitions

2013-11-19 11:30 - 2013-10-28 00:19 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

2013-11-18 02:18 - 2013-11-14 15:49 - 00000000 ____D C:\Fraps

2013-11-17 05:18 - 2013-11-17 05:18 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-17 05:18 - 2013-11-17 05:18 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
 

Files to move or delete:

====================

C:\Users\Ivan\Cube.exe

C:\Users\Ivan\CubeLauncher.exe

C:\Users\Ivan\FreeImage.dll

C:\Users\Ivan\msvcp110.dll

C:\Users\Ivan\msvcr110.dll

C:\Users\Ivan\resource1.dat

C:\Users\Ivan\resource2.dat

C:\Users\Ivan\unins000.dat

C:\Users\Ivan\unins000.exe

C:\Users\Ivan\vccorlib110.dll

C:\Users\Ivan\XAudio2_8.dll

C:\Users\Ivan\zlib1.dll
 
 

Some content of TEMP:

====================

C:\Users\Ivan\AppData\Local\Temp\avgnt.exe

C:\Users\Ivan\AppData\Local\Temp\Quarantine.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-12-11 07:38
 

==================== End Of Log ============================

--- --- ---