[Russian pop ups with counters and middle of the screen ads that are no longer clickable]

Ive just uninstalled utorrent! =S

[Russian pop ups with counters and middle of the screen ads that are no longer clickable]

Hey! Thanks.

 

Ive attached the logs. These other hard drives Ive mentioned are all internal.

 

Anything else you tell me! Cheers!

Addition.txt

FRST.txt

[Russian pop ups with counters and middle of the screen ads that are no longer clickable]

Hello, I've been having real big issues with browsing, and its not recent. My AV is Avast Free right now.

 

Many websites I am greeted with this ad, it grays out the rest of the screen which is unresponsive until its closed, by clicking on X, which will usually open a new window with russian junk.

 

image hosting over 2mb

 

They sometimes vary in size and shape, more square, more rectangular, bigger on the Y or X axis.

Not that often a russian popups on the top of the screen, bottom right or bottom, containing a counter, when it goes to 0 a "X" for closing appears and I can close it.

 

Now, that gray out middle ad I just showed you is malfunctioning, I can't ever close it, so I gotta click stop on the browser in order to use the page, or else I'm forever stuck in that grayed out screen.

 

 

I got MalwareBytes, and once it's on, webpages rarely open and I get prompts from it ALL THE TIME saying a Malicious Website was blocked from svchost.exe. Once I saw .ru wbsite blocked too. Anyways, using the internet with Malwarebytes on is impossible, can't be done.

I must point out that this started happening as soon as I installed Windows 10, I fixed problems when I had windows 7, then I switched to 10 and as soon as it started, these viruses were in, probably coming in from my other hard drives.

 

 

Thanks for the attention.

[Russian pop ups with counter on web browser (wasnt solved =/ )]

Oh ballz, I thought I posted it.

 

Well, so far so good after ZOEK! It kinda reset my chrome, but it worked!!!!!!!

I couldnt enter my moidem/router setup, because I dont have its password. I should call my ISP to get that, I think.

 

Thanks =3

[Russian pop ups with counter on web browser (wasnt solved =/ )]

I'm sorry to inform the funky ads persist and I still can't open certain pages if MalwareBytes is on, getting messages like:

 

This webpage is not available

 

DNS_PROBE_FINISHED_NXDOMAIN

[Russian pop ups with counter on web browser (wasnt solved =/ )]

2015-05-26 14:43 - 2008-07-02 13:11 - 00013568 _____ () C:\Windows\system32\CNC1737D.TBL

2015-05-26 14:42 - 2015-05-26 14:42 - 11017360 _____ () C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe

2015-05-26 14:42 - 2015-05-26 14:42 - 00000000 ___HD () C:\Program Files\CanonBJ

2015-05-26 14:36 - 2015-05-26 14:36 - 48655952 _____ () C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe

2015-05-26 14:25 - 2013-07-09 02:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll

2015-05-26 14:25 - 2013-07-09 02:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll

2015-05-26 14:25 - 2013-07-09 01:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll

2015-05-26 14:25 - 2013-07-09 01:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll

2015-05-26 14:24 - 2015-01-30 20:56 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2015-05-26 14:24 - 2014-03-04 06:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll

2015-05-26 14:24 - 2014-03-04 06:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2015-05-26 14:24 - 2014-03-04 06:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2015-05-26 14:24 - 2014-03-04 06:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2015-05-26 14:24 - 2014-03-04 06:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2015-05-26 14:24 - 2014-03-04 05:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2015-05-26 14:24 - 2014-03-04 05:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2015-05-26 14:24 - 2013-08-01 23:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2015-05-26 14:24 - 2013-08-01 21:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 21:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 21:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 21:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2015-05-26 14:24 - 2013-04-10 03:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys

2015-05-26 14:24 - 2011-02-03 08:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll

2015-05-26 14:23 - 2015-02-18 04:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe

2015-05-26 14:23 - 2015-02-18 04:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe

2015-05-26 14:23 - 2012-11-23 00:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe

2015-05-26 14:04 - 2014-05-14 13:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2015-05-26 14:04 - 2014-05-14 13:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll

2015-05-26 14:04 - 2014-05-14 13:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2015-05-26 14:04 - 2014-05-14 13:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2015-05-26 14:04 - 2014-05-14 13:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll

2015-05-26 14:04 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2015-05-26 14:04 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2015-05-26 14:04 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2015-05-26 14:04 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2015-05-26 06:30 - 2015-05-26 06:30 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG

2015-05-26 06:30 - 2015-05-26 02:22 - 00000000 ____D () C:\Windows\Panther

2015-05-26 05:53 - 2015-05-26 05:56 - 00003328 _____ () C:\Windows\System32\Tasks\EVGAPrecisionX

2015-05-26 05:32 - 2015-05-26 05:32 - 00001355 _____ () C:\Windows\TSSysprep.log

2015-05-26 05:32 - 2015-05-26 05:32 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk

2015-05-26 05:32 - 2015-05-26 05:32 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk

2015-05-26 05:30 - 2015-05-26 05:30 - 00002841 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0530.html

2015-05-26 05:17 - 2015-05-27 03:12 - 00000000 ____D () C:\Windows\SysWOW64\directx

2015-05-26 05:16 - 2015-05-26 05:16 - 00000000 ____D () C:\Program Files (x86)\EVGA

2015-05-26 05:15 - 2015-05-26 05:16 - 18715110 _____ () C:\Users\Nach\Downloads\EVGA_PrecisionX_16_Setup_v5.3.3.zip

2015-05-26 04:54 - 2015-05-26 04:54 - 00002922 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0454.html

2015-05-26 04:39 - 2015-05-27 03:09 - 00000000 ____D () C:\temp

2015-05-26 04:05 - 2015-06-01 22:29 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Origin

2015-05-26 04:05 - 2015-05-26 04:06 - 00000000 ____D () C:\Program Files (x86)\Origin Games

2015-05-26 04:05 - 2015-05-26 04:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Origin

2015-05-26 04:03 - 2015-06-04 08:09 - 00000000 ____D () C:\ProgramData\Origin

2015-05-26 04:03 - 2015-05-26 20:45 - 00000000 ____D () C:\ProgramData\Electronic Arts

2015-05-26 04:03 - 2015-05-26 04:03 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk

2015-05-26 04:03 - 2015-05-26 04:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin

2015-05-26 04:02 - 2015-06-01 22:29 - 00000000 ____D () C:\Program Files (x86)\Origin

2015-05-26 04:02 - 2015-05-26 04:02 - 17110336 _____ (Electronic Arts, Inc.) C:\Users\Nach\Downloads\OriginThinSetup.exe

2015-05-26 04:01 - 2015-05-26 04:01 - 00000000 ____D () C:\Users\Nach\AppData\Local\Steam

2015-05-26 03:59 - 2015-06-04 08:34 - 00000000 ____D () C:\Program Files (x86)\Steam

2015-05-26 03:59 - 2015-05-26 03:59 - 01142128 _____ () C:\Users\Nach\Downloads\SteamSetup.exe

2015-05-26 03:59 - 2015-05-26 03:59 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk

2015-05-26 03:59 - 2015-05-26 03:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam

2015-05-26 03:41 - 2015-06-04 11:00 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job

2015-05-26 03:41 - 2015-06-04 10:46 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job

2015-05-26 03:41 - 2015-05-26 03:41 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c

2015-05-26 03:41 - 2015-05-26 03:41 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393

2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\NVIDIA

2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z

2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Program Files (x86)\GPU-Z

2015-05-26 03:40 - 2015-05-26 03:40 - 01582736 _____ ( ) C:\Users\Nach\Downloads\cpu-z_1.72-en.exe

2015-05-26 03:40 - 2015-05-26 03:40 - 00000869 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk

2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID

2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\Program Files\CPUID

2015-05-26 03:10 - 2015-05-26 03:10 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech® Webcam Software

2015-05-26 03:08 - 2015-05-26 03:08 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Leadertech

2015-05-26 03:07 - 2015-05-26 03:08 - 00010101 _____ () C:\Windows\system32\lvcoinst.log

2015-05-26 03:07 - 2015-05-26 03:08 - 00003744 _____ () C:\Windows\LDPINST.LOG

2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files\Common Files\logishrd

2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files (x86)\Logitech

2015-05-26 03:07 - 2015-05-26 03:07 - 00001624 _____ () C:\Users\Public\Desktop\Logitech Webcam Software  .lnk

2015-05-26 03:05 - 2015-05-26 03:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech

2015-05-26 03:05 - 2015-05-26 03:05 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys

2015-05-26 03:05 - 2015-05-26 03:05 - 00000388 _____ () C:\Windows\LkmdfCoInst.log

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\LogiShrd

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\Apple

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Logitech Gaming Software

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Bonjour

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files (x86)\Bonjour

2015-05-26 03:04 - 2015-05-26 03:04 - 74637872 _____ (Logitech, Inc.) C:\Users\Nach\Downloads\lws251.exe

2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logitech

2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logishrd

2015-05-26 03:02 - 2015-05-26 03:03 - 74818632 _____ (Logitech Inc.) C:\Users\Nach\Downloads\LGS_8.58.183_x64_Logitech.exe

2015-05-26 02:57 - 2015-05-26 02:58 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\QuickScan

2015-05-26 02:57 - 2015-05-26 02:57 - 10447328 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition_x64.exe

2015-05-26 02:57 - 2015-05-26 02:57 - 00162208 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition.exe

2015-05-26 02:46 - 2015-05-26 02:54 - 00000000 ____D () C:\Users\Nach\Heaven

2015-05-26 02:44 - 2015-05-27 20:25 - 02128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage

2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine

2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\Program Files (x86)\Unigine

2015-05-26 02:44 - 2015-05-26 02:44 - 00002117 _____ () C:\Users\Public\Desktop\Heaven Benchmark 4.0.lnk

2015-05-26 02:43 - 2015-05-26 04:58 - 00001377 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk

2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA Corporation

2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA

2015-05-26 02:43 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation

2015-05-26 02:43 - 2015-05-07 21:35 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll

2015-05-26 02:43 - 2015-05-07 21:35 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll

2015-05-26 02:43 - 2015-05-07 21:34 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll

2015-05-26 02:43 - 2015-05-07 21:34 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll

2015-05-26 02:42 - 2015-06-04 11:02 - 00006464 _____ () C:\Windows\SysWOW64\Gms.log

2015-05-26 02:42 - 2015-05-26 04:42 - 00000000 ____D () C:\ProgramData\NVIDIA

2015-05-26 02:42 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation

2015-05-26 02:42 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation

2015-05-26 02:42 - 2015-05-13 03:52 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll

2015-05-26 02:42 - 2015-05-13 03:52 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys

2015-05-26 02:42 - 2015-05-13 03:52 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 42718864 _____ () C:\Windows\system32\nvcompiler.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 37741712 _____ () C:\Windows\SysWOW64\nvcompiler.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 30478992 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 22945424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 17540416 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 16145176 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 15858728 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 15048816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 14455296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 13263568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 12849056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 11790144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 10972304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2015-05-26 02:42 - 2015-05-12 03:27 - 03363224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 02971776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435286.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435286.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01050256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00502896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00176064 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00031710 _____ () C:\Windows\system32\nvinfo.pb

2015-05-26 02:42 - 2015-05-12 00:30 - 06872392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 03490448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

2015-05-26 02:42 - 2015-05-12 00:30 - 00385352 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll

2015-05-26 02:42 - 2015-05-11 14:01 - 04391871 _____ () C:\Windows\system32\nvcoproc.bin

2015-05-26 02:42 - 2014-11-22 07:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

2015-05-26 02:42 - 2014-11-22 07:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll

2015-05-26 02:42 - 2014-11-22 07:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll

2015-05-26 02:41 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files\NVIDIA Corporation

2015-05-26 02:41 - 2015-05-26 02:41 - 00000000 ____D () C:\NVIDIA

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ___HD () C:\Program Files (x86)\Temp

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____H () C:\ProgramData\DP45977C.lfl

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files\Realtek

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files (x86)\Realtek

2015-05-26 02:40 - 2014-05-28 20:23 - 03977944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys

2015-05-26 02:40 - 2014-05-28 14:35 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll

2015-05-26 02:40 - 2014-05-28 11:38 - 01137695 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT

2015-05-26 02:40 - 2014-05-26 15:00 - 62006272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat

2015-05-26 02:40 - 2014-05-23 13:54 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll

2015-05-26 02:40 - 2014-05-22 16:24 - 00096568 _____ () C:\Windows\system32\audioLibVc.dll

2015-05-26 02:40 - 2014-05-22 13:21 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll

2015-05-26 02:40 - 2014-05-19 17:16 - 02843352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll

2015-05-26 02:40 - 2014-05-19 10:47 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll

2015-05-26 02:40 - 2014-05-14 15:47 - 02119472 _____ () C:\Windows\system32\SStudio.dll

2015-05-26 02:40 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll

2015-05-26 02:40 - 2014-04-17 17:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll

2015-05-26 02:40 - 2014-04-17 17:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll

2015-05-26 02:40 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll

2015-05-26 02:40 - 2014-04-10 12:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll

2015-05-26 02:40 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll

2015-05-26 02:40 - 2014-04-09 16:39 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll

2015-05-26 02:40 - 2014-04-09 16:38 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll

2015-05-26 02:40 - 2014-03-21 14:17 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll

2015-05-26 02:40 - 2014-03-19 19:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll

2015-05-26 02:40 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl

2015-05-26 02:40 - 2014-03-05 05:11 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll

2015-05-26 02:40 - 2014-03-05 05:11 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll

2015-05-26 02:40 - 2014-03-05 05:11 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll

2015-05-26 02:40 - 2014-03-05 05:11 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll

2015-05-26 02:40 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll

2015-05-26 02:40 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll

2015-05-26 02:40 - 2014-02-06 11:28 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat

2015-05-26 02:40 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll

2015-05-26 02:40 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll

2015-05-26 02:40 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll

2015-05-26 02:40 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll

2015-05-26 02:40 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll

2015-05-26 02:40 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll

2015-05-26 02:40 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll

2015-05-26 02:40 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll

2015-05-26 02:40 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll

2015-05-26 02:40 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll

2015-05-26 02:40 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll

2015-05-26 02:40 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll

2015-05-26 02:40 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll

2015-05-26 02:40 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll

2015-05-26 02:40 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll

2015-05-26 02:40 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll

2015-05-26 02:40 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll

2015-05-26 02:40 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll

2015-05-26 02:40 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll

2015-05-26 02:40 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll

2015-05-26 02:40 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll

2015-05-26 02:40 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll

2015-05-26 02:40 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll

2015-05-26 02:40 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll

2015-05-26 02:40 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll

2015-05-26 02:40 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll

2015-05-26 02:40 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll

2015-05-26 02:40 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll

2015-05-26 02:40 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll

2015-05-26 02:40 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll

2015-05-26 02:39 - 2015-05-26 02:39 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf

2015-05-26 02:37 - 2015-05-26 02:39 - 00000000 ____D () C:\ProgramData\Intel

2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\Intel

2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Intel Corporation

2015-05-26 02:36 - 2015-05-26 02:36 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2015-05-26 02:36 - 2015-05-26 02:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-05-26 02:35 - 2015-06-04 11:00 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2015-05-26 02:35 - 2015-06-04 10:40 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Users\Nach\AppData\Local\Google

2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Program Files (x86)\Google

2015-05-26 02:35 - 2015-05-26 02:35 - 00004060 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2015-05-26 02:35 - 2015-05-26 02:35 - 00003808 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf

2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Deployment

2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Apps\2.0

2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files\Intel

2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files (x86)\Intel

2015-05-26 02:34 - 2015-05-26 02:34 - 00000000 ____D () C:\Intel

2015-05-26 02:34 - 2014-02-21 13:56 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll

2015-05-26 02:33 - 2015-05-28 02:55 - 00000000 ____D () C:\ProgramData\Package Cache

2015-05-26 02:28 - 2015-05-28 01:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

2015-05-26 02:28 - 2015-05-26 02:28 - 00057560 _____ () C:\Users\Nach\AppData\Local\GDIPFONTCACHEV1.DAT

2015-05-26 02:27 - 2015-05-26 19:00 - 00775384 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI

2015-05-26 02:26 - 2015-05-26 02:26 - 00000000 ____D () C:\ProgramData\Downloaded Installations

2015-05-26 02:24 - 2012-07-26 01:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys

2015-05-26 02:24 - 2012-07-26 01:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys

2015-05-26 02:24 - 2012-07-25 23:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll

2015-05-26 02:24 - 2012-06-02 11:35 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf

2015-05-26 02:22 - 2015-06-04 11:07 - 01786536 _____ () C:\Windows\WindowsUpdate.log

2015-05-26 02:22 - 2015-06-03 11:06 - 00001413 _____ () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2015-05-26 02:22 - 2015-05-27 20:26 - 00000000 ____D () C:\Users\Nach

