| Kampfkrümel | 13.04.2015 16:57 |
Hi Schrauber,
FRST
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-04-2015
Ran by Richi (administrator) on DAMPFWALZE on 13-04-2015 16:57:20
Running from C:\Users\Richi\Desktop
Loaded Profiles: Richi (Available profiles: Richi)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Spotify Ltd) C:\Users\Richi\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Sitecom Europe BV) C:\Program Files (x86)\Sitecom\Common\RaUI.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Reader_6.3.9654.17499_x64__8wekyb3d8bbwe\glcnd.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\ielowutil.exe
() C:\Users\Richi\Desktop\Defogger.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13662936 2013-10-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323312 2014-12-10] (Intel Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)
HKU\S-1-5-21-1206241334-3998519493-1326637554-1001\...\Run: [Steam] => D:\Steam\steam.exe [2889408 2015-04-09] (Valve Corporation)
HKU\S-1-5-21-1206241334-3998519493-1326637554-1001\...\Run: [Spotify Web Helper] => C:\Users\Richi\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-04-11] (Spotify Ltd)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Sitecom Wireless Utility.lnk
ShortcutTarget: Sitecom Wireless Utility.lnk -> C:\Program Files (x86)\Sitecom\Common\RaUI.exe (Sitecom Europe BV)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: [OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1206241334-3998519493-1326637554-1001 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL =
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll [2014-09-20] (Symantec Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll [2014-09-20] (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\IPS\IPSBHO.DLL [2014-08-26] (Symantec Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine64\21.6.0.32\coIEPlg.dll [2014-09-20] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\coIEPlg.dll [2014-09-20] (Symantec Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-11-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-11-10] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2013-02-05] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-03-13] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-04-12] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-04-12] (Google Inc.)
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\IPSFF [2015-04-12]
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.6.0.32\coFFPlgn [2015-04-12]
Chrome:
=======
CHR Profile: C:\Users\Richi\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (SAO Theme 1920x1080) - C:\Users\Richi\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgikfepnnphbmgngmpiflajcbmoomnll [2015-04-12]
CHR Extension: (Norton Identity Safe) - C:\Users\Richi\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2015-04-12]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Richi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-04-12]
CHR Extension: (Google Wallet) - C:\Users\Richi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-04-12]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - https://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [19184 2014-12-10] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [158496 2014-11-10] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 N360; C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\N360.exe [265040 2014-09-21] (Symantec Corporation)
S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-11] (Electronic Arts)
S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75136 2015-04-11] ()
S2 PnkBstrB; C:\Windows\SysWOW64\PnkBstrB.exe [189248 2015-04-11] ()
S2 RalinkRegistryWriter; C:\Program Files (x86)\Sitecom\Common\RaRegistry.exe [185632 2009-10-20] (Ralink Technology, Corp.)
S2 RalinkRegistryWriter64; C:\Program Files (x86)\Sitecom\Common\RaRegistry64.exe [212256 2009-10-20] (Ralink Technology, Corp.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 BHDrvx64; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\BASHDefs\20140801.001\BHDrvx64.sys [1530160 2014-08-26] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1506000.020\ccSetx64.sys [162392 2014-02-21] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-11-25] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-11-25] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\IPSDefs\20140717.001\IDSVia64.sys [525016 2014-08-26] (Symantec Corporation)
S3 Ke2200; C:\Windows\system32\DRIVERS\e22w8x64.sys [164720 2012-07-25] (Qualcomm Atheros, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-03-17] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverx64.sys [129312 2014-11-10] (Intel Corporation)
R3 NAVENG; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20150411.001\ENG64.SYS [129752 2014-11-15] (Symantec Corporation)
R3 NAVEX15; C:\Program Files (x86)\Norton 360\NortonData\21.6.0.32\Definitions\VirusDefs\20150411.001\EX64.SYS [2137304 2014-11-15] (Symantec Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
S3 NVSWCFilter; C:\Windows\System32\drivers\nvswcfilter.sys [19616 2015-03-13] (Windows (R) Win 7 DDK provider)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [40136 2015-03-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-03-13] (NVIDIA Corporation)
R1 SRTSP; C:\Windows\system32\drivers\N360x64\1506000.020\SRTSP64.SYS [876248 2014-08-26] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1506000.020\SRTSPX64.SYS [37592 2014-08-26] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1506000.020\SYMDS64.SYS [493656 2014-08-26] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1506000.020\SYMEFA64.SYS [1148120 2014-08-26] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1506000.020\SymELAM.sys [23568 2014-08-26] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2015-04-12] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1506000.020\Ironx64.SYS [266968 2014-08-06] (Symantec Corporation)
R1 SymNetS; C:\Windows\system32\drivers\N360x64\1506000.020\SYMNETS.SYS [593112 2014-08-26] (Symantec Corporation)
S3 VUSB3HUB; C:\Windows\System32\drivers\ViaHub3.sys [227840 2013-09-25] (VIA Technologies, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 xhcdrv; C:\Windows\System32\drivers\xhcdrv.sys [297472 2013-09-25] (VIA Technologies, Inc.)
