| theunknown93 | 29.09.2014 18:41 |
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-09-2014 02
Ran by Admin (administrator) on ADMIN-PC on 29-09-2014 19:39:53
Running from C:\Users\Admin\Downloads
Loaded Profile: Admin (Available profiles: Admin)
Platform: Windows 7 Ultimate (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(The Within Network, LLC) C:\Windows\UnsignedThemesSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
(VMware, Inc.) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
(VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliType Pro\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft IntelliPoint\ipoint.exe
() C:\Windows\System32\hale.exe
(DT Soft Ltd) C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
(BinarySense, Inc.) C:\Program Files (x86)\HDDlife 4\HDDlifePro.exe
(PortableApps.com) C:\Users\Admin\Programme\Thunderbird Portable\ThunderbirdPortable\ThunderbirdPortable.exe
(BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(BinarySense, Inc.) C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Mozilla Corporation) C:\Users\Admin\Programme\Thunderbird Portable\ThunderbirdPortable\App\Thunderbird\thunderbird.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [itype] => C:\Program Files\Microsoft IntelliType Pro\itype.exe [2345848 2009-11-05] (Microsoft Corporation)
HKLM\...\Run: [IntelliPoint] => C:\Program Files\Microsoft IntelliPoint\ipoint.exe [2320752 2009-11-05] (Microsoft Corporation)
HKLM\...\Run: [Chew7Hale] => C:\Windows\System32\hale.exe [2169856 2014-09-09] ()
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642304 2013-04-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKU\S-1-5-21-585411412-1768551649-4063148382-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [357696 2010-04-01] (DT Soft Ltd)
HKU\S-1-5-21-585411412-1768551649-4063148382-1000\...\MountPoints2: {a24124ee-383d-11e4-9372-e03f497f9fc1} - I:\setup.exe
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\HDDlife.lnk
ShortcutTarget: HDDlife.lnk -> C:\Program Files (x86)\HDDlife 4\HDDlifePro.exe (BinarySense, Inc.)
Startup: C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ThunderbirdPortable - Verknüpfung.lnk
ShortcutTarget: ThunderbirdPortable - Verknüpfung.lnk -> C:\Users\Admin\Programme\Thunderbird Portable\ThunderbirdPortable\ThunderbirdPortable.exe (PortableApps.com)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{C86A3230-149E-4165-B6D9-80430FBA56B2}: [NameServer] 8.8.8.8,8.8.4.4
FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\10cwxba1.default
FF SelectedSearchEngine: Google
FF Homepage: https://www.google.de/?gws_rd=ssl
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF user.js: detected! => C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\10cwxba1.default\user.js
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: EPUBReader - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\10cwxba1.default\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2014-09-23]
FF Extension: ReloadEvery - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\10cwxba1.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2014-09-27]
FF Extension: Adblock Plus - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\10cwxba1.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-09-13]
Chrome:
=======
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-04-29] (Advanced Micro Devices, Inc.) [File not signed]
R2 HDDlife HDD Access service; C:\Program Files (x86)\Common Files\BinarySense\hldasvc.exe [2095368 2013-02-14] (BinarySense, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S3 sppuinotify; C:\Windows\system32\sppuinotify.dll [65536 2014-09-09] (Microsoft Corporation) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2145080 2014-07-16] (TuneUp Software)
R2 UnsignedThemes; C:\Windows\UnsignedThemesSvc.exe [24168 2009-07-13] (The Within Network, LLC)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2014-09-13] (REALiX(tm))
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-29] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-17] ()
R3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [848384 2011-04-07] (Realtek Semiconductor Corporation )
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [834544 2014-09-09] () [File not signed]
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-09-13] ()
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2014-06-23] (TuneUp Software)
R2 uxpatch; C:\Windows\system32\drivers\uxpatch.sys [30568 2009-07-13] ()
R2 VMparport; C:\Windows\system32\drivers\VMparport.sys [32472 2014-06-12] (VMware, Inc.)
R0 vsock; C:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
U3 ame0e00d; C:\Windows\System32\Drivers\ame0e00d.sys [0 ] (Microsoft Corporation)
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-29 19:39 - 2014-09-29 19:40 - 00009524 _____ () C:\Users\Admin\Downloads\FRST.txt
2014-09-29 19:39 - 2014-09-29 19:39 - 00000000 ____D () C:\FRST
2014-09-29 19:38 - 2014-09-29 19:39 - 02108928 _____ (Farbar) C:\Users\Admin\Downloads\FRST64.exe
2014-09-29 19:37 - 2014-09-29 19:37 - 00000000 ____D () C:\Users\Admin\AppData\Local\Thunderbird
2014-09-28 21:58 - 2014-09-28 21:58 - 00025652 _____ () C:\Users\Admin\Desktop\DxDiag.txt
2014-09-28 21:31 - 2014-09-28 21:31 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-09-27 13:01 - 2014-09-27 13:01 - 00000000 ____D () C:\Users\Admin\Desktop\Neuer Ordner
2014-09-27 12:49 - 2014-09-27 12:50 - 00000000 ____D () C:\Users\Admin\Desktop\Skripte
2014-09-27 12:48 - 2014-09-27 12:48 - 00000000 ____D () C:\Users\Admin\Programme
2014-09-27 11:35 - 2014-09-27 11:35 - 00001352 _____ () C:\Users\Admin\Documents\AutoHotkey.ahk
2014-09-27 11:34 - 2014-09-27 11:38 - 00000000 ____D () C:\Program Files (x86)\AutoHotkey
2014-09-27 11:34 - 2014-09-27 11:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey
2014-09-27 11:33 - 2014-09-27 11:34 - 02047357 _____ () C:\Users\Admin\Downloads\AutoHotkey104805_Install.exe
2014-09-27 11:20 - 2014-09-27 11:20 - 27584890 _____ () C:\Users\Admin\Downloads\torbrowser-install-3.6.6_de.exe
2014-09-26 21:16 - 2014-09-29 19:37 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-26 21:16 - 2014-09-26 21:16 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-09-26 21:16 - 2014-09-26 21:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-09-26 21:16 - 2014-09-26 21:16 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-26 21:16 - 2014-09-26 21:16 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-09-26 21:16 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-26 21:16 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-09-26 21:16 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-26 21:15 - 2014-09-26 21:16 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Admin\Downloads\mbam-setup-2.0.2.1012.exe
2014-09-26 20:59 - 2014-09-26 20:59 - 01101648 _____ () C:\Users\Admin\Downloads\BlueStacks App Player - CHIP-Installer.exe
2014-09-26 20:59 - 2014-09-26 20:59 - 00000000 ____D () C:\Users\Admin\Downloads\OTL
2014-09-26 20:26 - 2014-09-26 21:26 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\MyPhoneExplorer
2014-09-26 20:17 - 2014-09-26 20:26 - 00000000 ____D () C:\Program Files (x86)\MyPhoneExplorer
2014-09-26 20:17 - 2014-09-26 20:17 - 00002057 _____ () C:\Users\Public\Desktop\MyPhoneExplorer.lnk