2015-05-26 02:22 - 2015-05-26 02:22 - 00000020 ___SH () C:\Users\Nach\ntuser.ini

2015-05-26 02:22 - 2015-05-26 02:22 - 00000000 __SHD () C:\Recovery

2015-05-26 02:22 - 2009-07-14 01:54 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-05-26 02:22 - 2009-07-14 01:49 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

 

==================== One Month Modified files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-06-04 11:14 - 2009-07-14 01:51 - 00048830 _____ () C:\Windows\setupact.log

2015-06-04 11:12 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-06-04 11:12 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-06-04 11:00 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2015-06-03 21:51 - 2009-07-14 02:13 - 00783606 _____ () C:\Windows\system32\PerfStringBackup.INI

2015-06-03 15:58 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\rescache

2015-06-03 11:06 - 2009-07-14 01:45 - 00265552 _____ () C:\Windows\system32\FNTCACHE.DAT

2015-06-03 11:05 - 2011-04-12 05:28 - 00000000 ____D () C:\Program Files\Windows Journal

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\zh-HK

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\tr-TR

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\PolicyDefinitions

2015-06-02 21:29 - 2010-11-21 00:47 - 00149122 _____ () C:\Windows\PFRO.log

2015-06-02 05:11 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\NDF

2015-06-01 21:54 - 2009-07-14 02:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2015-05-27 19:41 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\Offline Web Pages

2015-05-27 02:07 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared

2015-05-26 20:45 - 2009-07-14 00:20 - 00000000 __RHD () C:\Users\Public\Libraries

2015-05-26 14:43 - 2009-07-14 00:20 - 00000000 __RSD () C:\Windows\Media

2015-05-26 06:30 - 2009-07-14 02:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template

2015-05-26 05:38 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\LiveKernelReports

2015-05-26 05:32 - 2009-07-14 01:46 - 00002790 _____ () C:\Windows\DtcInstall.log

2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories

2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sysprep

2015-05-26 05:30 - 2011-04-12 05:28 - 00000000 ____D () C:\Windows\CSC

2015-05-26 04:38 - 2009-07-14 02:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD

2015-05-26 03:11 - 2009-07-14 01:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-05-26 02:42 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\Help

2015-05-26 02:24 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\system32\restore

2015-05-26 02:22 - 2009-07-14 01:45 - 00000000 ____D () C:\Windows\Setup

 

==================== Files in the root of some directories =======

 

2015-05-28 01:36 - 2015-05-28 01:36 - 0000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag

2015-05-26 02:44 - 2015-05-27 20:25 - 2128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage

2015-05-26 02:40 - 2015-05-26 02:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

 

Some files in TEMP:

====================

C:\Users\Nach\AppData\Local\Temp\dllnt_dump.dll

C:\Users\Nach\AppData\Local\Temp\Quarantine.exe

C:\Users\Nach\AppData\Local\Temp\sqlite3.dll

 

 

==================== Bamital & volsnap Check =================

 

(There is no automatic fix for files that do not pass verification.)

 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2015-06-03 15:51

 

==================== End of log ============================

 

 

 

 

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015

Ran by Nach at 2015-06-04 11:17:27

Running from C:\Users\Nach\Desktop

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-318558523-3823039876-2902504939-500 - Administrator - Disabled)

Guest (S-1-5-21-318558523-3823039876-2902504939-501 - Limited - Disabled)

Nach (S-1-5-21-318558523-3823039876-2902504939-1000 - Administrator - Enabled) => C:\Users\Nach

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: Bitdefender Antivirus (Disabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}

AS: Bitdefender Antispyware (Disabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Bitdefender Firewall (Disabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

 

==================== Installed Programs ======================

 

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

"Batman - Arkham City" (HKLM-x32\...\{71AD83D4-6F74-4257-8398-8D1BFEA91EFF}_is1) (Version: 1.1.0.0 - )

µTorrent (HKU\S-1-5-21-318558523-3823039876-2902504939-1000\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)

Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)

Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version:  - Hidden Path Entertainment, Ensemble Studios)

Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 18.20.0.1429 - Bitdefender)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden

Canon MP Navigator EX 2.1 (HKLM-x32\...\MP Navigator EX 2.1) (Version:  - )

Canon MX330 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX330_series) (Version:  - Canon Inc.)

Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)

CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )

Creation Master 15.0 (HKLM-x32\...\Creation Master 15_is1) (Version:  - FIFA MASTER)

EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.7.0.0 - Electronic Arts)

erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden

Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)

Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden

Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)

GRID (HKLM-x32\...\Steam App 12750) (Version:  - Codemasters Studios)

Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)

Intel® Chipset Device Software (x32 Version: 10.0.20 - Intel® Corporation) Hidden

Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)

Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)

Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.)

Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)

Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)

Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)

Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)

MSI Afterburner 4.1.0 (HKLM-x32\...\Afterburner) (Version: 4.1.0 - MSI Co., LTD)

NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)

NVIDIA GeForce Experience 2.4.3.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.31 - NVIDIA Corporation)

NVIDIA Graphics Driver 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)

NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)

OpenAL (HKLM-x32\...\OpenAL) (Version:  - )

Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)

Project CARS (HKLM-x32\...\Project CARS_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, ProZorg_tm)

Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden

Qualcomm Atheros Killer E220x Drivers (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden

Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{FE5DFB80-6937-4154-A2C7-EF845C1301F8}) (Version: 1.0.30.1259 - Qualcomm Atheros)

Qualcomm Atheros Network Manager (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.)

Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)

SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden

SHIELD Wireless Controller Driver (Version: 2.4.3.31 - NVIDIA Corporation) Hidden

Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)

Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.)

Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.4 - Sophos Limited)

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)

The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com)

Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

 

==================== Custom CLSID (Whitelisted): ==========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== Restore Points =========================

 

01-06-2015 21:54:31 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030

02-06-2015 21:43:16 Installed Sophos Virus Removal Tool.

03-06-2015 10:42:56 Windows Update

 

==================== Hosts content: ===============================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

 

==================== Scheduled Tasks (Whitelisted) =============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

Task: {04896E09-1B7E-470F-B796-319FA3FF54B6} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2014-12-06] ()

Task: {332DF19C-15ED-47C2-B41B-FD0966C6D230} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated)

Task: {4A459083-3C0D-47DF-BBF8-B954C9A7F079} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {70553BA1-A890-422D-B3A2-07A9FD4BCDDF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {714D0294-6844-47CB-BBB4-E3355CF88D6B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {8FD47602-92B6-4BA3-AB5C-DF206E6E8809} - System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {AD7D643B-DA81-43C4-A6C1-6BC52C59CF93} - System32\Tasks\EVGAPrecisionX => C:\Program Files (x86)\EVGA\PrecisionX 16\PrecisionX_x64.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

 

==================== Loaded Modules (Whitelisted) ==============

 

2015-05-27 19:38 - 2014-08-27 16:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll

2015-05-27 19:38 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll

2015-05-27 19:38 - 2014-12-17 14:34 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui

2015-05-27 19:38 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll

2015-05-27 20:24 - 2015-05-27 20:24 - 00790368 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpbr.mdl

2015-05-27 20:24 - 2015-05-27 20:24 - 00711064 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpdsp.mdl

2015-05-27 20:24 - 2015-05-27 20:24 - 02683520 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpph.mdl

2015-05-27 20:24 - 2015-05-27 20:24 - 01326504 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttprbl.mdl

2015-05-27 19:38 - 2015-05-27 19:44 - 00471056 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdidntconp.dll

2015-05-27 19:38 - 2015-05-27 19:44 - 00187904 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\ui\bdidntconp.ui

2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

2015-05-26 02:36 - 2015-05-22 17:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll

2015-05-26 02:36 - 2015-05-22 17:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll

2015-05-26 02:36 - 2015-05-22 17:22 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\PepperFlash\pepflashplayer.dll

 

==================== Alternate Data Streams (Whitelisted) =========

 

(If an entry is included in the fixlist, only the ADS will be removed.)

 

AlternateDataStreams: C:\Users\Nach\Desktop\AdwCleaner.exe:BDU

AlternateDataStreams: C:\Users\Nach\Desktop\FRST64.exe:BDU

AlternateDataStreams: C:\Users\Nach\Desktop\rkill.exe:BDU

AlternateDataStreams: C:\Users\Nach\Desktop\RogueKiller.exe:BDU

AlternateDataStreams: C:\Users\Nach\Desktop\SecurityCheck.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\dxwebsetup.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\SkypeSetupFull.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\uTorrent.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\Xbox360_64Eng.exe:BDU

 

==================== Safe Mode (Whitelisted) ===================

 

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

 

 

==================== EXE Association (Whitelisted) ===============

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

 

 

==================== Internet Explorer trusted/restricted ===============

 

(If an entry is included in the fixlist, it will be removed from the registry.)

 

 

==================== Other Areas ============================

 

(Currently there is no automatic fix for this section.)

 

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 8.8.8.8 - 8.8.4.4

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

(Currently there is no automatic fix for this section.)

 

 

==================== FirewallRules (Whitelisted) ===============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

FirewallRules: [sPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe

FirewallRules: [sPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe

 

==================== Faulty Device Manager Devices =============

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (06/04/2015 11:02:10 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/04/2015 08:09:09 AM) (Source: Steam Client Service) (EventID: 1) (User: )

Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\steam.exe

 

Error: (06/04/2015 02:24:55 AM) (Source: Steam Client Service) (EventID: 1) (User: )

Description: Error: Failed to add firewall exception for C:\Program Files (x86)\Steam\steam.exe

 

Error: (06/03/2015 09:46:57 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54099 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60490 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57820 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54160 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:63332 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:65202 length 0 too short

 

 

System errors:

=============

Error: (06/04/2015 11:05:28 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Software Protection service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.

 

Error: (06/04/2015 11:05:28 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/04/2015 11:05:28 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Intel® Rapid Storage Technology service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/04/2015 11:05:28 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

 

Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Qualcomm Atheros Killer Service V2 service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The NVIDIA Streamer Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The NVIDIA Network Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The NVIDIA GeForce Experience Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Bonjour Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/04/2015 11:05:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Adobe Acrobat Update Service service terminated unexpectedly.  It has done this 1 time(s).

 

 

Microsoft Office:

=========================

Error: (06/04/2015 11:02:10 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/04/2015 08:09:09 AM) (Source: Steam Client Service) (EventID: 1) (User: )

Description: Failed to add firewall exception for C:\Program Files (x86)\Steam\steam.exe

 

Error: (06/04/2015 02:24:55 AM) (Source: Steam Client Service) (EventID: 1) (User: )

Description: Failed to add firewall exception for C:\Program Files (x86)\Steam\steam.exe

 

Error: (06/03/2015 09:46:57 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54099 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60490 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57820 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54160 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:63332 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:65202 length 0 too short

 

 

==================== Memory info =========================== 

 

Processor: Intel® Core i5-4690K CPU @ 3.50GHz

Percentage of memory in use: 22%

Total physical RAM: 16293.58 MB

Available physical RAM: 12631.87 MB

Total Pagefile: 32585.35 MB

Available Pagefile: 28484.76 MB

Total Virtual: 8192 MB

Available Virtual: 8191.83 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:238.37 GB) (Free:9.13 GB) NTFS

Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from reading drive)]

Drive e: (Data) (Fixed) (Total:931.51 GB) (Free:376.58 GB) NTFS

Drive f: (Móvel) (Fixed) (Total:1863.01 GB) (Free:445.35 GB) NTFS

Drive g: (Software) (Fixed) (Total:801.51 GB) (Free:722.62 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 000A788F)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=238.4 GB) - (Type=07 NTFS)

 

========================================================

Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 0AE75AEB)

Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

 

========================================================

Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2E2F1945)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=801.5 GB) - (Type=07 NTFS)

 

========================================================

Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1D42D274)

Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

 

========================================================

Disk: 4 (Size: 111.8 GB) (Disk ID: 00087AEE)

Partition 1: (Active) - (Size=243 MB) - (Type=83)

Partition 2: (Not Active) - (Size=111.6 GB) - (Type=05)

 

==================== End of log ============================

 

I will now reset the computer and see if the problem persists.

[Russian pop ups with counter on web browser (wasnt solved =/ )]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2015

Ran by Nach (administrator) on NACH-PC on 04-06-2015 11:17:17

Running from C:\Users\Nach\Desktop

Loaded Profiles: Nach (Available Profiles: Nach)

Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)

Internet Explorer Version 10 (Default browser: Chrome)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\seccenter.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe

 

 

==================== Registry (Whitelisted) ==================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7611608 2014-05-27] (Realtek Semiconductor)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-07] (NVIDIA Corporation)

HKLM\...\Run: [shadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)

HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)

HKLM\...\Run: [bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1691112 2015-05-27] (Bitdefender)

HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\...\Run: [bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-05-27] (Bitdefender)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-05-28]

ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{401FADAA-1C16-4721-9F02-19067E1A1CA8}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)

Startup: C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk [2015-05-28]

ShortcutTarget: Logitech . Product Registration.lnk -> C:\Program Files (x86)\Logitech\Ereg\eReg.exe (Leader Technologies/Logitech)

ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pt-br/?ocid=iehp

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender)

BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)

BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender)

BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender)

Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender)

Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)

Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 89.248.166.149 8.8.8.8

Tcpip\..\Interfaces\{2F05DAF2-001F-4356-97BC-279A97204CA9}: [NameServer] 8.8.8.8,8.8.4.4,192.168.0.1

 

FireFox:

========

FF ProfilePath: C:\Users\Nach\AppData\Roaming\Mozilla\Firefox\Profiles\ceywwvhy.default

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)

FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext

FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-05-27]

FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff

FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-05-27]

FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext

 

Chrome: 

=======

CHR Profile: C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Drive) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-26]

CHR Extension: (YouTube) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-26]

CHR Extension: (Google Search) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-26]

CHR Extension: (AdBlock) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-28]

CHR Extension: (Bookmark Manager) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-26]

CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-02]

CHR Extension: (Skype Click to Call) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-27]

CHR Extension: (Google Wallet) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-26]

CHR Extension: (Gmail) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-26]

CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - https://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

 

==================== Services (Whitelisted) =================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-12-09] (Bitdefender)

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)

R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)

S2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-07] (NVIDIA Corporation)

S2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation)

S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel® Corporation)

S2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)

S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)

S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)

S2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-07] (NVIDIA Corporation)

S2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-07] (NVIDIA Corporation)

S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1997168 2015-06-01] (Electronic Arts)

S2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-08] (Qualcomm Atheros) [File not signed]

S4 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender)

R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)

R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1547936 2015-05-27] (Bitdefender)

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

 

==================== Drivers (Whitelisted) ====================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1306464 2015-05-27] (BitDefender)

R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [262544 2015-05-27] (BitDefender)

S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [677104 2015-05-27] (BitDefender)

R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2015-05-27] (BitDefender LLC)

R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)

S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)

R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender)

R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [67888 2013-02-13] (Qualcomm Atheros, Inc.)

R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-05-27] (BitDefender LLC)

R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-11] (Intel Corporation)

R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)

R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)

S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)

S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)

R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation)

R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-07] (NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)

R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13368 2013-03-11] ()

U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-06-03] ()

R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.)

