Jump to content

Nachmanowicz

Members
 View Profile  See their activity

  • Posts

    16

  • Joined

  • Last visited

 Content Type 

Everything posted by Nachmanowicz

  1. Nachmanowicz
    Ive just uninstalled utorrent! =S
  2. Nachmanowicz
    Hey! Thanks. Ive attached the logs. These other hard drives Ive mentioned are all internal. Anything else you tell me! Cheers! Addition.txt FRST.txt
  3. Nachmanowicz
    Hello, I've been having real big issues with browsing, and its not recent. My AV is Avast Free right now. Many websites I am greeted with this ad, it grays out the rest of the screen which is unresponsive until its closed, by clicking on X, which will usually open a new window with russian junk. image hosting over 2mb They sometimes vary in size and shape, more square, more rectangular, bigger on the Y or X axis.Not that often a russian popups on the top of the screen, bottom right or bottom, containing a counter, when it goes to 0 a "X" for closing appears and I can close it. Now, that gray out middle ad I just showed you is malfunctioning, I can't ever close it, so I gotta click stop on the browser in order to use the page, or else I'm forever stuck in that grayed out screen. I got MalwareBytes, and once it's on, webpages rarely open and I get prompts from it ALL THE TIME saying a Malicious Website was blocked from svchost.exe. Once I saw .ru wbsite blocked too. Anyways, using the internet with Malwarebytes on is impossible, can't be done.I must point out that this started happening as soon as I installed Windows 10, I fixed problems when I had windows 7, then I switched to 10 and as soon as it started, these viruses were in, probably coming in from my other hard drives. Thanks for the attention.
  4. Nachmanowicz
    Oh ballz, I thought I posted it. Well, so far so good after ZOEK! It kinda reset my chrome, but it worked!!!!!!! I couldnt enter my moidem/router setup, because I dont have its password. I should call my ISP to get that, I think. Thanks =3
  5. Nachmanowicz
    I'm sorry to inform the funky ads persist and I still can't open certain pages if MalwareBytes is on, getting messages like: This webpage is not available DNS_PROBE_FINISHED_NXDOMAIN
  6. Nachmanowicz
    2015-05-26 14:43 - 2008-07-02 13:11 - 00013568 _____ () C:\Windows\system32\CNC1737D.TBL 2015-05-26 14:42 - 2015-05-26 14:42 - 11017360 _____ () C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe 2015-05-26 14:42 - 2015-05-26 14:42 - 00000000 ___HD () C:\Program Files\CanonBJ 2015-05-26 14:36 - 2015-05-26 14:36 - 48655952 _____ () C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe 2015-05-26 14:25 - 2013-07-09 02:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2015-05-26 14:25 - 2013-07-09 02:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2015-05-26 14:25 - 2013-07-09 01:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2015-05-26 14:25 - 2013-07-09 01:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2015-05-26 14:24 - 2015-01-30 20:56 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2015-05-26 14:24 - 2014-03-04 06:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-05-26 14:24 - 2014-03-04 06:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-05-26 14:24 - 2014-03-04 06:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-05-26 14:24 - 2014-03-04 06:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-05-26 14:24 - 2014-03-04 06:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-05-26 14:24 - 2014-03-04 06:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-05-26 14:24 - 2014-03-04 06:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-05-26 14:24 - 2014-03-04 06:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-05-26 14:24 - 2014-03-04 06:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-05-26 14:24 - 2014-03-04 05:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-05-26 14:24 - 2014-03-04 05:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-05-26 14:24 - 2013-08-01 23:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-05-26 14:24 - 2013-08-01 21:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 21:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 21:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 21:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-05-26 14:24 - 2013-04-10 03:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2015-05-26 14:24 - 2011-02-03 08:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2015-05-26 14:23 - 2015-02-18 04:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2015-05-26 14:23 - 2015-02-18 04:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2015-05-26 14:23 - 2012-11-23 00:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe 2015-05-26 14:04 - 2014-05-14 13:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-05-26 14:04 - 2014-05-14 13:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-05-26 14:04 - 2014-05-14 13:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-05-26 14:04 - 2014-05-14 13:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-05-26 14:04 - 2014-05-14 13:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-05-26 14:04 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-05-26 14:04 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-05-26 14:04 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-05-26 14:04 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-05-26 06:30 - 2015-05-26 06:30 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG 2015-05-26 06:30 - 2015-05-26 02:22 - 00000000 ____D () C:\Windows\Panther 2015-05-26 05:53 - 2015-05-26 05:56 - 00003328 _____ () C:\Windows\System32\Tasks\EVGAPrecisionX 2015-05-26 05:32 - 2015-05-26 05:32 - 00001355 _____ () C:\Windows\TSSysprep.log 2015-05-26 05:32 - 2015-05-26 05:32 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2015-05-26 05:32 - 2015-05-26 05:32 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2015-05-26 05:30 - 2015-05-26 05:30 - 00002841 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0530.html 2015-05-26 05:17 - 2015-05-27 03:12 - 00000000 ____D () C:\Windows\SysWOW64\directx 2015-05-26 05:16 - 2015-05-26 05:16 - 00000000 ____D () C:\Program Files (x86)\EVGA 2015-05-26 05:15 - 2015-05-26 05:16 - 18715110 _____ () C:\Users\Nach\Downloads\EVGA_PrecisionX_16_Setup_v5.3.3.zip 2015-05-26 04:54 - 2015-05-26 04:54 - 00002922 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0454.html 2015-05-26 04:39 - 2015-05-27 03:09 - 00000000 ____D () C:\temp 2015-05-26 04:05 - 2015-06-01 22:29 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Origin 2015-05-26 04:05 - 2015-05-26 04:06 - 00000000 ____D () C:\Program Files (x86)\Origin Games 2015-05-26 04:05 - 2015-05-26 04:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Origin 2015-05-26 04:03 - 2015-06-04 08:09 - 00000000 ____D () C:\ProgramData\Origin 2015-05-26 04:03 - 2015-05-26 20:45 - 00000000 ____D () C:\ProgramData\Electronic Arts 2015-05-26 04:03 - 2015-05-26 04:03 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk 2015-05-26 04:03 - 2015-05-26 04:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2015-05-26 04:02 - 2015-06-01 22:29 - 00000000 ____D () C:\Program Files (x86)\Origin 2015-05-26 04:02 - 2015-05-26 04:02 - 17110336 _____ (Electronic Arts, Inc.) C:\Users\Nach\Downloads\OriginThinSetup.exe 2015-05-26 04:01 - 2015-05-26 04:01 - 00000000 ____D () C:\Users\Nach\AppData\Local\Steam 2015-05-26 03:59 - 2015-06-04 08:34 - 00000000 ____D () C:\Program Files (x86)\Steam 2015-05-26 03:59 - 2015-05-26 03:59 - 01142128 _____ () C:\Users\Nach\Downloads\SteamSetup.exe 2015-05-26 03:59 - 2015-05-26 03:59 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk 2015-05-26 03:59 - 2015-05-26 03:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2015-05-26 03:41 - 2015-06-04 11:00 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job 2015-05-26 03:41 - 2015-06-04 10:46 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job 2015-05-26 03:41 - 2015-05-26 03:41 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c 2015-05-26 03:41 - 2015-05-26 03:41 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393 2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\NVIDIA 2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z 2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Program Files (x86)\GPU-Z 2015-05-26 03:40 - 2015-05-26 03:40 - 01582736 _____ ( ) C:\Users\Nach\Downloads\cpu-z_1.72-en.exe 2015-05-26 03:40 - 2015-05-26 03:40 - 00000869 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\Program Files\CPUID 2015-05-26 03:10 - 2015-05-26 03:10 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech® Webcam Software 2015-05-26 03:08 - 2015-05-26 03:08 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Leadertech 2015-05-26 03:07 - 2015-05-26 03:08 - 00010101 _____ () C:\Windows\system32\lvcoinst.log 2015-05-26 03:07 - 2015-05-26 03:08 - 00003744 _____ () C:\Windows\LDPINST.LOG 2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files\Common Files\logishrd 2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files (x86)\Logitech 2015-05-26 03:07 - 2015-05-26 03:07 - 00001624 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk 2015-05-26 03:05 - 2015-05-26 03:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2015-05-26 03:05 - 2015-05-26 03:05 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys 2015-05-26 03:05 - 2015-05-26 03:05 - 00000388 _____ () C:\Windows\LkmdfCoInst.log 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\LogiShrd 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\Apple 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Logitech Gaming Software 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Bonjour 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files (x86)\Bonjour 2015-05-26 03:04 - 2015-05-26 03:04 - 74637872 _____ (Logitech, Inc.) C:\Users\Nach\Downloads\lws251.exe 2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logitech 2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logishrd 2015-05-26 03:02 - 2015-05-26 03:03 - 74818632 _____ (Logitech Inc.) C:\Users\Nach\Downloads\LGS_8.58.183_x64_Logitech.exe 2015-05-26 02:57 - 2015-05-26 02:58 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\QuickScan 2015-05-26 02:57 - 2015-05-26 02:57 - 10447328 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition_x64.exe 2015-05-26 02:57 - 2015-05-26 02:57 - 00162208 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition.exe 2015-05-26 02:46 - 2015-05-26 02:54 - 00000000 ____D () C:\Users\Nach\Heaven 2015-05-26 02:44 - 2015-05-27 20:25 - 02128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage 2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine 2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\Program Files (x86)\Unigine 2015-05-26 02:44 - 2015-05-26 02:44 - 00002117 _____ () C:\Users\Public\Desktop\Heaven Benchmark 4.0.lnk 2015-05-26 02:43 - 2015-05-26 04:58 - 00001377 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk 2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA Corporation 2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA 2015-05-26 02:43 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-05-26 02:43 - 2015-05-07 21:35 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-05-26 02:43 - 2015-05-07 21:35 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-05-26 02:43 - 2015-05-07 21:34 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-05-26 02:43 - 2015-05-07 21:34 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2015-05-26 02:42 - 2015-06-04 11:02 - 00006464 _____ () C:\Windows\SysWOW64\Gms.log 2015-05-26 02:42 - 2015-05-26 04:42 - 00000000 ____D () C:\ProgramData\NVIDIA 2015-05-26 02:42 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2015-05-26 02:42 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2015-05-26 02:42 - 2015-05-13 03:52 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2015-05-26 02:42 - 2015-05-13 03:52 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-05-26 02:42 - 2015-05-13 03:52 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 42718864 _____ () C:\Windows\system32\nvcompiler.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 37741712 _____ () C:\Windows\SysWOW64\nvcompiler.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 30478992 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 22945424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 17540416 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 16145176 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 15858728 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 15048816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 14455296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 13263568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 12849056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 11790144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 10972304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-05-26 02:42 - 2015-05-12 03:27 - 03363224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 02971776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435286.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435286.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01050256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00502896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00176064 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00031710 _____ () C:\Windows\system32\nvinfo.pb 2015-05-26 02:42 - 2015-05-12 00:30 - 06872392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 03490448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-05-26 02:42 - 2015-05-12 00:30 - 00385352 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-05-26 02:42 - 2015-05-11 14:01 - 04391871 _____ () C:\Windows\system32\nvcoproc.bin 2015-05-26 02:42 - 2014-11-22 07:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2015-05-26 02:42 - 2014-11-22 07:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2015-05-26 02:42 - 2014-11-22 07:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2015-05-26 02:41 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2015-05-26 02:41 - 2015-05-26 02:41 - 00000000 ____D () C:\NVIDIA 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ___HD () C:\Program Files (x86)\Temp 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files\Realtek 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files (x86)\Realtek 2015-05-26 02:40 - 2014-05-28 20:23 - 03977944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2015-05-26 02:40 - 2014-05-28 14:35 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2015-05-26 02:40 - 2014-05-28 11:38 - 01137695 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2015-05-26 02:40 - 2014-05-26 15:00 - 62006272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2015-05-26 02:40 - 2014-05-23 13:54 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2015-05-26 02:40 - 2014-05-22 16:24 - 00096568 _____ () C:\Windows\system32\audioLibVc.dll 2015-05-26 02:40 - 2014-05-22 13:21 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2015-05-26 02:40 - 2014-05-19 17:16 - 02843352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2015-05-26 02:40 - 2014-05-19 10:47 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2015-05-26 02:40 - 2014-05-14 15:47 - 02119472 _____ () C:\Windows\system32\SStudio.dll 2015-05-26 02:40 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2015-05-26 02:40 - 2014-04-17 17:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll 2015-05-26 02:40 - 2014-04-17 17:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll 2015-05-26 02:40 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll 2015-05-26 02:40 - 2014-04-10 12:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll 2015-05-26 02:40 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll 2015-05-26 02:40 - 2014-04-09 16:39 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2015-05-26 02:40 - 2014-04-09 16:38 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2015-05-26 02:40 - 2014-03-21 14:17 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll 2015-05-26 02:40 - 2014-03-19 19:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll 2015-05-26 02:40 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2015-05-26 02:40 - 2014-03-05 05:11 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll 2015-05-26 02:40 - 2014-03-05 05:11 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll 2015-05-26 02:40 - 2014-03-05 05:11 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll 2015-05-26 02:40 - 2014-03-05 05:11 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll 2015-05-26 02:40 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll 2015-05-26 02:40 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2015-05-26 02:40 - 2014-02-06 11:28 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2015-05-26 02:40 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll 2015-05-26 02:40 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2015-05-26 02:40 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2015-05-26 02:40 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2015-05-26 02:40 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2015-05-26 02:40 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll 2015-05-26 02:40 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll 2015-05-26 02:40 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll 2015-05-26 02:40 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2015-05-26 02:40 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2015-05-26 02:40 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll 2015-05-26 02:40 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll 2015-05-26 02:40 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll 2015-05-26 02:40 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll 2015-05-26 02:40 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2015-05-26 02:40 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2015-05-26 02:40 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2015-05-26 02:40 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll 2015-05-26 02:40 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll 2015-05-26 02:40 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2015-05-26 02:40 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2015-05-26 02:40 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2015-05-26 02:40 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2015-05-26 02:40 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2015-05-26 02:40 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2015-05-26 02:40 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2015-05-26 02:40 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2015-05-26 02:40 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2015-05-26 02:40 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2015-05-26 02:40 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2015-05-26 02:39 - 2015-05-26 02:39 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2015-05-26 02:37 - 2015-05-26 02:39 - 00000000 ____D () C:\ProgramData\Intel 2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\Intel 2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Intel Corporation 2015-05-26 02:36 - 2015-05-26 02:36 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-05-26 02:36 - 2015-05-26 02:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-05-26 02:35 - 2015-06-04 11:00 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-26 02:35 - 2015-06-04 10:40 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Users\Nach\AppData\Local\Google 2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Program Files (x86)\Google 2015-05-26 02:35 - 2015-05-26 02:35 - 00004060 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-05-26 02:35 - 2015-05-26 02:35 - 00003808 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Deployment 2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Apps\2.0 2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files\Intel 2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files (x86)\Intel 2015-05-26 02:34 - 2015-05-26 02:34 - 00000000 ____D () C:\Intel 2015-05-26 02:34 - 2014-02-21 13:56 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll 2015-05-26 02:33 - 2015-05-28 02:55 - 00000000 ____D () C:\ProgramData\Package Cache 2015-05-26 02:28 - 2015-05-28 01:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2015-05-26 02:28 - 2015-05-26 02:28 - 00057560 _____ () C:\Users\Nach\AppData\Local\GDIPFONTCACHEV1.DAT 2015-05-26 02:27 - 2015-05-26 19:00 - 00775384 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2015-05-26 02:26 - 2015-05-26 02:26 - 00000000 ____D () C:\ProgramData\Downloaded Installations 2015-05-26 02:24 - 2012-07-26 01:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2015-05-26 02:24 - 2012-07-26 01:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys 2015-05-26 02:24 - 2012-07-25 23:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll 2015-05-26 02:24 - 2012-06-02 11:35 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2015-05-26 02:22 - 2015-06-04 11:07 - 01786536 _____ () C:\Windows\WindowsUpdate.log 2015-05-26 02:22 - 2015-06-03 11:06 - 00001413 _____ () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-05-26 02:22 - 2015-05-27 20:26 - 00000000 ____D () C:\Users\Nach 2015-05-26 02:22 - 2015-05-26 02:22 - 00000020 ___SH () C:\Users\Nach\ntuser.ini 2015-05-26 02:22 - 2015-05-26 02:22 - 00000000 __SHD () C:\Recovery 2015-05-26 02:22 - 2009-07-14 01:54 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-26 02:22 - 2009-07-14 01:49 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-04 11:14 - 2009-07-14 01:51 - 00048830 _____ () C:\Windows\setupact.log 2015-06-04 11:12 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-06-04 11:12 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-06-04 11:00 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-06-03 21:51 - 2009-07-14 02:13 - 00783606 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-06-03 15:58 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\rescache 2015-06-03 11:06 - 2009-07-14 01:45 - 00265552 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-06-03 11:05 - 2011-04-12 05:28 - 00000000 ____D () C:\Program Files\Windows Journal 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\zh-HK 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\tr-TR 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\PolicyDefinitions 2015-06-02 21:29 - 2010-11-21 00:47 - 00149122 _____ () C:\Windows\PFRO.log 2015-06-02 05:11 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\NDF 2015-06-01 21:54 - 2009-07-14 02:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-05-27 19:41 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\Offline Web Pages 2015-05-27 02:07 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2015-05-26 20:45 - 2009-07-14 00:20 - 00000000 __RHD () C:\Users\Public\Libraries 2015-05-26 14:43 - 2009-07-14 00:20 - 00000000 __RSD () C:\Windows\Media 2015-05-26 06:30 - 2009-07-14 02:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template 2015-05-26 05:38 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\LiveKernelReports 2015-05-26 05:32 - 2009-07-14 01:46 - 00002790 _____ () C:\Windows\DtcInstall.log 2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sysprep 2015-05-26 05:30 - 2011-04-12 05:28 - 00000000 ____D () C:\Windows\CSC 2015-05-26 04:38 - 2009-07-14 02:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD 2015-05-26 03:11 - 2009-07-14 01:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-05-26 02:42 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\Help 2015-05-26 02:24 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\system32\restore 2015-05-26 02:22 - 2009-07-14 01:45 - 00000000 ____D () C:\Windows\Setup ==================== Files in the root of some directories ======= 2015-05-28 01:36 - 2015-05-28 01:36 - 0000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag 2015-05-26 02:44 - 2015-05-27 20:25 - 2128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage 2015-05-26 02:40 - 2015-05-26 02:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== C:\Users\Nach\AppData\Local\Temp\dllnt_dump.dll C:\Users\Nach\AppData\Local\Temp\Quarantine.exe C:\Users\Nach\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-06-03 15:51 ==================== End of log ============================ Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015 Ran by Nach at 2015-06-04 11:17:27 Running from C:\Users\Nach\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-318558523-3823039876-2902504939-500 - Administrator - Disabled) Guest (S-1-5-21-318558523-3823039876-2902504939-501 - Limited - Disabled) Nach (S-1-5-21-318558523-3823039876-2902504939-1000 - Administrator - Enabled) => C:\Users\Nach ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Bitdefender Antivirus (Disabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D} AS: Bitdefender Antispyware (Disabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Bitdefender Firewall (Disabled) {A23392FD-84B9-F933-2C71-81E751F6EF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) "Batman - Arkham City" (HKLM-x32\...\{71AD83D4-6F74-4257-8398-8D1BFEA91EFF}_is1) (Version: 1.1.0.0 - ) µTorrent (HKU\S-1-5-21-318558523-3823039876-2902504939-1000\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.) Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated) Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios) Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 18.20.0.1429 - Bitdefender) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden Canon MP Navigator EX 2.1 (HKLM-x32\...\MP Navigator EX 2.1) (Version: - ) Canon MX330 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX330_series) (Version: - Canon Inc.) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) Creation Master 15.0 (HKLM-x32\...\Creation Master 15_is1) (Version: - FIFA MASTER) EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.7.0.0 - Electronic Arts) erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.) Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North) GRID (HKLM-x32\...\Steam App 12750) (Version: - Codemasters Studios) Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.) Intel® Chipset Device Software (x32 Version: 10.0.20 - Intel® Corporation) Hidden Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation) Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation) Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.) Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.) Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla) MSI Afterburner 4.1.0 (HKLM-x32\...\Afterburner) (Version: 4.1.0 - MSI Co., LTD) NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA GeForce Experience 2.4.3.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.31 - NVIDIA Corporation) NVIDIA Graphics Driver 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.) Project CARS (HKLM-x32\...\Project CARS_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm) Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden Qualcomm Atheros Killer E220x Drivers (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{FE5DFB80-6937-4154-A2C7-EF845C1301F8}) (Version: 1.0.30.1259 - Qualcomm Atheros) Qualcomm Atheros Network Manager (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games) SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.3.31 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation) Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.) Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.4 - Sophos Limited) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com) Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 01-06-2015 21:54:31 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 02-06-2015 21:43:16 Installed Sophos Virus Removal Tool. 03-06-2015 10:42:56 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {04896E09-1B7E-470F-B796-319FA3FF54B6} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2014-12-06] () Task: {332DF19C-15ED-47C2-B41B-FD0966C6D230} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated) Task: {4A459083-3C0D-47DF-BBF8-B954C9A7F079} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {70553BA1-A890-422D-B3A2-07A9FD4BCDDF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {714D0294-6844-47CB-BBB4-E3355CF88D6B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {8FD47602-92B6-4BA3-AB5C-DF206E6E8809} - System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {AD7D643B-DA81-43C4-A6C1-6BC52C59CF93} - System32\Tasks\EVGAPrecisionX => C:\Program Files (x86)\EVGA\PrecisionX 16\PrecisionX_x64.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-05-27 19:38 - 2014-08-27 16:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll 2015-05-27 19:38 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll 2015-05-27 19:38 - 2014-12-17 14:34 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui 2015-05-27 19:38 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll 2015-05-27 20:24 - 2015-05-27 20:24 - 00790368 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpbr.mdl 2015-05-27 20:24 - 2015-05-27 20:24 - 00711064 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpdsp.mdl 2015-05-27 20:24 - 2015-05-27 20:24 - 02683520 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpph.mdl 2015-05-27 20:24 - 2015-05-27 20:24 - 01326504 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttprbl.mdl 2015-05-27 19:38 - 2015-05-27 19:44 - 00471056 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdidntconp.dll 2015-05-27 19:38 - 2015-05-27 19:44 - 00187904 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\ui\bdidntconp.ui 2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll 2015-05-26 02:36 - 2015-05-22 17:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll 2015-05-26 02:36 - 2015-05-22 17:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll 2015-05-26 02:36 - 2015-05-22 17:22 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Nach\Desktop\AdwCleaner.exe:BDU AlternateDataStreams: C:\Users\Nach\Desktop\FRST64.exe:BDU AlternateDataStreams: C:\Users\Nach\Desktop\rkill.exe:BDU AlternateDataStreams: C:\Users\Nach\Desktop\RogueKiller.exe:BDU AlternateDataStreams: C:\Users\Nach\Desktop\SecurityCheck.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\dxwebsetup.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\SkypeSetupFull.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\uTorrent.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\Xbox360_64Eng.exe:BDU ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [sPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [sPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (06/04/2015 11:02:10 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/04/2015 08:09:09 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\steam.exe Error: (06/04/2015 02:24:55 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\steam.exe Error: (06/03/2015 09:46:57 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54099 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60490 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57820 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54160 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:63332 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:65202 length 0 too short System errors: ============= Error: (06/04/2015 11:05:28 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Software Protection service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 120000 milliseconds: Restart the service. Error: (06/04/2015 11:05:28 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly. It has done this 1 time(s). Error: (06/04/2015 11:05:28 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Intel® Rapid Storage Technology service terminated unexpectedly. It has done this 1 time(s). Error: (06/04/2015 11:05:28 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Qualcomm Atheros Killer Service V2 service terminated unexpectedly. It has done this 1 time(s). Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The NVIDIA Streamer Service service terminated unexpectedly. It has done this 1 time(s). Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The NVIDIA Network Service service terminated unexpectedly. It has done this 1 time(s). Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The NVIDIA GeForce Experience Service service terminated unexpectedly. It has done this 1 time(s). Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Bonjour Service service terminated unexpectedly. It has done this 1 time(s). Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Adobe Acrobat Update Service service terminated unexpectedly. It has done this 1 time(s). Microsoft Office: ========================= Error: (06/04/2015 11:02:10 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/04/2015 08:09:09 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Failed to add firewall exception for C:\Program Files (x86)\Steam\steam.exe Error: (06/04/2015 02:24:55 AM) (Source: Steam Client Service) (EventID: 1) (User: ) Description: Failed to add firewall exception for C:\Program Files (x86)\Steam\steam.exe Error: (06/03/2015 09:46:57 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54099 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60490 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57820 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54160 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:63332 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:65202 length 0 too short ==================== Memory info =========================== Processor: Intel® Core i5-4690K CPU @ 3.50GHz Percentage of memory in use: 22% Total physical RAM: 16293.58 MB Available physical RAM: 12631.87 MB Total Pagefile: 32585.35 MB Available Pagefile: 28484.76 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:238.37 GB) (Free:9.13 GB) NTFS Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive e: (Data) (Fixed) (Total:931.51 GB) (Free:376.58 GB) NTFS Drive f: (Móvel) (Fixed) (Total:1863.01 GB) (Free:445.35 GB) NTFS Drive g: (Software) (Fixed) (Total:801.51 GB) (Free:722.62 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 000A788F) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=238.4 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 0AE75AEB) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2E2F1945) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=801.5 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1D42D274) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (Size: 111.8 GB) (Disk ID: 00087AEE) Partition 1: (Active) - (Size=243 MB) - (Type=83) Partition 2: (Not Active) - (Size=111.6 GB) - (Type=05) ==================== End of log ============================ I will now reset the computer and see if the problem persists.