2014-09-26 20:17 - 2014-09-26 20:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyPhoneExplorer
2014-09-26 19:29 - 2014-09-26 19:31 - 05580995 _____ (Swearware) C:\Users\Admin\Downloads\ComboFix.exe
2014-09-26 19:23 - 2014-09-26 19:23 - 00000256 _____ () C:\Users\Admin\Desktop\Windows 7 bleibt jedesmal hängen - Trojaner-Board.URL
2014-09-25 21:14 - 2014-09-25 21:14 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-20 15:37 - 2014-09-20 15:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RAGE
2014-09-20 15:05 - 2014-09-20 18:19 - 00000000 ____D () C:\Program Files (x86)\RAGE
2014-09-20 14:08 - 2012-02-13 10:25 - 00174080 _____ (RAD Game Tools, Inc.) C:\Windows\system\binkw32.dll
2014-09-20 13:57 - 2014-09-20 13:57 - 00000850 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Saints Row IV.lnk
2014-09-20 13:56 - 2014-09-20 14:09 - 00000000 ____D () C:\Program Files (x86)\Saints Row IV
2014-09-20 13:26 - 2014-09-20 14:51 - 00000000 ____D () C:\Program Files (x86)\Deep Silver
2014-09-20 13:09 - 2014-09-20 13:09 - 00003296 ____N () C:\bootsqm.dat
2014-09-20 11:40 - 2014-09-20 11:40 - 00003704 _____ () C:\Windows\System32\Tasks\Java Update Scheduler
2014-09-20 11:33 - 2014-09-20 11:33 - 00002201 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-09-20 11:33 - 2014-09-20 11:33 - 00002189 _____ () C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-09-20 11:33 - 2014-09-20 11:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014
2014-09-20 11:33 - 2014-07-16 10:24 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-09-20 11:33 - 2014-07-16 10:24 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-09-20 11:33 - 2014-07-16 10:24 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-09-20 11:32 - 2014-09-20 11:32 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\TuneUp Software
2014-09-20 11:32 - 2014-09-20 11:32 - 00000000 ____D () C:\Users\Admin\AppData\Local\TuneUp Software
2014-09-20 11:31 - 2014-09-20 11:33 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-09-20 11:28 - 2014-09-20 11:40 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-09-20 11:28 - 2014-09-20 11:34 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-09-20 10:30 - 2010-05-05 04:20 - 00042640 _____ () C:\Windows\system32\atiapfxx.blb
2014-09-20 10:30 - 2010-05-05 04:16 - 00446464 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIDEMGX.dll
2014-09-20 10:30 - 2010-05-05 03:35 - 00055296 _____ (AMD) C:\Windows\system32\coinst.dll
2014-09-20 10:30 - 2010-04-28 23:17 - 00002110 _____ () C:\Windows\SysWOW64\atipblag.dat
2014-09-20 10:30 - 2010-04-28 23:17 - 00002110 _____ () C:\Windows\system32\atipblag.dat
2014-09-20 10:30 - 2010-04-23 20:55 - 00021290 _____ () C:\Windows\atiogl.xml
2014-09-19 21:47 - 2014-09-26 19:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-19 21:47 - 2014-09-19 21:47 - 00000000 ____D () C:\ProgramData\Mozilla
2014-09-18 20:49 - 2014-09-18 20:49 - 00002108 _____ () C:\Users\Admin\Desktop\Counter-Strike Global Offensive.lnk
2014-09-18 20:46 - 2014-09-22 20:12 - 00000000 ____D () C:\Program Files (x86)\Counter-Strike Global Offensive
2014-09-16 20:04 - 2014-09-16 20:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-09-16 20:04 - 2014-09-16 20:04 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-09-16 20:03 - 2014-09-16 20:04 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\DVDVideoSoft
2014-09-13 14:49 - 2014-09-13 14:49 - 00000454 __RSH () C:\ProgramData\ntuser.pol
2014-09-13 13:50 - 2014-09-13 13:50 - 00000000 ____D () C:\Users\Admin\.android
2014-09-13 13:43 - 2014-09-13 13:53 - 00000000 ____D () C:\Users\Admin\AppData\Local\Genymobile
2014-09-13 13:43 - 2014-09-13 13:49 - 00000000 ____D () C:\Users\Admin\.VirtualBox
2014-09-13 13:42 - 2014-09-13 13:42 - 00000000 ____D () C:\Program Files\Oracle
2014-09-13 13:42 - 2013-04-12 11:41 - 00237840 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxDrv.sys
2014-09-13 13:42 - 2013-04-12 11:40 - 00120080 _____ (Oracle Corporation) C:\Windows\system32\Drivers\VBoxUSBMon.sys
2014-09-13 12:45 - 2014-09-29 19:40 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-13 12:45 - 2014-09-13 12:45 - 00002380 _____ () C:\Users\Public\Desktop\HDDlife Pro.lnk
2014-09-13 12:45 - 2014-09-13 12:45 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\BinarySense
2014-09-13 12:45 - 2014-09-13 12:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HDDlife
2014-09-13 12:45 - 2014-09-13 12:45 - 00000000 ____D () C:\ProgramData\Licenses
2014-09-13 12:45 - 2014-09-13 12:45 - 00000000 ____D () C:\Program Files (x86)\HDDlife 4
2014-09-13 12:36 - 2014-09-13 12:37 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\HD Tune Pro
2014-09-13 11:16 - 2014-09-13 11:16 - 00027552 _____ (REALiX(tm)) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2014-09-13 11:16 - 2014-09-13 11:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HWiNFO32
2014-09-13 11:16 - 2014-09-13 11:16 - 00000000 ____D () C:\Program Files (x86)\HWiNFO32
2014-09-13 11:15 - 2014-09-13 11:15 - 00003178 _____ () C:\Windows\System32\Tasks\{27A994E9-D8AB-47B3-AD86-09CA92641D0C}
2014-09-13 10:34 - 2014-09-13 10:34 - 00001169 _____ () C:\Users\Admin\Desktop\TeamSpeak 3 Client.lnk
2014-09-13 10:34 - 2014-09-13 10:34 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-09-13 10:34 - 2014-09-13 10:34 - 00000000 ____D () C:\Users\Admin\AppData\Local\TeamSpeak 3 Client
2014-09-13 10:29 - 2014-09-13 10:29 - 00000000 ____D () C:\Users\Admin\AppData\Local\Macromedia
2014-09-13 10:20 - 2014-09-13 10:20 - 00000000 ____D () C:\Users\Admin\AppData\Local\Mozilla
2014-09-13 10:19 - 2014-09-13 10:19 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-13 10:19 - 2014-09-13 10:19 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-09-11 21:01 - 2014-09-11 21:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD VISION Engine Control Center
2014-09-11 21:01 - 2014-09-11 21:01 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-09-11 21:01 - 2014-09-11 21:01 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-09-11 21:01 - 2014-09-11 21:01 - 00000000 ____D () C:\Program Files (x86)\AMD APP
2014-09-11 21:00 - 2014-09-20 10:30 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-09-11 21:00 - 2014-09-11 21:01 - 00000000 ____D () C:\ProgramData\AMD
2014-09-11 21:00 - 2014-09-11 21:00 - 00000000 ____D () C:\Program Files\ATI
2014-09-11 21:00 - 2010-02-18 09:18 - 00046136 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdiox64.sys
2014-09-11 20:59 - 2014-09-11 21:01 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-09-11 20:37 - 2014-09-13 10:10 - 00016152 _____ () C:\Windows\system32\Drivers\SWDUMon.sys
2014-09-11 20:37 - 2014-09-11 20:37 - 00000000 ____D () C:\Users\Admin\AppData\Local\SlimWare Utilities Inc
2014-09-11 20:32 - 2014-09-11 20:32 - 00000000 ____D () C:\Users\Public\Documents\Downloaded Installers
2014-09-11 20:27 - 2014-09-29 19:37 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Thunderbird
2014-09-11 20:27 - 2014-09-13 10:20 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Mozilla