R3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2013-08-22] (Microsoft Corporation)
S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-13 16:57 - 2015-04-13 16:57 - 00015396 _____ () C:\Users\Richi\Desktop\FRST.txt
2015-04-13 16:57 - 2015-04-13 16:57 - 00000000 ____D () C:\FRST
2015-04-13 16:56 - 2015-04-13 16:56 - 02096640 _____ (Farbar) C:\Users\Richi\Desktop\frst64.exe
2015-04-13 16:54 - 2015-04-13 16:54 - 00050477 _____ () C:\Users\Richi\Desktop\Defogger.exe
2015-04-13 16:54 - 2015-04-13 16:54 - 00000244 _____ () C:\Users\Richi\Desktop\defogger_enable.log
2015-04-13 16:54 - 2015-04-13 16:54 - 00000000 _____ () C:\Users\Richi\defogger_reenable
2015-04-13 16:53 - 2015-04-13 16:54 - 00000472 _____ () C:\Users\Richi\Desktop\defogger_disable.log
2015-04-12 22:06 - 2015-04-12 22:06 - 00000614 _____ () C:\Users\Richi\Desktop\JRT.txt
2015-04-12 22:05 - 2015-04-12 22:05 - 02686959 _____ (Thisisu) C:\Users\Richi\Downloads\JRT_6.5.3.exe
2015-04-12 22:05 - 2015-04-12 22:05 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-DAMPFWALZE-Windows-8.1-(64-bit).dat
2015-04-12 22:05 - 2015-04-12 22:05 - 00000000 ____D () C:\RegBackup
2015-04-12 22:01 - 2015-04-12 22:01 - 00000000 ____D () C:\AdwCleaner
2015-04-12 22:00 - 2015-04-12 22:00 - 02217984 _____ () C:\Users\Richi\Downloads\adwcleaner_4.201.exe
2015-04-12 21:30 - 2015-04-12 22:24 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-12 21:30 - 2015-04-12 21:30 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-12 21:30 - 2015-04-12 21:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-12 21:30 - 2015-04-12 21:30 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-12 21:30 - 2015-04-12 21:30 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-04-12 21:30 - 2015-03-17 06:15 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-12 21:30 - 2015-03-17 06:15 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-04-12 21:30 - 2015-03-17 06:15 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-04-12 20:11 - 2015-04-12 20:11 - 00000000 ____D () C:\ProgramData\Ralink
2015-04-12 20:09 - 2015-04-12 20:09 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\InstallShield
2015-04-12 20:09 - 2015-04-12 20:09 - 00000000 ____D () C:\ProgramData\Sitecom Driver
2015-04-12 20:09 - 2015-04-12 20:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sitecom Wireless
2015-04-12 20:09 - 2015-04-12 20:09 - 00000000 ____D () C:\Program Files (x86)\Sitecom
2015-04-12 20:09 - 2015-04-12 20:09 - 00000000 ____D () C:\Program Files (x86)\Cisco
2015-04-12 20:09 - 2009-10-20 13:13 - 02056192 _____ (Ralink Technology, Corp.) C:\Windows\system32\RaCertMgr.dll
2015-04-12 20:09 - 2009-10-20 13:13 - 01585152 _____ (Ralink Technology, Corp.) C:\Windows\SysWOW64\RaCertMgr.dll
2015-04-12 20:09 - 2009-10-20 13:13 - 01055232 _____ (Ralink Technology, Corp.) C:\Windows\SysWOW64\RAIHV.dll
2015-04-12 20:09 - 2009-10-20 13:13 - 01055232 _____ (Ralink Technology, Corp.) C:\Windows\system32\RAIHV.dll
2015-04-12 20:09 - 2009-10-20 13:13 - 00104448 _____ (Ralink Technology, Corp.) C:\Windows\SysWOW64\RAEXTUI.dll
2015-04-12 20:09 - 2009-10-20 13:13 - 00104448 _____ (Ralink Technology, Corp.) C:\Windows\system32\RAEXTUI.dll
2015-04-12 20:08 - 2010-12-28 19:43 - 00014051 ____R () C:\Windows\SysWOW64\RaCoInst.dat
2015-04-12 20:08 - 2010-12-28 19:43 - 00014051 ____R () C:\Windows\system32\RaCoInst.dat
2015-04-12 15:39 - 2015-04-12 15:39 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-04-12 12:02 - 2015-04-12 12:02 - 00000000 ____D () C:\Users\Richi\Documents\Witcher 2
2015-04-12 12:02 - 2015-04-12 12:02 - 00000000 ____D () C:\Users\Richi\Documents\Arbeit
2015-04-12 12:02 - 2014-01-29 23:07 - 00008428 _____ () C:\Users\Richi\Documents\Rust Base Holz2.ods
2015-04-12 12:02 - 2014-01-27 18:43 - 00012755 _____ () C:\Users\Richi\Documents\Rust Stock 4-6.xlsx
2015-04-12 12:02 - 2014-01-26 23:30 - 00008428 _____ () C:\Users\Richi\Documents\Rust Base Holz.ods
2015-04-12 12:02 - 2012-12-30 15:22 - 00015990 _____ () C:\Users\Richi\Documents\DA Origins Geschenke.ods
2015-04-12 12:01 - 2015-04-12 12:01 - 00000000 ____D () C:\Users\Richi\Documents\The Witcher
2015-04-12 12:01 - 2015-04-12 12:01 - 00000000 ____D () C:\Users\Richi\Documents\Telltale Games
2015-04-12 12:01 - 2015-04-12 12:01 - 00000000 ____D () C:\Users\Richi\Documents\Electronic Arts
2015-04-12 12:00 - 2015-04-12 12:01 - 00000000 ____D () C:\Users\Richi\Documents\BioWare
2015-04-12 11:32 - 2015-04-12 11:32 - 00000000 ____D () C:\Users\Richi\AppData\Local\openvr
2015-04-12 11:31 - 2015-04-12 21:59 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\TS3Client
2015-04-12 11:31 - 2015-04-12 11:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2015-04-12 11:29 - 2015-04-12 11:30 - 30014480 _____ (TeamSpeak Systems GmbH) C:\Users\Richi\Downloads\TeamSpeak3-Client-win64-3.0.16.exe
2015-04-12 04:07 - 2015-04-12 04:07 - 00000000 ____D () C:\Windows\System32\Tasks\Norton 360
2015-04-12 04:06 - 2015-04-12 04:06 - 00177752 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2015-04-12 04:06 - 2015-04-12 04:06 - 00008222 _____ () C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2015-04-12 04:06 - 2015-04-12 04:06 - 00003206 _____ () C:\Windows\System32\Tasks\Norton WSC Integration
2015-04-12 04:06 - 2015-04-12 04:06 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2015-04-12 04:06 - 2015-04-12 04:06 - 00000000 ____D () C:\Windows\system32\Drivers\N360x64
2015-04-12 04:06 - 2015-04-12 04:06 - 00000000 ____D () C:\Users\Richi\Documents\Symantec
2015-04-12 04:06 - 2015-04-12 04:06 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2015-04-12 04:06 - 2015-04-12 04:06 - 00000000 ____D () C:\Program Files (x86)\Norton 360
2015-04-12 04:02 - 2015-04-12 04:06 - 00000000 ____D () C:\ProgramData\Norton
2015-04-12 04:02 - 2015-04-12 04:02 - 01021968 _____ (Symantec Corporation) C:\Users\Richi\Downloads\NortonN360Downloader.exe
2015-04-12 04:02 - 2015-04-12 04:02 - 00033280 ___SH () C:\Users\Richi\Desktop\Thumbs.db
2015-04-12 04:02 - 2015-04-12 04:02 - 00000000 ____D () C:\Users\Public\Downloads\Norton
2015-04-12 02:17 - 2015-04-12 02:17 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-12 01:17 - 2015-04-12 01:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-04-12 01:16 - 2015-04-13 16:35 - 00001150 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-12 01:16 - 2015-04-13 16:33 - 00001146 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-12 01:16 - 2015-04-12 01:29 - 00004122 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-04-12 01:16 - 2015-04-12 01:29 - 00003886 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-04-12 01:16 - 2015-04-12 01:17 - 00000000 ____D () C:\Users\Richi\AppData\Local\Google
2015-04-12 01:16 - 2015-04-12 01:17 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-12 01:11 - 2015-04-12 01:21 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2015-04-12 01:11 - 2015-04-12 01:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2015-04-11 23:47 - 2015-04-11 23:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Diablo III