  7. Nachmanowicz
    Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2015 Ran by Nach (administrator) on NACH-PC on 04-06-2015 11:17:17 Running from C:\Users\Nach\Desktop Loaded Profiles: Nach (Available Profiles: Nach) Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States) Internet Explorer Version 10 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\seccenter.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7611608 2014-05-27] (Realtek Semiconductor) HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-07] (NVIDIA Corporation) HKLM\...\Run: [shadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.) HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation) HKLM\...\Run: [bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1691112 2015-05-27] (Bitdefender) HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.) HKU\S-1-5-21-318558523-3823039876-2902504939-1000\...\Run: [bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-05-27] (Bitdefender) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-05-28] ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{401FADAA-1C16-4721-9F02-19067E1A1CA8}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC) Startup: C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk [2015-05-28] ShortcutTarget: Logitech . Product Registration.lnk -> C:\Program Files (x86)\Logitech\Ereg\eReg.exe (Leader Technologies/Logitech) ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender) ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender) ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender) ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pt-br/?ocid=iehp SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender) Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 89.248.166.149 8.8.8.8 Tcpip\..\Interfaces\{2F05DAF2-001F-4356-97BC-279A97204CA9}: [NameServer] 8.8.8.8,8.8.4.4,192.168.0.1 FireFox: ======== FF ProfilePath: C:\Users\Nach\AppData\Roaming\Mozilla\Firefox\Profiles\ceywwvhy.default FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.) FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-05-27] FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-05-27] FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext Chrome: ======= CHR Profile: C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Drive) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-26] CHR Extension: (YouTube) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-26] CHR Extension: (Google Search) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-26] CHR Extension: (AdBlock) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-28] CHR Extension: (Bookmark Manager) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-26] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-02] CHR Extension: (Skype Click to Call) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-27] CHR Extension: (Google Wallet) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-26] CHR Extension: (Gmail) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-26] CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - https://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-12-09] (Bitdefender) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation) S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-07] (NVIDIA Corporation) S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation) S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel® Corporation) S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation) S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation) S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation) S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-07] (NVIDIA Corporation) S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-07] (NVIDIA Corporation) S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1997168 2015-06-01] (Electronic Arts) S2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-08] (Qualcomm Atheros) [File not signed] S4 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1547936 2015-05-27] (Bitdefender) R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1306464 2015-05-27] (BitDefender) R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [262544 2015-05-27] (BitDefender) S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [677104 2015-05-27] (BitDefender) R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2015-05-27] (BitDefender LLC) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC) S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL) R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender) R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [67888 2013-02-13] (Qualcomm Atheros, Inc.) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-05-27] (BitDefender LLC) R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-11] (Intel Corporation) R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.) R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.) S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation) R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-07] (NVIDIA Corporation) R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13368 2013-03-11] () U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-06-03] () R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-04 11:08 - 2015-06-04 11:10 - 51789024 _____ (Microsoft Corporation) C:\Users\Nach\Desktop\Windows-KB890830-x64-V5.24.exe 2015-06-04 11:06 - 2015-06-04 11:06 - 00001135 _____ () C:\Users\Nach\Desktop\JRT.txt 2015-06-04 11:05 - 2015-06-04 11:05 - 02942610 _____ (Thisisu) C:\Users\Nach\Desktop\JRT.exe 2015-06-04 10:58 - 2015-06-04 10:58 - 02231296 _____ () C:\Users\Nach\Desktop\AdwCleaner.exe 2015-06-03 21:41 - 2015-06-03 21:43 - 00558117 _____ () C:\Users\Nach\Desktop\DnsJumper_v1.0.6.zip 2015-06-03 14:57 - 2015-06-03 15:15 - 00000000 ____D () C:\ProgramData\RogueKiller 2015-06-03 14:57 - 2015-06-03 14:57 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys 2015-06-03 14:49 - 2015-06-03 14:50 - 17637624 _____ () C:\Users\Nach\Desktop\RogueKiller.exe 2015-06-03 14:45 - 2015-06-03 21:47 - 00025310 _____ () C:\Users\Nach\Desktop\Addition.txt 2015-06-03 14:44 - 2015-06-04 11:17 - 00016046 _____ () C:\Users\Nach\Desktop\FRST.txt 2015-06-03 14:43 - 2015-06-04 11:17 - 00000000 ____D () C:\FRST 2015-06-03 14:43 - 2015-06-03 14:43 - 02108928 _____ (Farbar) C:\Users\Nach\Desktop\FRST64.exe 2015-06-03 11:06 - 2015-06-03 11:06 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Adobe 2015-06-03 10:52 - 2015-06-03 10:52 - 19221504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 15407616 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 14317568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-06-03 10:52 - 2015-06-03 10:52 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 02046464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 01766912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-06-03 10:52 - 2015-06-03 10:52 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat 2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat 2015-06-03 10:52 - 2015-06-03 10:52 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-06-03 10:52 - 2015-06-03 10:52 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec 2015-06-03 10:52 - 2015-06-03 10:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx 2015-06-03 10:52 - 2015-06-03 10:52 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx 2015-06-03 10:52 - 2015-06-03 10:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll 2015-06-03 10:52 - 2015-06-03 10:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2015-06-03 10:52 - 2015-06-03 10:52 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe 2015-06-03 10:50 - 2015-06-03 10:50 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01504768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll 2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll 2015-06-03 10:48 - 2015-06-03 10:53 - 00011231 _____ () C:\Windows\IE10_main.log 2015-06-03 10:45 - 2015-06-03 10:47 - 00003318 _____ () C:\Windows\IE9_main.log 2015-06-03 10:43 - 2015-06-03 10:45 - 00000000 ____D () C:\Windows\system32\MRT 2015-06-03 10:43 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-06-03 10:40 - 2015-03-06 02:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-06-03 10:40 - 2015-03-06 02:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-06-03 10:40 - 2015-03-06 02:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-06-03 10:40 - 2015-03-06 02:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-06-03 10:40 - 2015-03-06 02:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-06-03 10:40 - 2015-03-06 02:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-06-03 10:40 - 2015-03-06 02:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-06-03 10:40 - 2015-03-06 02:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-06-03 10:40 - 2015-03-06 02:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-06-03 10:40 - 2015-03-06 02:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-06-03 10:40 - 2015-03-06 02:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-06-03 10:40 - 2015-03-06 02:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-06-03 10:40 - 2015-03-06 02:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-06-03 10:40 - 2015-03-06 02:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-06-03 10:40 - 2015-03-06 02:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-06-03 10:40 - 2015-03-06 02:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-06-03 10:40 - 2015-03-06 02:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-06-03 10:40 - 2015-03-06 02:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-06-03 10:40 - 2015-03-06 02:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-06-03 10:40 - 2015-03-06 02:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-06-03 10:40 - 2015-03-06 02:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-06-03 10:40 - 2015-03-06 02:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-06-03 10:40 - 2015-03-06 02:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-06-03 10:40 - 2015-03-06 02:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-06-03 10:40 - 2015-03-06 02:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-06-03 10:40 - 2015-03-06 02:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-06-03 10:40 - 2015-03-06 02:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-06-03 10:40 - 2015-03-06 02:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-06-03 10:40 - 2015-03-06 02:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-06-03 10:40 - 2015-03-06 02:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-06-03 10:40 - 2015-03-06 02:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-06-03 10:40 - 2015-02-26 00:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-06-03 10:40 - 2015-01-29 00:23 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-06-03 10:40 - 2015-01-29 00:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-06-03 10:40 - 2015-01-29 00:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-06-03 10:40 - 2015-01-29 00:19 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-06-03 10:40 - 2015-01-29 00:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-06-03 10:40 - 2015-01-29 00:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-06-03 10:40 - 2015-01-29 00:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-06-03 10:40 - 2015-01-29 00:05 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-06-03 10:40 - 2015-01-29 00:05 - 03917752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-06-03 10:40 - 2015-01-29 00:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-06-03 10:40 - 2015-01-28 23:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll 2015-06-03 10:40 - 2014-09-12 22:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2015-06-03 10:40 - 2014-09-12 22:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll 2015-06-03 10:40 - 2014-08-21 03:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2015-06-03 10:40 - 2014-08-21 03:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll 2015-06-03 10:40 - 2014-08-21 03:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll 2015-06-03 10:40 - 2014-08-21 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll 2015-06-03 10:40 - 2014-03-24 23:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2015-06-03 10:40 - 2014-03-24 23:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll 2015-06-03 10:40 - 2014-02-03 23:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll 2015-06-03 10:40 - 2014-02-03 23:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll 2015-06-03 10:40 - 2013-10-02 23:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2015-06-03 10:40 - 2013-10-02 23:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll 2015-06-03 10:40 - 2013-09-27 22:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys 2015-06-03 10:40 - 2013-08-01 23:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-06-03 10:40 - 2013-08-01 23:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-06-03 10:40 - 2013-08-01 22:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll 2015-06-03 10:40 - 2013-08-01 22:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll 2015-06-03 10:40 - 2013-08-01 09:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2015-06-03 10:40 - 2013-07-20 07:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-06-03 10:40 - 2013-07-20 07:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll 2015-06-03 10:40 - 2013-07-09 02:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2015-06-03 10:40 - 2013-07-09 02:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2015-06-03 10:40 - 2013-07-09 02:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2015-06-03 10:40 - 2013-07-09 01:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll 2015-06-03 10:40 - 2013-07-09 01:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2015-06-03 10:40 - 2013-07-09 01:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2015-06-03 10:40 - 2013-07-06 03:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2015-06-03 10:40 - 2013-06-15 01:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys 2015-06-03 10:40 - 2013-06-06 02:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll 2015-06-03 10:40 - 2013-06-06 02:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll 2015-06-03 10:40 - 2013-06-06 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll 2015-06-03 10:40 - 2013-06-06 02:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll 2015-06-03 10:40 - 2013-06-06 01:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll 2015-06-03 10:40 - 2013-06-06 01:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll 2015-06-03 10:40 - 2013-06-06 01:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll 2015-06-03 10:40 - 2013-06-06 00:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll 2015-06-03 10:40 - 2013-06-06 00:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll 2015-06-03 10:40 - 2013-06-06 00:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll 2015-06-03 10:40 - 2013-01-03 03:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS 2015-06-03 10:40 - 2012-11-09 02:45 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll 2015-06-03 10:40 - 2012-11-09 01:43 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll 2015-06-03 10:40 - 2012-11-01 02:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2015-06-03 10:40 - 2012-11-01 01:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll 2015-06-03 10:40 - 2012-08-22 15:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys 2015-06-03 10:40 - 2011-03-08 03:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll 2015-06-03 10:40 - 2011-03-08 02:28 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll 2015-06-03 10:40 - 2011-02-25 03:22 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2015-06-03 10:40 - 2011-02-25 02:34 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2015-06-03 10:40 - 2011-02-23 01:56 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys 2015-06-03 10:40 - 2011-02-23 01:56 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys 2015-06-03 10:40 - 2011-02-23 01:55 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys 2015-06-03 06:54 - 2015-06-03 06:54 - 00000000 ____D () C:\Users\Nach\AppData\Local\VirtualStore 2015-06-02 21:43 - 2015-06-02 21:43 - 00002759 _____ () C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk 2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Sophos 2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos 2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\Program Files (x86)\Sophos 2015-06-02 21:37 - 2015-06-02 21:37 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-NACH-PC-Windows-7-Professional-(64-bit).dat 2015-06-02 21:37 - 2015-06-02 21:37 - 00000000 ____D () C:\RegBackup 2015-06-02 21:32 - 2015-06-04 10:59 - 00000000 ____D () C:\AdwCleaner 2015-06-02 21:00 - 2015-06-02 21:00 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\Nach\Desktop\rkill.exe 2015-06-02 20:55 - 2015-06-03 14:44 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable) 2015-06-02 20:54 - 2015-06-03 14:44 - 00000000 ____D () C:\Users\Nach\Desktop\mbar 2015-06-02 20:40 - 2015-06-02 20:39 - 00852639 _____ () C:\Users\Nach\Desktop\SecurityCheck.exe 2015-06-02 19:08 - 2015-06-04 11:00 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-06-02 19:07 - 2015-06-03 14:02 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-06-02 19:07 - 2015-06-02 19:07 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk 2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware 2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Malwarebytes 2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware 2015-06-02 19:07 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-06-02 19:07 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-06-02 18:19 - 2015-06-02 18:19 - 00001610 _____ () C:\Windows\system32\bdsandbox.txt 2015-06-02 18:07 - 2015-06-02 21:28 - 00000000 ____D () C:\Users\Nach\AppData\Temp 2015-06-02 17:46 - 2015-06-02 17:46 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk 2015-06-02 17:46 - 2015-06-02 17:46 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk 2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Mozilla 2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Local\Mozilla 2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\ProgramData\Mozilla 2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service 2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2015-06-02 17:45 - 2015-06-02 17:45 - 00243408 _____ () C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe 2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\Documents\FM_temp 2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\AppData\Local\CreationMaster 2015-06-02 04:48 - 2015-06-02 04:48 - 00001269 _____ () C:\Users\Nach\Desktop\CM 15.lnk 2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fifa Master 2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\Program Files (x86)\Fifa Master 2015-06-02 04:42 - 2015-06-02 04:43 - 19412014 _____ () C:\Users\Nach\Downloads\Setup_CM_15_0.rar 2015-06-02 04:39 - 2015-06-02 04:39 - 00000562 _____ () C:\Users\Public\Desktop\Fraps.lnk 2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps 2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\Fraps 2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\WinRAR 2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR 2015-06-02 04:35 - 2015-06-02 04:36 - 00000000 ____D () C:\Program Files\WinRAR 2015-06-02 04:32 - 2015-06-02 04:35 - 101738804 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW210.rar 2015-06-02 04:31 - 2015-06-02 04:33 - 71594649 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW200.rar 2015-06-02 04:31 - 2015-06-02 04:32 - 12104486 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW202.rar 2015-06-02 04:31 - 2015-06-02 04:31 - 03326221 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW211 (1).rar 2015-06-02 04:30 - 2015-06-02 17:43 - 00000000 ____D () C:\ProgramData\Adobe 2015-06-02 04:30 - 2015-06-02 04:30 - 00003886 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task 2015-06-02 04:30 - 2015-06-02 04:30 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk 2015-06-02 04:30 - 2015-06-02 04:30 - 00002047 _____ () C:\Users\Public\Desktop\Acrobat Reader DC.lnk 2015-06-02 04:30 - 2015-06-02 04:30 - 00000000 ____D () C:\Program Files (x86)\Adobe 2015-06-02 04:29 - 2015-06-02 04:32 - 00000000 ____D () C:\Users\Nach\AppData\Local\Adobe 2015-06-01 22:16 - 2015-06-02 01:50 - 00000000 ____D () C:\Users\Nach\Documents\The Witcher 3 2015-06-01 21:54 - 2015-06-01 21:54 - 00001955 _____ () C:\Users\Public\Desktop\The Witcher® 3 - Wild Hunt.lnk 2015-06-01 21:54 - 2015-06-01 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com 2015-06-01 21:47 - 2015-06-01 21:47 - 00000000 ____D () C:\GOG Games 2015-05-28 20:22 - 2015-06-01 03:02 - 00000080 _____ () C:\Users\Nach\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦 2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\Documents\Rockstar Games 2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\AppData\Local\Rockstar Games 2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files\Rockstar Games 2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games 2015-05-28 02:55 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll 2015-05-28 02:55 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll 2015-05-28 02:55 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll 2015-05-28 02:55 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll 2015-05-28 02:55 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll 2015-05-28 02:55 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll 2015-05-28 01:37 - 2015-05-28 01:37 - 00002783 _____ () C:\Users\Public\Desktop\Killer Network Manager.lnk 2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Qualcomm 2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros 2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\Program Files\Qualcomm Atheros 2015-05-28 01:36 - 2015-05-28 01:36 - 00000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag 2015-05-27 20:26 - 2015-05-27 20:39 - 00000000 ____D () C:\Users\Nach\Valley 2015-05-27 20:24 - 2015-05-27 20:24 - 00002113 _____ () C:\Users\Public\Desktop\Valley Benchmark 1.0.lnk 2015-05-27 19:44 - 2015-05-27 19:44 - 00160544 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys 2015-05-27 19:44 - 2015-05-27 19:44 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll 2015-05-27 19:44 - 2015-05-27 19:44 - 00074000 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll 2015-05-27 19:39 - 2015-05-27 19:39 - 00000385 _____ () C:\Users\Nach\AppData\Roaminguser_gensett.xml 2015-05-27 19:38 - 2015-05-27 19:44 - 00677104 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2015-05-27 19:38 - 2015-05-27 19:44 - 00262544 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys 2015-05-27 19:38 - 2015-05-27 19:44 - 00033360 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll 2015-05-27 19:38 - 2015-05-27 19:44 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Bitdefender 2015-05-27 19:38 - 2015-05-27 19:43 - 