2014-09-11 20:17 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-09-11 20:17 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-09-11 20:17 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-09-11 20:17 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-09-11 20:17 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-09-11 20:17 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-09-11 20:17 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-09-11 20:17 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-09-11 20:17 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-09-11 20:17 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-09-11 20:17 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-09-11 20:17 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-09-11 20:17 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-09-11 20:17 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-09-11 20:17 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-09-11 20:17 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-09-11 20:17 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-09-11 20:17 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-09-11 20:17 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-09-11 20:17 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-09-11 20:17 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-09-11 20:17 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-09-11 20:17 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-09-11 20:17 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-09-11 20:17 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-09-11 20:17 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-09-11 20:17 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-09-11 20:17 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-09-11 20:17 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-09-11 20:17 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-09-11 20:17 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-09-11 20:17 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-09-11 20:17 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-09-11 20:17 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-09-11 20:17 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-09-11 20:17 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-09-11 20:17 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-09-11 20:17 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-09-11 20:17 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-09-11 20:17 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-09-11 20:17 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-09-11 20:17 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-09-11 20:17 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-09-11 20:17 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-09-11 20:17 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-09-11 20:17 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-09-11 20:17 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-09-11 20:17 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-09-11 20:17 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-09-11 20:17 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-09-11 20:17 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-09-11 20:17 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-09-11 20:17 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-09-11 20:17 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-09-11 20:17 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-09-11 20:17 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-09-11 20:17 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-09-11 20:17 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-09-11 20:17 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-09-11 20:17 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-09-11 20:17 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-09-11 20:17 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-09-11 20:17 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-09-11 20:17 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-09-11 20:17 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-09-11 20:17 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-09-11 20:17 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-09-11 20:17 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-09-11 20:17 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-09-11 20:17 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-09-11 20:17 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-09-11 20:17 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-09-11 20:17 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-09-11 20:17 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-09-11 20:17 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-09-11 20:17 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-09-11 20:17 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-09-11 20:17 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-09-11 20:17 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-09-11 20:17 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-09-11 20:17 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-09-11 20:17 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-09-11 20:17 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-09-11 20:17 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-09-11 20:17 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-09-11 20:17 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-09-11 20:17 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-09-11 20:17 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-09-11 20:17 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-09-11 20:17 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-09-11 20:17 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-09-11 20:17 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-09-11 20:17 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-09-11 20:17 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-09-11 20:17 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-09-11 20:17 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-09-11 20:17 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-09-11 20:17 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-09-11 20:17 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-09-11 20:17 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-09-11 20:17 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-09-11 20:17 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-09-11 20:17 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-09-11 20:17 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-09-11 20:17 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-09-11 20:17 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-09-11 20:17 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-09-11 20:17 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-09-11 20:17 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-09-11 20:17 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-09-11 20:17 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-09-11 20:17 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-09-11 20:17 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-09-11 20:17 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-09-11 20:17 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-09-11 20:17 