2015-04-11 23:44 - 2015-04-11 23:44 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\NVIDIA
2015-04-11 23:17 - 2015-04-11 23:45 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\.minecraft
2015-04-11 23:17 - 2015-04-11 23:17 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\java
2015-04-11 23:16 - 2015-04-12 01:10 - 00000000 ____D () C:\Program Files (x86)\Diablo III
2015-04-11 23:16 - 2015-04-11 23:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2015-04-11 22:54 - 2015-04-12 01:26 - 00000000 ____D () C:\Users\Richi\AppData\Local\Battle.net
2015-04-11 22:54 - 2015-04-11 23:12 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\Battle.net
2015-04-11 22:54 - 2015-04-11 22:54 - 00000000 ____D () C:\Users\Richi\AppData\Local\Blizzard Entertainment
2015-04-11 22:54 - 2015-04-11 22:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2015-04-11 22:54 - 2015-04-11 22:54 - 00000000 ____D () C:\ProgramData\Blizzard Entertainment
2015-04-11 22:54 - 2015-04-11 22:54 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2015-04-11 22:50 - 2015-04-11 22:50 - 00000000 ____D () C:\ProgramData\Battle.net
2015-04-11 21:59 - 2015-04-11 21:59 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-04-11 21:55 - 2015-04-11 21:55 - 00000000 ____D () C:\Users\Richi\Documents\nbgi
2015-04-11 21:34 - 2015-04-11 21:34 - 00447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2015-04-11 21:02 - 2015-04-11 21:35 - 00000000 ____D () C:\Program Files (x86)\Origin Games
2015-04-11 20:00 - 2015-04-12 12:01 - 00000000 ____D () C:\Users\Richi\Documents\My Games
2015-04-11 19:59 - 2015-04-11 19:59 - 00000000 ____D () C:\ProgramData\Stardock
2015-04-11 19:59 - 2015-04-11 19:59 - 00000000 ____D () C:\ProgramData\Ironclad Games
2015-04-11 19:58 - 2015-04-11 19:58 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\LolClient
2015-04-11 19:56 - 2015-04-11 19:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-04-11 19:53 - 2015-04-11 21:02 - 00189248 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2015-04-11 19:53 - 2015-04-11 21:02 - 00189248 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0
2015-04-11 19:53 - 2015-04-11 21:02 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2015-04-11 19:15 - 2015-04-11 19:57 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\Origin
2015-04-11 19:15 - 2015-04-11 19:55 - 00000000 ____D () C:\Users\Richi\AppData\Local\Origin
2015-04-11 19:14 - 2015-04-12 12:15 - 00000000 ____D () C:\ProgramData\Origin
2015-04-11 19:14 - 2015-04-11 19:15 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-04-11 19:14 - 2015-04-11 19:14 - 00000000 ____D () C:\ProgramData\Electronic Arts
2015-04-11 19:11 - 2015-04-13 16:43 - 00000000 ____D () C:\Users\Richi\AppData\Local\Spotify
2015-04-11 19:11 - 2015-04-11 19:11 - 00001839 _____ () C:\Users\Richi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-04-11 19:10 - 2015-04-13 16:43 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\Spotify
2015-04-11 19:07 - 2015-04-12 11:31 - 00000000 ____D () C:\Program Files (x86)\Teamspeak
2015-04-11 18:59 - 2015-04-11 18:59 - 00000000 ____D () C:\ProgramData\Riot Games
2015-04-11 18:57 - 2015-04-11 20:00 - 00000000 ____D () C:\Program Files (x86)\Riot Games
2015-04-11 18:51 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-04-11 18:51 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-04-11 18:51 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-04-11 18:43 - 2015-04-11 18:58 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\Riot Games
2015-04-11 18:24 - 2015-04-11 18:24 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\Macromedia
2015-04-11 18:24 - 2015-04-11 18:24 - 00000000 ____D () C:\Users\Richi\AppData\Local\Steam
2015-04-11 18:23 - 2015-04-11 18:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-04-11 18:22 - 2015-04-11 18:23 - 01142128 _____ () C:\Users\Richi\Downloads\SteamSetup.exe
2015-04-11 18:14 - 2015-04-11 18:14 - 00000000 ____D () C:\Users\Richi\AppData\Local\Logitech
2015-04-11 18:14 - 2015-04-11 18:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-04-11 18:14 - 2015-04-11 18:14 - 00000000 ____D () C:\ProgramData\LogiShrd
2015-04-11 18:14 - 2015-04-11 18:14 - 00000000 ____D () C:\ProgramData\Apple
2015-04-11 18:14 - 2015-04-11 18:14 - 00000000 ____D () C:\Program Files\Logitech Gaming Software
2015-04-11 18:13 - 2015-04-11 18:13 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\Logitech
2015-04-11 18:13 - 2015-04-11 18:13 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\Logishrd
2015-04-11 18:08 - 2015-04-13 16:52 - 00003938 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{6C4E36DB-6998-40F7-BA8E-5BF2A64F237A}
2015-04-11 18:07 - 2015-04-11 18:07 - 00003100 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1206241334-3998519493-1326637554-1001
2015-04-11 18:06 - 2015-04-11 18:06 - 00000000 ___RD () C:\Users\Richi\SkyDrive
2015-04-11 18:06 - 2015-04-11 18:06 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2015-04-11 18:00 - 2015-04-12 22:20 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1206241334-3998519493-1326637554-1001
2015-04-11 17:56 - 2015-04-11 17:56 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\Intel Corporation
2015-04-11 17:54 - 2015-04-13 16:54 - 00000000 ____D () C:\Users\Richi
2015-04-11 17:54 - 2015-04-12 22:01 - 00001007 _____ () C:\Users\Richi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-04-11 17:54 - 2015-04-11 17:59 - 00000000 ____D () C:\Users\Richi\AppData\Local\NVIDIA
2015-04-11 17:54 - 2015-04-11 17:58 - 00000000 ____D () C:\Users\Richi\AppData\Local\NVIDIA Corporation
2015-04-11 17:54 - 2015-04-11 17:55 - 00000000 ____D () C:\Users\Richi\AppData\Local\Packages
2015-04-11 17:54 - 2015-04-11 17:54 - 00000020 ___SH () C:\Users\Richi\ntuser.ini
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\Vorlagen
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\Startmenü
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\Netzwerkumgebung
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\Lokale Einstellungen
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\Eigene Dateien
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\Druckumgebung
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\Documents\Eigene Musik
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\Documents\Eigene Bilder
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\AppData\Local\Verlauf
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\AppData\Local\Anwendungsdaten
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 _SHDL () C:\Users\Richi\Anwendungsdaten
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\Adobe
2015-04-11 17:54 - 2015-04-11 17:54 - 00000000 ____D () C:\Users\Richi\AppData\Local\VirtualStore