01306464 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2015-05-27 19:38 - 2015-05-27 19:40 - 00000000 ____D () C:\ProgramData\BDLogging 2015-05-27 19:38 - 2015-05-27 19:38 - 00253404 ____H () C:\bdr-ld01 2015-05-27 19:38 - 2015-05-27 19:38 - 00009216 ____H () C:\bdr-ld01.mbr 2015-05-27 19:38 - 2015-05-27 19:38 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk 2015-05-27 19:38 - 2015-05-27 19:38 - 00000684 ____H () C:\bdr-cf01 2015-05-27 19:38 - 2015-05-27 19:38 - 00000385 _____ () C:\Windows\system32\user_gensett.xml 2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf 2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015 2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Bitdefender 2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender 2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Bitdefender 2015-05-27 19:38 - 2014-12-02 16:37 - 00074000 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll 2015-05-27 19:38 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2015-05-27 19:38 - 2014-07-04 17:49 - 49563064 ____H () C:\bdr-im01.gz 2015-05-27 19:38 - 2013-11-13 15:41 - 00093600 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys 2015-05-27 19:38 - 2013-08-13 13:38 - 03271472 ____H () C:\bdr-bz01 2015-05-27 19:38 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys 2015-05-27 19:38 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll 2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\Users\Nach\Documents\WB Games 2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\ProgramData\Steam 2015-05-27 16:50 - 2015-05-27 16:50 - 00001670 _____ () C:\Users\Public\Desktop\Batman - Arkham City.lnk 2015-05-27 16:50 - 2015-05-27 16:50 - 00001043 _____ () C:\Users\Public\Desktop\Batman - Arkham City (Settings).lnk 2015-05-27 16:50 - 2015-05-27 16:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batman - Arkham City 2015-05-27 16:37 - 2015-05-27 16:37 - 00000000 ____D () C:\Users\Nach\AppData\Local\Setup Integrity Check 2015-05-27 15:24 - 2015-05-27 16:37 - 00000000 ____D () C:\Games 2015-05-27 04:05 - 2015-06-03 21:44 - 00003018 _____ () C:\Windows\System32\Tasks\MSIAfterburner 2015-05-27 04:04 - 2015-06-02 01:07 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner 2015-05-27 04:04 - 2015-05-27 04:04 - 00001086 _____ () C:\Users\Nach\Desktop\MSI Afterburner.lnk 2015-05-27 04:04 - 2015-05-27 04:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner 2015-05-27 04:03 - 2015-05-27 04:03 - 36210245 _____ () C:\Users\Nach\Downloads\[Guru3D.com]-MSIAfterburnerSetup410.zip 2015-05-27 04:02 - 2015-05-27 04:02 - 00000000 ____D () C:\Windows\system32\appmgmt 2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\wmd_symbol_cache 2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\Project CARS 2015-05-27 03:12 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll 2015-05-27 03:12 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll 2015-05-27 03:12 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll 2015-05-27 03:12 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll 2015-05-27 03:12 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll 2015-05-27 03:12 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll 2015-05-27 03:12 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll 2015-05-27 03:12 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll 2015-05-27 03:12 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll 2015-05-27 03:12 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll 2015-05-27 03:12 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll 2015-05-27 03:12 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll 2015-05-27 03:12 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll 2015-05-27 03:12 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll 2015-05-27 03:12 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll 2015-05-27 03:12 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll 2015-05-27 03:12 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll 2015-05-27 03:12 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll 2015-05-27 03:12 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll 2015-05-27 03:12 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll 2015-05-27 03:12 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll 2015-05-27 03:12 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll 2015-05-27 03:12 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll 2015-05-27 03:12 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll 2015-05-27 03:12 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll 2015-05-27 03:12 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll 2015-05-27 03:12 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll 2015-05-27 03:12 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll 2015-05-27 03:12 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll 2015-05-27 03:12 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll 2015-05-27 03:12 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll 2015-05-27 03:12 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll 2015-05-27 03:12 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll 2015-05-27 03:12 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll 2015-05-27 03:12 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll 2015-05-27 03:12 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll 2015-05-27 03:12 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll 2015-05-27 03:12 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll 2015-05-27 03:12 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll 2015-05-27 03:12 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll 2015-05-27 03:12 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll 2015-05-27 03:12 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll 2015-05-27 03:12 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll 2015-05-27 03:12 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll 2015-05-27 03:12 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll 2015-05-27 03:12 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll 2015-05-27 03:12 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll 2015-05-27 03:12 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll 2015-05-27 03:12 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll 2015-05-27 03:12 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll 2015-05-27 03:12 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll 2015-05-27 03:12 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll 2015-05-27 03:12 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll 2015-05-27 03:12 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll 2015-05-27 03:12 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll 2015-05-27 03:12 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll 2015-05-27 03:12 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll 2015-05-27 03:12 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll 2015-05-27 03:12 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll 2015-05-27 03:12 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll 2015-05-27 03:12 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll 2015-05-27 03:12 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll 2015-05-27 03:12 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll 2015-05-27 03:12 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll 2015-05-27 03:12 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll 2015-05-27 03:12 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll 2015-05-27 03:12 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll 2015-05-27 03:12 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll 2015-05-27 03:12 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll 2015-05-27 03:12 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll 2015-05-27 03:12 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll 2015-05-27 03:12 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll 2015-05-27 03:12 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll 2015-05-27 03:12 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll 2015-05-27 03:12 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll 2015-05-27 03:12 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll 2015-05-27 03:12 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll 2015-05-27 03:12 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll 2015-05-27 03:12 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll 2015-05-27 03:12 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll 2015-05-27 03:12 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll 2015-05-27 03:12 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll 2015-05-27 03:12 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll 2015-05-27 03:12 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll 2015-05-27 03:12 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll 2015-05-27 03:12 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll 2015-05-27 03:12 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll 2015-05-27 03:12 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll 2015-05-27 03:12 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll 2015-05-27 03:12 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll 2015-05-27 03:12 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll 2015-05-27 03:12 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll 2015-05-27 03:12 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll 2015-05-27 03:12 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll 2015-05-27 03:12 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll 2015-05-27 03:12 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll 2015-05-27 03:12 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll 2015-05-27 03:12 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll 2015-05-27 03:12 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll 2015-05-27 03:12 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll 2015-05-27 03:12 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll 2015-05-27 03:12 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll 2015-05-27 03:12 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll 2015-05-27 03:12 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll 2015-05-27 03:12 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll 2015-05-27 03:12 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll 2015-05-27 03:12 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll 2015-05-27 03:12 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll 2015-05-27 03:12 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll 2015-05-27 03:12 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll 2015-05-27 03:12 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll 2015-05-27 03:12 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll 2015-05-27 03:12 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll 2015-05-27 03:12 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll 2015-05-27 03:12 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll 2015-05-27 03:12 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll 2015-05-27 03:12 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll 2015-05-27 03:12 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll 2015-05-27 03:09 - 2015-05-27 03:09 - 00292184 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\dxwebsetup.exe 2015-05-27 02:07 - 2015-05-27 02:07 - 00002122 _____ () C:\Users\Nach\Desktop\Project CARS.lnk 2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Project CARS 2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics 2015-05-27 02:06 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll 2015-05-27 01:54 - 2015-05-27 01:54 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics 2015-05-27 00:03 - 2015-06-02 04:22 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\vlc 2015-05-27 00:03 - 2015-05-27 00:03 - 00001066 _____ () C:\Users\Public\Desktop\VLC media player.lnk 2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN 2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\Program Files (x86)\VideoLAN 2015-05-27 00:01 - 2015-05-27 00:02 - 28849904 _____ () C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe 2015-05-26 22:40 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll 2015-05-26 22:40 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll 2015-05-26 22:40 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll 2015-05-26 22:40 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll 2015-05-26 22:40 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll 2015-05-26 22:40 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll 2015-05-26 22:40 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll 2015-05-26 22:40 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll 2015-05-26 22:40 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll 2015-05-26 22:40 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll 2015-05-26 22:40 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll 2015-05-26 22:40 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll 2015-05-26 22:40 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll 2015-05-26 22:40 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll 2015-05-26 22:40 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll 2015-05-26 22:40 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll 2015-05-26 22:40 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll 2015-05-26 22:40 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll 2015-05-26 22:40 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll 2015-05-26 22:40 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll 2015-05-26 22:40 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll 2015-05-26 22:40 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll 2015-05-26 22:40 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll 2015-05-26 22:40 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll 2015-05-26 22:40 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll 2015-05-26 22:40 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll 2015-05-26 22:40 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll 2015-05-26 22:40 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll 2015-05-26 22:40 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll 2015-05-26 22:40 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll 2015-05-26 22:40 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll 2015-05-26 22:40 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll 2015-05-26 22:40 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll 2015-05-26 22:40 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll 2015-05-26 22:40 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll 2015-05-26 22:40 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll 2015-05-26 22:40 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll 2015-05-26 22:40 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll 2015-05-26 22:40 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll 2015-05-26 22:40 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll 2015-05-26 22:40 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll 2015-05-26 22:40 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll 2015-05-26 22:40 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll 2015-05-26 22:40 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll 2015-05-26 22:40 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll 2015-05-26 22:40 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll 2015-05-26 22:40 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll 2015-05-26 22:40 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll 2015-05-26 22:40 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll 2015-05-26 22:40 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll 2015-05-26 22:40 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll 2015-05-26 20:45 - 2015-05-31 09:31 - 00000000 ____D () C:\Users\Nach\Documents\FIFA 15 2015-05-26 20:38 - 2015-05-30 21:12 - 00074969 _____ () C:\Windows\DirectX.log 2015-05-26 20:38 - 2015-05-26 20:38 - 07878008 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\Xbox360_64Eng.exe 2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf 2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories 2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\Program Files\Microsoft Xbox 360 Accessories 2015-05-26 20:36 - 2015-05-26 20:36 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll 2015-05-26 20:36 - 2015-05-26 20:36 - 00413696 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll 2015-05-26 20:36 - 2015-05-26 20:36 - 00133632 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll 2015-05-26 20:36 - 2015-05-26 20:36 - 00110592 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll 2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Users\Nach\Documents\Codemasters 2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\ProgramData\Codemasters 2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Program Files (x86)\OpenAL 2015-05-26 19:43 - 2015-05-26 19:43 - 00000000 ____D () C:\Users\Nach\Tracing 2015-05-26 19:42 - 2015-06-02 20:55 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Skype 2015-05-26 19:42 - 2015-05-27 19:48 - 00000000 ___RD () C:\Program Files (x86)\Skype 2015-05-26 19:42 - 2015-05-26 19:42 - 43034752 _____ (Skype Technologies S.A.) C:\Users\Nach\Downloads\SkypeSetupFull.exe 2015-05-26 19:42 - 2015-05-26 19:42 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk 2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\Users\Nach\AppData\Local\Skype 2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Skype 2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-05-26 18:51 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE 2015-05-26 18:43 - 2015-05-27 02:42 - 00027508 _____ () C:\Windows\IE11_main.log 2015-05-26 18:15 - 2014-06-30 19:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2015-05-26 18:15 - 2014-06-30 19:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll 2015-05-26 18:15 - 2014-06-06 03:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2015-05-26 18:15 - 2014-06-06 03:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2015-05-26 18:15 - 2014-03-09 18:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2015-05-26 18:15 - 2014-03-09 18:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2015-05-26 18:15 - 2014-03-09 18:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe 2015-05-26 18:15 - 2014-03-09 18:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll 2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\Program Files (x86)\Canon 2015-05-26 14:44 - 2015-05-26 14:44 - 00001147 _____ () C:\Users\Public\Desktop\FIFA 15.lnk 2015-05-26 14:44 - 2015-05-26 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 15 2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information 2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\ProgramData\CanonBJ 2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MX330 series 2015-05-26 14:43 - 2009-06-16 11:37 - 01342976 _____ (CANON INC.) C:\Windows\system32\CNC330C.DLL 2015-05-26 14:43 - 2009-06-16 11:36 - 00092672 _____ (CANON INC.) C:\Windows\system32\CNC330I.DLL 2015-05-26 14:43 - 2009-04-25 05:00 - 00290816 _____ (CANON INC.) C:\Windows\system32\CNMLM9P.DLL 2015-05-26 14:43 - 2009-02-19 13:20 - 00299520 _____ (CANON INC.) C:\Windows\system32\CNC330L.DLL 2015-05-26 14:43 - 2008-09-11 09:39 - 00244736 _____ (CANON INC.) C:\Windows\system32\CNMIU9P.DLL 2015-05-26 14:43 - 2008-09-03 11:15 - 00262656 _____ (Canon Inc.) C:\Windows\system32\CNCF2Li.DLL 2015-05-26 14:43 - 2008-09-03 11:10 - 00232448 _____ (Canon Inc.) C:\Windows\system32\CNCFMSi.EXE 2015-05-26 14:43 - 2008-09-03 11:10 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLiUS.DLL 2015-05-26 14:43 - 2008-09-03 11:10 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLiJP.DLL 2015-05-26 14:43 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.DLL 2015-05-26 14:43 - 2008-07-16 09:39 - 00235008 _____ (Canon Inc.) C:\Windows\system32\CNC330O.DLL
  8. Nachmanowicz
    # AdwCleaner v4.206 - Logfile created 04/06/2015 at 10:59:48 # Updated 01/06/2015 by Xplode # Database : 2015-06-01.1 [server] # Operating system : Windows 7 Professional Service Pack 1 (x64) # Username : Nach - NACH-PC # Running from : C:\Users\Nach\Desktop\AdwCleaner.exe # Option : Cleaning ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Scheduled tasks ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** ***** [ Web browsers ] ***** -\\ Internet Explorer v10.0.9200.16521 -\\ Mozilla Firefox v38.0.5 (x86 en-US) -\\ Google Chrome v43.0.2357.81 ************************* AdwCleaner[R0].txt - [1178 bytes] - [02/06/2015 21:32:58] AdwCleaner[R1].txt - [902 bytes] - [03/06/2015 11:15:52] AdwCleaner[R2].txt - [1021 bytes] - [04/06/2015 10:59:18] AdwCleaner[s0].txt - [1248 bytes] - [02/06/2015 21:33:53] AdwCleaner[s1].txt - [965 bytes] - [03/06/2015 11:16:21] AdwCleaner[s2].txt - [948 bytes] - [04/06/2015 10:59:48] ########## EOF - C:\AdwCleaner\AdwCleaner[s2].txt - [1006 bytes] ########## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.8.8 (06.03.2015:1) OS: Windows 7 Professional x64 Ran by Nach on Thu 06/04/2015 at 11:05:14.73 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Tasks ~~~ Registry Values ~~~ Registry Keys ~~~ Files Successfully deleted: [File] C:\Windows\system32\drivers\bdsandbox.sys ~~~ Folders ~~~ Chrome [C:\Users\Nach\appdata\local\Google\Chrome\User Data\Default\Preferences] - default search provider reset [C:\Users\Nach\appdata\local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted: [C:\Users\Nach\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset [C:\Users\Nach\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted: [] ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Thu 06/04/2015 at 11:06:30.91 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ --------------------------------------------------------------------------------------- Microsoft Windows Malicious Software Removal Tool v5.23, April 2015 (build 5.23.11300.0) Started On Wed Jun 03 10:43:47 2015 Engine: 1.1.11502.0 Signatures: 1.195.1215.0 Results Summary: ---------------- No infection found. Microsoft Windows Malicious Software Removal Tool Finished On Wed Jun 03 10:45:15 2015 Return code: 0 (0x0) --------------------------------------------------------------------------------------- Microsoft Windows Malicious Software Removal Tool v5.24, May 2015 (build 5.24.11401.0) Started On Thu Jun 04 11:13:22 2015 Engine: 1.1.11602.0 Signatures: 1.197.1100.0 Results Summary: ---------------- No infection found. Microsoft Windows Malicious Software Removal Tool Finished On Thu Jun 04 11:14:21 2015 Return code: 0 (0x0) --------------------------------------------------------------------------------------- Microsoft Windows Malicious Software Removal Tool v5.24, May 2015 (build 5.24.11401.0) Started On Thu Jun 04 11:14:24 2015 Engine: 1.1.11602.0 Signatures: 1.197.1100.0 Results Summary: ---------------- No infection found.