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-09-11 20:17 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-09-11 20:17 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-09-11 20:17 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-09-11 20:17 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-09-11 20:17 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-09-11 20:17 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-09-11 20:17 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-09-11 20:17 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-09-11 20:17 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-09-11 20:17 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-09-11 20:17 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-09-11 20:17 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-09-11 20:17 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-09-11 20:17 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-09-11 20:17 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-09-11 20:17 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-09-11 20:17 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-09-11 20:17 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-09-11 20:17 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-09-11 20:17 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-09-11 20:17 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-09-11 20:17 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-09-11 20:17 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-09-11 20:17 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-09-11 20:17 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-09-11 20:17 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-09-11 20:17 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-09-11 20:17 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-09-11 20:17 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-09-11 20:17 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-09-11 20:17 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-09-11 20:17 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-09-11 20:17 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-09-11 20:17 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-09-11 20:17 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-09-11 20:17 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-09-11 20:17 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-09-11 20:17 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-09-11 20:17 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-09-11 20:17 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-09-11 20:16 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-09-11 20:16 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-09-11 20:16 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-09-11 20:16 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-09-11 20:16 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-09-11 20:16 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-09-11 20:16 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-09-11 20:16 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-09-11 20:16 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-09-11 20:16 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-09-11 20:16 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-09-11 20:16 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-09-11 20:16 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-09-11 20:16 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-09-11 20:16 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-09-11 20:16 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-09-11 20:16 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-09-11 20:16 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-09-11 20:16 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-09-11 20:16 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-09-11 20:08 - 2014-09-13 10:26 - 00000000 ____D () C:\Android
2014-09-11 20:06 - 2014-09-13 13:55 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-09-11 19:19 - 2014-09-26 21:02 - 00000000 ____D () C:\ProgramData\BlueStacksSetup
2014-09-11 18:01 - 2014-09-20 11:58 - 00002062 ____H () C:\Users\Admin\Documents\Default.rdp
2014-09-11 07:57 - 2014-09-11 07:57 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Ashampoo
2014-09-10 22:17 - 2014-09-10 22:17 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Macromedia
2014-09-10 22:17 - 2014-09-10 22:17 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Adobe
2014-09-10 22:16 - 2014-09-10 22:16 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-10 22:16 - 2014-09-10 22:16 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-10 22:16 - 2014-09-10 22:16 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-09-10 22:16 - 2014-09-10 22:16 - 00000000 ____D () C:\Windows\system32\Macromed
2014-09-10 22:15 - 2014-09-10 22:16 - 00000000 ____D () C:\Users\Admin\AppData\Local\Adobe
2014-09-10 19:58 - 2014-09-28 22:07 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\vlc
2014-09-10 19:43 - 2014-09-10 19:43 - 00000000 ____D () C:\Users\Admin\AppData\Local\Google
2014-09-10 19:24 - 2014-09-27 11:03 - 00753832 _____ () C:\Windows\PFRO.log
2014-09-10 00:45 - 2014-09-09 18:00 - 00000000 ____D () C:\Windows\Panther
2014-09-09 23:51 - 2014-09-09 23:51 - 00001313 _____ () C:\Windows\TSSysprep.log
2014-09-09 23:50 - 2014-09-29 19:35 - 00159069 _____ () C:\Windows\WindowsUpdate.log
2014-09-09 23:50 - 2014-09-09 23:50 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-09-09 23:49 - 2014-09-09 23:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-09-09 21:20 - 2014-09-09 21:20 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-09-09 21:07 - 2014-09-09 21:07 - 00000000 ____D () C:\ProgramData\Sun
2014-09-09 21:06 - 2014-09-09 21:06 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-09-09 21:06 - 2014-09-09 21:06 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-09-09 21:06 - 2014-09-09 21:06 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-09-09 21:06 - 2014-09-09 21:06 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-09-09 21:06 - 2014-09-09 21:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-09-09 21:06 - 2014-09-09 21:06 - 00000000 ____D () C:\Program Files (x86)\Java
2014-09-09 20:54 - 2014-09-09 20:54 - 00000000 ____D () C:\Users\Admin\Desktop\JDownloader
2014-09-09 19:34 - 2009-07-14 03:41 - 02651136 _____ (Microsoft Corporation) C:\Windows\system32\netshell.dll
2014-09-09 19:34 - 2009-07-14 03:41 - 01807872 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2014-09-09 19:34 - 2009-07-14 03:41 - 00898560 _____ (Microsoft Corporation) C:\Windows\system32\oobefldr.dll
2014-09-09 19:34 - 2009-07-14 03:41 - 00256000 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2014-09-09 19:34 - 2009-07-14 03:41 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\sndvolsso.dll
2014-09-09 19:34 - 2009-07-14 03:41 - 00143360 _____ (Microsoft Corporation) C:\Windows\system32\mydocs.dll
2014-09-09 19:34 - 2009-07-14 03:39 - 06676480 _____ (Microsoft Corporation) C:\Windows\system32\mspaint.exe
2014-09-09 19:34 - 2009-07-14 03:39 - 00431104 _____ (Microsoft Corporation) C:\Windows\system32\snippingtool.exe