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== One Month Created files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-06-04 11:08 - 2015-06-04 11:10 - 51789024 _____ (Microsoft Corporation) C:\Users\Nach\Desktop\Windows-KB890830-x64-V5.24.exe

2015-06-04 11:06 - 2015-06-04 11:06 - 00001135 _____ () C:\Users\Nach\Desktop\JRT.txt

2015-06-04 11:05 - 2015-06-04 11:05 - 02942610 _____ (Thisisu) C:\Users\Nach\Desktop\JRT.exe

2015-06-04 10:58 - 2015-06-04 10:58 - 02231296 _____ () C:\Users\Nach\Desktop\AdwCleaner.exe

2015-06-03 21:41 - 2015-06-03 21:43 - 00558117 _____ () C:\Users\Nach\Desktop\DnsJumper_v1.0.6.zip

2015-06-03 14:57 - 2015-06-03 15:15 - 00000000 ____D () C:\ProgramData\RogueKiller

2015-06-03 14:57 - 2015-06-03 14:57 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys

2015-06-03 14:49 - 2015-06-03 14:50 - 17637624 _____ () C:\Users\Nach\Desktop\RogueKiller.exe

2015-06-03 14:45 - 2015-06-03 21:47 - 00025310 _____ () C:\Users\Nach\Desktop\Addition.txt

2015-06-03 14:44 - 2015-06-04 11:17 - 00016046 _____ () C:\Users\Nach\Desktop\FRST.txt

2015-06-03 14:43 - 2015-06-04 11:17 - 00000000 ____D () C:\FRST

2015-06-03 14:43 - 2015-06-03 14:43 - 02108928 _____ (Farbar) C:\Users\Nach\Desktop\FRST64.exe

2015-06-03 11:06 - 2015-06-03 11:06 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Adobe

2015-06-03 10:52 - 2015-06-03 10:52 - 19221504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 15407616 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 14317568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2015-06-03 10:52 - 2015-06-03 10:52 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02046464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01766912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-06-03 10:52 - 2015-06-03 10:52 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2015-06-03 10:52 - 2015-06-03 10:52 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2015-06-03 10:52 - 2015-06-03 10:52 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2015-06-03 10:52 - 2015-06-03 10:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2015-06-03 10:52 - 2015-06-03 10:52 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2015-06-03 10:52 - 2015-06-03 10:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2015-06-03 10:50 - 2015-06-03 10:50 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01504768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2015-06-03 10:48 - 2015-06-03 10:53 - 00011231 _____ () C:\Windows\IE10_main.log

2015-06-03 10:45 - 2015-06-03 10:47 - 00003318 _____ () C:\Windows\IE9_main.log

2015-06-03 10:43 - 2015-06-03 10:45 - 00000000 ____D () C:\Windows\system32\MRT

2015-06-03 10:43 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2015-06-03 10:40 - 2015-03-06 02:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2015-06-03 10:40 - 2015-03-06 02:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2015-06-03 10:40 - 2015-03-06 02:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2015-06-03 10:40 - 2015-03-06 02:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2015-06-03 10:40 - 2015-03-06 02:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2015-06-03 10:40 - 2015-03-06 02:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2015-06-03 10:40 - 2015-03-06 02:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2015-06-03 10:40 - 2015-03-06 02:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2015-06-03 10:40 - 2015-03-06 02:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2015-06-03 10:40 - 2015-03-06 02:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe

2015-06-03 10:40 - 2015-03-06 02:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll

2015-06-03 10:40 - 2015-03-06 02:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll

2015-06-03 10:40 - 2015-03-06 02:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll

2015-06-03 10:40 - 2015-02-26 00:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2015-06-03 10:40 - 2015-01-29 00:23 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2015-06-03 10:40 - 2015-01-29 00:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2015-06-03 10:40 - 2015-01-29 00:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2015-06-03 10:40 - 2015-01-29 00:19 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2015-06-03 10:40 - 2015-01-29 00:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2015-06-03 10:40 - 2015-01-29 00:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2015-06-03 10:40 - 2015-01-29 00:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2015-06-03 10:40 - 2015-01-29 00:05 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2015-06-03 10:40 - 2015-01-29 00:05 - 03917752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2015-06-03 10:40 - 2015-01-29 00:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll

2015-06-03 10:40 - 2015-01-28 23:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll

2015-06-03 10:40 - 2014-09-12 22:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll

2015-06-03 10:40 - 2014-09-12 22:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll

2015-06-03 10:40 - 2014-08-21 03:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2015-06-03 10:40 - 2014-08-21 03:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2015-06-03 10:40 - 2014-08-21 03:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll

2015-06-03 10:40 - 2014-08-21 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll

2015-06-03 10:40 - 2014-03-24 23:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2015-06-03 10:40 - 2014-03-24 23:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2015-06-03 10:40 - 2014-02-03 23:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll

2015-06-03 10:40 - 2014-02-03 23:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll

2015-06-03 10:40 - 2013-10-02 23:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2015-06-03 10:40 - 2013-10-02 23:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2015-06-03 10:40 - 2013-09-27 22:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

2015-06-03 10:40 - 2013-08-01 23:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2015-06-03 10:40 - 2013-08-01 23:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2015-06-03 10:40 - 2013-08-01 22:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2015-06-03 10:40 - 2013-08-01 22:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2015-06-03 10:40 - 2013-08-01 09:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys

2015-06-03 10:40 - 2013-07-20 07:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2015-06-03 10:40 - 2013-07-20 07:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-06-03 10:40 - 2013-07-09 02:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll

2015-06-03 10:40 - 2013-07-09 02:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2015-06-03 10:40 - 2013-07-09 02:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2015-06-03 10:40 - 2013-07-09 01:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll

2015-06-03 10:40 - 2013-07-09 01:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll

2015-06-03 10:40 - 2013-07-09 01:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2015-06-03 10:40 - 2013-07-06 03:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2015-06-03 10:40 - 2013-06-15 01:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

2015-06-03 10:40 - 2013-06-06 02:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2015-06-03 10:40 - 2013-06-06 02:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2015-06-03 10:40 - 2013-06-06 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2015-06-03 10:40 - 2013-06-06 02:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2015-06-03 10:40 - 2013-06-06 01:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll

2015-06-03 10:40 - 2013-06-06 01:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2015-06-03 10:40 - 2013-06-06 01:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll

2015-06-03 10:40 - 2013-06-06 00:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2015-06-03 10:40 - 2013-06-06 00:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll

2015-06-03 10:40 - 2013-06-06 00:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll

2015-06-03 10:40 - 2013-01-03 03:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS

2015-06-03 10:40 - 2012-11-09 02:45 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll

2015-06-03 10:40 - 2012-11-09 01:43 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll

2015-06-03 10:40 - 2012-11-01 02:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2015-06-03 10:40 - 2012-11-01 01:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll

2015-06-03 10:40 - 2012-08-22 15:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys

2015-06-03 10:40 - 2011-03-08 03:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll

2015-06-03 10:40 - 2011-03-08 02:28 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll

2015-06-03 10:40 - 2011-02-25 03:22 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll

2015-06-03 10:40 - 2011-02-25 02:34 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll

2015-06-03 10:40 - 2011-02-23 01:56 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys

2015-06-03 10:40 - 2011-02-23 01:56 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys

2015-06-03 10:40 - 2011-02-23 01:55 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys

2015-06-03 06:54 - 2015-06-03 06:54 - 00000000 ____D () C:\Users\Nach\AppData\Local\VirtualStore

2015-06-02 21:43 - 2015-06-02 21:43 - 00002759 _____ () C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk

2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Sophos

2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos

2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\Program Files (x86)\Sophos

2015-06-02 21:37 - 2015-06-02 21:37 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-NACH-PC-Windows-7-Professional-(64-bit).dat

2015-06-02 21:37 - 2015-06-02 21:37 - 00000000 ____D () C:\RegBackup

2015-06-02 21:32 - 2015-06-04 10:59 - 00000000 ____D () C:\AdwCleaner

2015-06-02 21:00 - 2015-06-02 21:00 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\Nach\Desktop\rkill.exe

2015-06-02 20:55 - 2015-06-03 14:44 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)

2015-06-02 20:54 - 2015-06-03 14:44 - 00000000 ____D () C:\Users\Nach\Desktop\mbar

2015-06-02 20:40 - 2015-06-02 20:39 - 00852639 _____ () C:\Users\Nach\Desktop\SecurityCheck.exe

2015-06-02 19:08 - 2015-06-04 11:00 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2015-06-02 19:07 - 2015-06-03 14:02 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

2015-06-02 19:07 - 2015-06-02 19:07 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Malwarebytes

2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-06-02 19:07 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2015-06-02 19:07 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2015-06-02 18:19 - 2015-06-02 18:19 - 00001610 _____ () C:\Windows\system32\bdsandbox.txt

2015-06-02 18:07 - 2015-06-02 21:28 - 00000000 ____D () C:\Users\Nach\AppData\Temp

2015-06-02 17:46 - 2015-06-02 17:46 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

2015-06-02 17:46 - 2015-06-02 17:46 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Mozilla

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Local\Mozilla

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\ProgramData\Mozilla

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2015-06-02 17:45 - 2015-06-02 17:45 - 00243408 _____ () C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe

2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\Documents\FM_temp

2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\AppData\Local\CreationMaster

2015-06-02 04:48 - 2015-06-02 04:48 - 00001269 _____ () C:\Users\Nach\Desktop\CM 15.lnk

2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fifa Master

2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\Program Files (x86)\Fifa Master

2015-06-02 04:42 - 2015-06-02 04:43 - 19412014 _____ () C:\Users\Nach\Downloads\Setup_CM_15_0.rar

2015-06-02 04:39 - 2015-06-02 04:39 - 00000562 _____ () C:\Users\Public\Desktop\Fraps.lnk

2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps

2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\Fraps

2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\WinRAR

2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-06-02 04:35 - 2015-06-02 04:36 - 00000000 ____D () C:\Program Files\WinRAR

2015-06-02 04:32 - 2015-06-02 04:35 - 101738804 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW210.rar

2015-06-02 04:31 - 2015-06-02 04:33 - 71594649 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW200.rar

2015-06-02 04:31 - 2015-06-02 04:32 - 12104486 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW202.rar

2015-06-02 04:31 - 2015-06-02 04:31 - 03326221 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW211 (1).rar

2015-06-02 04:30 - 2015-06-02 17:43 - 00000000 ____D () C:\ProgramData\Adobe

2015-06-02 04:30 - 2015-06-02 04:30 - 00003886 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task

2015-06-02 04:30 - 2015-06-02 04:30 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2015-06-02 04:30 - 2015-06-02 04:30 - 00002047 _____ () C:\Users\Public\Desktop\Acrobat Reader DC.lnk

2015-06-02 04:30 - 2015-06-02 04:30 - 00000000 ____D () C:\Program Files (x86)\Adobe

2015-06-02 04:29 - 2015-06-02 04:32 - 00000000 ____D () C:\Users\Nach\AppData\Local\Adobe

2015-06-01 22:16 - 2015-06-02 01:50 - 00000000 ____D () C:\Users\Nach\Documents\The Witcher 3

2015-06-01 21:54 - 2015-06-01 21:54 - 00001955 _____ () C:\Users\Public\Desktop\The Witcher® 3 - Wild Hunt.lnk

2015-06-01 21:54 - 2015-06-01 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com

2015-06-01 21:47 - 2015-06-01 21:47 - 00000000 ____D () C:\GOG Games

2015-05-28 20:22 - 2015-06-01 03:02 - 00000080 _____ () C:\Users\Nach\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\Documents\Rockstar Games

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\AppData\Local\Rockstar Games

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files\Rockstar Games

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games

2015-05-28 02:55 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll

2015-05-28 01:37 - 2015-05-28 01:37 - 00002783 _____ () C:\Users\Public\Desktop\Killer Network Manager.lnk

2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Qualcomm

2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros

2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\Program Files\Qualcomm Atheros

2015-05-28 01:36 - 2015-05-28 01:36 - 00000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag

2015-05-27 20:26 - 2015-05-27 20:39 - 00000000 ____D () C:\Users\Nach\Valley

2015-05-27 20:24 - 2015-05-27 20:24 - 00002113 _____ () C:\Users\Public\Desktop\Valley Benchmark 1.0.lnk

2015-05-27 19:44 - 2015-05-27 19:44 - 00160544 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys

2015-05-27 19:44 - 2015-05-27 19:44 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll

2015-05-27 19:44 - 2015-05-27 19:44 - 00074000 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll

2015-05-27 19:39 - 2015-05-27 19:39 - 00000385 _____ () C:\Users\Nach\AppData\Roaminguser_gensett.xml

2015-05-27 19:38 - 2015-05-27 19:44 - 00677104 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys

2015-05-27 19:38 - 2015-05-27 19:44 - 00262544 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys

2015-05-27 19:38 - 2015-05-27 19:44 - 00033360 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll

2015-05-27 19:38 - 2015-05-27 19:44 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Bitdefender

2015-05-27 19:38 - 2015-05-27 19:43 - 01306464 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys

2015-05-27 19:38 - 2015-05-27 19:40 - 00000000 ____D () C:\ProgramData\BDLogging

2015-05-27 19:38 - 2015-05-27 19:38 - 00253404 ____H () C:\bdr-ld01

2015-05-27 19:38 - 2015-05-27 19:38 - 00009216 ____H () C:\bdr-ld01.mbr

2015-05-27 19:38 - 2015-05-27 19:38 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk

2015-05-27 19:38 - 2015-05-27 19:38 - 00000684 ____H () C:\bdr-cf01

2015-05-27 19:38 - 2015-05-27 19:38 - 00000385 _____ () C:\Windows\system32\user_gensett.xml

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Bitdefender

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Bitdefender

2015-05-27 19:38 - 2014-12-02 16:37 - 00074000 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll

2015-05-27 19:38 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys

2015-05-27 19:38 - 2014-07-04 17:49 - 49563064 ____H () C:\bdr-im01.gz

2015-05-27 19:38 - 2013-11-13 15:41 - 00093600 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys

2015-05-27 19:38 - 2013-08-13 13:38 - 03271472 ____H () C:\bdr-bz01

2015-05-27 19:38 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys

2015-05-27 19:38 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll

2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\Users\Nach\Documents\WB Games

2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\ProgramData\Steam

2015-05-27 16:50 - 2015-05-27 16:50 - 00001670 _____ () C:\Users\Public\Desktop\Batman - Arkham City.lnk

2015-05-27 16:50 - 2015-05-27 16:50 - 00001043 _____ () C:\Users\Public\Desktop\Batman - Arkham City (Settings).lnk

2015-05-27 16:50 - 2015-05-27 16:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batman - Arkham City

2015-05-27 16:37 - 2015-05-27 16:37 - 00000000 ____D () C:\Users\Nach\AppData\Local\Setup Integrity Check

2015-05-27 15:24 - 2015-05-27 16:37 - 00000000 ____D () C:\Games

2015-05-27 04:05 - 2015-06-03 21:44 - 00003018 _____ () C:\Windows\System32\Tasks\MSIAfterburner

2015-05-27 04:04 - 2015-06-02 01:07 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner

2015-05-27 04:04 - 2015-05-27 04:04 - 00001086 _____ () C:\Users\Nach\Desktop\MSI Afterburner.lnk

2015-05-27 04:04 - 2015-05-27 04:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner

2015-05-27 04:03 - 2015-05-27 04:03 - 36210245 _____ () C:\Users\Nach\Downloads\[Guru3D.com]-MSIAfterburnerSetup410.zip

2015-05-27 04:02 - 2015-05-27 04:02 - 00000000 ____D () C:\Windows\system32\appmgmt

2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\wmd_symbol_cache

2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\Project CARS

2015-05-27 03:12 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll

2015-05-27 03:12 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll

2015-05-27 03:12 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll

2015-05-27 03:12 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll

2015-05-27 03:12 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll

2015-05-27 03:12 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll

2015-05-27 03:12 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll

2015-05-27 03:12 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll

2015-05-27 03:12 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll

2015-05-27 03:12 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll

2015-05-27 03:12 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll

2015-05-27 03:12 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll

2015-05-27 03:12 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll

2015-05-27 03:12 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll

2015-05-27 03:12 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll

2015-05-27 03:12 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll

2015-05-27 03:12 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll

2015-05-27 03:12 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll

2015-05-27 03:12 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll

2015-05-27 03:12 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll

2015-05-27 03:12 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll

2015-05-27 03:12 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll

2015-05-27 03:12 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll

2015-05-27 03:12 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll

2015-05-27 03:12 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll

2015-05-27 03:12 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll

2015-05-27 03:12 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll

2015-05-27 03:12 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll

2015-05-27 03:12 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll

2015-05-27 03:12 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll

2015-05-27 03:09 - 2015-05-27 03:09 - 00292184 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\dxwebsetup.exe

2015-05-27 02:07 - 2015-05-27 02:07 - 00002122 _____ () C:\Users\Nach\Desktop\Project CARS.lnk

2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Project CARS

2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics

2015-05-27 02:06 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll

2015-05-27 01:54 - 2015-05-27 01:54 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics

2015-05-27 00:03 - 2015-06-02 04:22 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\vlc

2015-05-27 00:03 - 2015-05-27 00:03 - 00001066 _____ () C:\Users\Public\Desktop\VLC media player.lnk

2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\Program Files (x86)\VideoLAN

2015-05-27 00:01 - 2015-05-27 00:02 - 28849904 _____ () C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe

2015-05-26 22:40 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll

2015-05-26 22:40 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll

2015-05-26 22:40 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll

2015-05-26 22:40 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll

2015-05-26 22:40 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll

2015-05-26 22:40 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll

2015-05-26 22:40 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll

2015-05-26 22:40 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll

2015-05-26 22:40 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll

2015-05-26 22:40 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll

2015-05-26 22:40 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll

2015-05-26 22:40 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll

2015-05-26 22:40 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll

2015-05-26 22:40 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll

2015-05-26 22:40 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll

2015-05-26 22:40 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll

2015-05-26 22:40 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll

2015-05-26 22:40 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll

2015-05-26 22:40 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll

2015-05-26 22:40 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll

2015-05-26 22:40 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll

2015-05-26 22:40 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll

2015-05-26 22:40 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll

2015-05-26 22:40 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll

2015-05-26 22:40 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll

2015-05-26 22:40 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll

2015-05-26 22:40 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll

2015-05-26 22:40 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll

2015-05-26 22:40 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll

2015-05-26 22:40 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll

2015-05-26 22:40 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll

2015-05-26 22:40 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll

2015-05-26 22:40 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll

2015-05-26 22:40 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll

2015-05-26 22:40 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll

2015-05-26 22:40 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll

2015-05-26 22:40 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll

2015-05-26 22:40 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll

2015-05-26 22:40 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll

2015-05-26 22:40 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll

2015-05-26 22:40 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll

2015-05-26 22:40 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll

2015-05-26 22:40 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll

2015-05-26 20:45 - 2015-05-31 09:31 - 00000000 ____D () C:\Users\Nach\Documents\FIFA 15