  9. Nachmanowicz
    2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-05-26 14:24 - 2013-08-01 21:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 21:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 21:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 21:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-05-26 14:24 - 2013-04-10 03:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2015-05-26 14:24 - 2011-02-03 08:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2015-05-26 14:23 - 2015-02-18 04:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2015-05-26 14:23 - 2015-02-18 04:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2015-05-26 14:23 - 2012-11-23 00:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe 2015-05-26 14:04 - 2014-05-14 13:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-05-26 14:04 - 2014-05-14 13:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-05-26 14:04 - 2014-05-14 13:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-05-26 14:04 - 2014-05-14 13:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-05-26 14:04 - 2014-05-14 13:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-05-26 14:04 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-05-26 14:04 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-05-26 14:04 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-05-26 14:04 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-05-26 06:30 - 2015-05-26 06:30 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG 2015-05-26 06:30 - 2015-05-26 02:22 - 00000000 ____D () C:\Windows\Panther 2015-05-26 05:53 - 2015-05-26 05:56 - 00003328 _____ () C:\Windows\System32\Tasks\EVGAPrecisionX 2015-05-26 05:32 - 2015-05-26 05:32 - 00001355 _____ () C:\Windows\TSSysprep.log 2015-05-26 05:32 - 2015-05-26 05:32 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2015-05-26 05:32 - 2015-05-26 05:32 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2015-05-26 05:30 - 2015-05-26 05:30 - 00002841 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0530.html 2015-05-26 05:17 - 2015-05-27 03:12 - 00000000 ____D () C:\Windows\SysWOW64\directx 2015-05-26 05:16 - 2015-05-26 05:16 - 00000000 ____D () C:\Program Files (x86)\EVGA 2015-05-26 05:15 - 2015-05-26 05:16 - 18715110 _____ () C:\Users\Nach\Downloads\EVGA_PrecisionX_16_Setup_v5.3.3.zip 2015-05-26 04:54 - 2015-05-26 04:54 - 00002922 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0454.html 2015-05-26 04:39 - 2015-05-27 03:09 - 00000000 ____D () C:\temp 2015-05-26 04:05 - 2015-06-01 22:29 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Origin 2015-05-26 04:05 - 2015-05-26 04:06 - 00000000 ____D () C:\Program Files (x86)\Origin Games 2015-05-26 04:05 - 2015-05-26 04:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Origin 2015-05-26 04:03 - 2015-06-03 07:09 - 00000000 ____D () C:\ProgramData\Origin 2015-05-26 04:03 - 2015-05-26 20:45 - 00000000 ____D () C:\ProgramData\Electronic Arts 2015-05-26 04:03 - 2015-05-26 04:03 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk 2015-05-26 04:03 - 2015-05-26 04:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2015-05-26 04:02 - 2015-06-01 22:29 - 00000000 ____D () C:\Program Files (x86)\Origin 2015-05-26 04:02 - 2015-05-26 04:02 - 17110336 _____ (Electronic Arts, Inc.) C:\Users\Nach\Downloads\OriginThinSetup.exe 2015-05-26 04:01 - 2015-05-26 04:01 - 00000000 ____D () C:\Users\Nach\AppData\Local\Steam 2015-05-26 03:59 - 2015-06-03 14:09 - 00000000 ____D () C:\Program Files (x86)\Steam 2015-05-26 03:59 - 2015-05-26 03:59 - 01142128 _____ () C:\Users\Nach\Downloads\SteamSetup.exe 2015-05-26 03:59 - 2015-05-26 03:59 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk 2015-05-26 03:59 - 2015-05-26 03:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2015-05-26 03:41 - 2015-06-03 21:46 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job 2015-05-26 03:41 - 2015-06-03 21:45 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job 2015-05-26 03:41 - 2015-05-26 03:41 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c 2015-05-26 03:41 - 2015-05-26 03:41 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393 2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\NVIDIA 2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z 2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Program Files (x86)\GPU-Z 2015-05-26 03:40 - 2015-05-26 03:40 - 01582736 _____ ( ) C:\Users\Nach\Downloads\cpu-z_1.72-en.exe 2015-05-26 03:40 - 2015-05-26 03:40 - 00000869 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\Program Files\CPUID 2015-05-26 03:10 - 2015-05-26 03:10 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech® Webcam Software 2015-05-26 03:08 - 2015-05-26 03:08 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Leadertech 2015-05-26 03:07 - 2015-05-26 03:08 - 00010101 _____ () C:\Windows\system32\lvcoinst.log 2015-05-26 03:07 - 2015-05-26 03:08 - 00003744 _____ () C:\Windows\LDPINST.LOG 2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files\Common Files\logishrd 2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files (x86)\Logitech 2015-05-26 03:07 - 2015-05-26 03:07 - 00001624 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk 2015-05-26 03:05 - 2015-05-26 03:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2015-05-26 03:05 - 2015-05-26 03:05 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys 2015-05-26 03:05 - 2015-05-26 03:05 - 00000388 _____ () C:\Windows\LkmdfCoInst.log 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\LogiShrd 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\Apple 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Logitech Gaming Software 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Bonjour 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files (x86)\Bonjour 2015-05-26 03:04 - 2015-05-26 03:04 - 74637872 _____ (Logitech, Inc.) C:\Users\Nach\Downloads\lws251.exe 2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logitech 2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logishrd 2015-05-26 03:02 - 2015-05-26 03:03 - 74818632 _____ (Logitech Inc.) C:\Users\Nach\Downloads\LGS_8.58.183_x64_Logitech.exe 2015-05-26 02:57 - 2015-05-26 02:58 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\QuickScan 2015-05-26 02:57 - 2015-05-26 02:57 - 10447328 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition_x64.exe 2015-05-26 02:57 - 2015-05-26 02:57 - 00162208 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition.exe 2015-05-26 02:46 - 2015-05-26 02:54 - 00000000 ____D () C:\Users\Nach\Heaven 2015-05-26 02:44 - 2015-05-27 20:25 - 02128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage 2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine 2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\Program Files (x86)\Unigine 2015-05-26 02:44 - 2015-05-26 02:44 - 00002117 _____ () C:\Users\Public\Desktop\Heaven Benchmark 4.0.lnk 2015-05-26 02:43 - 2015-05-26 04:58 - 00001377 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk 2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA Corporation 2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA 2015-05-26 02:43 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-05-26 02:43 - 2015-05-07 21:35 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-05-26 02:43 - 2015-05-07 21:35 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-05-26 02:43 - 2015-05-07 21:34 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-05-26 02:43 - 2015-05-07 21:34 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2015-05-26 02:42 - 2015-06-03 21:47 - 00006464 _____ () C:\Windows\SysWOW64\Gms.log 2015-05-26 02:42 - 2015-05-26 04:42 - 00000000 ____D () C:\ProgramData\NVIDIA 2015-05-26 02:42 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2015-05-26 02:42 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2015-05-26 02:42 - 2015-05-13 03:52 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2015-05-26 02:42 - 2015-05-13 03:52 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-05-26 02:42 - 2015-05-13 03:52 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 42718864 _____ () C:\Windows\system32\nvcompiler.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 37741712 _____ () C:\Windows\SysWOW64\nvcompiler.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 30478992 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 22945424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 17540416 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 16145176 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 15858728 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 15048816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 14455296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 13263568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 12849056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 11790144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 10972304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-05-26 02:42 - 2015-05-12 03:27 - 03363224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 02971776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435286.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435286.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01050256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00502896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00176064 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00031710 _____ () C:\Windows\system32\nvinfo.pb 2015-05-26 02:42 - 2015-05-12 00:30 - 06872392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 03490448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-05-26 02:42 - 2015-05-12 00:30 - 00385352 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-05-26 02:42 - 2015-05-11 14:01 - 04391871 _____ () C:\Windows\system32\nvcoproc.bin 2015-05-26 02:42 - 2014-11-22 07:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2015-05-26 02:42 - 2014-11-22 07:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2015-05-26 02:42 - 2014-11-22 07:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2015-05-26 02:41 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2015-05-26 02:41 - 2015-05-26 02:41 - 00000000 ____D () C:\NVIDIA 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ___HD () C:\Program Files (x86)\Temp 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files\Realtek 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files (x86)\Realtek 2015-05-26 02:40 - 2014-05-28 20:23 - 03977944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2015-05-26 02:40 - 2014-05-28 14:35 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2015-05-26 02:40 - 2014-05-28 11:38 - 01137695 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2015-05-26 02:40 - 2014-05-26 15:00 - 62006272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2015-05-26 02:40 - 2014-05-23 13:54 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2015-05-26 02:40 - 2014-05-22 16:24 - 00096568 _____ () C:\Windows\system32\audioLibVc.dll 2015-05-26 02:40 - 2014-05-22 13:21 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2015-05-26 02:40 - 2014-05-19 17:16 - 02843352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2015-05-26 02:40 - 2014-05-19 10:47 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2015-05-26 02:40 - 2014-05-14 15:47 - 02119472 _____ () C:\Windows\system32\SStudio.dll 2015-05-26 02:40 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2015-05-26 02:40 - 2014-04-17 17:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll 2015-05-26 02:40 - 2014-04-17 17:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll 2015-05-26 02:40 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll 2015-05-26 02:40 - 2014-04-10 12:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll 2015-05-26 02:40 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll 2015-05-26 02:40 - 2014-04-09 16:39 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2015-05-26 02:40 - 2014-04-09 16:38 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2015-05-26 02:40 - 2014-03-21 14:17 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll 2015-05-26 02:40 - 2014-03-19 19:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll 2015-05-26 02:40 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2015-05-26 02:40 - 2014-03-05 05:11 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll 2015-05-26 02:40 - 2014-03-05 05:11 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll 2015-05-26 02:40 - 2014-03-05 05:11 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll 2015-05-26 02:40 - 2014-03-05 05:11 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll 2015-05-26 02:40 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll 2015-05-26 02:40 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2015-05-26 02:40 - 2014-02-06 11:28 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2015-05-26 02:40 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll 2015-05-26 02:40 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2015-05-26 02:40 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2015-05-26 02:40 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2015-05-26 02:40 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2015-05-26 02:40 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll 2015-05-26 02:40 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll 2015-05-26 02:40 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll 2015-05-26 02:40 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2015-05-26 02:40 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2015-05-26 02:40 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll 2015-05-26 02:40 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll 2015-05-26 02:40 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll 2015-05-26 02:40 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll 2015-05-26 02:40 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2015-05-26 02:40 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2015-05-26 02:40 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2015-05-26 02:40 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll 2015-05-26 02:40 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll 2015-05-26 02:40 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2015-05-26 02:40 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2015-05-26 02:40 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2015-05-26 02:40 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2015-05-26 02:40 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2015-05-26 02:40 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2015-05-26 02:40 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2015-05-26 02:40 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2015-05-26 02:40 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2015-05-26 02:40 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2015-05-26 02:40 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2015-05-26 02:39 - 2015-05-26 02:39 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2015-05-26 02:37 - 2015-05-26 02:39 - 00000000 ____D () C:\ProgramData\Intel 2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\Intel 2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Intel Corporation 2015-05-26 02:36 - 2015-05-26 02:36 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-05-26 02:36 - 2015-05-26 02:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-05-26 02:35 - 2015-06-03 21:45 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-26 02:35 - 2015-06-03 21:40 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Users\Nach\AppData\Local\Google 2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Program Files (x86)\Google 2015-05-26 02:35 - 2015-05-26 02:35 - 00004060 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-05-26 02:35 - 2015-05-26 02:35 - 00003808 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Deployment 2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Apps\2.0 2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files\Intel 2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files (x86)\Intel 2015-05-26 02:34 - 2015-05-26 02:34 - 00000000 ____D () C:\Intel 2015-05-26 02:34 - 2014-02-21 13:56 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll 2015-05-26 02:33 - 2015-05-28 02:55 - 00000000 ____D () C:\ProgramData\Package Cache 2015-05-26 02:28 - 2015-05-28 01:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2015-05-26 02:28 - 2015-05-26 02:28 - 00057560 _____ () C:\Users\Nach\AppData\Local\GDIPFONTCACHEV1.DAT 2015-05-26 02:27 - 2015-05-26 19:00 - 00775384 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2015-05-26 02:26 - 2015-05-26 02:26 - 00000000 ____D () C:\ProgramData\Downloaded Installations 2015-05-26 02:24 - 2012-07-26 01:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2015-05-26 02:24 - 2012-07-26 01:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys 2015-05-26 02:24 - 2012-07-25 23:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll 2015-05-26 02:24 - 2012-06-02 11:35 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2015-05-26 02:22 - 2015-06-03 21:44 - 01578066 _____ () C:\Windows\WindowsUpdate.log 2015-05-26 02:22 - 2015-06-03 11:06 - 00001413 _____ () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-05-26 02:22 - 2015-05-27 20:26 - 00000000 ____D () C:\Users\Nach 2015-05-26 02:22 - 2015-05-26 02:22 - 00000020 ___SH () C:\Users\Nach\ntuser.ini 2015-05-26 02:22 - 2015-05-26 02:22 - 00000000 __SHD () C:\Recovery 2015-05-26 02:22 - 2009-07-14 01:54 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-26 02:22 - 2009-07-14 01:49 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-03 21:45 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-06-03 21:45 - 2009-07-14 01:51 - 00044294 _____ () C:\Windows\setupact.log 2015-06-03 15:58 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\rescache 2015-06-03 14:44 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-06-03 14:44 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-06-03 11:32 - 2009-07-14 02:13 - 00783606 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-06-03 11:06 - 2009-07-14 01:45 - 00265552 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-06-03 11:05 - 2011-04-12 05:28 - 00000000 ____D () C:\Program Files\Windows Journal 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\zh-HK 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\tr-TR 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\PolicyDefinitions 2015-06-02 21:29 - 2010-11-21 00:47 - 00149122 _____ () C:\Windows\PFRO.log 2015-06-02 05:11 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\NDF 2015-06-01 21:54 - 2009-07-14 02:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-05-27 19:41 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\Offline Web Pages 2015-05-27 02:07 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2015-05-26 20:45 - 2009-07-14 00:20 - 00000000 __RHD () C:\Users\Public\Libraries 2015-05-26 14:43 - 2009-07-14 00:20 - 00000000 __RSD () C:\Windows\Media 2015-05-26 06:30 - 2009-07-14 02:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template 2015-05-26 05:38 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\LiveKernelReports 2015-05-26 05:32 - 2009-07-14 01:46 - 00002790 _____ () C:\Windows\DtcInstall.log 2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sysprep 2015-05-26 05:30 - 2011-04-12 05:28 - 00000000 ____D () C:\Windows\CSC 2015-05-26 04:38 - 2009-07-14 02:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD 2015-05-26 03:11 - 2009-07-14 01:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-05-26 02:42 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\Help 2015-05-26 02:24 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\system32\restore 2015-05-26 02:22 - 2009-07-14 01:45 - 00000000 ____D () C:\Windows\Setup ==================== Files in the root of some directories ======= 2015-05-28 01:36 - 2015-05-28 01:36 - 0000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag 2015-05-26 02:44 - 2015-05-27 20:25 - 2128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage 2015-05-26 02:40 - 2015-05-26 02:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== C:\Users\Nach\AppData\Local\Temp\dllnt_dump.dll C:\Users\Nach\AppData\Local\Temp\Quarantine.exe C:\Users\Nach\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-06-03 15:51 ==================== End of log ============================ Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015 Ran by Nach at 2015-06-03 21:47:47 Running from C:\Users\Nach\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-318558523-3823039876-2902504939-500 - Administrator - Disabled) Guest (S-1-5-21-318558523-3823039876-2902504939-501 - Limited - Disabled) Nach (S-1-5-21-318558523-3823039876-2902504939-1000 - Administrator - Enabled) => C:\Users\Nach ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D} AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) "Batman - Arkham City" (HKLM-x32\...\{71AD83D4-6F74-4257-8398-8D1BFEA91EFF}_is1) (Version: 1.1.0.0 - ) Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated) Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios) Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 18.20.0.1429 - Bitdefender) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden Canon MP Navigator EX 2.1 (HKLM-x32\...\MP Navigator EX 2.1) (Version: - ) Canon MX330 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX330_series) (Version: - Canon Inc.) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) Creation Master 15.0 (HKLM-x32\...\Creation Master 15_is1) (Version: - FIFA MASTER) EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.7.0.0 - Electronic Arts) erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.) Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North) GRID (HKLM-x32\...\Steam App 12750) (Version: - Codemasters Studios) Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.) Intel® Chipset Device Software (x32 Version: 10.0.20 - Intel® Corporation) Hidden Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation) Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation) Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.) Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.) Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla) MSI Afterburner 4.1.0 (HKLM-x32\...\Afterburner) (Version: 4.1.0 - MSI Co., LTD) NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA GeForce Experience 2.4.3.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.31 - NVIDIA Corporation) NVIDIA Graphics Driver 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.) Project CARS (HKLM-x32\...\Project CARS_R.G. Mechanics_is1) (Version: - R.G. Mechanics, ProZorg_tm) Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden Qualcomm Atheros Killer E220x Drivers (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{FE5DFB80-6937-4154-A2C7-EF845C1301F8}) (Version: 1.0.30.1259 - Qualcomm Atheros) Qualcomm Atheros Network Manager (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games) SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.3.31 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation) Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.) Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.4 - Sophos Limited) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com) Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 30-05-2015 21:11:57 Installed DirectX 01-06-2015 21:54:23 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 01-06-2015 21:54:31 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 02-06-2015 21:43:16 Installed Sophos Virus Removal Tool. 03-06-2015 10:42:56 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {04896E09-1B7E-470F-B796-319FA3FF54B6} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2014-12-06] () Task: {332DF19C-15ED-47C2-B41B-FD0966C6D230} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated) Task: {4A459083-3C0D-47DF-BBF8-B954C9A7F079} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {70553BA1-A890-422D-B3A2-07A9FD4BCDDF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {714D0294-6844-47CB-BBB4-E3355CF88D6B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {8FD47602-92B6-4BA3-AB5C-DF206E6E8809} - System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {AD7D643B-DA81-43C4-A6C1-6BC52C59CF93} - System32\Tasks\EVGAPrecisionX => C:\Program Files (x86)\EVGA\PrecisionX 16\PrecisionX_x64.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-05-27 19:38 - 2014-08-27 16:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll 2015-05-27 19:38 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll 2015-05-27 19:38 - 2014-12-17 14:34 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui 2015-05-27 19:38 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll 2015-05-27 20:24 - 2015-05-27 20:24 - 00790368 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpbr.mdl 2015-05-27 20:24 - 2015-05-27 20:24 - 00711064 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpdsp.mdl 2015-05-27 20:24 - 2015-05-27 20:24 - 02683520 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpph.mdl 2015-05-27 20:24 - 2015-05-27 20:24 - 01326504 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttprbl.mdl 2015-05-26 02:42 - 2015-05-12 00:30 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-12-06 04:03 - 2014-12-06 04:03 - 00565760 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe 2014-09-18 04:23 - 2014-09-18 04:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2015-03-12 15:23 - 2015-03-12 15:23 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2014-09-18 04:23 - 2014-09-18 04:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2015-03-12 15:23 - 2015-03-12 15:23 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2013-08-08 14:30 - 2013-08-08 14:30 - 00283648 _____ () C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe 2014-12-06 04:01 - 2014-12-06 04:01 - 00071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll 2014-12-06 04:01 - 2014-12-06 04:01 - 00056832 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll 2014-12-06 04:02 - 2014-12-06 04:02 - 00217600 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll 2014-12-06 04:01 - 2014-12-06 04:01 - 00353792 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll 2014-12-06 04:02 - 2014-12-06 04:02 - 00649216 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll 2015-05-26 02:43 - 2015-05-07 21:36 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll 2015-05-26 02:36 - 2015-05-22 17:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll 2015-05-26 02:36 - 2015-05-22 17:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll 2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Nach\Desktop\FRST64.exe:BDU AlternateDataStreams: C:\Users\Nach\Desktop\rkill.exe:BDU AlternateDataStreams: C:\Users\Nach\Desktop\RogueKiller.exe:BDU AlternateDataStreams: C:\Users\Nach\Desktop\SecurityCheck.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\dxwebsetup.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\SkypeSetupFull.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\Xbox360_64Eng.exe:BDU ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 8.8.8.8 - 8.8.4.4 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [sPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [sPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (06/03/2015 09:46:57 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54099 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60490 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57820 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54160 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:63332 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:65202 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:51406 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:64689 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:62882 length 0 too short System errors: ============= Error: (06/03/2015 09:45:17 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143. Error: (06/03/2015 02:57:49 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \??\C:\Windows\System32\drivers\TrueSight.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver. Error: (06/03/2015 11:27:00 AM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143. Error: (06/03/2015 11:17:27 AM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143. Error: (06/03/2015 11:16:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Print Spooler service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service. Error: (06/03/2015 11:16:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Skype Click to Call PNR Service service terminated unexpectedly. It has done this 1 time(s). Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Skype Click to Call Updater service terminated unexpectedly. It has done this 1 time(s). Error: (06/03/2015 11:14:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly. It has done this 1 time(s). Microsoft Office: ========================= Error: (06/03/2015 09:46:57 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54099 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60490 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57820 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54160 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:63332 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:65202 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:51406 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:64689 length 0 too short Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:62882 length 0 too short ==================== Memory info =========================== Processor: Intel® Core i5-4690K CPU @ 3.50GHz Percentage of memory in use: 19% Total physical RAM: 16293.58 MB Available physical RAM: 13045.02 MB Total Pagefile: 32585.35 MB Available Pagefile: 28856.39 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:238.37 GB) (Free:8.56 GB) NTFS Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive e: (Data) (Fixed) (Total:931.51 GB) (Free:376.58 GB) NTFS Drive f: (Móvel) (Fixed) (Total:1863.01 GB) (Free:445.35 GB) NTFS Drive g: (Software) (Fixed) (Total:801.51 GB) (Free:722.62 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 000A788F) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=238.4 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 0AE75AEB) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2E2F1945) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=801.5 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1D42D274) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (Size: 111.8 GB) (Disk ID: 00087AEE) Partition 1: (Active) - (Size=243 MB) - (Type=83) Partition 2: (Not Active) - (Size=111.6 GB) - (Type=05) ==================== End of log ============================
  10. Nachmanowicz