2014-09-09 19:34 - 2009-07-14 03:39 - 00300032 _____ (Microsoft Corporation) C:\Windows\system32\msconfig.exe
2014-09-09 19:34 - 2009-07-14 03:39 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-09-09 19:34 - 2009-07-14 03:39 - 00257024 _____ (Microsoft Corporation) C:\Windows\system32\taskmgr.exe
2014-09-09 19:34 - 2009-07-14 03:39 - 00193536 _____ (Microsoft Corporation) C:\Windows\system32\notepad.exe
2014-09-09 19:34 - 2009-07-14 03:28 - 00705536 _____ (Microsoft Corporation) C:\Windows\system32\imagesp1.dll
2014-09-09 19:33 - 2014-09-09 19:40 - 00000000 ____D () C:\Windows\UXBackup
2014-09-09 19:33 - 2009-07-14 03:40 - 01926144 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-09-09 19:33 - 2009-07-14 03:40 - 01863680 _____ (Microsoft Corporation) C:\Windows\system32\explorerframe.dll
2014-09-09 19:33 - 2009-07-14 03:40 - 00780800 _____ (Microsoft Corporation) C:\Windows\system32\actioncenter.dll
2014-09-09 19:33 - 2009-07-14 03:40 - 00748032 _____ (Microsoft Corporation) C:\Windows\system32\batmeter.dll
2014-09-09 19:33 - 2009-07-14 03:40 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\browseui.dll
2014-09-09 19:33 - 2009-07-14 03:39 - 02868224 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2014-09-09 19:33 - 2009-07-14 03:39 - 00344576 _____ (Microsoft Corporation) C:\Windows\system32\cmd.exe
2014-09-09 19:33 - 2009-07-14 03:39 - 00183296 _____ (Microsoft Corp.) C:\Windows\system32\defrag.exe
2014-09-09 19:33 - 2009-07-14 03:39 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-09-09 19:33 - 2009-07-14 03:39 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\control.exe
2014-09-09 19:33 - 2009-07-14 03:39 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\dpiscaling.exe
2014-09-09 19:33 - 2009-07-14 03:38 - 00918528 _____ (Microsoft Corporation) C:\Windows\system32\calc.exe
2014-09-09 19:33 - 2009-07-14 03:28 - 20268032 _____ (Microsoft Corporation) C:\Windows\system32\imageres.dll
2014-09-09 19:33 - 2009-07-14 03:14 - 00398336 _____ (Microsoft Corporation) C:\Windows\regedit.exe
2014-09-09 19:32 - 2014-09-09 19:39 - 00000000 ____D () C:\Program Files (x86)\UX Pack
2014-09-09 19:32 - 2011-08-11 12:47 - 00076288 _____ () C:\Windows\SysWOW64\moveex.exe
2014-09-09 19:32 - 2003-08-19 01:44 - 00118845 _____ (Matt Ginzton) C:\Windows\Flurry.scr
2014-09-09 19:31 - 2014-09-09 19:31 - 00000476 _____ () C:\Users\Admin\Desktop\VMware Network Adapter VMnet8.lnk
2014-09-09 19:31 - 2014-09-09 19:31 - 00000476 _____ () C:\Users\Admin\Desktop\VMware Network Adapter VMnet1.lnk
2014-09-09 19:31 - 2014-09-09 19:31 - 00000382 _____ () C:\Users\Admin\Desktop\Drahtlosnetzwerkverbindung.lnk
2014-09-09 19:31 - 2014-09-09 19:31 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\WinRAR
2014-09-09 19:25 - 2014-09-09 19:25 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-09-09 19:25 - 2014-09-09 19:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-09-09 19:25 - 2014-09-09 19:25 - 00000000 ____D () C:\Program Files\WinRAR
2014-09-09 19:18 - 2014-09-27 00:45 - 444283001 _____ () C:\Windows\system32\cwlog.dtl
2014-09-09 19:18 - 2014-09-09 19:18 - 02169856 ___SH () C:\Windows\system32\hale.exe
2014-09-09 19:16 - 2014-09-09 19:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-09-09 19:16 - 2014-09-09 19:16 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-09-09 19:04 - 2014-09-27 12:13 - 00000000 ____D () C:\Users\Admin\AppData\Local\VMware
2014-09-09 19:04 - 2014-09-27 11:48 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\VMware
2014-09-09 18:57 - 2014-09-09 19:36 - 00058632 _____ () C:\Users\Admin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-09 18:51 - 2014-09-20 13:25 - 00045398 _____ () C:\Windows\DirectX.log
2014-09-09 18:51 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-09-09 18:51 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-09-09 18:51 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-09-09 18:51 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-09-09 18:51 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-09-09 18:51 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-09-09 18:50 - 2014-09-28 21:46 - 00000000 ____D () C:\Users\Admin\AppData\Local\Warframe
2014-09-09 18:50 - 2013-08-13 12:05 - 00564248 _____ (Digital Extremes) C:\Users\Admin\Desktop\Launcher.exe
2014-09-09 18:46 - 2014-09-09 18:49 - 00000000 ____D () C:\Virtual Machines
2014-09-09 18:31 - 2014-06-12 18:23 - 00064728 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmx86.sys
2014-09-09 18:31 - 2014-06-12 18:22 - 00032472 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMparport.sys
2014-09-09 18:31 - 2014-06-12 18:21 - 00033496 _____ (VMware, Inc.) C:\Windows\system32\Drivers\VMkbd.sys
2014-09-09 18:31 - 2013-10-08 18:21 - 00073296 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vsock.sys
2014-09-09 18:31 - 2013-10-08 18:21 - 00067664 _____ (VMware, Inc.) C:\Windows\system32\vsocklib.dll
2014-09-09 18:31 - 2013-10-08 18:21 - 00063568 _____ (VMware, Inc.) C:\Windows\SysWOW64\vsocklib.dll
2014-09-09 18:30 - 2014-09-29 19:32 - 00000000 ____D () C:\ProgramData\VMware
2014-09-09 18:30 - 2014-09-09 18:30 - 01499556 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-09 18:30 - 2014-09-09 18:30 - 00002120 _____ () C:\Users\Public\Desktop\VMware Player.lnk
2014-09-09 18:30 - 2014-09-09 18:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VMware
2014-09-09 18:30 - 2014-09-09 18:30 - 00000000 ____D () C:\Program Files\Common Files\VMware
2014-09-09 18:30 - 2014-09-09 18:30 - 00000000 ____D () C:\Program Files (x86)\VMware
2014-09-09 18:30 - 2014-06-12 18:23 - 00359128 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnetdhcp.exe
2014-09-09 18:30 - 2014-06-12 18:22 - 00931032 _____ (VMware, Inc.) C:\Windows\system32\vnetlib64.dll
2014-09-09 18:30 - 2014-06-12 18:22 - 00437976 _____ (VMware, Inc.) C:\Windows\SysWOW64\vmnat.exe
2014-09-09 18:30 - 2014-06-12 18:22 - 00031448 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmnetuserif.sys
2014-09-09 18:30 - 2014-02-27 18:40 - 00054464 _____ (VMware, Inc.) C:\Windows\system32\Drivers\hcmon.sys
2014-09-09 18:30 - 2014-02-27 18:40 - 00038720 _____ (VMware, Inc.) C:\Windows\system32\Drivers\vmusb.sys
2014-09-09 18:17 - 2014-08-25 06:53 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-09-09 18:15 - 2014-09-09 18:15 - 00000000 ____D () C:\Users\Admin\AppData\Local\Aviator
2014-09-09 18:14 - 2014-09-13 10:26 - 00000000 ____D () C:\Program Files (x86)\WhiteHat
2014-09-09 18:13 - 2014-09-20 11:40 - 00000000 ____D () C:\Users\Admin\AppData\Local\Downloaded Installations
2014-09-09 18:11 - 2014-09-09 18:11 - 00003050 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_IType_exe
2014-09-09 18:11 - 2014-09-09 18:11 - 00003040 _____ () C:\Windows\System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe
2014-09-09 18:11 - 2014-09-09 18:11 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-09 18:11 - 2014-09-09 18:11 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_point64k_01009.Wdf
2014-09-09 18:11 - 2014-09-09 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft-Maus
2014-09-09 18:11 - 2014-09-09 18:11 - 00000000 ____D () C:\Program Files (x86)\Belkin
2014-09-09 18:11 - 2011-04-07 10:17 - 00848384 _____ (Realtek Semiconductor Corporation ) C:\Windows\system32\Drivers\rtl8192cu.sys