2015-04-11 17:54 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Richi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-04-11 17:54 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Richi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-04-11 17:54 - 2013-08-22 17:36 - 00000000 ___RD () C:\Users\Richi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-04-11 17:54 - 2013-08-22 17:36 - 00000000 ____D () C:\Users\Richi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-04-11 17:53 - 2015-04-13 16:53 - 01649349 _____ () C:\Windows\WindowsUpdate.log
2015-04-08 15:58 - 2015-04-08 15:58 - 00000000 ____H () C:\ProgramData\DP45977C.lfl
2015-04-08 15:58 - 2015-04-08 15:58 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2015-04-08 15:58 - 2015-04-08 15:58 - 00000000 ____D () C:\Program Files\Realtek
2015-04-08 15:58 - 2015-04-08 15:29 - 00003594 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2126287996-129295774-1086316358-500
2015-04-08 15:58 - 2013-09-10 05:02 - 06217904 ____R (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2015-04-08 15:58 - 2013-09-10 05:02 - 00313520 ____R (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2015-04-08 15:58 - 2013-09-10 05:01 - 01938608 ____R (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2015-04-08 15:58 - 2013-09-10 05:01 - 00260272 ____R (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2015-04-08 15:58 - 2012-08-31 20:18 - 07164176 ____R (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2015-04-08 15:58 - 2012-08-31 20:17 - 00434960 ____R (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2015-04-08 15:58 - 2012-08-31 20:17 - 00141584 ____R (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2015-04-08 15:58 - 2012-08-31 20:17 - 00124176 ____R (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2015-04-08 15:58 - 2012-08-31 20:17 - 00075024 ____R (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\Startmenü
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Programme
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\ProgramData\Startmenü
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\ProgramData\Dokumente
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2015-04-08 15:55 - 2015-04-08 15:55 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2015-04-08 15:53 - 2015-04-08 15:53 - 00002324 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1206241334-3998519493-1326637554-500
2015-04-08 15:26 - 2015-04-12 22:04 - 00011724 _____ () C:\Windows\SysWOW64\Gms.log
2015-04-08 15:23 - 2015-04-08 15:23 - 01804472 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-04-08 15:23 - 2015-04-08 15:23 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-04-08 15:21 - 2015-04-08 15:21 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2015-04-08 15:21 - 2015-04-08 15:21 - 00000000 ____D () C:\ProgramData\Intel
2015-04-08 15:21 - 2015-04-08 15:21 - 00000000 ____D () C:\Program Files (x86)\Intel
2015-04-08 15:14 - 2015-04-12 00:18 - 00000000 ____D () C:\ProgramData\Package Cache
2015-04-08 15:14 - 2015-04-08 15:23 - 00000000 ____D () C:\Program Files\Intel
2015-04-08 15:02 - 2015-04-12 22:02 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-08 15:02 - 2015-04-08 15:04 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-04-08 15:02 - 2015-04-08 15:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-08 15:02 - 2015-04-08 15:02 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-04-08 15:02 - 2015-03-28 05:44 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-04-08 15:02 - 2015-03-28 05:44 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-04-08 15:02 - 2015-03-28 05:43 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-04-08 15:02 - 2015-03-28 05:43 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-04-08 15:02 - 2015-03-13 21:41 - 00073872 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-04-08 15:02 - 2015-03-13 21:41 - 00060560 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-04-08 15:02 - 2015-03-13 18:16 - 06861968 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-04-08 15:02 - 2015-03-13 18:16 - 03526856 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-04-08 15:02 - 2015-03-13 18:16 - 02559808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-04-08 15:02 - 2015-03-13 18:16 - 00935056 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-04-08 15:02 - 2015-03-13 18:16 - 00386248 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-04-08 15:02 - 2015-03-13 18:16 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-04-08 15:02 - 2015-03-13 17:38 - 00622224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-08 15:02 - 2015-03-11 15:10 - 04246327 _____ () C:\Windows\system32\nvcoproc.bin
2015-04-08 15:01 - 2015-04-08 15:02 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-04-08 15:01 - 2015-04-08 15:01 - 00000000 ____D () C:\Program Files (x86)\Futuremark
2015-04-08 15:01 - 2015-03-13 21:41 - 32114888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 25460880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 24775368 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 20466376 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 18580512 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 17258024 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 16022016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 14121624 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 13297144 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 13210080 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 10775080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 10715864 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 10262160 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-08 15:01 - 2015-03-13 21:41 - 03611792 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 03303448 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 03249352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 02906928 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 01896136 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434788.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01009.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434788.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 01556624 _____ (NVIDIA Corporation) C:\Windows\system32\nvir3dgenco64.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 01540240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00997856 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00970384 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00944784 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00930448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00909512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00878328 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00833680 _____ () C:\Windows\system32\nvmcumd.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00496272 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00452424 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstusb.sys