    Done and done :3 oh yeah, not sure if its relevant but I dont live in the US, I live in BRazil. Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2015Ran by Nach (administrator) on NACH-PC on 03-06-2015 21:47:30Running from C:\Users\Nach\DesktopLoaded Profiles: Nach (Available Profiles: Nach)Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)Internet Explorer Version 10 (Default browser: Chrome)Boot Mode: NormalTutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7611608 2014-05-27] (Realtek Semiconductor)HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-07] (NVIDIA Corporation)HKLM\...\Run: [shadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStartHKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)HKLM\...\Run: [bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1691112 2015-05-27] (Bitdefender)HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)HKU\S-1-5-21-318558523-3823039876-2902504939-1000\...\Run: [bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-05-27] (Bitdefender)Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-05-28]ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{401FADAA-1C16-4721-9F02-19067E1A1CA8}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)Startup: C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk [2015-05-28]ShortcutTarget: Logitech . Product Registration.lnk -> C:\Program Files (x86)\Logitech\Ereg\eReg.exe (Leader Technologies/Logitech)ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blankHKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pt-br/?ocid=iehpSearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender)BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender)BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender)Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender)Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)Tcpip\Parameters: [DhcpNameServer] 89.248.166.149 8.8.8.8Tcpip\..\Interfaces\{2F05DAF2-001F-4356-97BC-279A97204CA9}: [NameServer] 8.8.8.8,8.8.4.4,192.168.0.1 FireFox:========FF ProfilePath: C:\Users\Nach\AppData\Roaming\Mozilla\Firefox\Profiles\ceywwvhy.defaultFF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.)FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbextFF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-05-27]FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteffFF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-05-27]FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext Chrome: =======CHR Profile: C:\Users\Nach\AppData\Local\Google\Chrome\User Data\DefaultCHR Extension: (Google Drive) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-26]CHR Extension: (YouTube) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-26]CHR Extension: (Google Search) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-26]CHR Extension: (AdBlock) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-28]CHR Extension: (Bookmark Manager) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-26]CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-02]CHR Extension: (Skype Click to Call) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-27]CHR Extension: (Google Wallet) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-26]CHR Extension: (Gmail) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-26]CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - https://clients2.google.com/service/update2/crxCHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-12-09] (Bitdefender)R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-07] (NVIDIA Corporation)R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation)S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel® Corporation)R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-07] (NVIDIA Corporation)R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-07] (NVIDIA Corporation)S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1997168 2015-06-01] (Electronic Arts)R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-08] (Qualcomm Atheros) [File not signed]S4 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender)R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1547936 2015-05-27] (Bitdefender)R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1306464 2015-05-27] (BitDefender)R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [262544 2015-05-27] (BitDefender)R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [677104 2015-05-27] (BitDefender)R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2015-05-27] (BitDefender LLC)R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender)R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [67888 2013-02-13] (Qualcomm Atheros, Inc.)R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-05-27] (BitDefender LLC)R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-11] (Intel Corporation)R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation)R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-07] (NVIDIA Corporation)R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13368 2013-03-11] ()U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-06-03] ()R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-03 21:41 - 2015-06-03 21:43 - 00558117 _____ () C:\Users\Nach\Desktop\DnsJumper_v1.0.6.zip2015-06-03 14:57 - 2015-06-03 15:15 - 00000000 ____D () C:\ProgramData\RogueKiller2015-06-03 14:57 - 2015-06-03 14:57 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys2015-06-03 14:49 - 2015-06-03 14:50 - 17637624 _____ () C:\Users\Nach\Desktop\RogueKiller.exe2015-06-03 14:45 - 2015-06-03 14:45 - 00025474 _____ () C:\Users\Nach\Desktop\Addition.txt2015-06-03 14:44 - 2015-06-03 21:47 - 00017233 _____ () C:\Users\Nach\Desktop\FRST.txt2015-06-03 14:43 - 2015-06-03 21:47 - 00000000 ____D () C:\FRST2015-06-03 14:43 - 2015-06-03 14:43 - 02108928 _____ (Farbar) C:\Users\Nach\Desktop\FRST64.exe2015-06-03 11:56 - 2015-06-03 11:56 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys2015-06-03 11:06 - 2015-06-03 11:06 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Adobe2015-06-03 10:52 - 2015-06-03 10:52 - 19221504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll2015-06-03 10:52 - 2015-06-03 10:52 - 15407616 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll2015-06-03 10:52 - 2015-06-03 10:52 - 14317568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2015-06-03 10:52 - 2015-06-03 10:52 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2015-06-03 10:52 - 2015-06-03 10:52 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2015-06-03 10:52 - 2015-06-03 10:52 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb2015-06-03 10:52 - 2015-06-03 10:52 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll2015-06-03 10:52 - 2015-06-03 10:52 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll2015-06-03 10:52 - 2015-06-03 10:52 - 02046464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2015-06-03 10:52 - 2015-06-03 10:52 - 01766912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2015-06-03 10:52 - 2015-06-03 10:52 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl2015-06-03 10:52 - 2015-06-03 10:52 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat2015-06-03 10:52 - 2015-06-03 10:52 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll2015-06-03 10:52 - 2015-06-03 10:52 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2015-06-03 10:52 - 2015-06-03 10:52 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec2015-06-03 10:52 - 2015-06-03 10:52 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec2015-06-03 10:52 - 2015-06-03 10:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx2015-06-03 10:52 - 2015-06-03 10:52 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx2015-06-03 10:52 - 2015-06-03 10:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe2015-06-03 10:50 - 2015-06-03 10:50 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll2015-06-03 10:50 - 2015-06-03 10:50 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll2015-06-03 10:50 - 2015-06-03 10:50 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll2015-06-03 10:50 - 2015-06-03 10:50 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll2015-06-03 10:50 - 2015-06-03 10:50 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01504768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll2015-06-03 10:48 - 2015-06-03 10:53 - 00011231 _____ () C:\Windows\IE10_main.log2015-06-03 10:45 - 2015-06-03 10:47 - 00003318 _____ () C:\Windows\IE9_main.log2015-06-03 10:43 - 2015-06-03 10:45 - 00000000 ____D () C:\Windows\system32\MRT2015-06-03 10:43 - 2015-04-01 11:16 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe2015-06-03 10:40 - 2015-03-06 02:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys2015-06-03 10:40 - 2015-03-06 02:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys2015-06-03 10:40 - 2015-03-06 02:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll2015-06-03 10:40 - 2015-03-06 02:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe2015-06-03 10:40 - 2015-03-06 02:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe2015-06-03 10:40 - 2015-03-06 02:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll2015-06-03 10:40 - 2015-03-06 02:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll2015-06-03 10:40 - 2015-03-06 02:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll2015-06-03 10:40 - 2015-03-06 02:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll2015-06-03 10:40 - 2015-03-06 02:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe2015-06-03 10:40 - 2015-03-06 02:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll2015-06-03 10:40 - 2015-03-06 02:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll2015-06-03 10:40 - 2015-03-06 02:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll2015-06-03 10:40 - 2015-02-26 00:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys2015-06-03 10:40 - 2015-01-29 00:23 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe2015-06-03 10:40 - 2015-01-29 00:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll2015-06-03 10:40 - 2015-01-29 00:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll2015-06-03 10:40 - 2015-01-29 00:19 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll2015-06-03 10:40 - 2015-01-29 00:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe2015-06-03 10:40 - 2015-01-29 00:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe2015-06-03 10:40 - 2015-01-29 00:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll2015-06-03 10:40 - 2015-01-29 00:05 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe2015-06-03 10:40 - 2015-01-29 00:05 - 03917752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe2015-06-03 10:40 - 2015-01-29 00:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll2015-06-03 10:40 - 2015-01-28 23:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll2015-06-03 10:40 - 2014-09-12 22:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll2015-06-03 10:40 - 2014-09-12 22:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll2015-06-03 10:40 - 2014-08-21 03:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll2015-06-03 10:40 - 2014-08-21 03:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll2015-06-03 10:40 - 2014-08-21 03:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll2015-06-03 10:40 - 2014-08-21 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll2015-06-03 10:40 - 2014-03-24 23:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll2015-06-03 10:40 - 2014-03-24 23:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll2015-06-03 10:40 - 2014-02-03 23:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll2015-06-03 10:40 - 2014-02-03 23:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll2015-06-03 10:40 - 2013-10-02 23:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll2015-06-03 10:40 - 2013-10-02 23:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll2015-06-03 10:40 - 2013-09-27 22:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys2015-06-03 10:40 - 2013-08-01 23:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll2015-06-03 10:40 - 2013-08-01 23:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll2015-06-03 10:40 - 2013-08-01 22:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll2015-06-03 10:40 - 2013-08-01 22:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll2015-06-03 10:40 - 2013-08-01 09:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys2015-06-03 10:40 - 2013-07-20 07:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll2015-06-03 10:40 - 2013-07-20 07:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll2015-06-03 10:40 - 2013-07-09 02:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll2015-06-03 10:40 - 2013-07-09 02:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll2015-06-03 10:40 - 2013-07-09 02:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll2015-06-03 10:40 - 2013-07-09 01:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll2015-06-03 10:40 - 2013-07-09 01:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll2015-06-03 10:40 - 2013-07-09 01:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll2015-06-03 10:40 - 2013-07-06 03:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys2015-06-03 10:40 - 2013-06-15 01:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys2015-06-03 10:40 - 2013-06-06 02:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll2015-06-03 10:40 - 2013-06-06 02:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll2015-06-03 10:40 - 2013-06-06 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll2015-06-03 10:40 - 2013-06-06 02:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll2015-06-03 10:40 - 2013-06-06 01:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll2015-06-03 10:40 - 2013-06-06 01:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll2015-06-03 10:40 - 2013-06-06 01:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll2015-06-03 10:40 - 2013-06-06 00:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll2015-06-03 10:40 - 2013-06-06 00:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll2015-06-03 10:40 - 2013-06-06 00:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll2015-06-03 10:40 - 2013-01-03 03:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS2015-06-03 10:40 - 2012-11-09 02:45 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll2015-06-03 10:40 - 2012-11-09 01:43 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll2015-06-03 10:40 - 2012-11-01 02:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll2015-06-03 10:40 - 2012-11-01 01:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll2015-06-03 10:40 - 2012-08-22 15:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys2015-06-03 10:40 - 2011-03-08 03:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll2015-06-03 10:40 - 2011-03-08 02:28 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll2015-06-03 10:40 - 2011-02-25 03:22 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll2015-06-03 10:40 - 2011-02-25 02:34 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll2015-06-03 10:40 - 2011-02-23 01:56 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys2015-06-03 10:40 - 2011-02-23 01:56 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys2015-06-03 10:40 - 2011-02-23 01:55 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys2015-06-03 06:54 - 2015-06-03 06:54 - 00000000 ____D () C:\Users\Nach\AppData\Local\VirtualStore2015-06-02 21:43 - 2015-06-02 21:43 - 00002759 _____ () C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Sophos2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\Program Files (x86)\Sophos2015-06-02 21:37 - 2015-06-02 21:37 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-NACH-PC-Windows-7-Professional-(64-bit).dat2015-06-02 21:37 - 2015-06-02 21:37 - 00000000 ____D () C:\RegBackup2015-06-02 21:32 - 2015-06-03 11:16 - 00000000 ____D () C:\AdwCleaner2015-06-02 21:00 - 2015-06-02 21:00 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\Nach\Desktop\rkill.exe2015-06-02 20:55 - 2015-06-03 14:44 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)2015-06-02 20:54 - 2015-06-03 14:44 - 00000000 ____D () C:\Users\Nach\Desktop\mbar2015-06-02 20:40 - 2015-06-02 20:39 - 00852639 _____ () C:\Users\Nach\Desktop\SecurityCheck.exe2015-06-02 19:08 - 2015-06-03 21:45 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2015-06-02 19:07 - 2015-06-03 14:02 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys2015-06-02 19:07 - 2015-06-02 19:07 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Malwarebytes2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2015-06-02 19:07 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys2015-06-02 19:07 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys2015-06-02 18:19 - 2015-06-02 18:19 - 00001610 _____ () C:\Windows\system32\bdsandbox.txt2015-06-02 18:07 - 2015-06-02 21:28 - 00000000 ____D () C:\Users\Nach\AppData\Temp2015-06-02 17:46 - 2015-06-02 17:46 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk2015-06-02 17:46 - 2015-06-02 17:46 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Mozilla2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Local\Mozilla2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\ProgramData\Mozilla2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2015-06-02 17:45 - 2015-06-02 17:45 - 00243408 _____ () C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\Documents\FM_temp2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\AppData\Local\CreationMaster2015-06-02 04:48 - 2015-06-02 04:48 - 00001269 _____ () C:\Users\Nach\Desktop\CM 15.lnk2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fifa Master2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\Program Files (x86)\Fifa Master2015-06-02 04:42 - 2015-06-02 04:43 - 19412014 _____ () C:\Users\Nach\Downloads\Setup_CM_15_0.rar2015-06-02 04:39 - 2015-06-02 04:39 - 00000562 _____ () C:\Users\Public\Desktop\Fraps.lnk2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\Fraps2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\WinRAR2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR2015-06-02 04:35 - 2015-06-02 04:36 - 00000000 ____D () C:\Program Files\WinRAR2015-06-02 04:32 - 2015-06-02 04:35 - 101738804 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW210.rar2015-06-02 04:31 - 2015-06-02 04:33 - 71594649 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW200.rar2015-06-02 04:31 - 2015-06-02 04:32 - 12104486 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW202.rar2015-06-02 04:31 - 2015-06-02 04:31 - 03326221 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW211 (1).rar2015-06-02 04:30 - 2015-06-02 17:43 - 00000000 ____D () C:\ProgramData\Adobe2015-06-02 04:30 - 2015-06-02 04:30 - 00003886 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task2015-06-02 04:30 - 2015-06-02 04:30 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk2015-06-02 04:30 - 2015-06-02 04:30 - 00002047 _____ () C:\Users\Public\Desktop\Acrobat Reader DC.lnk2015-06-02 04:30 - 2015-06-02 04:30 - 00000000 ____D () C:\Program Files (x86)\Adobe2015-06-02 04:29 - 2015-06-02 04:32 - 00000000 ____D () C:\Users\Nach\AppData\Local\Adobe2015-06-01 22:16 - 2015-06-02 01:50 - 00000000 ____D () C:\Users\Nach\Documents\The Witcher 32015-06-01 21:54 - 2015-06-01 21:54 - 00001955 _____ () C:\Users\Public\Desktop\The Witcher® 3 - Wild Hunt.lnk2015-06-01 21:54 - 2015-06-01 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com2015-06-01 21:47 - 2015-06-01 21:47 - 00000000 ____D () C:\GOG Games2015-05-28 20:22 - 2015-06-01 03:02 - 00000080 _____ () C:\Users\Nach\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\Documents\Rockstar Games2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\AppData\Local\Rockstar Games2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files\Rockstar Games2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games2015-05-28 02:55 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll2015-05-28 02:55 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll2015-05-28 02:55 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll2015-05-28 02:55 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll2015-05-28 02:55 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll2015-05-28 02:55 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll2015-05-28 01:37 - 2015-05-28 01:37 - 00002783 _____ () C:\Users\Public\Desktop\Killer Network Manager.lnk2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Qualcomm2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\Program Files\Qualcomm Atheros2015-05-28 01:36 - 2015-05-28 01:36 - 00000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag2015-05-27 20:26 - 2015-05-27 20:39 - 00000000 ____D () C:\Users\Nach\Valley2015-05-27 20:24 - 2015-05-27 20:24 - 00002113 _____ () C:\Users\Public\Desktop\Valley Benchmark 1.0.lnk2015-05-27 19:44 - 2015-05-27 19:44 - 00160544 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys2015-05-27 19:44 - 2015-05-27 19:44 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll2015-05-27 19:44 - 2015-05-27 19:44 - 00074000 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll2015-05-27 19:39 - 2015-05-27 19:39 - 00000385 _____ () C:\Users\Nach\AppData\Roaminguser_gensett.xml2015-05-27 19:38 - 2015-05-27 19:44 - 00677104 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys2015-05-27 19:38 - 2015-05-27 19:44 - 00262544 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys2015-05-27 19:38 - 2015-05-27 19:44 - 00033360 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll2015-05-27 19:38 - 2015-05-27 19:44 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Bitdefender2015-05-27 19:38 - 2015-05-27 19:43 - 01306464 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys2015-05-27 19:38 - 2015-05-27 19:40 - 00000000 ____D () C:\ProgramData\BDLogging2015-05-27 19:38 - 2015-05-27 19:38 - 00253404 ____H () C:\bdr-ld012015-05-27 19:38 - 2015-05-27 19:38 - 00009216 ____H () C:\bdr-ld01.mbr2015-05-27 19:38 - 2015-05-27 19:38 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk2015-05-27 19:38 - 2015-05-27 19:38 - 00000684 ____H () C:\bdr-cf012015-05-27 19:38 - 2015-05-27 19:38 - 00000385 _____ () C:\Windows\system32\user_gensett.xml2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 20152015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Bitdefender2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Bitdefender2015-05-27 19:38 - 2014-12-02 16:37 - 00074000 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll2015-05-27 19:38 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys2015-05-27 19:38 - 2014-07-04 17:49 - 49563064 ____H () C:\bdr-im01.gz2015-05-27 19:38 - 2013-11-13 15:41 - 00093600 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys2015-05-27 19:38 - 2013-08-13 13:38 - 03271472 ____H () C:\bdr-bz012015-05-27 19:38 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys2015-05-27 19:38 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\Users\Nach\Documents\WB Games2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\ProgramData\Steam2015-05-27 16:50 - 2015-05-27 16:50 - 00001670 _____ () C:\Users\Public\Desktop\Batman - Arkham City.lnk2015-05-27 16:50 - 2015-05-27 16:50 - 00001043 _____ () C:\Users\Public\Desktop\Batman - Arkham City (Settings).lnk2015-05-27 16:50 - 2015-05-27 16:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batman - Arkham City2015-05-27 16:37 - 2015-05-27 16:37 - 00000000 ____D () C:\Users\Nach\AppData\Local\Setup Integrity Check2015-05-27 15:24 - 2015-05-27 16:37 - 00000000 ____D () C:\Games2015-05-27 04:05 - 2015-06-03 21:44 - 00003018 _____ () C:\Windows\System32\Tasks\MSIAfterburner2015-05-27 04:04 - 2015-06-02 01:07 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner2015-05-27 04:04 - 2015-05-27 04:04 - 00001086 _____ () C:\Users\Nach\Desktop\MSI Afterburner.lnk2015-05-27 04:04 - 2015-05-27 04:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner2015-05-27 04:03 - 2015-05-27 04:03 - 36210245 _____ () C:\Users\Nach\Downloads\[Guru3D.com]-MSIAfterburnerSetup410.zip2015-05-27 04:02 - 2015-05-27 04:02 - 00000000 ____D () C:\Windows\system32\appmgmt2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\wmd_symbol_cache2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\Project CARS2015-05-27 03:12 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll2015-05-27 03:12 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll2015-05-27 03:12 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll2015-05-27 03:12 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll2015-05-27 03:12 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll2015-05-27 03:12 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll2015-05-27 03:12 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll2015-05-27 03:12 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll2015-05-27 03:12 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll2015-05-27 03:12 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll2015-05-27 03:12 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll2015-05-27 03:12 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll2015-05-27 03:12 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll2015-05-27 03:12 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll2015-05-27 03:12 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll2015-05-27 03:12 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll2015-05-27 03:12 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll2015-05-27 03:12 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll2015-05-27 03:12 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll2015-05-27 03:12 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll2015-05-27 03:12 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll2015-05-27 03:12 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll2015-05-27 03:12 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll2015-05-27 03:12 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll2015-05-27 03:12 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll2015-05-27 03:12 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll2015-05-27 03:12 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll2015-05-27 03:12 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll2015-05-27 03:12 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll2015-05-27 03:12 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll2015-05-27 03:12 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll2015-05-27 03:12 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll2015-05-27 03:12 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll2015-05-27 03:12 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll2015-05-27 03:12 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll2015-05-27 03:12 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll2015-05-27 03:12 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll2015-05-27 03:12 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll2015-05-27 03:12 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll2015-05-27 03:12 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll2015-05-27 03:12 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll2015-05-27 03:12 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll2015-05-27 03:12 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll2015-05-27 03:12 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll2015-05-27 03:12 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll2015-05-27 03:12 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll2015-05-27 03:12 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll2015-05-27 03:12 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll2015-05-27 03:12 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll2015-05-27 03:12 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll2015-05-27 03:12 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll2015-05-27 03:12 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll2015-05-27 03:12 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll2015-05-27 03:12 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll2015-05-27 03:12 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll2015-05-27 03:12 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll2015-05-27 03:12 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll2015-05-27 03:12 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll2015-05-27 03:12 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll2015-05-27 03:12 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll2015-05-27 03:12 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll2015-05-27 03:12 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll2015-05-27 03:12 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll2015-05-27 03:12 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll2015-05-27 03:12 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll2015-05-27 03:12 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll2015-05-27 03:12 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll2015-05-27 03:12 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll2015-05-27 03:12 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll2015-05-27 03:12 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll2015-05-27 03:12 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll2015-05-27 03:12 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll2015-05-27 03:12 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll2015-05-27 03:12 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll2015-05-27 03:12 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll2015-05-27 03:12 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll2015-05-27 03:12 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll2015-05-27 03:12 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll2015-05-27 03:12 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll2015-05-27 03:12 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll2015-05-27 03:12 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll2015-05-27 03:09 - 2015-05-27 03:09 - 00292184 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\dxwebsetup.exe2015-05-27 02:07 - 2015-05-27 02:07 - 00002122 _____ () C:\Users\Nach\Desktop\Project CARS.lnk2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Project CARS2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics2015-05-27 02:06 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll2015-05-27 01:54 - 2015-05-27 01:54 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics2015-05-27 00:03 - 2015-06-02 04:22 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\vlc2015-05-27 00:03 - 2015-05-27 00:03 - 00001066 _____ () C:\Users\Public\Desktop\VLC media player.lnk2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\Program Files (x86)\VideoLAN2015-05-27 00:01 - 2015-05-27 00:02 - 28849904 _____ () C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe2015-05-26 22:40 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll2015-05-26 22:40 