2014-09-09 18:11 - 2011-01-19 15:01 - 00451072 _____ () C:\Windows\SysWOW64\ISSRemoveSP.exe
2014-09-09 18:10 - 2014-09-09 18:11 - 00000000 ____D () C:\Program Files\Microsoft IntelliPoint
2014-09-09 18:10 - 2014-09-09 18:10 - 00834544 _____ () C:\Windows\system32\Drivers\sptd.sys
2014-09-09 18:10 - 2014-09-09 18:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft-Tastatur
2014-09-09 18:10 - 2014-09-09 18:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-09-09 18:09 - 2014-09-20 13:23 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\DAEMON Tools Lite
2014-09-09 18:09 - 2014-09-09 18:10 - 00000000 ____D () C:\Program Files (x86)\DAEMON Tools Lite
2014-09-09 18:09 - 2014-09-09 18:09 - 00000000 ____D () C:\Program Files\Microsoft IntelliType Pro
2014-09-09 18:08 - 2014-09-09 18:09 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-09-09 18:08 - 2014-09-09 18:08 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\DAEMON Tools Pro
2014-09-09 18:08 - 2014-09-09 18:08 - 00000000 ____D () C:\ProgramData\DAEMON Tools Pro
2014-09-09 18:06 - 2014-09-09 18:06 - 00000000 ____D () C:\Windows\PCHEALTH
2014-09-09 18:05 - 2012-08-20 04:38 - 00138568 _____ (ASMedia Technology Inc) C:\Windows\system32\Drivers\asmthub3.sys
2014-09-09 18:04 - 2012-08-20 04:38 - 00416072 _____ (ASMedia Technology Inc) C:\Windows\system32\Drivers\asmtxhci.sys
2014-09-09 18:04 - 2012-02-03 15:01 - 00677480 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-09-09 18:04 - 2012-02-03 15:01 - 00107552 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-09-09 18:04 - 2012-02-03 15:01 - 00074344 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-09-09 18:02 - 2014-09-09 18:02 - 00039451 _____ () C:\Windows\Ascd_tmp.ini
2014-09-09 18:02 - 2014-09-09 18:02 - 00001769 _____ () C:\Windows\Language_trs.ini
2014-09-09 18:00 - 2014-09-27 12:48 - 00000000 ____D () C:\Users\Admin
2014-09-09 18:00 - 2014-09-09 18:00 - 00000020 ___SH () C:\Users\Admin\ntuser.ini
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Musik
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Public\Documents\Eigene Bilder
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\Vorlagen
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\Startmenü
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\Netzwerkumgebung
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\Lokale Einstellungen
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\Eigene Dateien
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\Druckumgebung
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Musik
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\Documents\Eigene Bilder
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Verlauf
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\AppData\Local\Anwendungsdaten
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default\Anwendungsdaten
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Musik
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default User\Documents\Eigene Bilder
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Verlauf
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\Vorlagen
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\Startmenü
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\Netzwerkumgebung
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\Lokale Einstellungen
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\Eigene Dateien
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\Druckumgebung
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\Documents\Eigene Musik
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\Documents\Eigene Bilder
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\AppData\Local\Verlauf
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\AppData\Local\Anwendungsdaten
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Users\Admin\Anwendungsdaten
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Programme
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\ProgramData\Vorlagen
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\ProgramData\Startmenü
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\ProgramData\Favoriten
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\ProgramData\Dokumente
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\ProgramData\Anwendungsdaten
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Program Files\Gemeinsame Dateien
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 _SHDL () C:\Dokumente und Einstellungen
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 __SHD () C:\Recovery
2014-09-09 18:00 - 2014-09-09 18:00 - 00000000 ____D () C:\Users\Admin\AppData\Local\VirtualStore
2014-09-09 18:00 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-09 18:00 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-29 19:36 - 2009-07-14 19:58 - 00646312 _____ () C:\Windows\system32\perfh007.dat
2014-09-29 19:36 - 2009-07-14 19:58 - 00127398 _____ () C:\Windows\system32\perfc007.dat
2014-09-29 19:36 - 2009-07-14 07:13 - 01480184 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-29 19:32 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-29 19:32 - 2009-07-14 06:51 - 00023495 _____ () C:\Windows\setupact.log
2014-09-28 22:18 - 2009-07-14 06:45 - 00009584 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-28 22:18 - 2009-07-14 06:45 - 00009584 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-27 11:49 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-09-27 11:34 - 2009-07-14 20:18 - 00000000 ____D () C:\Windows\ShellNew
2014-09-27 00:45 - 2009-07-14 06:45 - 00000000 ____D () C:\Windows\Setup
2014-09-26 21:09 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-09-20 14:08 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system
2014-09-13 14:48 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-09-10 00:45 - 2009-07-14 07:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-09-10 00:45 - 2009-07-14 07:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-09-09 23:51 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-09-09 23:51 - 2009-07-14 06:46 - 00001774 _____ () C:\Windows\DtcInstall.log
2014-09-09 23:51 - 2009-07-14 05:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-09 23:51 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-09-09 23:46 - 2009-07-14 20:18 - 00000000 ____D () C:\Windows\CSC
2014-09-09 19:40 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-09-09 19:36 - 2009-07-14 06:45 - 00273800 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-09 19:32 - 2009-07-14 05:20 - 00000000 __RSD () C:\Windows\Media
2014-09-09 19:32 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Cursors
2014-09-09 19:18 - 2009-07-14 01:57 - 00002048 _____ () C:\Windows\system32\winver.exe
2014-09-09 19:18 - 2009-07-14 01:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\systemcpl.dll
2014-09-09 19:18 - 2009-07-14 01:52 - 00389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-09-09 19:18 - 2009-07-14 01:52 - 00349696 _____ (Microsoft Corporation) C:\Windows\system32\slui.exe
2014-09-09 19:18 - 2009-07-14 01:52 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\sppwmi.dll
2014-09-09 19:18 - 2009-07-14 01:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\sppuinotify.dll