2015-04-08 15:01 - 2015-03-13 21:41 - 00400584 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00390288 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00354112 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00346824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00306208 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00195728 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2015-04-08 15:01 - 2015-03-13 21:41 - 00178512 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00164568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00101576 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00040136 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-04-08 15:01 - 2015-03-13 21:41 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-04-08 15:01 - 2015-03-13 21:41 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00030536 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2015-04-08 15:01 - 2015-03-13 21:41 - 00027441 _____ () C:\Windows\system32\nvinfo.pb
2015-04-08 15:01 - 2015-03-13 21:41 - 00019616 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\nvswcfilter.sys
2015-04-08 15:00 - 2015-04-12 20:09 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-08 15:00 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2015-04-08 15:00 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-04-08 15:00 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-04-08 15:00 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2015-04-08 15:00 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-04-08 15:00 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2015-04-08 15:00 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-04-08 15:00 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2015-04-08 15:00 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-04-08 15:00 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2015-04-08 15:00 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2015-04-08 15:00 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-04-08 15:00 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-04-08 15:00 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2015-04-08 15:00 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-04-08 15:00 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2015-04-08 15:00 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-04-08 15:00 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-04-08 15:00 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-04-08 15:00 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-04-08 15:00 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-04-08 15:00 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-04-08 15:00 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-04-08 15:00 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-04-08 15:00 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-04-08 15:00 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-04-08 15:00 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-04-08 15:00 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-04-08 15:00 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-04-08 15:00 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-04-08 15:00 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-04-08 15:00 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-04-08 15:00 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-04-08 15:00 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-04-08 15:00 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-04-08 15:00 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-04-08 15:00 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-04-08 15:00 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-04-08 15:00 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-04-08 15:00 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-04-08 15:00 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-04-08 15:00 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-04-08 15:00 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-04-08 15:00 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-04-08 15:00 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-04-08 15:00 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-04-08 15:00 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-04-08 15:00 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-04-08 15:00 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-04-08 15:00 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-04-08 15:00 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-04-08 15:00 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-04-08 15:00 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-04-08 15:00 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-04-08 15:00 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-04-08 15:00 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-04-08 15:00 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-04-08 15:00 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-04-08 15:00 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-04-08 15:00 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-04-08 15:00 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-04-08 15:00 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-04-08 15:00 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-04-08 15:00 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-04-08 15:00 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-04-08 15:00 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-04-08 15:00 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-04-08 15:00 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-04-08 15:00 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-04-08 15:00 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-04-08 15:00 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-04-08 15:00 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-04-08 15:00 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-04-08 15:00 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-04-08 15:00 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-04-08 15:00 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-04-08 15:00 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-04-08 15:00 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-04-08 15:00 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-04-08 15:00 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-04-08 15:00 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-04-08 15:00 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-04-08 15:00 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-04-08 15:00 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-04-08 15:00 