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll2015-05-26 22:40 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll2015-05-26 22:40 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll2015-05-26 22:40 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll2015-05-26 22:40 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll2015-05-26 22:40 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll2015-05-26 22:40 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll2015-05-26 22:40 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll2015-05-26 22:40 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll2015-05-26 22:40 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll2015-05-26 22:40 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll2015-05-26 22:40 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll2015-05-26 22:40 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll2015-05-26 22:40 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll2015-05-26 22:40 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll2015-05-26 22:40 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll2015-05-26 22:40 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll2015-05-26 22:40 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll2015-05-26 22:40 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll2015-05-26 22:40 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll2015-05-26 22:40 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll2015-05-26 22:40 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll2015-05-26 22:40 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll2015-05-26 22:40 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll2015-05-26 22:40 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll2015-05-26 22:40 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll2015-05-26 22:40 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll2015-05-26 22:40 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll2015-05-26 22:40 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll2015-05-26 22:40 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll2015-05-26 22:40 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll2015-05-26 22:40 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll2015-05-26 22:40 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll2015-05-26 22:40 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll2015-05-26 22:40 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll2015-05-26 22:40 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll2015-05-26 22:40 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll2015-05-26 22:40 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll2015-05-26 22:40 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll2015-05-26 22:40 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll2015-05-26 22:40 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll2015-05-26 22:40 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll2015-05-26 22:40 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll2015-05-26 22:40 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll2015-05-26 22:40 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll2015-05-26 22:40 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll2015-05-26 22:40 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll2015-05-26 22:40 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll2015-05-26 22:40 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll2015-05-26 22:40 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll2015-05-26 20:45 - 2015-05-31 09:31 - 00000000 ____D () C:\Users\Nach\Documents\FIFA 152015-05-26 20:38 - 2015-05-30 21:12 - 00074969 _____ () C:\Windows\DirectX.log2015-05-26 20:38 - 2015-05-26 20:38 - 07878008 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\Xbox360_64Eng.exe2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\Program Files\Microsoft Xbox 360 Accessories2015-05-26 20:36 - 2015-05-26 20:36 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll2015-05-26 20:36 - 2015-05-26 20:36 - 00413696 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll2015-05-26 20:36 - 2015-05-26 20:36 - 00133632 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll2015-05-26 20:36 - 2015-05-26 20:36 - 00110592 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Users\Nach\Documents\Codemasters2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\ProgramData\Codemasters2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Program Files (x86)\OpenAL2015-05-26 19:43 - 2015-05-26 19:43 - 00000000 ____D () C:\Users\Nach\Tracing2015-05-26 19:42 - 2015-06-02 20:55 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Skype2015-05-26 19:42 - 2015-05-27 19:48 - 00000000 ___RD () C:\Program Files (x86)\Skype2015-05-26 19:42 - 2015-05-26 19:42 - 43034752 _____ (Skype Technologies S.A.) C:\Users\Nach\Downloads\SkypeSetupFull.exe2015-05-26 19:42 - 2015-05-26 19:42 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\Users\Nach\AppData\Local\Skype2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Skype2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype2015-05-26 18:51 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE2015-05-26 18:43 - 2015-05-27 02:42 - 00027508 _____ () C:\Windows\IE11_main.log2015-05-26 18:15 - 2014-06-30 19:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll2015-05-26 18:15 - 2014-06-30 19:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll2015-05-26 18:15 - 2014-06-06 03:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe2015-05-26 18:15 - 2014-06-06 03:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe2015-05-26 18:15 - 2014-03-09 18:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe2015-05-26 18:15 - 2014-03-09 18:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll2015-05-26 18:15 - 2014-03-09 18:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe2015-05-26 18:15 - 2014-03-09 18:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\Program Files (x86)\Canon2015-05-26 14:44 - 2015-05-26 14:44 - 00001147 _____ () C:\Users\Public\Desktop\FIFA 15.lnk2015-05-26 14:44 - 2015-05-26 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 152015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\ProgramData\CanonBJ2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MX330 series2015-05-26 14:43 - 2009-06-16 11:37 - 01342976 _____ (CANON INC.) C:\Windows\system32\CNC330C.DLL2015-05-26 14:43 - 2009-06-16 11:36 - 00092672 _____ (CANON INC.) C:\Windows\system32\CNC330I.DLL2015-05-26 14:43 - 2009-04-25 05:00 - 00290816 _____ (CANON INC.) C:\Windows\system32\CNMLM9P.DLL2015-05-26 14:43 - 2009-02-19 13:20 - 00299520 _____ (CANON INC.) C:\Windows\system32\CNC330L.DLL2015-05-26 14:43 - 2008-09-11 09:39 - 00244736 _____ (CANON INC.) C:\Windows\system32\CNMIU9P.DLL2015-05-26 14:43 - 2008-09-03 11:15 - 00262656 _____ (Canon Inc.) C:\Windows\system32\CNCF2Li.DLL2015-05-26 14:43 - 2008-09-03 11:10 - 00232448 _____ (Canon Inc.) C:\Windows\system32\CNCFMSi.EXE2015-05-26 14:43 - 2008-09-03 11:10 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLiUS.DLL2015-05-26 14:43 - 2008-09-03 11:10 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLiJP.DLL2015-05-26 14:43 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.DLL2015-05-26 14:43 - 2008-07-16 09:39 - 00235008 _____ (Canon Inc.) C:\Windows\system32\CNC330O.DLL2015-05-26 14:43 - 2008-07-02 13:11 - 00013568 _____ () C:\Windows\system32\CNC1737D.TBL2015-05-26 14:42 - 2015-05-26 14:42 - 11017360 _____ () C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe2015-05-26 14:42 - 2015-05-26 14:42 - 00000000 ___HD () C:\Program Files\CanonBJ2015-05-26 14:36 - 2015-05-26 14:36 - 48655952 _____ () C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe2015-05-26 14:25 - 2013-07-09 02:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll2015-05-26 14:25 - 2013-07-09 02:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll2015-05-26 14:25 - 2013-07-09 01:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll2015-05-26 14:25 - 2013-07-09 01:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll2015-05-26 14:24 - 2015-01-30 20:56 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys2015-05-26 14:24 - 2014-03-04 06:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll2015-05-26 14:24 - 2014-03-04 06:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll2015-05-26 14:24 - 2014-03-04 06:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll2015-05-26 14:24 - 2014-03-04 06:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll2015-05-26 14:24 - 2014-03-04 06:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll2015-05-26 14:24 - 2014-03-04 06:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll2015-05-26 14:24 - 2014-03-04 06:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll2015-05-26 14:24 - 2014-03-04 06:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe2015-05-26 14:24 - 2014-03-04 06:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll2015-05-26 14:24 - 2014-03-04 05:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe2015-05-26 14:24 - 2014-03-04 05:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe2015-05-26 14:24 - 2013-08-01 23:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 22:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 22:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
  11. Nachmanowicz
    ROGUEKILLER opened this link: http://www.adlice.com/userland-rootkits-part-1-iat-hooks/ the log: RogueKiller V10.8.1.0 [Jun 3 2015] by Adlice Softwaremail : http://www.adlice.com/contact/Feedback : http://forum.adlice.comWebsite : http://www.adlice.com/softwares/roguekiller/Blog : http://www.adlice.com Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits versionStarted in : Normal modeUser : Nach [Administrator]Started from : C:\Users\Nach\Desktop\RogueKiller.exeMode : Scan -- Date : 06/03/2015 15:02:42 ¤¤¤ Processes : 0 ¤¤¤ ¤¤¤ Registry : 8 ¤¤¤[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 89.248.166.149 8.8.8.8 [POLAND (PL)][-] -> Found[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 89.248.166.149 8.8.8.8 [POLAND (PL)][-] -> Found[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 89.248.166.149 8.8.8.8 [POLAND (PL)][-] -> Found[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{2F05DAF2-001F-4356-97BC-279A97204CA9} | DhcpNameServer : 89.248.166.149 8.8.8.8 [POLAND (PL)][-] -> Found[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{2F05DAF2-001F-4356-97BC-279A97204CA9} | DhcpNameServer : 89.248.166.149 8.8.8.8 [POLAND (PL)][-] -> Found[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{2F05DAF2-001F-4356-97BC-279A97204CA9} | DhcpNameServer : 89.248.166.149 8.8.8.8 [X][-] -> Found[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Found[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0 -> Found ¤¤¤ Tasks : 0 ¤¤¤ ¤¤¤ Files : 0 ¤¤¤ ¤¤¤ Hosts File : 0 ¤¤¤ ¤¤¤ Antirootkit : 515 (Driver: Not loaded [0xc000036b]) ¤¤¤[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGenKey : Unknown @ 0x73903699 (jmp 0xfe47a7b0|jmp 0xffffcef2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - OpenServiceW : Unknown @ 0x73902431 (jmp 0xfe4759e5|jmp 0xffffe15a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CloseServiceHandle : Unknown @ 0x73902859 (jmp 0xfe46f1bd|jmp 0xffffdd32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExA : Unknown @ 0x73901721 (jmp 0xfdc293c5|jmp 0xffffee6a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptHashData : Unknown @ 0x73903991 (jmp 0xfe475a5b|jmp 0xffffcbfa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExA : Unknown @ 0x73901721 (jmp 0xfdc293c5|jmp 0xffffee6a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - GetStartupInfoA : Unknown @ 0x73903db9 (jmp 0xfe782fb9|jmp 0xffffc7d2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - OpenServiceA : Unknown @ 0x73902399 (jmp 0xfe46f7a9|jmp 0xffffe1f2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - ControlService : Unknown @ 0x739025f9 (jmp 0xfe45b4b5|jmp 0xffffdf92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CloseServiceHandle : Unknown @ 0x73902859 (jmp 0xfe46f1bd|jmp 0xffffdd32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - OpenServiceW : Unknown @ 0x73902431 (jmp 0xfe4759e5|jmp 0xffffe15a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextA : Unknown @ 0x73903569 (jmp 0xfe47a38c|jmp 0xffffd022|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptEncrypt : Unknown @ 0x73903731 (jmp 0xfe45bf96|jmp 0xffffce5a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptExportKey : Unknown @ 0x73903861 (jmp 0xfe47a677|jmp 0xffffcd2a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptImportKey : Unknown @ 0x73903a29 (jmp 0xfe4774f7|jmp 0xffffcb62|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGenKey : Unknown @ 0x73903699 (jmp 0xfe47a7b0|jmp 0xffffcef2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptImportKey : Unknown @ 0x73903a29 (jmp 0xfe4774f7|jmp 0xffffcb62|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGenKey : Unknown @ 0x73903699 (jmp 0xfe47a7b0|jmp 0xffffcef2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptExportKey : Unknown @ 0x73903861 (jmp 0xfe47a677|jmp 0xffffcd2a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptEncrypt : Unknown @ 0x73903731 (jmp 0xfe45bf96|jmp 0xffffce5a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe) ¤¤¤ Web browsers : 0 ¤¤¤ ¤¤¤ MBR Check : ¤¤¤+++++ PhysicalDrive0: M4-CT256 M4SSD2 SCSI Disk Device +++++--- User ---[MBR] ad42f6f45525e6559f1d68720e265c80[bSP] 97bcaec80441bf037f0fecd94da18ea9 : Windows Vista/7/8|VT.Unknown MBR CodePartition table:0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 244096 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]User = LL1 ... OKUser = LL2 ... OK +++++ PhysicalDrive1: WDC WD20EARX-00PASB0 SCSI Disk Device +++++--- User ---[MBR] 8193f38f68a7a8dad34888b833391271[bSP] 0f8a514b9bb12ef0f15dcb139a5705dd : Windows Vista/7/8|VT.Unknown MBR CodePartition table:0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]User = LL1 ... OKUser = LL2 ... OK +++++ PhysicalDrive2: SAMSUNG HD103SJ SCSI Disk Device +++++--- User ---[MBR] 3bc5d6aea299170db270d71a40897738[bSP] 4f5fb797e501a0b61f1c9ff3b49a9bb2 : Windows Vista/7/8|VT.Unknown MBR CodePartition table:0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 272629760 | Size: 820747 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]User = LL1 ... OKUser = LL2 ... OK +++++ PhysicalDrive3: SAMSUNG HD103SJ SCSI Disk Device +++++--- User ---[MBR] 63a052d9e1c7a7db1c76706be4ce7b36[bSP] 458a107c4bd1211e746dc93c592991b1 : Windows Vista/7/8|VT.Unknown MBR CodePartition table:0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]User = LL1 ... OKUser = LL2 ... OK +++++ PhysicalDrive4: SanDisk SDSSDX120GG25 SCSI Disk Device +++++--- User ---[MBR] 22a363563ee10fbee001e4c3599e6e1e[bSP] 18938ddb3852d20d2484709959caab1b : Linux|Legit.Unknown|VT.Unknown MBR CodePartition table:0 - [ACTIVE] LINUX (0x83) [VISIBLE] Offset (sectors): 2048 | Size: 243 MB1 - [XXXXXX] EXTEN (0x5) [VISIBLE] Offset (sectors): 501758 | Size: 114228 MBUser = LL1 ... OKUser = LL2 ... OK
  12. Nachmanowicz
    2015-05-26 18:15 - 2014-06-30 19:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2015-05-26 18:15 - 2014-06-30 19:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll 2015-05-26 18:15 - 2014-06-06 03:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe 2015-05-26 18:15 - 2014-06-06 03:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2015-05-26 18:15 - 2014-03-09 18:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2015-05-26 18:15 - 2014-03-09 18:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2015-05-26 18:15 - 2014-03-09 18:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe 2015-05-26 18:15 - 2014-03-09 18:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll 2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities 2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\Program Files (x86)\Canon 2015-05-26 14:44 - 2015-05-26 14:44 - 00001147 _____ () C:\Users\Public\Desktop\FIFA 15.lnk 2015-05-26 14:44 - 2015-05-26 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 15 2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information 2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\ProgramData\CanonBJ 2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MX330 series 2015-05-26 14:43 - 2009-06-16 11:37 - 01342976 _____ (CANON INC.) C:\Windows\system32\CNC330C.DLL 2015-05-26 14:43 - 2009-06-16 11:36 - 00092672 _____ (CANON INC.) C:\Windows\system32\CNC330I.DLL 2015-05-26 14:43 - 2009-04-25 05:00 - 00290816 _____ (CANON INC.) C:\Windows\system32\CNMLM9P.DLL 2015-05-26 14:43 - 2009-02-19 13:20 - 00299520 _____ (CANON INC.) C:\Windows\system32\CNC330L.DLL 2015-05-26 14:43 - 2008-09-11 09:39 - 00244736 _____ (CANON INC.) C:\Windows\system32\CNMIU9P.DLL 2015-05-26 14:43 - 2008-09-03 11:15 - 00262656 _____ (Canon Inc.) C:\Windows\system32\CNCF2Li.DLL 2015-05-26 14:43 - 2008-09-03 11:10 - 00232448 _____ (Canon Inc.) C:\Windows\system32\CNCFMSi.EXE 2015-05-26 14:43 - 2008-09-03 11:10 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLiUS.DLL 2015-05-26 14:43 - 2008-09-03 11:10 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLiJP.DLL 2015-05-26 14:43 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.DLL 2015-05-26 14:43 - 2008-07-16 09:39 - 00235008 _____ (Canon Inc.) C:\Windows\system32\CNC330O.DLL 2015-05-26 14:43 - 2008-07-02 13:11 - 00013568 _____ () C:\Windows\system32\CNC1737D.TBL 2015-05-26 14:42 - 2015-05-26 14:42 - 11017360 _____ () C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe 2015-05-26 14:42 - 2015-05-26 14:42 - 00000000 ___HD () C:\Program Files\CanonBJ 2015-05-26 14:36 - 2015-05-26 14:36 - 48655952 _____ () C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe 2015-05-26 14:25 - 2013-07-09 02:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2015-05-26 14:25 - 2013-07-09 02:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll 2015-05-26 14:25 - 2013-07-09 01:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2015-05-26 14:25 - 2013-07-09 01:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll 2015-05-26 14:24 - 2015-01-30 20:56 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2015-05-26 14:24 - 2014-03-04 06:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-05-26 14:24 - 2014-03-04 06:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll 2015-05-26 14:24 - 2014-03-04 06:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll 2015-05-26 14:24 - 2014-03-04 06:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll 2015-05-26 14:24 - 2014-03-04 06:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll 2015-05-26 14:24 - 2014-03-04 06:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll 2015-05-26 14:24 - 2014-03-04 06:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll 2015-05-26 14:24 - 2014-03-04 06:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe 2015-05-26 14:24 - 2014-03-04 06:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll 2015-05-26 14:24 - 2014-03-04 05:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe 2015-05-26 14:24 - 2014-03-04 05:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe 2015-05-26 14:24 - 2013-08-01 23:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 22:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-05-26 14:24 - 2013-08-01 21:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 21:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 21:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll 2015-05-26 14:24 - 2013-08-01 21:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll 2015-05-26 14:24 - 2013-04-10 03:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2015-05-26 14:24 - 2011-02-03 08:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2015-05-26 14:23 - 2015-02-18 04:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe 2015-05-26 14:23 - 2015-02-18 04:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2015-05-26 14:23 - 2012-11-23 00:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe 2015-05-26 14:04 - 2014-05-14 13:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2015-05-26 14:04 - 2014-05-14 13:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2015-05-26 14:04 - 2014-05-14 13:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll 2015-05-26 14:04 - 2014-05-14 13:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2015-05-26 14:04 - 2014-05-14 13:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2015-05-26 14:04 - 2014-05-14 13:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll 2015-05-26 14:04 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2015-05-26 14:04 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll 2015-05-26 14:04 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2015-05-26 14:04 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe 2015-05-26 06:30 - 2015-05-26 06:30 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG 2015-05-26 06:30 - 2015-05-26 02:22 - 00000000 ____D () C:\Windows\Panther 2015-05-26 05:53 - 2015-05-26 05:56 - 00003328 _____ () C:\Windows\System32\Tasks\EVGAPrecisionX 2015-05-26 05:32 - 2015-05-26 05:32 - 00001355 _____ () C:\Windows\TSSysprep.log 2015-05-26 05:32 - 2015-05-26 05:32 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk 2015-05-26 05:32 - 2015-05-26 05:32 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk 2015-05-26 05:30 - 2015-05-26 05:30 - 00002841 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0530.html 2015-05-26 05:17 - 2015-05-27 03:12 - 00000000 ____D () C:\Windows\SysWOW64\directx 2015-05-26 05:16 - 2015-05-26 05:16 - 00000000 ____D () C:\Program Files (x86)\EVGA 2015-05-26 05:15 - 2015-05-26 05:16 - 18715110 _____ () C:\Users\Nach\Downloads\EVGA_PrecisionX_16_Setup_v5.3.3.zip 2015-05-26 04:54 - 2015-05-26 04:54 - 00002922 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0454.html 2015-05-26 04:39 - 2015-05-27 03:09 - 00000000 ____D () C:\temp 2015-05-26 04:05 - 2015-06-01 22:29 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Origin 2015-05-26 04:05 - 2015-05-26 04:06 - 00000000 ____D () C:\Program Files (x86)\Origin Games 2015-05-26 04:05 - 2015-05-26 04:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Origin 2015-05-26 04:03 - 2015-06-03 07:09 - 00000000 ____D () C:\ProgramData\Origin 2015-05-26 04:03 - 2015-05-26 20:45 - 00000000 ____D () C:\ProgramData\Electronic Arts 2015-05-26 04:03 - 2015-05-26 04:03 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk 2015-05-26 04:03 - 2015-05-26 04:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin 2015-05-26 04:02 - 2015-06-01 22:29 - 00000000 ____D () C:\Program Files (x86)\Origin 2015-05-26 04:02 - 2015-05-26 04:02 - 17110336 _____ (Electronic Arts, Inc.) C:\Users\Nach\Downloads\OriginThinSetup.exe 2015-05-26 04:01 - 2015-05-26 04:01 - 00000000 ____D () C:\Users\Nach\AppData\Local\Steam 2015-05-26 03:59 - 2015-06-03 14:09 - 00000000 ____D () C:\Program Files (x86)\Steam 2015-05-26 03:59 - 2015-05-26 03:59 - 01142128 _____ () C:\Users\Nach\Downloads\SteamSetup.exe 2015-05-26 03:59 - 2015-05-26 03:59 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk 2015-05-26 03:59 - 2015-05-26 03:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam 2015-05-26 03:41 - 2015-06-03 13:46 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job 2015-05-26 03:41 - 2015-06-03 11:26 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job 2015-05-26 03:41 - 2015-05-26 03:41 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c 2015-05-26 03:41 - 2015-05-26 03:41 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393 2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\NVIDIA 2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z 2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Program Files (x86)\GPU-Z 2015-05-26 03:40 - 2015-05-26 03:40 - 01582736 _____ ( ) C:\Users\Nach\Downloads\cpu-z_1.72-en.exe 2015-05-26 03:40 - 2015-05-26 03:40 - 00000869 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk 2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\Program Files\CPUID 2015-05-26 03:10 - 2015-05-26 03:10 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech® Webcam Software 2015-05-26 03:08 - 2015-05-26 03:08 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Leadertech 2015-05-26 03:07 - 2015-05-26 03:08 - 00010101 _____ () C:\Windows\system32\lvcoinst.log 2015-05-26 03:07 - 2015-05-26 03:08 - 00003744 _____ () C:\Windows\LDPINST.LOG 2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files\Common Files\logishrd 2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files (x86)\Logitech 2015-05-26 03:07 - 2015-05-26 03:07 - 00001624 _____ () C:\Users\Public\Desktop\Logitech Webcam Software .lnk 2015-05-26 03:05 - 2015-05-26 03:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2015-05-26 03:05 - 2015-05-26 03:05 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys 2015-05-26 03:05 - 2015-05-26 03:05 - 00000388 _____ () C:\Windows\LkmdfCoInst.log 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\LogiShrd 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\Apple 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Logitech Gaming Software 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Bonjour 2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files (x86)\Bonjour 2015-05-26 03:04 - 2015-05-26 03:04 - 74637872 _____ (Logitech, Inc.) C:\Users\Nach\Downloads\lws251.exe 2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logitech 2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logishrd 2015-05-26 03:02 - 2015-05-26 03:03 - 74818632 _____ (Logitech Inc.) C:\Users\Nach\Downloads\LGS_8.58.183_x64_Logitech.exe 2015-05-26 02:57 - 2015-05-26 02:58 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\QuickScan 2015-05-26 02:57 - 2015-05-26 02:57 - 10447328 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition_x64.exe 2015-05-26 02:57 - 2015-05-26 02:57 - 00162208 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition.exe 2015-05-26 02:46 - 2015-05-26 02:54 - 00000000 ____D () C:\Users\Nach\Heaven 2015-05-26 02:44 - 2015-05-27 20:25 - 02128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage 2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine 2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\Program Files (x86)\Unigine 2015-05-26 02:44 - 2015-05-26 02:44 - 00002117 _____ () C:\Users\Public\Desktop\Heaven Benchmark 4.0.lnk 2015-05-26 02:43 - 2015-05-26 04:58 - 00001377 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk 2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA Corporation 2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA 2015-05-26 02:43 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation 2015-05-26 02:43 - 2015-05-07 21:35 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll 2015-05-26 02:43 - 2015-05-07 21:35 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll 2015-05-26 02:43 - 2015-05-07 21:34 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll 2015-05-26 02:43 - 2015-05-07 21:34 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll 2015-05-26 02:43 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll 2015-05-26 02:42 - 2015-06-03 11:29 - 00006462 _____ () C:\Windows\SysWOW64\Gms.log 2015-05-26 02:42 - 2015-05-26 04:42 - 00000000 ____D () C:\ProgramData\NVIDIA 2015-05-26 02:42 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation 2015-05-26 02:42 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation 2015-05-26 02:42 - 2015-05-13 03:52 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll 2015-05-26 02:42 - 2015-05-13 03:52 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys 2015-05-26 02:42 - 2015-05-13 03:52 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 42718864 _____ () C:\Windows\system32\nvcompiler.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 37741712 _____ () C:\Windows\SysWOW64\nvcompiler.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 30478992 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 22945424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 17540416 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 16145176 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 15858728 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 15048816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 14455296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 13263568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 12849056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 11790144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 10972304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys 2015-05-26 02:42 - 2015-05-12 03:27 - 03363224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 02971776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435286.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435286.