2014-09-09 19:18 - 2009-07-14 01:52 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2014-09-09 19:18 - 2009-07-14 01:51 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\sppcommdlg.dll
2014-09-09 19:18 - 2009-07-14 01:38 - 01008640 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-09-09 19:18 - 2009-06-10 22:59 - 00107946 _____ () C:\Windows\system32\slmgr.vbs
2014-09-09 18:29 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-09-09 18:17 - 2009-07-14 07:32 - 00000000 ____D () C:\Program Files\DVD Maker
2014-09-09 18:17 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-09-09 18:11 - 2009-07-14 04:34 - 00000468 _____ () C:\Windows\win.ini
2014-09-09 18:09 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\restore
2014-09-09 18:00 - 2009-07-14 05:20 - 00000000 __RHD () C:\Users\Default
2014-09-09 18:00 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-09-09 18:00 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Windows NT
Some content of TEMP:
====================
C:\Users\Admin\AppData\Local\Temp\nhpmonitor.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll
[2009-07-14 01:38] - [2014-09-09 19:18] - 1008640 ____A (Microsoft Corporation) F78E7BD7ADC829D9DD92C558180E09DB
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-09 23:46
==================== End Of Log ============================
--- --- ---
--- --- --- Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-09-2014 02
Ran by Admin at 2014-09-29 19:40:22
Running from C:\Users\Admin\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 12.5.100.30429 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.937.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{37FCE154-7F59-74F0-3A35-BF503CEB230B}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2013.0429.2313.39747 - Ihr Firmenname) Hidden
AMD Media Foundation Decoders (Version: 1.0.80430.0002 - Advanced Micro Devices, Inc.) Hidden
AMD VISION Engine Control Center (x32 Version: 2013.0429.2313.39747 - Ihr Firmenname) Hidden
ATI AVIVO64 Codecs (Version: 11.1.0.50504 - ATI Technologies Inc.) Hidden
AutoHotkey 1.0.48.05 (HKLM-x32\...\AutoHotkey) (Version: 1.0.48.05 - Chris Mallett)
Belkin N300 Micro USB Wireless Adapter (HKLM-x32\...\{B20F9D1C-A0A5-4cd8-8306-DA03872311B1}) (Version: 1.00.0155 - Belkin International, Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0429.2313.39747 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0429.2313.39747 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0429.2313.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0429.2313.39747 - Advanced Micro Devices, Inc.) Hidden
Counter-Strike Global Offensive MULTI-2 1.32.6.0 (HKLM-x32\...\Counter-Strike Global Offensive MULTI-2 1.32.6.0) (Version: - )
Free YouTube to MP3 Converter version 3.12.44.908 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.44.908 - DVDVideoSoft Ltd.)
HDDlife Pro 4.0 (HKLM-x32\...\{1F05D7DE-2034-4F77-816A-4FC7999068D5}) (Version: 4.0.193 - BinarySense Inc.)
HWiNFO32 Version 4.44 (HKLM-x32\...\HWiNFO32_is1) (Version: 4.44 - Martin Malík - REALiX)
HydraVision (x32 Version: 4.2.162.0 - ATI Technologies Inc.) Hidden
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft IntelliPoint 7.1 (HKLM\...\{5EBE0F1F-45DF-4298-AC6B-E8E54EAEC834}) (Version: 7.10.344.0 - Microsoft)
Microsoft IntelliType Pro 7.1 (HKLM\...\{E6B7BD80-A921-4C72-A68B-44A9EB438BE4}) (Version: 7.10.344.0 - Microsoft)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 32.0.2 - Mozilla)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
RAGE (HKLM-x32\...\RAGE_is1) (Version: - )
Saints Row IV Update and DLC pack (HKLM-x32\...\U2FpbnRzUm93SVY=_is1) (Version: 1 - )
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
tools-windows (x32 Version: 9.6.2.1895310 - VMware, Inc.) Hidden
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.340 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
UxStyle Core Beta (HKLM\...\{8E363055-15E5-4D8A-9C69-A0A9DE9A3337}) (Version: 0.2.1.1 - The Within Network, LLC)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VMware Player (HKLM-x32\...\VMware_Player) (Version: 6.0.3 - VMware, Inc)
VMware Player (Version: 6.0.3 - VMware, Inc.) Hidden
WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
==================== Restore Points =========================
20-09-2014 09:29:40 TuneUp Utilities 2014 wird installiert
20-09-2014 11:24:46 DirectX wurde installiert
26-09-2014 17:24:38 OTL Restore Point - 26.09.2014 19:24:36
26-09-2014 19:09:00 Removed BlueStacks Notification Center
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {8F052638-BD5E-4D2E-ADF7-1438A65A008D} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25] (Oracle Corporation)
Task: {CC850300-2C4A-45B5-BFBC-674A73A6143C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2014-07-16] (TuneUp Software)
Task: {DE2C5201-273A-4F8B-9379-834276D28A77} - System32\Tasks\Microsoft_Hardware_Launch_IPoint_exe => C:\Program Files\Microsoft IntelliPoint\IPoint.exe [2009-11-05] (Microsoft Corporation)
Task: {DEA36D11-6544-41CA-954A-05DF3360D525} - System32\Tasks\Microsoft_Hardware_Launch_IType_exe => C:\Program Files\Microsoft IntelliType Pro\IType.exe [2009-11-05] (Microsoft Corporation)
==================== Loaded Modules (whitelisted) =============
2013-04-29 23:25 - 2013-04-29 23:25 - 00211968 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2012-03-05 16:03 - 2012-03-05 16:03 - 00677376 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll
2012-02-16 14:53 - 2012-02-16 14:53 - 03642880 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll
2013-04-29 23:25 - 2013-04-29 23:25 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-07-16 10:24 - 2014-07-16 10:24 - 00699704 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll
2014-09-09 19:18 - 2014-09-09 19:18 - 02169856 ___SH () C:\Windows\System32\hale.exe
2014-06-12 18:22 - 2014-06-12 18:22 - 01261272 _____ () C:\Program Files (x86)\VMware\VMware Player\libxml2.dll
2011-08-17 16:04 - 2011-08-17 16:04 - 00040960 _____ () C:\Program Files (x86)\HDDlife 4\lartlu.dll
2014-09-13 12:45 - 2013-02-23 00:09 - 00020480 _____ () C:\Program Files (x86)\HDDlife 4\Armaccess.dll
2014-09-29 19:37 - 2014-09-29 19:37 - 00008704 _____ () C:\Users\Admin\AppData\Local\Temp\nsr5033.tmp\newadvsplash.dll
2014-09-29 19:37 - 2014-09-29 19:37 - 00011264 _____ () C:\Users\Admin\AppData\Local\Temp\nsr5033.tmp\System.dll
2014-09-29 19:37 - 2014-09-29 19:37 - 00029696 _____ () C:\Users\Admin\AppData\Local\Temp\nsr5033.tmp\registry.dll
2014-09-17 20:16 - 2014-04-24 19:51 - 03019888 _____ () C:\Users\Admin\Programme\Thunderbird Portable\ThunderbirdPortable\App\thunderbird\mozjs.dll
2014-09-17 20:16 - 2014-04-24 19:51 - 00158832 _____ () C:\Users\Admin\Programme\Thunderbird Portable\ThunderbirdPortable\App\thunderbird\NSLDAP32V60.dll
2014-09-17 20:16 - 2014-04-24 19:51 - 00023152 _____ () C:\Users\Admin\Programme\Thunderbird Portable\ThunderbirdPortable\App\thunderbird\NSLDAPPR32V60.dll
2014-09-25 21:14 - 2014-09-25 21:14 - 03715184 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:55B41E6A
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UnsignedThemes => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UnsignedThemes => ""="Service"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
========================= Accounts: ==========================