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-04-08 15:00 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-04-08 15:00 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-04-08 15:00 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-04-08 15:00 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-04-08 15:00 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-04-08 15:00 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-04-08 15:00 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-04-08 15:00 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-04-08 15:00 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-04-08 15:00 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-04-08 15:00 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-04-08 15:00 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-04-08 15:00 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-04-08 15:00 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-04-08 15:00 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-04-08 15:00 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-04-08 15:00 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-04-08 15:00 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-04-08 15:00 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-04-08 15:00 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-04-08 15:00 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-04-08 15:00 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-04-08 15:00 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-04-08 15:00 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-04-08 15:00 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-04-08 15:00 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-04-08 15:00 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-04-08 15:00 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-04-08 15:00 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-04-08 15:00 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-04-08 15:00 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-04-08 15:00 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-04-08 15:00 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-04-08 15:00 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-04-08 15:00 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-04-08 15:00 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-04-08 15:00 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-04-08 15:00 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-04-08 15:00 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-04-08 15:00 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-04-08 15:00 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-04-08 15:00 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-04-08 15:00 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-04-08 15:00 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-04-08 15:00 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-04-08 15:00 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-04-08 15:00 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-04-08 15:00 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-04-08 15:00 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-04-08 15:00 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-04-08 15:00 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-04-08 15:00 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-04-08 15:00 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-04-08 15:00 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-04-08 15:00 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-04-08 15:00 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-04-08 15:00 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-04-08 15:00 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-04-08 15:00 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-04-08 15:00 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-04-08 15:00 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-04-08 15:00 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-04-08 15:00 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-04-08 15:00 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-04-08 15:00 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-04-08 15:00 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-04-08 15:00 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-04-08 15:00 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-04-08 15:00 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-04-08 15:00 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-04-08 15:00 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-04-08 15:00 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-04-08 15:00 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-04-08 15:00 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-04-08 15:00 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-04-08 15:00 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-04-08 15:00 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-04-08 15:00 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-04-08 15:00 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-04-08 15:00 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Users\Richi\AppData\Roaming\FROMTE
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Users\Richi\AppData\Roaming\EMJHPJX
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2015-04-13 16:42 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-13 16:35 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-04-12 22:13 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-04-12 22:06 - 2013-12-11 13:59 - 01780340 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-12 22:06 - 2013-08-23 01:24 - 00765378 _____ () C:\Windows\system32\perfh007.dat
2015-04-12 22:06 - 2013-08-23 01:24 - 00159696 _____ () C:\Windows\system32\perfc007.dat
2015-04-12 22:02 - 2013-12-11 13:45 - 00161130 _____ () C:\Windows\PFRO.log
2015-04-12 22:02 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-12 21:54 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\System
2015-04-12 21:54 - 2013-08-22 16:45 - 00000000 ____D () C:\Windows\Setup
2015-04-12 21:34 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Registration
2015-04-12 20:21 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-04-12 19:42 - 2013-08-22 16:46 - 00026217 _____ () C:\Windows\setupact.log
2015-04-12 04:06 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-04-12 04:06 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-04-12 01:29 - 2013-12-11 14:00 - 00116430 _____ () C:\Windows\DirectX.log
2015-04-12 00:00 - 2013-12-11 13:44 - 00000000 ____D () C:\Windows\Panther
2015-04-11 19:14 - 2013-08-22 17:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-11 18:14 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\restore