2015-05-26 20:38 - 2015-05-30 21:12 - 00074969 _____ () C:\Windows\DirectX.log

2015-05-26 20:38 - 2015-05-26 20:38 - 07878008 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\Xbox360_64Eng.exe

2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf

2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories

2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\Program Files\Microsoft Xbox 360 Accessories

2015-05-26 20:36 - 2015-05-26 20:36 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00413696 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00133632 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00110592 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Users\Nach\Documents\Codemasters

2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\ProgramData\Codemasters

2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Program Files (x86)\OpenAL

2015-05-26 19:43 - 2015-05-26 19:43 - 00000000 ____D () C:\Users\Nach\Tracing

2015-05-26 19:42 - 2015-06-02 20:55 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Skype

2015-05-26 19:42 - 2015-05-27 19:48 - 00000000 ___RD () C:\Program Files (x86)\Skype

2015-05-26 19:42 - 2015-05-26 19:42 - 43034752 _____ (Skype Technologies S.A.) C:\Users\Nach\Downloads\SkypeSetupFull.exe

2015-05-26 19:42 - 2015-05-26 19:42 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk

2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\Users\Nach\AppData\Local\Skype

2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Skype

2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2015-05-26 18:51 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE

2015-05-26 18:43 - 2015-05-27 02:42 - 00027508 _____ () C:\Windows\IE11_main.log

2015-05-26 18:15 - 2014-06-30 19:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll

2015-05-26 18:15 - 2014-06-30 19:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll

2015-05-26 18:15 - 2014-06-06 03:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe

2015-05-26 18:15 - 2014-06-06 03:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe

2015-05-26 18:15 - 2014-03-09 18:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe

2015-05-26 18:15 - 2014-03-09 18:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll

2015-05-26 18:15 - 2014-03-09 18:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe

2015-05-26 18:15 - 2014-03-09 18:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll

2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities

2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\Program Files (x86)\Canon

2015-05-26 14:44 - 2015-05-26 14:44 - 00001147 _____ () C:\Users\Public\Desktop\FIFA 15.lnk

2015-05-26 14:44 - 2015-05-26 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 15

2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information

2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\ProgramData\CanonBJ

2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MX330 series

2015-05-26 14:43 - 2009-06-16 11:37 - 01342976 _____ (CANON INC.) C:\Windows\system32\CNC330C.DLL

2015-05-26 14:43 - 2009-06-16 11:36 - 00092672 _____ (CANON INC.) C:\Windows\system32\CNC330I.DLL

2015-05-26 14:43 - 2009-04-25 05:00 - 00290816 _____ (CANON INC.) C:\Windows\system32\CNMLM9P.DLL

2015-05-26 14:43 - 2009-02-19 13:20 - 00299520 _____ (CANON INC.) C:\Windows\system32\CNC330L.DLL

2015-05-26 14:43 - 2008-09-11 09:39 - 00244736 _____ (CANON INC.) C:\Windows\system32\CNMIU9P.DLL

2015-05-26 14:43 - 2008-09-03 11:15 - 00262656 _____ (Canon Inc.) C:\Windows\system32\CNCF2Li.DLL

2015-05-26 14:43 - 2008-09-03 11:10 - 00232448 _____ (Canon Inc.) C:\Windows\system32\CNCFMSi.EXE

2015-05-26 14:43 - 2008-09-03 11:10 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLiUS.DLL

2015-05-26 14:43 - 2008-09-03 11:10 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLiJP.DLL

2015-05-26 14:43 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.DLL

2015-05-26 14:43 - 2008-07-16 09:39 - 00235008 _____ (Canon Inc.) C:\Windows\system32\CNC330O.DLL

[Russian pop ups with counter on web browser (wasnt solved =/ )]

# AdwCleaner v4.206 - Logfile created 04/06/2015 at 10:59:48

# Updated 01/06/2015 by Xplode

# Database : 2015-06-01.1 [server]

# Operating system : Windows 7 Professional Service Pack 1 (x64)

# Username : Nach - NACH-PC

# Running from : C:\Users\Nach\Desktop\AdwCleaner.exe

# Option : Cleaning

 

***** [ Services ] *****

 

 

***** [ Files / Folders ] *****

 

 

***** [ Scheduled tasks ] *****

 

 

***** [ Shortcuts ] *****

 

 

***** [ Registry ] *****

 

 

***** [ Web browsers ] *****

 

-\\ Internet Explorer v10.0.9200.16521

 

 

-\\ Mozilla Firefox v38.0.5 (x86 en-US)

 

 

-\\ Google Chrome v43.0.2357.81

 

 

*************************

 

AdwCleaner[R0].txt - [1178 bytes] - [02/06/2015 21:32:58]

AdwCleaner[R1].txt - [902 bytes] - [03/06/2015 11:15:52]

AdwCleaner[R2].txt - [1021 bytes] - [04/06/2015 10:59:18]

AdwCleaner[s0].txt - [1248 bytes] - [02/06/2015 21:33:53]

AdwCleaner[s1].txt - [965 bytes] - [03/06/2015 11:16:21]

AdwCleaner[s2].txt - [948 bytes] - [04/06/2015 10:59:48]

 

########## EOF - C:\AdwCleaner\AdwCleaner[s2].txt - [1006  bytes] ##########

 

 

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.8.8 (06.03.2015:1)

OS: Windows 7 Professional x64

Ran by Nach on Thu 06/04/2015 at 11:05:14.73

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

~~~ Services

 

 

 

~~~ Tasks

 

 

 

~~~ Registry Values

 

 

 

~~~ Registry Keys

 

 

 

~~~ Files

 

Successfully deleted: [File] C:\Windows\system32\drivers\bdsandbox.sys

 

 

 

~~~ Folders

 

 