Admin (S-1-5-21-585411412-1768551649-4063148382-1000 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-585411412-1768551649-4063148382-500 - Administrator - Disabled)
Gast (S-1-5-21-585411412-1768551649-4063148382-501 - Limited - Disabled)
==================== Faulty Device Manager Devices =============
Name: VMware Virtual Ethernet Adapter for VMnet8
Description: VMware Virtual Ethernet Adapter for VMnet8
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: VMware Virtual Ethernet Adapter for VMnet1
Description: VMware Virtual Ethernet Adapter for VMnet1
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/28/2014 10:18:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x517f39a1
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x614
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/27/2014 07:18:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x517f39a1
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x618
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/27/2014 02:06:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x517f39a1
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x614
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/27/2014 00:47:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x517f39a1
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x624
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/27/2014 00:45:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x517f39a1
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x618
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/25/2014 09:52:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x517f39a1
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x60c
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/24/2014 10:10:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x517f39a1
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x61c
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/23/2014 09:37:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x517f39a1
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x614
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/22/2014 10:50:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x517f39a1
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x60c
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
Error: (09/22/2014 07:48:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Fuel.Service.exe, Version: 1.0.0.0, Zeitstempel: 0x517f39a1
Name des fehlerhaften Moduls: Device.dll, Version: 4.1.0.0, Zeitstempel: 0x4f55e10b
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000033c1
ID des fehlerhaften Prozesses: 0x644
Startzeit der fehlerhaften Anwendung: 0xFuel.Service.exe0
Pfad der fehlerhaften Anwendung: Fuel.Service.exe1
Pfad des fehlerhaften Moduls: Fuel.Service.exe2
Berichtskennung: Fuel.Service.exe3
System errors:
=============
Error: (09/29/2014 07:32:20 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "HDDlife HDD Access service" wurde mit folgendem Fehler beendet:
%%-2147417831
Error: (09/28/2014 10:18:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/28/2014 08:26:08 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "HDDlife HDD Access service" wurde mit folgendem Fehler beendet:
%%-2147417831
Error: (09/27/2014 07:18:35 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/27/2014 03:58:38 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "HDDlife HDD Access service" wurde mit folgendem Fehler beendet:
%%-2147417831
Error: (09/27/2014 02:06:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/27/2014 11:03:16 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "HDDlife HDD Access service" wurde mit folgendem Fehler beendet:
%%-2147417831
Error: (09/27/2014 00:47:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (09/27/2014 00:46:29 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "HDDlife HDD Access service" wurde mit folgendem Fehler beendet:
%%-2147417831
Error: (09/27/2014 00:45:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "AMD FUEL Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Microsoft Office Sessions:
=========================
Error: (09/28/2014 10:18:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fuel.Service.exe1.0.0.0517f39a1Device.dll4.1.0.04f55e10bc000000500000000000033c161401cfdb49a8140fa0C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dlla695ceec-474c-11e4-9788-e03f497f9fc1
Error: (09/27/2014 07:18:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fuel.Service.exe1.0.0.0517f39a1Device.dll4.1.0.04f55e10bc000000500000000000033c161801cfda5b1f91f639C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll4fb20458-466a-11e4-900e-e03f497f9fc1
Error: (09/27/2014 02:06:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fuel.Service.exe1.0.0.0517f39a1Device.dll4.1.0.04f55e10bc000000500000000000033c161401cfda31dbbc0b03C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dllc34021dd-463e-11e4-8599-e03f497f9fc1
Error: (09/27/2014 00:47:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fuel.Service.exe1.0.0.0517f39a1Device.dll4.1.0.04f55e10bc000000500000000000033c162401cfd9dbb2f2731fC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll11e58fc2-45cf-11e4-928a-e03f497f9fc1
Error: (09/27/2014 00:45:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fuel.Service.exe1.0.0.0517f39a1Device.dll4.1.0.04f55e10bc000000500000000000033c161801cfd9ab6d45a048C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dllca477056-45ce-11e4-8011-e03f497f9fc1
Error: (09/25/2014 09:52:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fuel.Service.exe1.0.0.0517f39a1Device.dll4.1.0.04f55e10bc000000500000000000033c160c01cfd8db9d0d37a6C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll755c4619-44ed-11e4-ae56-e03f497f9fc1
Error: (09/24/2014 10:10:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fuel.Service.exe1.0.0.0517f39a1Device.dll4.1.0.04f55e10bc000000500000000000033c161c01cfd81adb2dd23fC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dlld10f296d-4426-11e4-b3ca-e03f497f9fc1
Error: (09/23/2014 09:37:52 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fuel.Service.exe1.0.0.0517f39a1Device.dll4.1.0.04f55e10bc000000500000000000033c161401cfd743b9edde30C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll1b48017f-4359-11e4-b607-e03f497f9fc1
Error: (09/22/2014 10:50:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fuel.Service.exe1.0.0.0517f39a1Device.dll4.1.0.04f55e10bc000000500000000000033c160c01cfd68cd491cd3dC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll0d776027-429a-11e4-826b-e03f497f9fc1
Error: (09/22/2014 07:48:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fuel.Service.exe1.0.0.0517f39a1Device.dll4.1.0.04f55e10bc000000500000000000033c164401cfd626ae6f5a94C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exeC:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll0ee90ca9-421c-11e4-9837-e03f497f9fc1
==================== Memory info ===========================
Processor: AMD FX(tm)-8320 Eight-Core Processor
Percentage of memory in use: 22%
Total physical RAM: 8174.12 MB
Available physical RAM: 6348.93 MB
Total Pagefile: 16362.27 MB
Available Pagefile: 14391.79 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:375.27 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 040C57B8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
FRST 32-Bit | FRST 64-Bit