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 01050256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00502896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00176064 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll 2015-05-26 02:42 - 2015-05-12 03:27 - 00031710 _____ () C:\Windows\system32\nvinfo.pb 2015-05-26 02:42 - 2015-05-12 00:30 - 06872392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 03490448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe 2015-05-26 02:42 - 2015-05-12 00:30 - 00385352 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll 2015-05-26 02:42 - 2015-05-12 00:30 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll 2015-05-26 02:42 - 2015-05-11 14:01 - 04391871 _____ () C:\Windows\system32\nvcoproc.bin 2015-05-26 02:42 - 2014-11-22 07:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys 2015-05-26 02:42 - 2014-11-22 07:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll 2015-05-26 02:42 - 2014-11-22 07:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll 2015-05-26 02:41 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files\NVIDIA Corporation 2015-05-26 02:41 - 2015-05-26 02:41 - 00000000 ____D () C:\NVIDIA 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ___HD () C:\Program Files (x86)\Temp 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____H () C:\ProgramData\DP45977C.lfl 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files\Realtek 2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files (x86)\Realtek 2015-05-26 02:40 - 2014-05-28 20:23 - 03977944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys 2015-05-26 02:40 - 2014-05-28 14:35 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll 2015-05-26 02:40 - 2014-05-28 11:38 - 01137695 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT 2015-05-26 02:40 - 2014-05-26 15:00 - 62006272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat 2015-05-26 02:40 - 2014-05-23 13:54 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll 2015-05-26 02:40 - 2014-05-22 16:24 - 00096568 _____ () C:\Windows\system32\audioLibVc.dll 2015-05-26 02:40 - 2014-05-22 13:21 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll 2015-05-26 02:40 - 2014-05-19 17:16 - 02843352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll 2015-05-26 02:40 - 2014-05-19 10:47 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll 2015-05-26 02:40 - 2014-05-14 15:47 - 02119472 _____ () C:\Windows\system32\SStudio.dll 2015-05-26 02:40 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll 2015-05-26 02:40 - 2014-04-17 17:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll 2015-05-26 02:40 - 2014-04-17 17:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll 2015-05-26 02:40 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll 2015-05-26 02:40 - 2014-04-10 12:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll 2015-05-26 02:40 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll 2015-05-26 02:40 - 2014-04-10 12:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll 2015-05-26 02:40 - 2014-04-09 16:39 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll 2015-05-26 02:40 - 2014-04-09 16:38 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll 2015-05-26 02:40 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll 2015-05-26 02:40 - 2014-03-21 14:17 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll 2015-05-26 02:40 - 2014-03-19 19:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll 2015-05-26 02:40 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl 2015-05-26 02:40 - 2014-03-05 05:11 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll 2015-05-26 02:40 - 2014-03-05 05:11 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll 2015-05-26 02:40 - 2014-03-05 05:11 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll 2015-05-26 02:40 - 2014-03-05 05:11 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll 2015-05-26 02:40 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll 2015-05-26 02:40 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll 2015-05-26 02:40 - 2014-02-06 11:28 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat 2015-05-26 02:40 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll 2015-05-26 02:40 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll 2015-05-26 02:40 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll 2015-05-26 02:40 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll 2015-05-26 02:40 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll 2015-05-26 02:40 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll 2015-05-26 02:40 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll 2015-05-26 02:40 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll 2015-05-26 02:40 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll 2015-05-26 02:40 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll 2015-05-26 02:40 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll 2015-05-26 02:40 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll 2015-05-26 02:40 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll 2015-05-26 02:40 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll 2015-05-26 02:40 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll 2015-05-26 02:40 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll 2015-05-26 02:40 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll 2015-05-26 02:40 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll 2015-05-26 02:40 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll 2015-05-26 02:40 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll 2015-05-26 02:40 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll 2015-05-26 02:40 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll 2015-05-26 02:40 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll 2015-05-26 02:40 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll 2015-05-26 02:40 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll 2015-05-26 02:40 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll 2015-05-26 02:40 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll 2015-05-26 02:40 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll 2015-05-26 02:40 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll 2015-05-26 02:40 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll 2015-05-26 02:40 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll 2015-05-26 02:40 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll 2015-05-26 02:40 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll 2015-05-26 02:40 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll 2015-05-26 02:39 - 2015-05-26 02:39 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf 2015-05-26 02:37 - 2015-05-26 02:39 - 00000000 ____D () C:\ProgramData\Intel 2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel 2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\Intel 2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Intel Corporation 2015-05-26 02:36 - 2015-05-26 02:36 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-05-26 02:36 - 2015-05-26 02:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-05-26 02:35 - 2015-06-03 14:40 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-05-26 02:35 - 2015-06-03 11:26 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Users\Nach\AppData\Local\Google 2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Program Files (x86)\Google 2015-05-26 02:35 - 2015-05-26 02:35 - 00004060 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-05-26 02:35 - 2015-05-26 02:35 - 00003808 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf 2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Deployment 2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Apps\2.0 2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files\Intel 2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files (x86)\Intel 2015-05-26 02:34 - 2015-05-26 02:34 - 00000000 ____D () C:\Intel 2015-05-26 02:34 - 2014-02-21 13:56 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll 2015-05-26 02:33 - 2015-05-28 02:55 - 00000000 ____D () C:\ProgramData\Package Cache 2015-05-26 02:28 - 2015-05-28 01:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2015-05-26 02:28 - 2015-05-26 02:28 - 00057560 _____ () C:\Users\Nach\AppData\Local\GDIPFONTCACHEV1.DAT 2015-05-26 02:27 - 2015-05-26 19:00 - 00775384 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI 2015-05-26 02:26 - 2015-05-26 02:26 - 00000000 ____D () C:\ProgramData\Downloaded Installations 2015-05-26 02:24 - 2012-07-26 01:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys 2015-05-26 02:24 - 2012-07-26 01:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys 2015-05-26 02:24 - 2012-07-25 23:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll 2015-05-26 02:24 - 2012-06-02 11:35 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf 2015-05-26 02:22 - 2015-06-03 14:10 - 01576246 _____ () C:\Windows\WindowsUpdate.log 2015-05-26 02:22 - 2015-06-03 11:06 - 00001413 _____ () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-05-26 02:22 - 2015-05-27 20:26 - 00000000 ____D () C:\Users\Nach 2015-05-26 02:22 - 2015-05-26 02:22 - 00000020 ___SH () C:\Users\Nach\ntuser.ini 2015-05-26 02:22 - 2015-05-26 02:22 - 00000000 __SHD () C:\Recovery 2015-05-26 02:22 - 2009-07-14 01:54 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-26 02:22 - 2009-07-14 01:49 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-03 14:44 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-06-03 14:44 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-06-03 14:43 - 2009-07-14 01:51 - 00043846 _____ () C:\Windows\setupact.log 2015-06-03 11:32 - 2009-07-14 02:13 - 00783606 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-06-03 11:26 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-06-03 11:06 - 2009-07-14 01:45 - 00265552 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-06-03 11:05 - 2011-04-12 05:28 - 00000000 ____D () C:\Program Files\Windows Journal 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\zh-HK 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\tr-TR 2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\PolicyDefinitions 2015-06-02 21:29 - 2010-11-21 00:47 - 00149122 _____ () C:\Windows\PFRO.log 2015-06-02 05:11 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\NDF 2015-06-01 21:54 - 2009-07-14 02:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games 2015-05-28 00:44 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\rescache 2015-05-27 19:41 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\Offline Web Pages 2015-05-27 02:07 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared 2015-05-26 20:45 - 2009-07-14 00:20 - 00000000 __RHD () C:\Users\Public\Libraries 2015-05-26 14:43 - 2009-07-14 00:20 - 00000000 __RSD () C:\Windows\Media 2015-05-26 06:30 - 2009-07-14 02:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template 2015-05-26 05:38 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\LiveKernelReports 2015-05-26 05:32 - 2009-07-14 01:46 - 00002790 _____ () C:\Windows\DtcInstall.log 2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories 2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sysprep 2015-05-26 05:30 - 2011-04-12 05:28 - 00000000 ____D () C:\Windows\CSC 2015-05-26 04:38 - 2009-07-14 02:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD 2015-05-26 03:11 - 2009-07-14 01:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-05-26 02:42 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\Help 2015-05-26 02:24 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\system32\restore 2015-05-26 02:22 - 2009-07-14 01:45 - 00000000 ____D () C:\Windows\Setup ==================== Files in the root of some directories ======= 2015-05-28 01:36 - 2015-05-28 01:36 - 0000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag 2015-05-26 02:44 - 2015-05-27 20:25 - 2128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage 2015-05-26 02:40 - 2015-05-26 02:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl Some files in TEMP: ==================== C:\Users\Nach\AppData\Local\Temp\Quarantine.exe C:\Users\Nach\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-05-27 04:41 ==================== End of log ============================ ADDITION Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015 Ran by Nach at 2015-06-03 14:45:05 Running from C:\Users\Nach\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-318558523-3823039876-2902504939-500 - Administrator - Disabled) Guest (S-1-5-21-318558523-3823039876-2902504939-501 - Limited - Disabled) Nach (S-1-5-21-318558523-3823039876-2902504939-1000 - Administrator - Enabled) => C:\Users\Nach ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D} AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated) Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - Hidden Path Entertainment, Ensemble Studios) Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 18.20.0.1429 - Bitdefender) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden Canon MP Navigator EX 2.1 (HKLM-x32\...\MP Navigator EX 2.1) (Version: - ) Canon MX330 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX330_series) (Version: - Canon Inc.) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) Creation Master 15.0 (HKLM-x32\...\Creation Master 15_is1) (Version: - FIFA MASTER) EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.7.0.0 - Electronic Arts) erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.) Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North) GRID (HKLM-x32\...\Steam App 12750) (Version: - Codemasters Studios) Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.) Intel® Chipset Device Software (x32 Version: 10.0.20 - Intel® Corporation) Hidden Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation) Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation) Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.) Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.) Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation) Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla) MSI Afterburner 4.1.0 (HKLM-x32\...\Afterburner) (Version: 4.1.0 - MSI Co., LTD) NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA GeForce Experience 2.4.3.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.31 - NVIDIA Corporation) NVIDIA Graphics Driver 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.) Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden Qualcomm Atheros Killer E220x Drivers (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{FE5DFB80-6937-4154-A2C7-EF845C1301F8}) (Version: 1.0.30.1259 - Qualcomm Atheros) Qualcomm Atheros Network Manager (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games) SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.3.31 - NVIDIA Corporation) Hidden Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation) Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.) Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.4 - Sophos Limited) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com) Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 30-05-2015 21:11:57 Installed DirectX 01-06-2015 21:54:23 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 01-06-2015 21:54:31 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 02-06-2015 21:43:16 Installed Sophos Virus Removal Tool. 03-06-2015 10:42:56 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {332DF19C-15ED-47C2-B41B-FD0966C6D230} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated) Task: {4A459083-3C0D-47DF-BBF8-B954C9A7F079} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {606810AD-FC6E-406F-95B8-97AD30DF8C6C} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2014-12-06] () Task: {70553BA1-A890-422D-B3A2-07A9FD4BCDDF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {714D0294-6844-47CB-BBB4-E3355CF88D6B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {8FD47602-92B6-4BA3-AB5C-DF206E6E8809} - System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.) Task: {AD7D643B-DA81-43C4-A6C1-6BC52C59CF93} - System32\Tasks\EVGAPrecisionX => C:\Program Files (x86)\EVGA\PrecisionX 16\PrecisionX_x64.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-05-27 19:38 - 2014-08-27 16:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll 2015-05-27 19:38 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll 2015-05-27 19:38 - 2014-12-17 14:34 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui 2015-05-27 19:38 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll 2015-05-27 20:24 - 2015-05-27 20:24 - 00790368 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpbr.mdl 2015-05-27 20:24 - 2015-05-27 20:24 - 00711064 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpdsp.mdl 2015-05-27 20:24 - 2015-05-27 20:24 - 02683520 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpph.mdl 2015-05-27 20:24 - 2015-05-27 20:24 - 01326504 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttprbl.mdl 2015-05-26 02:42 - 2015-05-12 00:30 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-12-06 04:03 - 2014-12-06 04:03 - 00565760 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe 2014-09-18 04:23 - 2014-09-18 04:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2015-03-12 15:23 - 2015-03-12 15:23 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2014-09-18 04:23 - 2014-09-18 04:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2015-03-12 15:23 - 2015-03-12 15:23 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2013-08-08 14:30 - 2013-08-08 14:30 - 00283648 _____ () C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe 2014-12-06 04:01 - 2014-12-06 04:01 - 00071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll 2014-12-06 04:01 - 2014-12-06 04:01 - 00056832 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll 2014-12-06 04:02 - 2014-12-06 04:02 - 00217600 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll 2014-12-06 04:01 - 2014-12-06 04:01 - 00353792 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll 2014-12-06 04:02 - 2014-12-06 04:02 - 00649216 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll 2015-05-26 02:43 - 2015-05-07 21:36 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll 2012-09-13 00:38 - 2012-09-13 00:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll 2015-05-26 02:36 - 2015-05-22 17:22 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\PepperFlash\pepflashplayer.dll 2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll 2015-05-26 02:36 - 2015-05-22 17:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll 2015-05-26 02:36 - 2015-05-22 17:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Nach\Desktop\FRST64.exe:BDU AlternateDataStreams: C:\Users\Nach\Desktop\rkill.exe:BDU AlternateDataStreams: C:\Users\Nach\Desktop\SecurityCheck.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\dxwebsetup.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\SkypeSetupFull.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe:BDU AlternateDataStreams: C:\Users\Nach\Downloads\Xbox360_64Eng.exe:BDU ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SophosVirusRemovalTool => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SophosVirusRemovalTool => ""="Service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 89.248.166.149 - 8.8.8.8 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [sPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [sPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:61990 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:53692 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:52704 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60476 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60530 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:64689 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:62882 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57344 length 0 too short Error: (06/03/2015 02:43:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:61990 length 0 too short Error: (06/03/2015 02:43:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:53692 length 0 too short System errors: ============= Error: (06/03/2015 11:27:00 AM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143. Error: (06/03/2015 11:17:27 AM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143. Error: (06/03/2015 11:16:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Print Spooler service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service. Error: (06/03/2015 11:16:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Search service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Skype Click to Call PNR Service service terminated unexpectedly. It has done this 1 time(s). Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Skype Click to Call Updater service terminated unexpectedly. It has done this 1 time(s). Error: (06/03/2015 11:14:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly. It has done this 1 time(s). Error: (06/03/2015 11:14:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: The Intel® Rapid Storage Technology service terminated unexpectedly. It has done this 1 time(s). Error: (06/03/2015 11:14:27 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service. Microsoft Office: ========================= Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:61990 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:53692 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:52704 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60476 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60530 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:64689 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:62882 length 0 too short Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57344 length 0 too short Error: (06/03/2015 02:43:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:61990 length 0 too short Error: (06/03/2015 02:43:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:53692 length 0 too short ==================== Memory info =========================== Processor: Intel® Core i5-4690K CPU @ 3.50GHz Percentage of memory in use: 35% Total physical RAM: 16293.58 MB Available physical RAM: 10583.64 MB Total Pagefile: 32585.35 MB Available Pagefile: 26262.07 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:238.37 GB) (Free:9.36 GB) NTFS Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive e: (Data) (Fixed) (Total:931.51 GB) (Free:376.58 GB) NTFS Drive f: (Móvel) (Fixed) (Total:1863.01 GB) (Free:445.35 GB) NTFS Drive g: (Software) (Fixed) (Total:801.51 GB) (Free:722.62 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 000A788F) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=238.4 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 0AE75AEB) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2E2F1945) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=801.5 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1D42D274) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (Size: 111.8 GB) (Disk ID: 00087AEE) Partition 1: (Active) - (Size=243 MB) - (Type=83) Partition 2: (Not Active) - (Size=111.6 GB) - (Type=05) ==================== End of log ============================ _________________________________________________________________________________________________________________________________________________ I will now close Chrome to run RogueKiller
  13. Nachmanowicz
    Thanks. So here's the Malware Bytes Scan: Malwarebytes Anti-Malwarewww.malwarebytes.org Scan Date: 6/3/2015Scan Time: 2:33:34 PMLogfile: Administrator: Yes Version: 2.01.6.1022Malware Database: v2015.06.03.04Rootkit Database: v2015.06.02.01License: TrialMalware Protection: EnabledMalicious Website Protection: EnabledSelf-protection: Enabled OS: Windows 7 Service Pack 1CPU: x64File System: NTFSUser: Nach Scan Type: Threat ScanResult: CompletedObjects Scanned: 339567Time Elapsed: 3 min, 46 sec Memory: EnabledStartup: EnabledFilesystem: EnabledArchives: EnabledRootkits: EnabledHeuristics: EnabledPUP: EnabledPUM: Enabled Processes: 0(No malicious items detected) Modules: 0(No malicious items detected) Registry Keys: 0(No malicious items detected) Registry Values: 0(No malicious items detected) Registry Data: 0(No malicious items detected) Folders: 0(No malicious items detected) Files: 0(No malicious items detected) Physical Sectors: 0(No malicious items detected) (end)_________________________________________________________________________________________________________________________________ Farbar: Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2015Ran by Nach (administrator) on NACH-PC on 03-06-2015 14:44:53Running from C:\Users\Nach\DesktopLoaded Profiles: Nach (Available Profiles: Nach)Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)Internet Explorer Version 10 (Default browser: Chrome)Boot Mode: NormalTutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTgui.exe(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Malwarebytes Corp.) E:\Downloads\mbar-1.09.1.1004.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7611608 2014-05-27] (Realtek Semiconductor)HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-07] (NVIDIA Corporation)HKLM\...\Run: [shadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStartHKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)HKLM\...\Run: [bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1691112 2015-05-27] (Bitdefender)HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)HKU\S-1-5-21-318558523-3823039876-2902504939-1000\...\Run: [bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-05-27] (Bitdefender)Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-05-28]ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{401FADAA-1C16-4721-9F02-19067E1A1CA8}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)Startup: C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk [2015-05-28]ShortcutTarget: Logitech . Product Registration.lnk -> C:\Program Files (x86)\Logitech\Ereg\eReg.exe (Leader Technologies/Logitech)ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blankHKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pt-br/?ocid=iehpSearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender)BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender)BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender)Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender)Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)Tcpip\Parameters: [DhcpNameServer] 89.248.166.149 8.8.8.8 FireFox:========FF ProfilePath: C:\Users\Nach\AppData\Roaming\Mozilla\Firefox\Profiles\ceywwvhy.defaultFF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.)FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.)FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbextFF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-05-27]FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteffFF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-05-27]FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext Chrome: =======CHR Profile: C:\Users\Nach\AppData\Local\Google\Chrome\User Data\DefaultCHR Extension: (Google Drive) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-26]CHR Extension: (YouTube) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-26]CHR Extension: (Google Search) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-26]CHR Extension: (AdBlock) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-28]CHR Extension: (Bookmark Manager) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-26]CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-02]CHR Extension: (Skype Click to Call) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-27]CHR Extension: (Google Wallet) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-26]CHR Extension: (Gmail) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-26]CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - https://clients2.google.com/service/update2/crxCHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01] ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-12-09] (Bitdefender)R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-07] (NVIDIA Corporation)R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation)S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel® Corporation)R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-07] (NVIDIA Corporation)R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-07] (NVIDIA Corporation)S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1997168 2015-06-01] (Electronic Arts)R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-08] (Qualcomm Atheros) [File not signed]S4 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender)R3 SophosVirusRemovalTool; C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe [153384 2014-11-26] (Sophos Limited)R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1547936 2015-05-27] (Bitdefender)R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1306464 2015-05-27] (BitDefender)R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [262544 2015-05-27] (BitDefender)R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [677104 2015-05-27] (BitDefender)R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2015-05-27] (BitDefender LLC)R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender)R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [67888 2013-02-13] (Qualcomm Atheros, Inc.)R3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-05-27] (BitDefender LLC)R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-11] (Intel Corporation)R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation)R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-07] (NVIDIA Corporation)R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13368 2013-03-11] ()R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.) ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-03 14:44 - 2015-06-03 14:44 - 00017666 _____ () C:\Users\Nach\Desktop\FRST.txt2015-06-03 14:43 - 2015-06-03 14:44 - 00000000 ____D () C:\FRST2015-06-03 14:43 - 2015-06-03 14:43 - 02108928 _____ (Farbar) C:\Users\Nach\Desktop\FRST64.exe2015-06-03 11:56 - 2015-06-03 11:56 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys2015-06-03 11:06 - 2015-06-03 11:06 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Adobe2015-06-03 10:52 - 2015-06-03 10:52 - 19221504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll2015-06-03 10:52 - 2015-06-03 10:52 - 15407616 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll2015-06-03 10:52 - 2015-06-03 10:52 - 14317568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll2015-06-03 10:52 - 2015-06-03 10:52 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll2015-06-03 10:52 - 2015-06-03 10:52 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll2015-06-03 10:52 - 2015-06-03 10:52 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb2015-06-03 10:52 - 2015-06-03 10:52 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll2015-06-03 10:52 - 2015-06-03 10:52 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll2015-06-03 10:52 - 2015-06-03 10:52 - 02046464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll2015-06-03 10:52 - 2015-06-03 10:52 - 01766912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll2015-06-03 10:52 - 2015-06-03 10:52 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl2015-06-03 10:52 - 2015-06-03 10:52 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat2015-06-03 10:52 - 2015-06-03 10:52 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll2015-06-03 10:52 - 2015-06-03 10:52 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll2015-06-03 10:52 - 2015-06-03 10:52 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec2015-06-03 10:52 - 2015-06-03 10:52 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec2015-06-03 10:52 - 2015-06-03 10:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx2015-06-03 10:52 - 2015-06-03 10:52 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx2015-06-03 10:52 - 2015-06-03 10:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll2015-06-03 10:52 - 2015-06-03 10:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe2015-06-03 10:52 - 2015-06-03 10:52 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe2015-06-03 10:50 - 2015-06-03 10:50 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll2015-06-03 10:50 - 2015-06-03 10:50 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll2015-06-03 10:50 - 2015-06-03 10:50 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll2015-06-03 10:50 - 2015-06-03 10:50 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll2015-06-03 10:50 - 2015-06-03 10:50 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01504768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll2015-06-03 10:50 - 2015-06-03 10:50 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll2015-06-03 10:48 - 2015-06-03 10:53 - 00011231 _____ () C:\Windows\IE10_main.log2015-06-03 10:45 - 2015-06-03 10:47 - 00003318 _____ () C:\Windows\IE9_main.log2015-06-03 10:43 - 2015-06-03 10:45 - 00000000 ____D () C:\Windows\system32\MRT2015-06-03 10:43 - 2015-04-01 11:16 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe2015-06-03 10:40 - 2015-03-06 02:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys2015-06-03 10:40 - 2015-03-06 02:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys2015-06-03 10:40 - 2015-03-06 02:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll2015-06-03 10:40 - 2015-03-06 02:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll2015-06-03 10:40 - 2015-03-06 02:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe2015-06-03 10:40 - 2015-03-06 02:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe2015-06-03 10:40 - 2015-03-06 02:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll2015-06-03 10:40 - 2015-03-06 02:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll2015-06-03 10:40 - 2015-03-06 02:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll2015-06-03 10:40 - 2015-03-06 02:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll2015-06-03 10:40 - 2015-03-06 02:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll2015-06-03 10:40 - 2015-03-06 02:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe2015-06-03 10:40 - 2015-03-06 02:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll2015-06-03 10:40 - 2015-03-06 02:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll2015-06-03 10:40 - 2015-03-06 02:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll2015-06-03 10:40 - 2015-02-26 00:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys2015-06-03 10:40 - 2015-01-29 00:23 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe2015-06-03 10:40 - 2015-01-29 00:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll2015-06-03 10:40 - 2015-01-29 00:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll2015-06-03 10:40 - 2015-01-29 00:19 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll2015-06-03 10:40 - 2015-01-29 00:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe2015-06-03 10:40 - 2015-01-29 00:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe2015-06-03 10:40 - 2015-01-29 00:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll2015-06-03 10:40 - 2015-01-29 00:05 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe2015-06-03 10:40 - 2015-01-29 00:05 - 03917752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe2015-06-03 10:40 - 2015-01-29 00:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll2015-06-03 10:40 - 2015-01-28 23:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll2015-06-03 10:40 - 2014-09-12 22:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll2015-06-03 10:40 - 2014-09-12 22:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll2015-06-03 10:40 - 2014-08-21 03:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll2015-06-03 10:40 - 2014-08-21 03:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll2015-06-03 10:40 - 2014-08-21 03:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll2015-06-03 10:40 - 2014-08-21 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll2015-06-03 10:40 - 2014-03-24 23:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll2015-06-03 10:40 - 2014-03-24 23:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll2015-06-03 10:40 - 2014-02-03 23:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll2015-06-03 10:40 - 2014-02-03 23:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll2015-06-03 10:40 - 2013-10-02 23:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll2015-06-03 10:40 - 2013-10-02 23:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll2015-06-03 10:40 - 2013-09-27 22:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys2015-06-03 10:40 - 2013-08-01 23:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll2015-06-03 10:40 - 2013-08-01 23:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll2015-06-03 10:40 - 2013-08-01 22:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll2015-06-03 10:40 - 2013-08-01 22:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll2015-06-03 10:40 - 2013-08-01 09:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys2015-06-03 10:40 - 2013-07-20 07:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll2015-06-03 10:40 - 2013-07-20 07:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll2015-06-03 10:40 - 2013-07-09 02:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll2015-06-03 10:40 - 2013-07-09 02:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll2015-06-03 10:40 - 2013-07-09 02:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll2015-06-03 10:40 - 2013-07-09 01:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll2015-06-03 10:40 - 2013-07-09 01:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll2015-06-03 10:40 - 2013-07-09 01:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll2015-06-03 10:40 - 2013-07-06 03:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys2015-06-03 10:40 - 2013-06-15 01:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys2015-06-03 10:40 - 2013-06-06 02:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll2015-06-03 10:40 - 2013-06-06 02:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll2015-06-03 10:40 - 2013-06-06 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll2015-06-03 10:40 - 2013-06-06 02:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll2015-06-03 10:40 - 2013-06-06 01:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll2015-06-03 10:40 - 2013-06-06 01:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll2015-06-03 10:40 - 2013-06-06 01:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll2015-06-03 10:40 - 2013-06-06 00:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll2015-06-03 10:40 - 2013-06-06 00:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll2015-06-03 10:40 - 2013-06-06 00:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll2015-06-03 10:40 - 2013-01-03 03:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS2015-06-03 10:40 - 2012-11-09 02:45 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll2015-06-03 10:40 - 2012-11-09 01:43 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll2015-06-03 10:40 - 2012-11-01 02:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll2015-06-03 10:40 - 2012-11-01 01:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll2015-06-03 10:40 - 2012-08-22 15:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys2015-06-03 10:40 - 2011-03-08 03:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll2015-06-03 10:40 - 2011-03-08 02:28 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll2015-06-03 10:40 - 2011-02-25 03:22 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll2015-06-03 10:40 - 2011-02-25 02:34 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll2015-06-03 10:40 - 2011-02-23 01:56 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys2015-06-03 10:40 - 2011-02-23 01:56 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys2015-06-03 10:40 - 2011-02-23 01:55 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys2015-06-03 06:54 - 2015-06-03 06:54 - 00000000 ____D () C:\Users\Nach\AppData\Local\VirtualStore2015-06-02 21:43 - 2015-06-02 21:43 - 00002759 _____ () C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Sophos2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\Program Files (x86)\Sophos2015-06-02 21:37 - 2015-06-02 21:37 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-NACH-PC-Windows-7-Professional-(64-bit).dat2015-06-02 21:37 - 2015-06-02 21:37 - 00000000 ____D () C:\RegBackup2015-06-02 21:32 - 2015-06-03 11:16 - 00000000 ____D () C:\AdwCleaner2015-06-02 21:00 - 2015-06-02 21:00 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\Nach\Desktop\rkill.exe2015-06-02 20:55 - 2015-06-03 14:44 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)2015-06-02 20:54 - 2015-06-03 14:44 - 00000000 ____D () C:\Users\Nach\Desktop\mbar2015-06-02 20:40 - 2015-06-02 20:39 - 00852639 _____ () C:\Users\Nach\Desktop\SecurityCheck.exe2015-06-02 19:08 - 2015-06-03 14:08 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys2015-06-02 19:07 - 2015-06-03 14:02 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys2015-06-02 19:07 - 2015-06-02 19:07 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Malwarebytes2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware2015-06-02 19:07 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys2015-06-02 19:07 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys2015-06-02 18:19 - 2015-06-02 18:19 - 00001610 _____ () C:\Windows\system32\bdsandbox.txt2015-06-02 18:07 - 2015-06-02 21:28 - 00000000 ____D () C:\Users\Nach\AppData\Temp2015-06-02 17:46 - 2015-06-02 17:46 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk2015-06-02 17:46 - 2015-06-02 17:46 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Mozilla2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Local\Mozilla2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\ProgramData\Mozilla2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox2015-06-02 17:45 - 2015-06-02 17:45 - 00243408 _____ () C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\Documents\FM_temp2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\AppData\Local\CreationMaster2015-06-02 04:48 - 2015-06-02 04:48 - 00001269 _____ () C:\Users\Nach\Desktop\CM 15.lnk2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fifa Master2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\Program Files (x86)\Fifa Master2015-06-02 04:42 - 2015-06-02 04:43 - 19412014 _____ () C:\Users\Nach\Downloads\Setup_CM_15_0.rar2015-06-02 04:39 - 2015-06-02 04:39 - 00000562 _____ () C:\Users\Public\Desktop\Fraps.lnk2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\Fraps2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\WinRAR2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR2015-06-02 04:35 - 2015-06-02 04:36 - 00000000 ____D () C:\Program Files\WinRAR2015-06-02 04:32 - 2015-06-02 04:35 - 101738804 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW210.rar2015-06-02 04:31 - 2015-06-02 04:33 - 71594649 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW200.rar2015-06-02 04:31 - 2015-06-02 04:32 - 12104486 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW202.rar2015-06-02 04:31 - 2015-06-02 04:31 - 03326221 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW211 (1).rar2015-06-02 04:30 - 2015-06-02 17:43 - 00000000 ____D () C:\ProgramData\Adobe2015-06-02 04:30 - 2015-06-02 04:30 - 00003886 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task2015-06-02 04:30 - 2015-06-02 04:30 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk2015-06-02 04:30 - 2015-06-02 04:30 - 00002047 _____ () C:\Users\Public\Desktop\Acrobat Reader DC.lnk2015-06-02 04:30 - 2015-06-02 04:30 - 00000000 ____D () C:\Program Files (x86)\Adobe2015-06-02 04:29 - 2015-06-02 04:32 - 00000000 ____D () C:\Users\Nach\AppData\Local\Adobe2015-06-01 22:16 - 2015-06-02 01:50 - 00000000 ____D () C:\Users\Nach\Documents\The Witcher 32015-06-01 21:54 - 2015-06-01 21:54 - 00001955 _____ () C:\Users\Public\Desktop\The Witcher® 3 - Wild Hunt.lnk2015-06-01 21:54 - 2015-06-01 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com2015-06-01 21:47 - 2015-06-01 21:47 - 00000000 ____D () C:\GOG Games2015-05-28 20:22 - 2015-06-01 03:02 - 00000080 _____ () C:\Users\Nach\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\Documents\Rockstar Games2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\AppData\Local\Rockstar Games2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files\Rockstar Games2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games2015-05-28 02:55 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll2015-05-28 02:55 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll2015-05-28 02:55 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll2015-05-28 02:55 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll2015-05-28 02:55 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll2015-05-28 02:55 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll2015-05-28 01:37 - 2015-05-28 01:37 - 00002783 _____ () C:\Users\Public\Desktop\Killer Network Manager.lnk2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Qualcomm2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\Program Files\Qualcomm Atheros2015-05-28 01:36 - 2015-05-28 01:36 - 00000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag2015-05-27 20:26 - 2015-05-27 20:39 - 00000000 ____D () C:\Users\Nach\Valley2015-05-27 20:24 - 2015-05-27 20:24 - 00002113 _____ () C:\Users\Public\Desktop\Valley Benchmark 1.0.lnk2015-05-27 19:44 - 2015-05-27 19:44 - 00160544 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys2015-05-27 19:44 - 2015-05-27 19:44 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll2015-05-27 19:44 - 2015-05-27 19:44 - 00074000 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll2015-05-27 19:39 - 2015-05-27 19:39 - 00000385 _____ () C:\Users\Nach\AppData\Roaminguser_gensett.xml2015-05-27 19:38 - 2015-05-27 19:44 - 00677104 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys2015-05-27 19:38 - 2015-05-27 19:44 - 00262544 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys2015-05-27 19:38 - 2015-05-27 19:44 - 00033360 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll2015-05-27 19:38 - 2015-05-27 19:44 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Bitdefender2015-05-27 19:38 - 2015-05-27 19:43 - 01306464 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys2015-05-27 19:38 - 2015-05-27 19:40 - 00000000 ____D () C:\ProgramData\BDLogging2015-05-27 19:38 - 2015-05-27 19:38 - 00253404 ____H () C:\bdr-ld012015-05-27 19:38 - 2015-05-27 19:38 - 00009216 ____H () C:\bdr-ld01.mbr2015-05-27 19:38 - 2015-05-27 19:38 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk2015-05-27 19:38 - 2015-05-27 19:38 - 00000684 ____H () C:\bdr-cf012015-05-27 19:38 - 2015-05-27 19:38 - 00000385 _____ () C:\Windows\system32\user_gensett.xml2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 20152015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Bitdefender2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Bitdefender2015-05-27 19:38 - 2014-12-02 16:37 - 00074000 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll2015-05-27 19:38 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys2015-05-27 19:38 - 2014-07-04 17:49 - 49563064 ____H () C:\bdr-im01.gz2015-05-27 19:38 - 2013-11-13 15:41 - 00093600 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys2015-05-27 19:38 - 2013-08-13 13:38 - 03271472 ____H () C:\bdr-bz012015-05-27 19:38 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys2015-05-27 19:38 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\Users\Nach\Documents\WB Games2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\ProgramData\Steam2015-05-27 16:50 - 2015-05-27 16:50 - 00001670 _____ () C:\Users\Public\Desktop\Batman - Arkham City.lnk2015-05-27 16:50 - 2015-05-27 16:50 - 00001043 _____ () C:\Users\Public\Desktop\Batman - Arkham City (Settings).lnk2015-05-27 16:50 - 2015-05-27 16:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batman - Arkham City2015-05-27 16:37 - 2015-05-27 16:37 - 00000000 ____D () C:\Users\Nach\AppData\Local\Setup Integrity Check2015-05-27 15:24 - 2015-05-27 16:37 - 00000000 ____D () C:\Games2015-05-27 04:05 - 2015-06-03 11:26 - 00003018 _____ () C:\Windows\System32\Tasks\MSIAfterburner2015-05-27 04:04 - 2015-06-02 01:07 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner2015-05-27 04:04 - 2015-05-27 04:04 - 00001086 _____ () C:\Users\Nach\Desktop\MSI Afterburner.lnk2015-05-27 04:04 - 2015-05-27 04:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner2015-05-27 04:03 - 2015-05-27 04:03 - 36210245 _____ () C:\Users\Nach\Downloads\[Guru3D.com]-MSIAfterburnerSetup410.zip2015-05-27 04:02 - 2015-05-27 04:02 - 00000000 ____D () C:\Windows\system32\appmgmt2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\wmd_symbol_cache2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\Project CARS2015-05-27 03:12 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll2015-05-27 03:12 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll2015-05-27 03:12 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll2015-05-27 03:12 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll2015-05-27 03:12 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll2015-05-27 03:12 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll2015-05-27 03:12 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll2015-05-27 03:12 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll2015-05-27 03:12 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll2015-05-27 03:12 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll2015-05-27 03:12 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll2015-05-27 03:12 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll2015-05-27 03:12 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll2015-05-27 03:12 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll2015-05-27 03:12 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll2015-05-27 03:12 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll2015-05-27 03:12 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll2015-05-27 03:12 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll2015-05-27 03:12 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll2015-05-27 03:12 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll2015-05-27 03:12 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll2015-05-27 03:12 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll2015-05-27 03:12 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll2015-05-27 03:12 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll2015-05-27 03:12 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll2015-05-27 03:12 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll2015-05-27 03:12 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll2015-05-27 03:12 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll2015-05-27 03:12 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll2015-05-27 03:12 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll2015-05-27 03:12 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll2015-05-27 03:12 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll2015-05-27 03:12 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll2015-05-27 03:12 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll2015-05-27 03:12 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll2015-05-27 03:12 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll2015-05-27 03:12 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll2015-05-27 03:12 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll2015-05-27 03:12 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll2015-05-27 03:12 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll2015-05-27 03:12 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll2015-05-27 03:12 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll2015-05-27 03:12 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll2015-05-27 03:12 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll2015-05-27 03:12 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll2015-05-27 03:12 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll2015-05-27 03:12 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll2015-05-27 03:12 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll2015-05-27 03:12 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll2015-05-27 03:12 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll2015-05-27 03:12 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll2015-05-27 03:12 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll2015-05-27 03:12 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll2015-05-27 03:12 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll2015-05-27 03:12 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll2015-05-27 03:12 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll2015-05-27 03:12 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll2015-05-27 03:12 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll2015-05-27 03:12 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll2015-05-27 03:12 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll2015-05-27 03:12 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll2015-05-27 03:12 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll2015-05-27 03:12 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll2015-05-27 03:12 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll2015-05-27 03:12 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll2015-05-27 03:12 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll2015-05-27 03:12 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll2015-05-27 03:12 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll2015-05-27 03:12 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll2015-05-27 03:12 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll2015-05-27 03:12 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll2015-05-27 03:12 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll2015-05-27 03:12 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll2015-05-27 03:12 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll2015-05-27 03:12 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll2015-05-27 03:12 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll2015-05-27 03:12 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll2015-05-27 03:12 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll2015-05-27 03:12 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll2015-05-27 03:12 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll2015-05-27 03:12 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll2015-05-27 03:12 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll2015-05-27 03:12 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll2015-05-27 03:12 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll2015-05-27 03:12 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll2015-05-27 03:12 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll2015-05-27 03:09 - 2015-05-27 03:09 - 00292184 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\dxwebsetup.exe2015-05-27 02:07 - 2015-05-27 02:07 - 00002122 _____ () C:\Users\Nach\Desktop\Project CARS.lnk2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Project CARS2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics2015-05-27 02:06 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll2015-05-27 01:54 - 2015-05-27 01:54 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics2015-05-27 00:03 - 2015-06-02 04:22 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\vlc2015-05-27 00:03 - 2015-05-27 00:03 - 00001066 _____ () C:\Users\Public\Desktop\VLC media player.lnk2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\Program Files (x86)\VideoLAN2015-05-27 00:01 - 2015-05-27 00:02 - 28849904 _____ () C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe2015-05-26 22:40 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll2015-05-26 22:40 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll2015-05-26 22:40 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll2015-05-26 22:40 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll2015-05-26 22:40 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll2015-05-26 22:40 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll2015-05-26 22:40 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll2015-05-26 22:40 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll2015-05-26 22:40 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll2015-05-26 22:40 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll2015-05-26 22:40 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll2015-05-26 22:40 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll2015-05-26 22:40 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll2015-05-26 22:40 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll2015-05-26 22:40 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll2015-05-26 22:40 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll2015-05-26 22:40 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll2015-05-26 22:40 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll2015-05-26 22:40 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll2015-05-26 22:40 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll2015-05-26 22:40 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll2015-05-26 22:40 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll2015-05-26 22:40 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll2015-05-26 22:40 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll2015-05-26 22:40 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll2015-05-26 22:40 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll2015-05-26 22:40 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll2015-05-26 22:40 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll2015-05-26 22:40 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll2015-05-26 22:40 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll2015-05-26 22:40 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll2015-05-26 22:40 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll2015-05-26 22:40 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll2015-05-26 22:40 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll2015-05-26 22:40 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll2015-05-26 22:40 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll2015-05-26 22:40 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll2015-05-26 22:40 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll2015-05-26 22:40 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll2015-05-26 22:40 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll2015-05-26 22:40 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll2015-05-26 22:40 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll2015-05-26 22:40 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll2015-05-26 22:40 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll2015-05-26 22:40 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll2015-05-26 22:40 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll2015-05-26 22:40 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll2015-05-26 22:40 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll2015-05-26 22:40 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll2015-05-26 22:40 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll2015-05-26 22:40 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll2015-05-26 20:45 - 2015-05-31 09:31 - 00000000 ____D () C:\Users\Nach\Documents\FIFA 152015-05-26 20:38 - 2015-05-30 21:12 - 00074969 _____ () C:\Windows\DirectX.log2015-05-26 20:38 - 2015-05-26 20:38 - 07878008 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\Xbox360_64Eng.exe2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\Program Files\Microsoft Xbox 360 Accessories2015-05-26 20:36 - 2015-05-26 20:36 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll2015-05-26 20:36 - 2015-05-26 20:36 - 00413696 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll2015-05-26 20:36 - 2015-05-26 20:36 - 00133632 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll2015-05-26 20:36 - 2015-05-26 20:36 - 00110592 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Users\Nach\Documents\Codemasters2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\ProgramData\Codemasters2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Program Files (x86)\OpenAL2015-05-26 19:43 - 2015-05-26 19:43 - 00000000 ____D () C:\Users\Nach\Tracing2015-05-26 19:42 - 2015-06-02 20:55 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Skype2015-05-26 19:42 - 2015-05-27 19:48 - 00000000 ___RD () C:\Program Files (x86)\Skype2015-05-26 19:42 - 2015-05-26 19:42 - 43034752 _____ (Skype Technologies S.A.) C:\Users\Nach\Downloads\SkypeSetupFull.exe2015-05-26 19:42 - 2015-05-26 19:42 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\Users\Nach\AppData\Local\Skype2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Skype2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype2015-05-26 18:51 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE2015-05-26 18:43 - 2015-05-27 02:42 - 00027508 _____ () C:\Windows\IE11_main.log CONTINUE
  14. Nachmanowicz
    Hi. I've recently acquired this malware I dont know how. I had it in my previous install but as I was going to format it, I left it. So I formated and sure enough after a week there it was again. It's some pop ups that appear as blank on chrome. I installed Firefox and the same problem occurs, but this time it wasn't blank (probably due to the fact that there was no adblock there). Here's an example of the problem: photo sharing websites I sought help on bleepcomputers, it seemed like it worked but it didn't! Still the same problem. I was using BitDefender when I contracted this malware. After it I downloaded many softwares as per instruction on beepcomputer. Including MalwareBytes. Something very peculiar happened when I dealt with malwarebytes tho: it blocked a page or something like that. And now when I browse with malware bytes on pages wont load properly or wont load at all. For instance, when I try to open youtube.com I get the following message: ERR_NAME_NOT_RESOLVED It looks like something like a proxy is rerouting me. He asked me to run the following programs: Security Check Farbar Service Scanner Mini ToolBox MalwareBytes Anti-Malware Malwarebytes AntiRoot Kit RKill Tempfile Cleaner AdwCleaner Junkware Removal Tool (I couldnt entirely close Bitdefender to run it, but I did shut off its active Antivirus) Sophos Virus Removal Tool I ran all of 'em. If you want the logs for that I'd be happy to oblige. PS: I've had yesterday and today a total of 3 video driver losses and recoveries during normal web browsing. Weird, not sure if it's related. Thanks! Sorry for the long text, I tried to be thorough.
  15. Nachmanowicz
    Oh yeah and something that really struck me: now if I have Malwarebytes open pages don't load properly. Some open with just the text and most wont open at all, with the message: ERR_NAME_NOT_RESOLVED
  16. Nachmanowicz
    They open every time I open certain pages. They are blank, apparently because of AdBlock. I installed Firefox (I use Chrome) to see if they show up there too and they showed up with actual images in the blank boxes, there's no adblock there since it was a fresh install. They don't load at the same time the page is loaded, they load a few seconds after. Here's a picture. I'm using BitDefender. Here's the picture of it happening in Toms Hardware page, as an example. Now I installed malware bytes, currently running the gree trial of pro version. I had a hyperscan done and it didnt alleviate the problem. Plz how do I get rid of it? How come it passed through bitdefender?Thanks in advance.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.