2015-04-08 15:58 - 2013-08-22 15:36 - 00000000 ____D () C:\Windows\system32\Sysprep
2015-04-08 15:57 - 2013-08-22 16:44 - 00335992 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-08 15:55 - 2013-08-22 15:36 - 00000000 __RHD () C:\Users\Default
2015-04-08 15:54 - 2013-12-11 13:45 - 00000000 __SHD () C:\Recovery
2015-04-08 15:54 - 2013-08-22 17:37 - 00003608 _____ () C:\Windows\DtcInstall.log
2015-04-08 15:54 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\Recovery
2015-04-08 15:02 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help
==================== Files in the root of some directories =======
2015-03-26 21:14 - 2015-03-26 21:14 - 0005542 _____ () C:\Users\Richi\AppData\Roaming\EMJHPJX
2015-03-26 21:14 - 2015-03-26 21:14 - 0005542 _____ () C:\Users\Richi\AppData\Roaming\FROMTE
2015-04-08 15:58 - 2015-04-08 15:58 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Some content of TEMP:
====================
C:\Users\Richi\AppData\Local\Temp\Quarantine.exe
C:\Users\Richi\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2013-12-11 13:45
==================== End Of Log ============================
--- --- ---
Addition Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-04-2015
Ran by Richi at 2015-04-13 16:57:34
Running from C:\Users\Richi\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton 360 Premier Edition (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton 360 Premier Edition (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton 360 Premier Edition (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7 Days to Die (HKLM-x32\...\Steam App 251570) (Version: - The Fun Pimps)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
Audiosurf (HKLM-x32\...\Steam App 12900) (Version: - Dylan Fitterer)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
BioShock Infinite (HKLM-x32\...\Steam App 8870) (Version: - Irrational Games)
Borderlands (HKLM-x32\...\Steam App 8980) (Version: - Gearbox Software)
Call of Duty: Black Ops (HKLM-x32\...\Steam App 42700) (Version: - Treyarch)
Call of Duty: Modern Warfare 2 (HKLM-x32\...\Steam App 10180) (Version: - Infinity Ward)
Call of Duty: Modern Warfare 3 (HKLM-x32\...\Steam App 42680) (Version: - Infinity Ward)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version: - Torn Banner Studios)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Company of Heroes (HKLM-x32\...\Steam App 4560) (Version: - Relic Entertainment)
Company of Heroes: Opposing Fronts (HKLM-x32\...\Steam App 9340) (Version: - Relic Entertainment)
Cossacks II: Napoleonic Wars (HKLM-x32\...\Steam App 115200) (Version: - GSC Game World)
Cossacks: Back to War (HKLM-x32\...\Steam App 4850) (Version: - GSC Game World)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dark Souls: Prepare to Die Edition (HKLM-x32\...\Steam App 211420) (Version: - FromSoftware)
DARK SOULS™ II (HKLM-x32\...\Steam App 236430) (Version: - FromSoftware, Inc)
Darksiders (HKLM-x32\...\Steam App 50620) (Version: - Vigil Games)
Darksiders II (HKLM-x32\...\Steam App 50650) (Version: - Vigil Games)
Day of Defeat: Source (HKLM-x32\...\Steam App 300) (Version: - Valve)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Die*Sims™*3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.42.130 - Electronic Arts)
Dishonored (HKLM-x32\...\Steam App 205100) (Version: - Arkane Studios)
Dota 2 (HKLM-x32\...\Steam App 570) (Version: - Valve)
Dragon Age: Origins - Ultimate Edition (HKLM-x32\...\Steam App 47810) (Version: - BioWare)
Dragon Age™ II (HKLM-x32\...\{4D565319-8B91-41CB-961C-0DDC86101AC5}) (Version: 1.04.8524.0 - Electronic Arts)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.7 - Electronic Arts)
Far Cry (HKLM-x32\...\Steam App 13520) (Version: - Crytek Studios)
Far Cry 2 (HKLM-x32\...\Steam App 19900) (Version: - Ubisoft Montreal)
Far Cry® 3 (HKLM-x32\...\Steam App 220240) (Version: - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Fight The Dragon (HKLM-x32\...\Steam App 250560) (Version: - 3 Sprockets)
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.17.0 - Futuremark Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Half-Life 2: Deathmatch (HKLM-x32\...\Steam App 320) (Version: - Valve)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Homefront (HKLM-x32\...\Steam App 55100) (Version: - Kaos Studios)
How to Survive (HKLM-x32\...\Steam App 250400) (Version: - EKO Software)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.0.1002 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.26 - Intel(R) Corporation) Hidden
Killing Floor (HKLM-x32\...\Steam App 1250) (Version: - Tripwire Interactive)
Kingdoms of Amalur: Reckoning™ (HKLM-x32\...\Steam App 102500) (Version: - Big Huge Games)
Kingdoms Rise (HKLM-x32\...\Steam App 248630) (Version: - Flyleap Studios Pty. Ltd.)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve)
Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.)
Magicka (HKLM-x32\...\Steam App 42910) (Version: - Arrowhead Game Studios)
Malwarebytes Anti-Malware Version 2.1.4.1018 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
Mass Effect (HKLM-x32\...\Steam App 17460) (Version: - BioWare)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version: - BioWare)
Mass Effect™ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts)
Metro 2033 (HKLM-x32\...\Steam App 43110) (Version: - 4A Games)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1206241334-3998519493-1326637554-1001\...\OneDriveSetup.exe) (Version: 17.3.4726.0226 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Minimum (HKLM-x32\...\Steam App 214190) (Version: - Human Head Studios)
Mirror's Edge (HKLM-x32\...\Steam App 17410) (Version: - DICE)
Mount Your Friends (HKLM-x32\...\Steam App 296470) (Version: - Stegersaurus Software Inc.)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
MX vs. ATV Reflex (HKLM-x32\...\Steam App 55140) (Version: - Double Helix Games)
Natural Selection 2 (HKLM-x32\...\Steam App 4920) (Version: - Unknown Worlds Entertainment)
Nexuiz (HKLM-x32\...\Steam App 96800) (Version: - Illfonic)
Norton 360 (HKLM-x32\...\N360) (Version: 21.6.0.32 - Symantec Corporation)
NVIDIA 3D Vision Controller-Treiber 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.88 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
NVIDIA Grafiktreiber 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.88 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 347.88 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PAYDAY: The Heist (HKLM-x32\...\Steam App 24240) (Version: - OVERKILL Software)
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Portal (HKLM-x32\...\Steam App 400) (Version: - Valve)
Portal 2 (HKLM-x32\...\Steam App 620) (Version: - Valve)
POSTAL 2 (HKLM-x32\...\Steam App 223470) (Version: - Running With Scissors)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Red Faction (HKLM-x32\...\Steam App 20530) (Version: - Volition, Inc.)