 

~~~ Chrome

 

 

[C:\Users\Nach\appdata\local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

 

[C:\Users\Nach\appdata\local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

 

[C:\Users\Nach\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

 

[C:\Users\Nach\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:

[]

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on Thu 06/04/2015 at 11:06:30.91

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

---------------------------------------------------------------------------------------

Microsoft Windows Malicious Software Removal Tool v5.23, April 2015 (build 5.23.11300.0)

Started On Wed Jun 03 10:43:47 2015

 

Engine: 1.1.11502.0

Signatures: 1.195.1215.0

 

Results Summary:

----------------

No infection found.

Microsoft Windows Malicious Software Removal Tool Finished On Wed Jun 03 10:45:15 2015

 

 

Return code: 0 (0x0)

 

---------------------------------------------------------------------------------------

Microsoft Windows Malicious Software Removal Tool v5.24, May 2015 (build 5.24.11401.0)

Started On Thu Jun 04 11:13:22 2015

 

Engine: 1.1.11602.0

Signatures: 1.197.1100.0

 

Results Summary:

----------------

No infection found.

Microsoft Windows Malicious Software Removal Tool Finished On Thu Jun 04 11:14:21 2015

 

 

Return code: 0 (0x0)

 

---------------------------------------------------------------------------------------

Microsoft Windows Malicious Software Removal Tool v5.24, May 2015 (build 5.24.11401.0)

Started On Thu Jun 04 11:14:24 2015

 

Engine: 1.1.11602.0

Signatures: 1.197.1100.0

 

Results Summary:

----------------

No infection found.

 

[Russian pop ups with counter on web browser (wasnt solved =/ )]

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2015-05-26 14:24 - 2013-08-01 21:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 21:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 21:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 21:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2015-05-26 14:24 - 2013-04-10 03:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys

2015-05-26 14:24 - 2011-02-03 08:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll

2015-05-26 14:23 - 2015-02-18 04:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe

2015-05-26 14:23 - 2015-02-18 04:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe

2015-05-26 14:23 - 2012-11-23 00:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe

2015-05-26 14:04 - 2014-05-14 13:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2015-05-26 14:04 - 2014-05-14 13:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll

2015-05-26 14:04 - 2014-05-14 13:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2015-05-26 14:04 - 2014-05-14 13:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2015-05-26 14:04 - 2014-05-14 13:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll

2015-05-26 14:04 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2015-05-26 14:04 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2015-05-26 14:04 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2015-05-26 14:04 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2015-05-26 06:30 - 2015-05-26 06:30 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG

2015-05-26 06:30 - 2015-05-26 02:22 - 00000000 ____D () C:\Windows\Panther

2015-05-26 05:53 - 2015-05-26 05:56 - 00003328 _____ () C:\Windows\System32\Tasks\EVGAPrecisionX

2015-05-26 05:32 - 2015-05-26 05:32 - 00001355 _____ () C:\Windows\TSSysprep.log

2015-05-26 05:32 - 2015-05-26 05:32 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk

2015-05-26 05:32 - 2015-05-26 05:32 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk

2015-05-26 05:30 - 2015-05-26 05:30 - 00002841 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0530.html

2015-05-26 05:17 - 2015-05-27 03:12 - 00000000 ____D () C:\Windows\SysWOW64\directx

2015-05-26 05:16 - 2015-05-26 05:16 - 00000000 ____D () C:\Program Files (x86)\EVGA

2015-05-26 05:15 - 2015-05-26 05:16 - 18715110 _____ () C:\Users\Nach\Downloads\EVGA_PrecisionX_16_Setup_v5.3.3.zip

2015-05-26 04:54 - 2015-05-26 04:54 - 00002922 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0454.html

2015-05-26 04:39 - 2015-05-27 03:09 - 00000000 ____D () C:\temp

2015-05-26 04:05 - 2015-06-01 22:29 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Origin

2015-05-26 04:05 - 2015-05-26 04:06 - 00000000 ____D () C:\Program Files (x86)\Origin Games

2015-05-26 04:05 - 2015-05-26 04:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Origin

2015-05-26 04:03 - 2015-06-03 07:09 - 00000000 ____D () C:\ProgramData\Origin

2015-05-26 04:03 - 2015-05-26 20:45 - 00000000 ____D () C:\ProgramData\Electronic Arts

2015-05-26 04:03 - 2015-05-26 04:03 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk

2015-05-26 04:03 - 2015-05-26 04:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin

2015-05-26 04:02 - 2015-06-01 22:29 - 00000000 ____D () C:\Program Files (x86)\Origin

2015-05-26 04:02 - 2015-05-26 04:02 - 17110336 _____ (Electronic Arts, Inc.) C:\Users\Nach\Downloads\OriginThinSetup.exe

2015-05-26 04:01 - 2015-05-26 04:01 - 00000000 ____D () C:\Users\Nach\AppData\Local\Steam

2015-05-26 03:59 - 2015-06-03 14:09 - 00000000 ____D () C:\Program Files (x86)\Steam

2015-05-26 03:59 - 2015-05-26 03:59 - 01142128 _____ () C:\Users\Nach\Downloads\SteamSetup.exe

2015-05-26 03:59 - 2015-05-26 03:59 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk

2015-05-26 03:59 - 2015-05-26 03:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam

2015-05-26 03:41 - 2015-06-03 21:46 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job

2015-05-26 03:41 - 2015-06-03 21:45 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job

2015-05-26 03:41 - 2015-05-26 03:41 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c

2015-05-26 03:41 - 2015-05-26 03:41 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393

2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\NVIDIA

2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z

2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Program Files (x86)\GPU-Z

2015-05-26 03:40 - 2015-05-26 03:40 - 01582736 _____ ( ) C:\Users\Nach\Downloads\cpu-z_1.72-en.exe

2015-05-26 03:40 - 2015-05-26 03:40 - 00000869 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk

2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID

2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\Program Files\CPUID

2015-05-26 03:10 - 2015-05-26 03:10 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech® Webcam Software

2015-05-26 03:08 - 2015-05-26 03:08 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Leadertech

2015-05-26 03:07 - 2015-05-26 03:08 - 00010101 _____ () C:\Windows\system32\lvcoinst.log

2015-05-26 03:07 - 2015-05-26 03:08 - 00003744 _____ () C:\Windows\LDPINST.LOG

2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files\Common Files\logishrd

2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files (x86)\Logitech

2015-05-26 03:07 - 2015-05-26 03:07 - 00001624 _____ () C:\Users\Public\Desktop\Logitech Webcam Software  .lnk

2015-05-26 03:05 - 2015-05-26 03:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech

2015-05-26 03:05 - 2015-05-26 03:05 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys

2015-05-26 03:05 - 2015-05-26 03:05 - 00000388 _____ () C:\Windows\LkmdfCoInst.log

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\LogiShrd

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\Apple

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Logitech Gaming Software

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Bonjour

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files (x86)\Bonjour

2015-05-26 03:04 - 2015-05-26 03:04 - 74637872 _____ (Logitech, Inc.) C:\Users\Nach\Downloads\lws251.exe

2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logitech

2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logishrd

2015-05-26 03:02 - 2015-05-26 03:03 - 74818632 _____ (Logitech Inc.) C:\Users\Nach\Downloads\LGS_8.58.183_x64_Logitech.exe

2015-05-26 02:57 - 2015-05-26 02:58 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\QuickScan

2015-05-26 02:57 - 2015-05-26 02:57 - 10447328 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition_x64.exe

2015-05-26 02:57 - 2015-05-26 02:57 - 00162208 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition.exe

2015-05-26 02:46 - 2015-05-26 02:54 - 00000000 ____D () C:\Users\Nach\Heaven

2015-05-26 02:44 - 2015-05-27 20:25 - 02128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage

2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine

2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\Program Files (x86)\Unigine

2015-05-26 02:44 - 2015-05-26 02:44 - 00002117 _____ () C:\Users\Public\Desktop\Heaven Benchmark 4.0.lnk

2015-05-26 02:43 - 2015-05-26 04:58 - 00001377 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk

2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA Corporation

2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA

2015-05-26 02:43 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation

2015-05-26 02:43 - 2015-05-07 21:35 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll

2015-05-26 02:43 - 2015-05-07 21:35 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll

2015-05-26 02:43 - 2015-05-07 21:34 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll

2015-05-26 02:43 - 2015-05-07 21:34 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll

2015-05-26 02:42 - 2015-06-03 21:47 - 00006464 _____ () C:\Windows\SysWOW64\Gms.log

2015-05-26 02:42 - 2015-05-26 04:42 - 00000000 ____D () C:\ProgramData\NVIDIA

2015-05-26 02:42 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation

2015-05-26 02:42 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation

2015-05-26 02:42 - 2015-05-13 03:52 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll

2015-05-26 02:42 - 2015-05-13 03:52 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys

2015-05-26 02:42 - 2015-05-13 03:52 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 42718864 _____ () C:\Windows\system32\nvcompiler.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 37741712 _____ () C:\Windows\SysWOW64\nvcompiler.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 30478992 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 22945424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 17540416 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 16145176 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 15858728 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 15048816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 14455296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 13263568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 12849056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 11790144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 10972304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2015-05-26 02:42 - 2015-05-12 03:27 - 03363224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 02971776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435286.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435286.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01050256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00502896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00176064 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00031710 _____ () C:\Windows\system32\nvinfo.pb

2015-05-26 02:42 - 2015-05-12 00:30 - 06872392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 03490448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

2015-05-26 02:42 - 2015-05-12 00:30 - 00385352 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll

2015-05-26 02:42 - 2015-05-11 14:01 - 04391871 _____ () C:\Windows\system32\nvcoproc.bin

2015-05-26 02:42 - 2014-11-22 07:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

2015-05-26 02:42 - 2014-11-22 07:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll

2015-05-26 02:42 - 2014-11-22 07:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll

2015-05-26 02:41 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files\NVIDIA Corporation

2015-05-26 02:41 - 2015-05-26 02:41 - 00000000 ____D () C:\NVIDIA

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ___HD () C:\Program Files (x86)\Temp

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____H () C:\ProgramData\DP45977C.lfl

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files\Realtek

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files (x86)\Realtek

2015-05-26 02:40 - 2014-05-28 20:23 - 03977944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys

2015-05-26 02:40 - 2014-05-28 14:35 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll

2015-05-26 02:40 - 2014-05-28 11:38 - 01137695 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT

2015-05-26 02:40 - 2014-05-26 15:00 - 62006272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat

2015-05-26 02:40 - 2014-05-23 13:54 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll

2015-05-26 02:40 - 2014-05-22 16:24 - 00096568 _____ () C:\Windows\system32\audioLibVc.dll

2015-05-26 02:40 - 2014-05-22 13:21 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll

2015-05-26 02:40 - 2014-05-19 17:16 - 02843352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll

2015-05-26 02:40 - 2014-05-19 10:47 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll

2015-05-26 02:40 - 2014-05-14 15:47 - 02119472 _____ () C:\Windows\system32\SStudio.dll

2015-05-26 02:40 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll

2015-05-26 02:40 - 2014-04-17 17:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll

2015-05-26 02:40 - 2014-04-17 17:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll

2015-05-26 02:40 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll

2015-05-26 02:40 - 2014-04-10 12:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll

2015-05-26 02:40 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll

2015-05-26 02:40 - 2014-04-09 16:39 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll

2015-05-26 02:40 - 2014-04-09 16:38 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll

2015-05-26 02:40 - 2014-03-21 14:17 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll

2015-05-26 02:40 - 2014-03-19 19:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll

2015-05-26 02:40 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl

2015-05-26 02:40 - 2014-03-05 05:11 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll

2015-05-26 02:40 - 2014-03-05 05:11 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll

2015-05-26 02:40 - 2014-03-05 05:11 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll

2015-05-26 02:40 - 2014-03-05 05:11 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll

2015-05-26 02:40 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll

2015-05-26 02:40 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll

2015-05-26 02:40 - 2014-02-06 11:28 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat

2015-05-26 02:40 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll

2015-05-26 02:40 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll

2015-05-26 02:40 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll

2015-05-26 02:40 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll

2015-05-26 02:40 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll

2015-05-26 02:40 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll

2015-05-26 02:40 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll

2015-05-26 02:40 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll

2015-05-26 02:40 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll

2015-05-26 02:40 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll

2015-05-26 02:40 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll

2015-05-26 02:40 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll

2015-05-26 02:40 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll

2015-05-26 02:40 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll

2015-05-26 02:40 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll

2015-05-26 02:40 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll

2015-05-26 02:40 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll

2015-05-26 02:40 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll

2015-05-26 02:40 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll

2015-05-26 02:40 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll

2015-05-26 02:40 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll

2015-05-26 02:40 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll

2015-05-26 02:40 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll

2015-05-26 02:40 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll

2015-05-26 02:40 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll

2015-05-26 02:40 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll

2015-05-26 02:40 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll

2015-05-26 02:40 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll

2015-05-26 02:40 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll

2015-05-26 02:40 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll

2015-05-26 02:39 - 2015-05-26 02:39 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf

2015-05-26 02:37 - 2015-05-26 02:39 - 00000000 ____D () C:\ProgramData\Intel

2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\Intel

2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Intel Corporation

2015-05-26 02:36 - 2015-05-26 02:36 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2015-05-26 02:36 - 2015-05-26 02:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-05-26 02:35 - 2015-06-03 21:45 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2015-05-26 02:35 - 2015-06-03 21:40 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Users\Nach\AppData\Local\Google

2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Program Files (x86)\Google

2015-05-26 02:35 - 2015-05-26 02:35 - 00004060 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2015-05-26 02:35 - 2015-05-26 02:35 - 00003808 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf

2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Deployment

2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Apps\2.0

2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files\Intel

2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files (x86)\Intel

2015-05-26 02:34 - 2015-05-26 02:34 - 00000000 ____D () C:\Intel

2015-05-26 02:34 - 2014-02-21 13:56 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll

2015-05-26 02:33 - 2015-05-28 02:55 - 00000000 ____D () C:\ProgramData\Package Cache

2015-05-26 02:28 - 2015-05-28 01:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

2015-05-26 02:28 - 2015-05-26 02:28 - 00057560 _____ () C:\Users\Nach\AppData\Local\GDIPFONTCACHEV1.DAT

2015-05-26 02:27 - 2015-05-26 19:00 - 00775384 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI

2015-05-26 02:26 - 2015-05-26 02:26 - 00000000 ____D () C:\ProgramData\Downloaded Installations

2015-05-26 02:24 - 2012-07-26 01:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys

2015-05-26 02:24 - 2012-07-26 01:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys

2015-05-26 02:24 - 2012-07-25 23:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll

2015-05-26 02:24 - 2012-06-02 11:35 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf

2015-05-26 02:22 - 2015-06-03 21:44 - 01578066 _____ () C:\Windows\WindowsUpdate.log

2015-05-26 02:22 - 2015-06-03 11:06 - 00001413 _____ () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2015-05-26 02:22 - 2015-05-27 20:26 - 00000000 ____D () C:\Users\Nach

2015-05-26 02:22 - 2015-05-26 02:22 - 00000020 ___SH () C:\Users\Nach\ntuser.ini

2015-05-26 02:22 - 2015-05-26 02:22 - 00000000 __SHD () C:\Recovery

2015-05-26 02:22 - 2009-07-14 01:54 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-05-26 02:22 - 2009-07-14 01:49 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

 

==================== One Month Modified files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-06-03 21:45 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2015-06-03 21:45 - 2009-07-14 01:51 - 00044294 _____ () C:\Windows\setupact.log

2015-06-03 15:58 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\rescache

2015-06-03 14:44 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-06-03 14:44 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-06-03 11:32 - 2009-07-14 02:13 - 00783606 _____ () C:\Windows\system32\PerfStringBackup.INI

2015-06-03 11:06 - 2009-07-14 01:45 - 00265552 _____ () C:\Windows\system32\FNTCACHE.DAT

2015-06-03 11:05 - 2011-04-12 05:28 - 00000000 ____D () C:\Program Files\Windows Journal

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\zh-HK

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\tr-TR

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\PolicyDefinitions

2015-06-02 21:29 - 2010-11-21 00:47 - 00149122 _____ () C:\Windows\PFRO.log

2015-06-02 05:11 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\NDF

2015-06-01 21:54 - 2009-07-14 02:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2015-05-27 19:41 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\Offline Web Pages

2015-05-27 02:07 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared

2015-05-26 20:45 - 2009-07-14 00:20 - 00000000 __RHD () C:\Users\Public\Libraries

2015-05-26 14:43 - 2009-07-14 00:20 - 00000000 __RSD () C:\Windows\Media

2015-05-26 06:30 - 2009-07-14 02:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template

2015-05-26 05:38 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\LiveKernelReports

2015-05-26 05:32 - 2009-07-14 01:46 - 00002790 _____ () C:\Windows\DtcInstall.log

2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories

2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sysprep

2015-05-26 05:30 - 2011-04-12 05:28 - 00000000 ____D () C:\Windows\CSC

2015-05-26 04:38 - 2009-07-14 02:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD

2015-05-26 03:11 - 2009-07-14 01:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-05-26 02:42 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\Help

2015-05-26 02:24 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\system32\restore

2015-05-26 02:22 - 2009-07-14 01:45 - 00000000 ____D () C:\Windows\Setup

 

==================== Files in the root of some directories =======

 

2015-05-28 01:36 - 2015-05-28 01:36 - 0000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag

2015-05-26 02:44 - 2015-05-27 20:25 - 2128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage

2015-05-26 02:40 - 2015-05-26 02:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

 

Some files in TEMP:

====================

C:\Users\Nach\AppData\Local\Temp\dllnt_dump.dll

C:\Users\Nach\AppData\Local\Temp\Quarantine.exe

C:\Users\Nach\AppData\Local\Temp\sqlite3.dll

 

 

==================== Bamital & volsnap Check =================

 

(There is no automatic fix for files that do not pass verification.)

 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2015-06-03 15:51

 

==================== End of log ============================

 

 

 

 

 

 

 

 

 

 

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015

Ran by Nach at 2015-06-03 21:47:47

Running from C:\Users\Nach\Desktop

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-318558523-3823039876-2902504939-500 - Administrator - Disabled)

Guest (S-1-5-21-318558523-3823039876-2902504939-501 - Limited - Disabled)

Nach (S-1-5-21-318558523-3823039876-2902504939-1000 - Administrator - Enabled) => C:\Users\Nach

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}

AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

 

==================== Installed Programs ======================

 

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

"Batman - Arkham City" (HKLM-x32\...\{71AD83D4-6F74-4257-8398-8D1BFEA91EFF}_is1) (Version: 1.1.0.0 - )

Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)

Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version:  - Hidden Path Entertainment, Ensemble Studios)

Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 18.20.0.1429 - Bitdefender)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden

Canon MP Navigator EX 2.1 (HKLM-x32\...\MP Navigator EX 2.1) (Version:  - )

Canon MX330 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX330_series) (Version:  - Canon Inc.)

Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)

CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )

Creation Master 15.0 (HKLM-x32\...\Creation Master 15_is1) (Version:  - FIFA MASTER)

EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.7.0.0 - Electronic Arts)

erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden

Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)

Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden

Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)

GRID (HKLM-x32\...\Steam App 12750) (Version:  - Codemasters Studios)

Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)

Intel® Chipset Device Software (x32 Version: 10.0.20 - Intel® Corporation) Hidden

Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)

Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)

Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.)

Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)

Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)

Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)

Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)

MSI Afterburner 4.1.0 (HKLM-x32\...\Afterburner) (Version: 4.1.0 - MSI Co., LTD)

NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)

NVIDIA GeForce Experience 2.4.3.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.31 - NVIDIA Corporation)

NVIDIA Graphics Driver 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)

NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)

OpenAL (HKLM-x32\...\OpenAL) (Version:  - )

Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)

Project CARS (HKLM-x32\...\Project CARS_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, ProZorg_tm)

Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden

Qualcomm Atheros Killer E220x Drivers (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden

Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{FE5DFB80-6937-4154-A2C7-EF845C1301F8}) (Version: 1.0.30.1259 - Qualcomm Atheros)

Qualcomm Atheros Network Manager (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.)

Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)

SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden

SHIELD Wireless Controller Driver (Version: 2.4.3.31 - NVIDIA Corporation) Hidden

Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)

Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.)

Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.4 - Sophos Limited)

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)

The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com)

Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

 

==================== Custom CLSID (Whitelisted): ==========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== Restore Points =========================

 

30-05-2015 21:11:57 Installed DirectX

01-06-2015 21:54:23 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030

01-06-2015 21:54:31 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030

02-06-2015 21:43:16 Installed Sophos Virus Removal Tool.

03-06-2015 10:42:56 Windows Update

 

==================== Hosts content: ===============================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

 

==================== Scheduled Tasks (Whitelisted) =============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

Task: {04896E09-1B7E-470F-B796-319FA3FF54B6} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2014-12-06] ()

Task: {332DF19C-15ED-47C2-B41B-FD0966C6D230} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated)

Task: {4A459083-3C0D-47DF-BBF8-B954C9A7F079} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {70553BA1-A890-422D-B3A2-07A9FD4BCDDF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {714D0294-6844-47CB-BBB4-E3355CF88D6B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {8FD47602-92B6-4BA3-AB5C-DF206E6E8809} - System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {AD7D643B-DA81-43C4-A6C1-6BC52C59CF93} - System32\Tasks\EVGAPrecisionX => C:\Program Files (x86)\EVGA\PrecisionX 16\PrecisionX_x64.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

 

==================== Loaded Modules (Whitelisted) ==============

 

2015-05-27 19:38 - 2014-08-27 16:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll

2015-05-27 19:38 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll

2015-05-27 19:38 - 2014-12-17 14:34 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui

2015-05-27 19:38 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll

2015-05-27 20:24 - 2015-05-27 20:24 - 00790368 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpbr.mdl

2015-05-27 20:24 - 2015-05-27 20:24 - 00711064 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpdsp.mdl

2015-05-27 20:24 - 2015-05-27 20:24 - 02683520 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpph.mdl

2015-05-27 20:24 - 2015-05-27 20:24 - 01326504 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttprbl.mdl

2015-05-26 02:42 - 2015-05-12 00:30 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll

2014-12-06 04:03 - 2014-12-06 04:03 - 00565760 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe

2014-09-18 04:23 - 2014-09-18 04:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll

2015-03-12 15:23 - 2015-03-12 15:23 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll

2014-09-18 04:23 - 2014-09-18 04:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll

2015-03-12 15:23 - 2015-03-12 15:23 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll

2013-08-08 14:30 - 2013-08-08 14:30 - 00283648 _____ () C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe

2014-12-06 04:01 - 2014-12-06 04:01 - 00071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll

2014-12-06 04:01 - 2014-12-06 04:01 - 00056832 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll

2014-12-06 04:02 - 2014-12-06 04:02 - 00217600 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll

2014-12-06 04:01 - 2014-12-06 04:01 - 00353792 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll

2014-12-06 04:02 - 2014-12-06 04:02 - 00649216 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll

2015-05-26 02:43 - 2015-05-07 21:36 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll

2012-09-13 00:38 - 2012-09-13 00:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll

2012-09-13 00:38 - 2012-09-13 00:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll

2012-09-13 00:38 - 2012-09-13 00:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll

2012-09-13 00:38 - 2012-09-13 00:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll

2012-09-13 00:38 - 2012-09-13 00:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll

2015-05-26 02:36 - 2015-05-22 17:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll

2015-05-26 02:36 - 2015-05-22 17:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll

2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

 

==================== Alternate Data Streams (Whitelisted) =========

 

(If an entry is included in the fixlist, only the ADS will be removed.)

 

AlternateDataStreams: C:\Users\Nach\Desktop\FRST64.exe:BDU

AlternateDataStreams: C:\Users\Nach\Desktop\rkill.exe:BDU

AlternateDataStreams: C:\Users\Nach\Desktop\RogueKiller.exe:BDU

AlternateDataStreams: C:\Users\Nach\Desktop\SecurityCheck.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\dxwebsetup.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\SkypeSetupFull.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\Xbox360_64Eng.exe:BDU

 

==================== Safe Mode (Whitelisted) ===================

 

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

 

 

==================== EXE Association (Whitelisted) ===============

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

 

 

==================== Internet Explorer trusted/restricted ===============

 

(If an entry is included in the fixlist, it will be removed from the registry.)

 

 

==================== Other Areas ============================

 

(Currently there is no automatic fix for this section.)

 

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 8.8.8.8 - 8.8.4.4

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

(Currently there is no automatic fix for this section.)

 

 

==================== FirewallRules (Whitelisted) ===============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

FirewallRules: [sPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe

FirewallRules: [sPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe

 

==================== Faulty Device Manager Devices =============

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (06/03/2015 09:46:57 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54099 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60490 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57820 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54160 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:63332 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:65202 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:51406 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:64689 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:62882 length 0 too short

 

 

System errors:

=============

Error: (06/03/2015 09:45:17 PM) (Source: Service Control Manager) (EventID: 7024) (User: )

Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

 

Error: (06/03/2015 02:57:49 PM) (Source: Application Popup) (EventID: 1060) (User: )

Description: \??\C:\Windows\System32\drivers\TrueSight.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

 

Error: (06/03/2015 11:27:00 AM) (Source: Service Control Manager) (EventID: 7024) (User: )

Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

 

Error: (06/03/2015 11:17:27 AM) (Source: Service Control Manager) (EventID: 7024) (User: )

Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

 

Error: (06/03/2015 11:16:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Print Spooler service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

 

Error: (06/03/2015 11:16:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

 

Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

 

Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Skype Click to Call PNR Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Skype Click to Call Updater service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/03/2015 11:14:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly.  It has done this 1 time(s).

 

 

Microsoft Office:

=========================

Error: (06/03/2015 09:46:57 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54099 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60490 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57820 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:54160 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:63332 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:65202 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:51406 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:64689 length 0 too short

 

Error: (06/03/2015 09:41:22 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:62882 length 0 too short

 

 

==================== Memory info =========================== 

 

Processor: Intel® Core i5-4690K CPU @ 3.50GHz

Percentage of memory in use: 19%

Total physical RAM: 16293.58 MB

Available physical RAM: 13045.02 MB

Total Pagefile: 32585.35 MB

Available Pagefile: 28856.39 MB

Total Virtual: 8192 MB

Available Virtual: 8191.83 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:238.37 GB) (Free:8.56 GB) NTFS

Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from reading drive)]

Drive e: (Data) (Fixed) (Total:931.51 GB) (Free:376.58 GB) NTFS

Drive f: (Móvel) (Fixed) (Total:1863.01 GB) (Free:445.35 GB) NTFS

Drive g: (Software) (Fixed) (Total:801.51 GB) (Free:722.62 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 000A788F)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=238.4 GB) - (Type=07 NTFS)

 

========================================================

Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 0AE75AEB)

Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

 

========================================================

Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2E2F1945)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=801.5 GB) - (Type=07 NTFS)

 

========================================================

Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1D42D274)

Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

 

========================================================

Disk: 4 (Size: 111.8 GB) (Disk ID: 00087AEE)

Partition 1: (Active) - (Size=243 MB) - (Type=83)

Partition 2: (Not Active) - (Size=111.6 GB) - (Type=05)

 

==================== End of log ============================

[Russian pop ups with counter on web browser (wasnt solved =/ )]

Done and done :3 oh yeah, not sure if its relevant but I dont live in the US, I live in BRazil.

 

 

 

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2015

Ran by Nach (administrator) on NACH-PC on 03-06-2015 21:47:30

Running from C:\Users\Nach\Desktop

Loaded Profiles: Nach (Available Profiles: Nach)

Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)

Internet Explorer Version 10 (Default browser: Chrome)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe

() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe

(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe

(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe

() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe

(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

 

 

==================== Registry (Whitelisted) ==================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7611608 2014-05-27] (Realtek Semiconductor)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-07] (NVIDIA Corporation)

HKLM\...\Run: [shadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)

HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)

HKLM\...\Run: [bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1691112 2015-05-27] (Bitdefender)

HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\...\Run: [bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-05-27] (Bitdefender)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-05-28]

ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{401FADAA-1C16-4721-9F02-19067E1A1CA8}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)

Startup: C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk [2015-05-28]

ShortcutTarget: Logitech . Product Registration.lnk -> C:\Program Files (x86)\Logitech\Ereg\eReg.exe (Leader Technologies/Logitech)

ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pt-br/?ocid=iehp

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender)

BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)

BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender)

BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender)

Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender)

Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)

Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 89.248.166.149 8.8.8.8

Tcpip\..\Interfaces\{2F05DAF2-001F-4356-97BC-279A97204CA9}: [NameServer] 8.8.8.8,8.8.4.4,192.168.0.1

 

FireFox:

========

FF ProfilePath: C:\Users\Nach\AppData\Roaming\Mozilla\Firefox\Profiles\ceywwvhy.default

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)

FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext

FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-05-27]

FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff

FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-05-27]

FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext

 

Chrome: 

=======

CHR Profile: C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Drive) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-26]

CHR Extension: (YouTube) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-26]

CHR Extension: (Google Search) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-26]

CHR Extension: (AdBlock) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-28]

CHR Extension: (Bookmark Manager) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-26]

CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-02]

CHR Extension: (Skype Click to Call) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-27]

CHR Extension: (Google Wallet) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-26]

CHR Extension: (Gmail) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-26]

CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - https://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

 

==================== Services (Whitelisted) =================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-12-09] (Bitdefender)

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)

R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-07] (NVIDIA Corporation)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation)

S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel® Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)

S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)

S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-07] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-07] (NVIDIA Corporation)

S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1997168 2015-06-01] (Electronic Arts)

R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-08] (Qualcomm Atheros) [File not signed]

S4 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender)

R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)

R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1547936 2015-05-27] (Bitdefender)

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

 

==================== Drivers (Whitelisted) ====================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1306464 2015-05-27] (BitDefender)

R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [262544 2015-05-27] (BitDefender)

R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [677104 2015-05-27] (BitDefender)

R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2015-05-27] (BitDefender LLC)

R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)

S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)

R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender)

R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [67888 2013-02-13] (Qualcomm Atheros, Inc.)

R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-05-27] (BitDefender LLC)

R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-11] (Intel Corporation)

R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)

R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)

S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)

S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)

R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation)

R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-07] (NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)

R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13368 2013-03-11] ()

U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [35064 2015-06-03] ()

R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.)

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== One Month Created files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-06-03 21:41 - 2015-06-03 21:43 - 00558117 _____ () C:\Users\Nach\Desktop\DnsJumper_v1.0.6.zip

2015-06-03 14:57 - 2015-06-03 15:15 - 00000000 ____D () C:\ProgramData\RogueKiller

2015-06-03 14:57 - 2015-06-03 14:57 - 00035064 _____ () C:\Windows\system32\Drivers\TrueSight.sys

2015-06-03 14:49 - 2015-06-03 14:50 - 17637624 _____ () C:\Users\Nach\Desktop\RogueKiller.exe

2015-06-03 14:45 - 2015-06-03 14:45 - 00025474 _____ () C:\Users\Nach\Desktop\Addition.txt

2015-06-03 14:44 - 2015-06-03 21:47 - 00017233 _____ () C:\Users\Nach\Desktop\FRST.txt

2015-06-03 14:43 - 2015-06-03 21:47 - 00000000 ____D () C:\FRST

2015-06-03 14:43 - 2015-06-03 14:43 - 02108928 _____ (Farbar) C:\Users\Nach\Desktop\FRST64.exe

2015-06-03 11:56 - 2015-06-03 11:56 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys

2015-06-03 11:06 - 2015-06-03 11:06 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Adobe

2015-06-03 10:52 - 2015-06-03 10:52 - 19221504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 15407616 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 14317568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2015-06-03 10:52 - 2015-06-03 10:52 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02046464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01766912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-06-03 10:52 - 2015-06-03 10:52 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2015-06-03 10:52 - 2015-06-03 10:52 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2015-06-03 10:52 - 2015-06-03 10:52 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2015-06-03 10:52 - 2015-06-03 10:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2015-06-03 10:52 - 2015-06-03 10:52 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2015-06-03 10:52 - 2015-06-03 10:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2015-06-03 10:50 - 2015-06-03 10:50 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01504768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2015-06-03 10:48 - 2015-06-03 10:53 - 00011231 _____ () C:\Windows\IE10_main.log

2015-06-03 10:45 - 2015-06-03 10:47 - 00003318 _____ () C:\Windows\IE9_main.log

2015-06-03 10:43 - 2015-06-03 10:45 - 00000000 ____D () C:\Windows\system32\MRT

2015-06-03 10:43 - 2015-04-01 11:16 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2015-06-03 10:40 - 2015-03-06 02:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2015-06-03 10:40 - 2015-03-06 02:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2015-06-03 10:40 - 2015-03-06 02:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2015-06-03 10:40 - 2015-03-06 02:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2015-06-03 10:40 - 2015-03-06 02:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2015-06-03 10:40 - 2015-03-06 02:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2015-06-03 10:40 - 2015-03-06 02:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2015-06-03 10:40 - 2015-03-06 02:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2015-06-03 10:40 - 2015-03-06 02:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2015-06-03 10:40 - 2015-03-06 02:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe

2015-06-03 10:40 - 2015-03-06 02:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll

2015-06-03 10:40 - 2015-03-06 02:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll

2015-06-03 10:40 - 2015-03-06 02:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll

2015-06-03 10:40 - 2015-02-26 00:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2015-06-03 10:40 - 2015-01-29 00:23 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2015-06-03 10:40 - 2015-01-29 00:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2015-06-03 10:40 - 2015-01-29 00:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2015-06-03 10:40 - 2015-01-29 00:19 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2015-06-03 10:40 - 2015-01-29 00:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2015-06-03 10:40 - 2015-01-29 00:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2015-06-03 10:40 - 2015-01-29 00:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2015-06-03 10:40 - 2015-01-29 00:05 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2015-06-03 10:40 - 2015-01-29 00:05 - 03917752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2015-06-03 10:40 - 2015-01-29 00:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll

2015-06-03 10:40 - 2015-01-28 23:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll

2015-06-03 10:40 - 2014-09-12 22:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll

2015-06-03 10:40 - 2014-09-12 22:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll

2015-06-03 10:40 - 2014-08-21 03:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2015-06-03 10:40 - 2014-08-21 03:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2015-06-03 10:40 - 2014-08-21 03:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll

2015-06-03 10:40 - 2014-08-21 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll

2015-06-03 10:40 - 2014-03-24 23:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2015-06-03 10:40 - 2014-03-24 23:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2015-06-03 10:40 - 2014-02-03 23:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll

2015-06-03 10:40 - 2014-02-03 23:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll

2015-06-03 10:40 - 2013-10-02 23:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2015-06-03 10:40 - 2013-10-02 23:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2015-06-03 10:40 - 2013-09-27 22:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

2015-06-03 10:40 - 2013-08-01 23:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2015-06-03 10:40 - 2013-08-01 23:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2015-06-03 10:40 - 2013-08-01 22:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2015-06-03 10:40 - 2013-08-01 22:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2015-06-03 10:40 - 2013-08-01 09:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys

2015-06-03 10:40 - 2013-07-20 07:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2015-06-03 10:40 - 2013-07-20 07:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-06-03 10:40 - 2013-07-09 02:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll

2015-06-03 10:40 - 2013-07-09 02:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2015-06-03 10:40 - 2013-07-09 02:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2015-06-03 10:40 - 2013-07-09 01:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll

2015-06-03 10:40 - 2013-07-09 01:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll

2015-06-03 10:40 - 2013-07-09 01:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2015-06-03 10:40 - 2013-07-06 03:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2015-06-03 10:40 - 2013-06-15 01:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

2015-06-03 10:40 - 2013-06-06 02:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2015-06-03 10:40 - 2013-06-06 02:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2015-06-03 10:40 - 2013-06-06 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2015-06-03 10:40 - 2013-06-06 02:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2015-06-03 10:40 - 2013-06-06 01:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll

2015-06-03 10:40 - 2013-06-06 01:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2015-06-03 10:40 - 2013-06-06 01:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll

2015-06-03 10:40 - 2013-06-06 00:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2015-06-03 10:40 - 2013-06-06 00:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll

2015-06-03 10:40 - 2013-06-06 00:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll

2015-06-03 10:40 - 2013-01-03 03:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS

2015-06-03 10:40 - 2012-11-09 02:45 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll

2015-06-03 10:40 - 2012-11-09 01:43 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll

2015-06-03 10:40 - 2012-11-01 02:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2015-06-03 10:40 - 2012-11-01 01:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll

2015-06-03 10:40 - 2012-08-22 15:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys

2015-06-03 10:40 - 2011-03-08 03:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll

2015-06-03 10:40 - 2011-03-08 02:28 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll

2015-06-03 10:40 - 2011-02-25 03:22 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll

2015-06-03 10:40 - 2011-02-25 02:34 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll

2015-06-03 10:40 - 2011-02-23 01:56 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys

2015-06-03 10:40 - 2011-02-23 01:56 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys

2015-06-03 10:40 - 2011-02-23 01:55 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys

2015-06-03 06:54 - 2015-06-03 06:54 - 00000000 ____D () C:\Users\Nach\AppData\Local\VirtualStore

2015-06-02 21:43 - 2015-06-02 21:43 - 00002759 _____ () C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk

2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Sophos

2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos

2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\Program Files (x86)\Sophos

2015-06-02 21:37 - 2015-06-02 21:37 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-NACH-PC-Windows-7-Professional-(64-bit).dat

2015-06-02 21:37 - 2015-06-02 21:37 - 00000000 ____D () C:\RegBackup

2015-06-02 21:32 - 2015-06-03 11:16 - 00000000 ____D () C:\AdwCleaner

2015-06-02 21:00 - 2015-06-02 21:00 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\Nach\Desktop\rkill.exe

2015-06-02 20:55 - 2015-06-03 14:44 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)

2015-06-02 20:54 - 2015-06-03 14:44 - 00000000 ____D () C:\Users\Nach\Desktop\mbar

2015-06-02 20:40 - 2015-06-02 20:39 - 00852639 _____ () C:\Users\Nach\Desktop\SecurityCheck.exe

2015-06-02 19:08 - 2015-06-03 21:45 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2015-06-02 19:07 - 2015-06-03 14:02 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

2015-06-02 19:07 - 2015-06-02 19:07 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Malwarebytes

2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-06-02 19:07 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2015-06-02 19:07 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2015-06-02 18:19 - 2015-06-02 18:19 - 00001610 _____ () C:\Windows\system32\bdsandbox.txt

2015-06-02 18:07 - 2015-06-02 21:28 - 00000000 ____D () C:\Users\Nach\AppData\Temp

2015-06-02 17:46 - 2015-06-02 17:46 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

2015-06-02 17:46 - 2015-06-02 17:46 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Mozilla

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Local\Mozilla

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\ProgramData\Mozilla

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2015-06-02 17:45 - 2015-06-02 17:45 - 00243408 _____ () C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe

2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\Documents\FM_temp

2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\AppData\Local\CreationMaster

2015-06-02 04:48 - 2015-06-02 04:48 - 00001269 _____ () C:\Users\Nach\Desktop\CM 15.lnk

2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fifa Master

2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\Program Files (x86)\Fifa Master

2015-06-02 04:42 - 2015-06-02 04:43 - 19412014 _____ () C:\Users\Nach\Downloads\Setup_CM_15_0.rar

2015-06-02 04:39 - 2015-06-02 04:39 - 00000562 _____ () C:\Users\Public\Desktop\Fraps.lnk

2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps

2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\Fraps

2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\WinRAR

2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-06-02 04:35 - 2015-06-02 04:36 - 00000000 ____D () C:\Program Files\WinRAR

2015-06-02 04:32 - 2015-06-02 04:35 - 101738804 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW210.rar

2015-06-02 04:31 - 2015-06-02 04:33 - 71594649 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW200.rar

2015-06-02 04:31 - 2015-06-02 04:32 - 12104486 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW202.rar

2015-06-02 04:31 - 2015-06-02 04:31 - 03326221 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW211 (1).rar

2015-06-02 04:30 - 2015-06-02 17:43 - 00000000 ____D () C:\ProgramData\Adobe

2015-06-02 04:30 - 2015-06-02 04:30 - 00003886 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task

2015-06-02 04:30 - 2015-06-02 04:30 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2015-06-02 04:30 - 2015-06-02 04:30 - 00002047 _____ () C:\Users\Public\Desktop\Acrobat Reader DC.lnk

2015-06-02 04:30 - 2015-06-02 04:30 - 00000000 ____D () C:\Program Files (x86)\Adobe

2015-06-02 04:29 - 2015-06-02 04:32 - 00000000 ____D () C:\Users\Nach\AppData\Local\Adobe

2015-06-01 22:16 - 2015-06-02 01:50 - 00000000 ____D () C:\Users\Nach\Documents\The Witcher 3

2015-06-01 21:54 - 2015-06-01 21:54 - 00001955 _____ () C:\Users\Public\Desktop\The Witcher® 3 - Wild Hunt.lnk

2015-06-01 21:54 - 2015-06-01 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com

2015-06-01 21:47 - 2015-06-01 21:47 - 00000000 ____D () C:\GOG Games

2015-05-28 20:22 - 2015-06-01 03:02 - 00000080 _____ () C:\Users\Nach\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\Documents\Rockstar Games

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\AppData\Local\Rockstar Games

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files\Rockstar Games

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games

2015-05-28 02:55 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll

2015-05-28 01:37 - 2015-05-28 01:37 - 00002783 _____ () C:\Users\Public\Desktop\Killer Network Manager.lnk

2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Qualcomm

2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros

2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\Program Files\Qualcomm Atheros

2015-05-28 01:36 - 2015-05-28 01:36 - 00000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag

2015-05-27 20:26 - 2015-05-27 20:39 - 00000000 ____D () C:\Users\Nach\Valley

2015-05-27 20:24 - 2015-05-27 20:24 - 00002113 _____ () C:\Users\Public\Desktop\Valley Benchmark 1.0.lnk

2015-05-27 19:44 - 2015-05-27 19:44 - 00160544 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys

2015-05-27 19:44 - 2015-05-27 19:44 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll

2015-05-27 19:44 - 2015-05-27 19:44 - 00074000 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll

2015-05-27 19:39 - 2015-05-27 19:39 - 00000385 _____ () C:\Users\Nach\AppData\Roaminguser_gensett.xml

2015-05-27 19:38 - 2015-05-27 19:44 - 00677104 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys

2015-05-27 19:38 - 2015-05-27 19:44 - 00262544 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys

2015-05-27 19:38 - 2015-05-27 19:44 - 00033360 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll

2015-05-27 19:38 - 2015-05-27 19:44 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Bitdefender

2015-05-27 19:38 - 2015-05-27 19:43 - 01306464 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys

2015-05-27 19:38 - 2015-05-27 19:40 - 00000000 ____D () C:\ProgramData\BDLogging

2015-05-27 19:38 - 2015-05-27 19:38 - 00253404 ____H () C:\bdr-ld01

2015-05-27 19:38 - 2015-05-27 19:38 - 00009216 ____H () C:\bdr-ld01.mbr

2015-05-27 19:38 - 2015-05-27 19:38 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk

2015-05-27 19:38 - 2015-05-27 19:38 - 00000684 ____H () C:\bdr-cf01

2015-05-27 19:38 - 2015-05-27 19:38 - 00000385 _____ () C:\Windows\system32\user_gensett.xml

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Bitdefender

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Bitdefender

2015-05-27 19:38 - 2014-12-02 16:37 - 00074000 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll

2015-05-27 19:38 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys

2015-05-27 19:38 - 2014-07-04 17:49 - 49563064 ____H () C:\bdr-im01.gz

2015-05-27 19:38 - 2013-11-13 15:41 - 00093600 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys

2015-05-27 19:38 - 2013-08-13 13:38 - 03271472 ____H () C:\bdr-bz01

2015-05-27 19:38 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys

2015-05-27 19:38 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll

2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\Users\Nach\Documents\WB Games

2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\ProgramData\Steam

2015-05-27 16:50 - 2015-05-27 16:50 - 00001670 _____ () C:\Users\Public\Desktop\Batman - Arkham City.lnk

2015-05-27 16:50 - 2015-05-27 16:50 - 00001043 _____ () C:\Users\Public\Desktop\Batman - Arkham City (Settings).lnk

2015-05-27 16:50 - 2015-05-27 16:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batman - Arkham City

2015-05-27 16:37 - 2015-05-27 16:37 - 00000000 ____D () C:\Users\Nach\AppData\Local\Setup Integrity Check

2015-05-27 15:24 - 2015-05-27 16:37 - 00000000 ____D () C:\Games

2015-05-27 04:05 - 2015-06-03 21:44 - 00003018 _____ () C:\Windows\System32\Tasks\MSIAfterburner

2015-05-27 04:04 - 2015-06-02 01:07 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner

2015-05-27 04:04 - 2015-05-27 04:04 - 00001086 _____ () C:\Users\Nach\Desktop\MSI Afterburner.lnk

2015-05-27 04:04 - 2015-05-27 04:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner

2015-05-27 04:03 - 2015-05-27 04:03 - 36210245 _____ () C:\Users\Nach\Downloads\[Guru3D.com]-MSIAfterburnerSetup410.zip

2015-05-27 04:02 - 2015-05-27 04:02 - 00000000 ____D () C:\Windows\system32\appmgmt

2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\wmd_symbol_cache

2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\Project CARS

2015-05-27 03:12 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll

2015-05-27 03:12 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll

2015-05-27 03:12 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll

2015-05-27 03:12 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll

2015-05-27 03:12 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll

2015-05-27 03:12 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll

2015-05-27 03:12 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll

2015-05-27 03:12 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll

2015-05-27 03:12 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll

2015-05-27 03:12 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll

2015-05-27 03:12 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll

2015-05-27 03:12 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll

2015-05-27 03:12 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll

2015-05-27 03:12 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll

2015-05-27 03:12 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll

2015-05-27 03:12 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll

2015-05-27 03:12 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll

2015-05-27 03:12 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll

2015-05-27 03:12 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll

2015-05-27 03:12 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll

2015-05-27 03:12 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll

2015-05-27 03:12 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll

2015-05-27 03:12 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll

2015-05-27 03:12 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll

2015-05-27 03:12 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll

2015-05-27 03:12 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll

2015-05-27 03:12 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll

2015-05-27 03:12 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll

2015-05-27 03:12 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll

2015-05-27 03:12 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll

2015-05-27 03:09 - 2015-05-27 03:09 - 00292184 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\dxwebsetup.exe

2015-05-27 02:07 - 2015-05-27 02:07 - 00002122 _____ () C:\Users\Nach\Desktop\Project CARS.lnk

2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Project CARS

2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics

2015-05-27 02:06 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll

2015-05-27 01:54 - 2015-05-27 01:54 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics

2015-05-27 00:03 - 2015-06-02 04:22 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\vlc

2015-05-27 00:03 - 2015-05-27 00:03 - 00001066 _____ () C:\Users\Public\Desktop\VLC media player.lnk

2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\Program Files (x86)\VideoLAN

2015-05-27 00:01 - 2015-05-27 00:02 - 28849904 _____ () C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe

2015-05-26 22:40 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll

2015-05-26 22:40 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll

2015-05-26 22:40 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll

2015-05-26 22:40 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll

2015-05-26 22:40 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll

2015-05-26 22:40 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll

2015-05-26 22:40 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll

2015-05-26 22:40 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll

2015-05-26 22:40 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll

2015-05-26 22:40 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll

2015-05-26 22:40 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll

2015-05-26 22:40 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll

2015-05-26 22:40 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll

2015-05-26 22:40 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll

2015-05-26 22:40 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll

2015-05-26 22:40 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll

2015-05-26 22:40 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll

2015-05-26 22:40 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll

2015-05-26 22:40 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll

2015-05-26 22:40 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll

2015-05-26 22:40 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll

2015-05-26 22:40 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll

2015-05-26 22:40 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll

2015-05-26 22:40 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll

2015-05-26 22:40 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll

2015-05-26 22:40 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll

2015-05-26 22:40 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll

2015-05-26 22:40 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll

2015-05-26 22:40 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll

2015-05-26 22:40 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll

2015-05-26 22:40 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll

2015-05-26 22:40 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll

2015-05-26 22:40 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll

2015-05-26 22:40 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll

2015-05-26 22:40 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll

2015-05-26 22:40 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll

2015-05-26 22:40 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll

2015-05-26 22:40 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll

2015-05-26 22:40 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll

2015-05-26 22:40 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll

2015-05-26 22:40 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll

2015-05-26 22:40 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll

2015-05-26 22:40 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll

2015-05-26 20:45 - 2015-05-31 09:31 - 00000000 ____D () C:\Users\Nach\Documents\FIFA 15

2015-05-26 20:38 - 2015-05-30 21:12 - 00074969 _____ () C:\Windows\DirectX.log

2015-05-26 20:38 - 2015-05-26 20:38 - 07878008 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\Xbox360_64Eng.exe

2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf

2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories

2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\Program Files\Microsoft Xbox 360 Accessories

2015-05-26 20:36 - 2015-05-26 20:36 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00413696 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00133632 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00110592 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Users\Nach\Documents\Codemasters

2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\ProgramData\Codemasters

2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Program Files (x86)\OpenAL

2015-05-26 19:43 - 2015-05-26 19:43 - 00000000 ____D () C:\Users\Nach\Tracing

2015-05-26 19:42 - 2015-06-02 20:55 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Skype

2015-05-26 19:42 - 2015-05-27 19:48 - 00000000 ___RD () C:\Program Files (x86)\Skype

2015-05-26 19:42 - 2015-05-26 19:42 - 43034752 _____ (Skype Technologies S.A.) C:\Users\Nach\Downloads\SkypeSetupFull.exe

2015-05-26 19:42 - 2015-05-26 19:42 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk

2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\Users\Nach\AppData\Local\Skype

2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Skype

2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2015-05-26 18:51 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE

2015-05-26 18:43 - 2015-05-27 02:42 - 00027508 _____ () C:\Windows\IE11_main.log

2015-05-26 18:15 - 2014-06-30 19:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll

2015-05-26 18:15 - 2014-06-30 19:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll

2015-05-26 18:15 - 2014-06-06 03:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe

2015-05-26 18:15 - 2014-06-06 03:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe

2015-05-26 18:15 - 2014-03-09 18:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe

2015-05-26 18:15 - 2014-03-09 18:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll

2015-05-26 18:15 - 2014-03-09 18:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe

2015-05-26 18:15 - 2014-03-09 18:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll

2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities

2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\Program Files (x86)\Canon

2015-05-26 14:44 - 2015-05-26 14:44 - 00001147 _____ () C:\Users\Public\Desktop\FIFA 15.lnk

2015-05-26 14:44 - 2015-05-26 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 15

2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information

2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\ProgramData\CanonBJ

2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MX330 series

2015-05-26 14:43 - 2009-06-16 11:37 - 01342976 _____ (CANON INC.) C:\Windows\system32\CNC330C.DLL

2015-05-26 14:43 - 2009-06-16 11:36 - 00092672 _____ (CANON INC.) C:\Windows\system32\CNC330I.DLL

2015-05-26 14:43 - 2009-04-25 05:00 - 00290816 _____ (CANON INC.) C:\Windows\system32\CNMLM9P.DLL

2015-05-26 14:43 - 2009-02-19 13:20 - 00299520 _____ (CANON INC.) C:\Windows\system32\CNC330L.DLL

2015-05-26 14:43 - 2008-09-11 09:39 - 00244736 _____ (CANON INC.) C:\Windows\system32\CNMIU9P.DLL

2015-05-26 14:43 - 2008-09-03 11:15 - 00262656 _____ (Canon Inc.) C:\Windows\system32\CNCF2Li.DLL

2015-05-26 14:43 - 2008-09-03 11:10 - 00232448 _____ (Canon Inc.) C:\Windows\system32\CNCFMSi.EXE

2015-05-26 14:43 - 2008-09-03 11:10 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLiUS.DLL

2015-05-26 14:43 - 2008-09-03 11:10 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLiJP.DLL

2015-05-26 14:43 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.DLL

2015-05-26 14:43 - 2008-07-16 09:39 - 00235008 _____ (Canon Inc.) C:\Windows\system32\CNC330O.DLL

2015-05-26 14:43 - 2008-07-02 13:11 - 00013568 _____ () C:\Windows\system32\CNC1737D.TBL

2015-05-26 14:42 - 2015-05-26 14:42 - 11017360 _____ () C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe

2015-05-26 14:42 - 2015-05-26 14:42 - 00000000 ___HD () C:\Program Files\CanonBJ

2015-05-26 14:36 - 2015-05-26 14:36 - 48655952 _____ () C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe

2015-05-26 14:25 - 2013-07-09 02:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll

2015-05-26 14:25 - 2013-07-09 02:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll

2015-05-26 14:25 - 2013-07-09 01:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll

2015-05-26 14:25 - 2013-07-09 01:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll

2015-05-26 14:24 - 2015-01-30 20:56 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2015-05-26 14:24 - 2014-03-04 06:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll

2015-05-26 14:24 - 2014-03-04 06:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2015-05-26 14:24 - 2014-03-04 06:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2015-05-26 14:24 - 2014-03-04 06:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2015-05-26 14:24 - 2014-03-04 06:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2015-05-26 14:24 - 2014-03-04 05:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2015-05-26 14:24 - 2014-03-04 05:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2015-05-26 14:24 - 2013-08-01 23:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

[Russian pop ups with counter on web browser (wasnt solved =/ )]

ROGUEKILLER opened this link:

http://www.adlice.com/userland-rootkits-part-1-iat-hooks/

 

the log:

 

 

 

RogueKiller V10.8.1.0 [Jun  3 2015] by Adlice Software

mail : http://www.adlice.com/contact/

Feedback : http://forum.adlice.com

Website : http://www.adlice.com/softwares/roguekiller/

Blog : http://www.adlice.com

 

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Started in : Normal mode

User : Nach [Administrator]

Started from : C:\Users\Nach\Desktop\RogueKiller.exe

Mode : Scan -- Date : 06/03/2015  15:02:42

 

¤¤¤ Processes : 0 ¤¤¤

 

¤¤¤ Registry : 8 ¤¤¤