Risen 2 - Dark Waters (HKLM-x32\...\Steam App 40390) (Version: - Piranha Bytes)
Rust (HKLM-x32\...\Steam App 252490) (Version: - Facepunch Studios)
Serious Sam 3: BFE (HKLM-x32\...\Steam App 41070) (Version: - Croteam)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
SimCity 2000 Special Edition (HKLM-x32\...\{59D2C751-F7BE-4E9F-9C8C-1F16013802C7}) (Version: 2.0.0.1 - Electronic Arts)
Sins of a Solar Empire®: Rebellion (HKLM-x32\...\Steam App 204880) (Version: - Ironclad Games)
Sitecom Wireless Network 300N Adapter (HKLM-x32\...\{F912EF57-65C8-48E8-911F-7FCAF8ADD62E}) (Version: 1.5.5.0 - Sitecom)
Spotify (HKU\S-1-5-21-1206241334-3998519493-1326637554-1001\...\Spotify) (Version: 1.0.3.101.gbfa97dfe - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Syndicate (HKLM-x32\...\{64CFBAAB-46F7-4628-8D9B-E656A8C11CDB}) (Version: 2.0.0.3 - Electronic Arts)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Terraria (HKLM-x32\...\Steam App 105600) (Version: - Re-Logic)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
The Forest (HKLM-x32\...\Steam App 242760) (Version: - Endnight Games Ltd)
The Walking Dead (HKLM-x32\...\Steam App 207610) (Version: - )
The Walking Dead: Season Two (HKLM-x32\...\Steam App 261030) (Version: - Telltale Games)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD PROJEKT RED)
The Witcher: Enhanced Edition (HKLM-x32\...\Steam App 20900) (Version: - CD PROJEKT RED)
The Wolf Among Us (HKLM-x32\...\Steam App 250320) (Version: - Telltale Games)
theHunter: Primal (HKLM-x32\...\Steam App 322920) (Version: - Expansive Worlds)
Thief (HKLM-x32\...\Steam App 239160) (Version: - Eidos-Montréal)
Thief 2 (HKLM-x32\...\Steam App 211740) (Version: - Looking Glass Studios)
Thief Gold (HKLM-x32\...\Steam App 211600) (Version: - Looking Glass Studios)
Thief: Deadly Shadows (HKLM-x32\...\Steam App 6980) (Version: - Ion Storm)
Titan Quest (HKLM-x32\...\Steam App 4540) (Version: - Iron Lore Entertainment)
Titan Quest: Immortal Throne (HKLM-x32\...\Steam App 4550) (Version: - Iron Lore Entertainment)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version: - Crystal Dynamics)
Trine 2 (HKLM-x32\...\Steam App 35720) (Version: - Frozenbyte)
Vampire: The Masquerade - Bloodlines (HKLM-x32\...\Steam App 2600) (Version: - Troika Games)
Wajam (HKLM-x32\...\WaNetEnhance) (Version: 2.30.2.13 (i2.6) - WaNetEnhance) <==== ATTENTION
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1206241334-3998519493-1326637554-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Richi\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncApi64.dll (Microsoft Corporation)
==================== Restore Points =========================
11-04-2015 18:14:24 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
12-04-2015 20:08:51 Installed Wireless Network 300N Adapter
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {0266456D-3DC8-48E6-ADE2-C736AFAE5C87} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\WSCStub.exe [2014-09-21] (Symantec Corporation)
Task: {67E96E59-1BD7-4C02-BA57-AF5D12358D44} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {76D40ED7-B595-4170-B5F2-ACB49A9442FA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-12] (Google Inc.)
Task: {B1F82E87-0D08-4156-ACAB-8766D7966DE4} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1206241334-3998519493-1326637554-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
Task: {CCDE6FCD-9375-4A07-8E6E-684F880F625A} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files (x86)\Norton 360\Engine\21.6.0.32\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {F5AFC8C6-7B1E-478B-9C93-F689F914FEFC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-04-12] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) ==============
2014-09-18 09:23 - 2014-09-18 09:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-03-12 20:23 - 2015-03-12 20:23 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 09:23 - 2014-09-18 09:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-03-12 20:23 - 2015-03-12 20:23 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-04-08 15:02 - 2015-03-13 18:16 - 00118472 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-04-13 16:54 - 2015-04-13 16:54 - 00050477 _____ () C:\Users\Richi\Desktop\Defogger.exe
2014-11-10 12:12 - 2014-11-10 12:12 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-04-11 18:04 - 2015-03-28 05:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-04-12 20:09 - 2009-11-09 12:35 - 00913408 _____ () C:\Program Files (x86)\Sitecom\Common\RaWLAPI.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) ===============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1206241334-3998519493-1326637554-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Richi\Pictures\2560x1440\Crystals-broken-power-green-nvidia-1440x2560.jpg
DNS Servers: 192.168.2.1
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== Accounts: =============================
Administrator (S-1-5-21-1206241334-3998519493-1326637554-500 - Administrator - Disabled)
Gast (S-1-5-21-1206241334-3998519493-1326637554-501 - Limited - Disabled)
Richi (S-1-5-21-1206241334-3998519493-1326637554-1001 - Administrator - Enabled) => C:\Users\Richi
==================== Faulty Device Manager Devices =============
Name: Killer e2200 Gigabit Ethernet Controller (NDIS 6.30)
Description: Killer e2200 Gigabit Ethernet Controller (NDIS 6.30)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Killer
Service: Ke2200
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (04/13/2015 04:33:05 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005
System errors:
=============
Error: (04/12/2015 10:14:07 PM) (Source: DCOM) (EventID: 10010) (User: Dampfwalze)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (04/12/2015 10:13:37 PM) (Source: DCOM) (EventID: 10010) (User: Dampfwalze)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Microsoft Office Sessions:
=========================
Error: (04/13/2015 04:33:05 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Percentage of memory in use: 12%
Total physical RAM: 16286.38 MB
Available physical RAM: 14315.09 MB
Total Pagefile: 19230.38 MB
Available Pagefile: 17026.16 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.76 GB) (Free:279.17 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:931.51 GB) (Free:340.46 GB) NTFS
Drive f: (Transcend) (Fixed) (Total:1863.02 GB) (Free:1787.22 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 3240A774)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 3240A77C)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: F6CD845E)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
FRST 32-Bit | FRST 64-Bit
Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Emsisoft Emergency Kit herunter.
dann auf 
und dann auf 
.