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 89.248.166.149 8.8.8.8 [POLAND (PL)][-]  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 89.248.166.149 8.8.8.8 [POLAND (PL)][-]  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 89.248.166.149 8.8.8.8 [POLAND (PL)][-]  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{2F05DAF2-001F-4356-97BC-279A97204CA9} | DhcpNameServer : 89.248.166.149 8.8.8.8 [POLAND (PL)][-]  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{2F05DAF2-001F-4356-97BC-279A97204CA9} | DhcpNameServer : 89.248.166.149 8.8.8.8 [POLAND (PL)][-]  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{2F05DAF2-001F-4356-97BC-279A97204CA9} | DhcpNameServer : 89.248.166.149 8.8.8.8 [X][-]  -> Found

[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found

[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found

 

¤¤¤ Tasks : 0 ¤¤¤

 

¤¤¤ Files : 0 ¤¤¤

 

¤¤¤ Hosts File : 0 ¤¤¤

 

¤¤¤ Antirootkit : 515 (Driver: Not loaded [0xc000036b]) ¤¤¤

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGenKey : Unknown @ 0x73903699 (jmp 0xfe47a7b0|jmp 0xffffcef2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - OpenServiceW : Unknown @ 0x73902431 (jmp 0xfe4759e5|jmp 0xffffe15a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CloseServiceHandle : Unknown @ 0x73902859 (jmp 0xfe46f1bd|jmp 0xffffdd32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExA : Unknown @ 0x73901721 (jmp 0xfdc293c5|jmp 0xffffee6a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptHashData : Unknown @ 0x73903991 (jmp 0xfe475a5b|jmp 0xffffcbfa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExA : Unknown @ 0x73901721 (jmp 0xfdc293c5|jmp 0xffffee6a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - GetStartupInfoA : Unknown @ 0x73903db9 (jmp 0xfe782fb9|jmp 0xffffc7d2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - OpenServiceA : Unknown @ 0x73902399 (jmp 0xfe46f7a9|jmp 0xffffe1f2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - ControlService : Unknown @ 0x739025f9 (jmp 0xfe45b4b5|jmp 0xffffdf92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CloseServiceHandle : Unknown @ 0x73902859 (jmp 0xfe46f1bd|jmp 0xffffdd32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - OpenServiceW : Unknown @ 0x73902431 (jmp 0xfe4759e5|jmp 0xffffe15a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextA : Unknown @ 0x73903569 (jmp 0xfe47a38c|jmp 0xffffd022|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptEncrypt : Unknown @ 0x73903731 (jmp 0xfe45bf96|jmp 0xffffce5a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptExportKey : Unknown @ 0x73903861 (jmp 0xfe47a677|jmp 0xffffcd2a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptImportKey : Unknown @ 0x73903a29 (jmp 0xfe4774f7|jmp 0xffffcb62|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGenKey : Unknown @ 0x73903699 (jmp 0xfe47a7b0|jmp 0xffffcef2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptImportKey : Unknown @ 0x73903a29 (jmp 0xfe4774f7|jmp 0xffffcb62|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGenKey : Unknown @ 0x73903699 (jmp 0xfe47a7b0|jmp 0xffffcef2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptExportKey : Unknown @ 0x73903861 (jmp 0xfe47a677|jmp 0xffffcd2a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptEncrypt : Unknown @ 0x73903731 (jmp 0xfe45bf96|jmp 0xffffce5a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtDuplicateObject : Unknown @ 0x73901ed9 (jmp 0xfc442095|jmp 0xffffe6b2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtTerminateProcess : Unknown @ 0x73902ab9 (jmp 0xfc442e09|jmp 0xffffdad2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtMapViewOfSection : Unknown @ 0x739015f1 (jmp 0xfc4419a1|jmp 0xffffef9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtUnmapViewOfSection : Unknown @ 0x73901689 (jmp 0xfc441a09|jmp 0xffffef02|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSuspendThread : Unknown @ 0x739020a1 (jmp 0xfc440331|jmp 0xffffe4ea|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetContextThread : Unknown @ 0x73901d11 (jmp 0xfc4403f1|jmp 0xffffe87a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtProtectVirtualMemory : Unknown @ 0x73904441 (jmp 0xfc444409|jmp 0xffffc14a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueryInformationToken : Unknown @ 0x73903bf1 (jmp 0xfc444049|jmp 0xffffc99a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlEqualSid : Unknown @ 0x73903c89 (jmp 0xfc42a768|jmp 0xffffc902|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcessToken : Unknown @ 0x73903b59 (jmp 0xfc442a99|jmp 0xffffca32|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetInformationProcess : Unknown @ 0x73902b51 (jmp 0xfc443029|jmp 0xffffda3a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtOpenProcess : Unknown @ 0x73901da9 (jmp 0xfc442189|jmp 0xffffe7e2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtSetSystemInformation : Unknown @ 0x73902c81 (jmp 0xfc44109d|jmp 0xffffd90a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateFile : Unknown @ 0x73903309 (jmp 0xfc443255|jmp 0xffffd282|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtWriteVirtualMemory : Unknown @ 0x73901c79 (jmp 0xfc441e65|jmp 0xffffe912|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - RtlCreateProcessParametersEx : Unknown @ 0x739028f1 (jmp 0xfc401bb6|jmp 0xffffdc9a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtQueueApcThread : Unknown @ 0x73901e41 (jmp 0xfc441f1d|jmp 0xffffe74a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtCreateThreadEx : Unknown @ 0x739018e9 (jmp 0xfc441045|jmp 0xffffeca2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtAdjustPrivilegesToken : Unknown @ 0x73903271 (jmp 0xfc4433b1|jmp 0xffffd31a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - CreateToolhelp32Snapshot : Unknown @ 0x73902009 (jmp 0xfe75ace2|jmp 0xffffe582|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageA : Unknown @ 0x73903ee9 (jmp 0xfdc3c316|jmp 0xffffc6a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageA : Unknown @ 0x73904019 (jmp 0xfdc3046f|jmp 0xffffc572|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - PostMessageW : Unknown @ 0x739040b1 (jmp 0xfdc32e0c|jmp 0xffffc4da|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtVdmControl : Unknown @ 0x73903e51 (jmp 0xfc441f69|jmp 0xffffc73a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) kernel32.dll - MoveFileExW : Unknown @ 0x73902f79 (jmp 0xfe769474|jmp 0xffffd612|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - GetMessageW : Unknown @ 0x73903f81 (jmp 0xfdc3c69f|jmp 0xffffc60a|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWinEventHook : Unknown @ 0x739021d1 (jmp 0xfdc333c8|jmp 0xffffe3ba|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) USER32.dll - SetWindowsHookExW : Unknown @ 0x739017b9 (jmp 0xfdc2a1b6|jmp 0xffffedd2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptGetHashParam : Unknown @ 0x739038f9 (jmp 0xfe47597b|jmp 0xffffcc92|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptCreateHash : Unknown @ 0x739037c9 (jmp 0xfe47587b|jmp 0xffffcdc2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) WS2_32.dll - WSASend : Unknown @ 0x739041e1 (jmp 0xfc89fddb|jmp 0xffffc3aa|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ntdll.dll - NtLoadDriver : Unknown @ 0x73902be9 (jmp 0xfc441df5|jmp 0xffffd9a2|call 0x1fe)

[iAT:Inl(Hook.IEAT)] (chrome.exe) ADVAPI32.dll - CryptAcquireContextW : Unknown @ 0x73903601 (jmp 0xfe4756ed|jmp 0xffffcf8a|call 0x1fe)

 

¤¤¤ Web browsers : 0 ¤¤¤

 

¤¤¤ MBR Check : ¤¤¤

+++++ PhysicalDrive0: M4-CT256 M4SSD2 SCSI Disk Device +++++

--- User ---

[MBR] ad42f6f45525e6559f1d68720e265c80

[bSP] 97bcaec80441bf037f0fecd94da18ea9 : Windows Vista/7/8|VT.Unknown MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]

1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 244096 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]

User = LL1 ... OK

User = LL2 ... OK

 

+++++ PhysicalDrive1: WDC WD20EARX-00PASB0 SCSI Disk Device +++++

--- User ---

[MBR] 8193f38f68a7a8dad34888b833391271

[bSP] 0f8a514b9bb12ef0f15dcb139a5705dd : Windows Vista/7/8|VT.Unknown MBR Code

Partition table:

0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]

User = LL1 ... OK

User = LL2 ... OK

 

+++++ PhysicalDrive2: SAMSUNG HD103SJ SCSI Disk Device +++++

--- User ---

[MBR] 3bc5d6aea299170db270d71a40897738

[bSP] 4f5fb797e501a0b61f1c9ff3b49a9bb2 : Windows Vista/7/8|VT.Unknown MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]

1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 272629760 | Size: 820747 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]

User = LL1 ... OK

User = LL2 ... OK

 

+++++ PhysicalDrive3: SAMSUNG HD103SJ SCSI Disk Device +++++

--- User ---

[MBR] 63a052d9e1c7a7db1c76706be4ce7b36

[bSP] 458a107c4bd1211e746dc93c592991b1 : Windows Vista/7/8|VT.Unknown MBR Code

Partition table:

0 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 953867 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]

User = LL1 ... OK

User = LL2 ... OK

 

+++++ PhysicalDrive4: SanDisk SDSSDX120GG25 SCSI Disk Device +++++

--- User ---

[MBR] 22a363563ee10fbee001e4c3599e6e1e

[bSP] 18938ddb3852d20d2484709959caab1b : Linux|Legit.Unknown|VT.Unknown MBR Code

Partition table:

0 - [ACTIVE] LINUX (0x83) [VISIBLE] Offset (sectors): 2048 | Size: 243 MB

1 - [XXXXXX] EXTEN (0x5) [VISIBLE] Offset (sectors): 501758 | Size: 114228 MB

User = LL1 ... OK

User = LL2 ... OK

[Russian pop ups with counter on web browser (wasnt solved =/ )]

2015-05-26 18:15 - 2014-06-30 19:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll

2015-05-26 18:15 - 2014-06-30 19:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll

2015-05-26 18:15 - 2014-06-06 03:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe

2015-05-26 18:15 - 2014-06-06 03:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe

2015-05-26 18:15 - 2014-03-09 18:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe

2015-05-26 18:15 - 2014-03-09 18:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll

2015-05-26 18:15 - 2014-03-09 18:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe

2015-05-26 18:15 - 2014-03-09 18:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll

2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities

2015-05-26 14:45 - 2015-05-26 14:45 - 00000000 ____D () C:\Program Files (x86)\Canon

2015-05-26 14:44 - 2015-05-26 14:44 - 00001147 _____ () C:\Users\Public\Desktop\FIFA 15.lnk

2015-05-26 14:44 - 2015-05-26 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FIFA 15

2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\Windows\system32\CanonIJ Uninstaller Information

2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ___HD () C:\ProgramData\CanonBJ

2015-05-26 14:43 - 2015-05-26 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MX330 series

2015-05-26 14:43 - 2009-06-16 11:37 - 01342976 _____ (CANON INC.) C:\Windows\system32\CNC330C.DLL

2015-05-26 14:43 - 2009-06-16 11:36 - 00092672 _____ (CANON INC.) C:\Windows\system32\CNC330I.DLL

2015-05-26 14:43 - 2009-04-25 05:00 - 00290816 _____ (CANON INC.) C:\Windows\system32\CNMLM9P.DLL

2015-05-26 14:43 - 2009-02-19 13:20 - 00299520 _____ (CANON INC.) C:\Windows\system32\CNC330L.DLL

2015-05-26 14:43 - 2008-09-11 09:39 - 00244736 _____ (CANON INC.) C:\Windows\system32\CNMIU9P.DLL

2015-05-26 14:43 - 2008-09-03 11:15 - 00262656 _____ (Canon Inc.) C:\Windows\system32\CNCF2Li.DLL

2015-05-26 14:43 - 2008-09-03 11:10 - 00232448 _____ (Canon Inc.) C:\Windows\system32\CNCFMSi.EXE

2015-05-26 14:43 - 2008-09-03 11:10 - 00003072 _____ (Canon Inc.) C:\Windows\system32\CNCFLiUS.DLL

2015-05-26 14:43 - 2008-09-03 11:10 - 00002560 _____ (Canon Inc.) C:\Windows\system32\CNCFLiJP.DLL

2015-05-26 14:43 - 2008-08-25 18:02 - 00017920 _____ (CANON INC.) C:\Windows\system32\CNHMCA6.DLL

2015-05-26 14:43 - 2008-07-16 09:39 - 00235008 _____ (Canon Inc.) C:\Windows\system32\CNC330O.DLL

2015-05-26 14:43 - 2008-07-02 13:11 - 00013568 _____ () C:\Windows\system32\CNC1737D.TBL

2015-05-26 14:42 - 2015-05-26 14:42 - 11017360 _____ () C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe

2015-05-26 14:42 - 2015-05-26 14:42 - 00000000 ___HD () C:\Program Files\CanonBJ

2015-05-26 14:36 - 2015-05-26 14:36 - 48655952 _____ () C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe

2015-05-26 14:25 - 2013-07-09 02:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll

2015-05-26 14:25 - 2013-07-09 02:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll

2015-05-26 14:25 - 2013-07-09 01:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll

2015-05-26 14:25 - 2013-07-09 01:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll

2015-05-26 14:24 - 2015-01-30 20:56 - 00459336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2015-05-26 14:24 - 2014-03-04 06:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll

2015-05-26 14:24 - 2014-03-04 06:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll

2015-05-26 14:24 - 2014-03-04 06:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2015-05-26 14:24 - 2014-03-04 06:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2015-05-26 14:24 - 2014-03-04 06:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2015-05-26 14:24 - 2014-03-04 06:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2015-05-26 14:24 - 2014-03-04 05:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2015-05-26 14:24 - 2014-03-04 05:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2015-05-26 14:24 - 2013-08-01 23:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 23:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 22:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2015-05-26 14:24 - 2013-08-01 21:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 21:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 21:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2015-05-26 14:24 - 2013-08-01 21:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2015-05-26 14:24 - 2013-04-10 03:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys

2015-05-26 14:24 - 2011-02-03 08:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll

2015-05-26 14:23 - 2015-02-18 04:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe

2015-05-26 14:23 - 2015-02-18 04:04 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe

2015-05-26 14:23 - 2012-11-23 00:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe

2015-05-26 14:04 - 2014-05-14 13:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe

2015-05-26 14:04 - 2014-05-14 13:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll

2015-05-26 14:04 - 2014-05-14 13:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll

2015-05-26 14:04 - 2014-05-14 13:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll

2015-05-26 14:04 - 2014-05-14 13:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll

2015-05-26 14:04 - 2014-05-14 13:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll

2015-05-26 14:04 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll

2015-05-26 14:04 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll

2015-05-26 14:04 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe

2015-05-26 14:04 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe

2015-05-26 06:30 - 2015-05-26 06:30 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG

2015-05-26 06:30 - 2015-05-26 02:22 - 00000000 ____D () C:\Windows\Panther

2015-05-26 05:53 - 2015-05-26 05:56 - 00003328 _____ () C:\Windows\System32\Tasks\EVGAPrecisionX

2015-05-26 05:32 - 2015-05-26 05:32 - 00001355 _____ () C:\Windows\TSSysprep.log

2015-05-26 05:32 - 2015-05-26 05:32 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk

2015-05-26 05:32 - 2015-05-26 05:32 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk

2015-05-26 05:30 - 2015-05-26 05:30 - 00002841 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0530.html

2015-05-26 05:17 - 2015-05-27 03:12 - 00000000 ____D () C:\Windows\SysWOW64\directx

2015-05-26 05:16 - 2015-05-26 05:16 - 00000000 ____D () C:\Program Files (x86)\EVGA

2015-05-26 05:15 - 2015-05-26 05:16 - 18715110 _____ () C:\Users\Nach\Downloads\EVGA_PrecisionX_16_Setup_v5.3.3.zip

2015-05-26 04:54 - 2015-05-26 04:54 - 00002922 _____ () C:\Users\Nach\Unigine_Heaven_Benchmark_4.0_20150526_0454.html

2015-05-26 04:39 - 2015-05-27 03:09 - 00000000 ____D () C:\temp

2015-05-26 04:05 - 2015-06-01 22:29 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Origin

2015-05-26 04:05 - 2015-05-26 04:06 - 00000000 ____D () C:\Program Files (x86)\Origin Games

2015-05-26 04:05 - 2015-05-26 04:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Origin

2015-05-26 04:03 - 2015-06-03 07:09 - 00000000 ____D () C:\ProgramData\Origin

2015-05-26 04:03 - 2015-05-26 20:45 - 00000000 ____D () C:\ProgramData\Electronic Arts

2015-05-26 04:03 - 2015-05-26 04:03 - 00000979 _____ () C:\Users\Public\Desktop\Origin.lnk

2015-05-26 04:03 - 2015-05-26 04:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin

2015-05-26 04:02 - 2015-06-01 22:29 - 00000000 ____D () C:\Program Files (x86)\Origin

2015-05-26 04:02 - 2015-05-26 04:02 - 17110336 _____ (Electronic Arts, Inc.) C:\Users\Nach\Downloads\OriginThinSetup.exe

2015-05-26 04:01 - 2015-05-26 04:01 - 00000000 ____D () C:\Users\Nach\AppData\Local\Steam

2015-05-26 03:59 - 2015-06-03 14:09 - 00000000 ____D () C:\Program Files (x86)\Steam

2015-05-26 03:59 - 2015-05-26 03:59 - 01142128 _____ () C:\Users\Nach\Downloads\SteamSetup.exe

2015-05-26 03:59 - 2015-05-26 03:59 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk

2015-05-26 03:59 - 2015-05-26 03:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam

2015-05-26 03:41 - 2015-06-03 13:46 - 00000898 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job

2015-05-26 03:41 - 2015-06-03 11:26 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job

2015-05-26 03:41 - 2015-05-26 03:41 - 00003894 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c

2015-05-26 03:41 - 2015-05-26 03:41 - 00003642 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393

2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\NVIDIA

2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TechPowerUp GPU-Z

2015-05-26 03:41 - 2015-05-26 03:41 - 00000000 ____D () C:\Program Files (x86)\GPU-Z

2015-05-26 03:40 - 2015-05-26 03:40 - 01582736 _____ ( ) C:\Users\Nach\Downloads\cpu-z_1.72-en.exe

2015-05-26 03:40 - 2015-05-26 03:40 - 00000869 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk

2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID

2015-05-26 03:40 - 2015-05-26 03:40 - 00000000 ____D () C:\Program Files\CPUID

2015-05-26 03:10 - 2015-05-26 03:10 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech® Webcam Software

2015-05-26 03:08 - 2015-05-26 03:08 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Leadertech

2015-05-26 03:07 - 2015-05-26 03:08 - 00010101 _____ () C:\Windows\system32\lvcoinst.log

2015-05-26 03:07 - 2015-05-26 03:08 - 00003744 _____ () C:\Windows\LDPINST.LOG

2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files\Common Files\logishrd

2015-05-26 03:07 - 2015-05-26 03:08 - 00000000 ____D () C:\Program Files (x86)\Logitech

2015-05-26 03:07 - 2015-05-26 03:07 - 00001624 _____ () C:\Users\Public\Desktop\Logitech Webcam Software  .lnk

2015-05-26 03:05 - 2015-05-26 03:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech

2015-05-26 03:05 - 2015-05-26 03:05 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys

2015-05-26 03:05 - 2015-05-26 03:05 - 00000388 _____ () C:\Windows\LkmdfCoInst.log

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Users\Nach\AppData\Local\Logitech

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\LogiShrd

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\ProgramData\Apple

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Logitech Gaming Software

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files\Bonjour

2015-05-26 03:05 - 2015-05-26 03:05 - 00000000 ____D () C:\Program Files (x86)\Bonjour

2015-05-26 03:04 - 2015-05-26 03:04 - 74637872 _____ (Logitech, Inc.) C:\Users\Nach\Downloads\lws251.exe

2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logitech

2015-05-26 03:04 - 2015-05-26 03:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Logishrd

2015-05-26 03:02 - 2015-05-26 03:03 - 74818632 _____ (Logitech Inc.) C:\Users\Nach\Downloads\LGS_8.58.183_x64_Logitech.exe

2015-05-26 02:57 - 2015-05-26 02:58 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\QuickScan

2015-05-26 02:57 - 2015-05-26 02:57 - 10447328 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition_x64.exe

2015-05-26 02:57 - 2015-05-26 02:57 - 00162208 _____ () C:\Users\Nach\Downloads\Antivirus_Free_Edition.exe

2015-05-26 02:46 - 2015-05-26 02:54 - 00000000 ____D () C:\Users\Nach\Heaven

2015-05-26 02:44 - 2015-05-27 20:25 - 02128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage

2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Unigine

2015-05-26 02:44 - 2015-05-27 20:24 - 00000000 ____D () C:\Program Files (x86)\Unigine

2015-05-26 02:44 - 2015-05-26 02:44 - 00002117 _____ () C:\Users\Public\Desktop\Heaven Benchmark 4.0.lnk

2015-05-26 02:43 - 2015-05-26 04:58 - 00001377 _____ () C:\Users\Public\Desktop\GeForce Experience.lnk

2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA Corporation

2015-05-26 02:43 - 2015-05-26 04:58 - 00000000 ____D () C:\Users\Nach\AppData\Local\NVIDIA

2015-05-26 02:43 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation

2015-05-26 02:43 - 2015-05-07 21:35 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll

2015-05-26 02:43 - 2015-05-07 21:35 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll

2015-05-26 02:43 - 2015-05-07 21:34 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll

2015-05-26 02:43 - 2015-05-07 21:34 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll

2015-05-26 02:43 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll

2015-05-26 02:42 - 2015-06-03 11:29 - 00006462 _____ () C:\Windows\SysWOW64\Gms.log

2015-05-26 02:42 - 2015-05-26 04:42 - 00000000 ____D () C:\ProgramData\NVIDIA

2015-05-26 02:42 - 2015-05-26 04:38 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation

2015-05-26 02:42 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation

2015-05-26 02:42 - 2015-05-13 03:52 - 01558848 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll

2015-05-26 02:42 - 2015-05-13 03:52 - 00195912 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys

2015-05-26 02:42 - 2015-05-13 03:52 - 00031552 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 42718864 _____ () C:\Windows\system32\nvcompiler.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 37741712 _____ () C:\Windows\SysWOW64\nvcompiler.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 30478992 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 22945424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 17540416 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 16145176 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 15858728 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 15048816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 14455296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 13263568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 12849056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 11790144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 10972304 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys

2015-05-26 02:42 - 2015-05-12 03:27 - 03363224 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 02971776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 02932368 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 02599056 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01898312 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435286.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435286.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01099808 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01059984 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 01050256 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00982672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00974480 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00939080 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00502896 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00408208 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00407296 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00364176 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00176064 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00150832 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00112784 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00105288 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll

2015-05-26 02:42 - 2015-05-12 03:27 - 00031710 _____ () C:\Windows\system32\nvinfo.pb

2015-05-26 02:42 - 2015-05-12 00:30 - 06872392 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 03490448 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 00937288 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

2015-05-26 02:42 - 2015-05-12 00:30 - 00385352 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll

2015-05-26 02:42 - 2015-05-12 00:30 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll

2015-05-26 02:42 - 2015-05-11 14:01 - 04391871 _____ () C:\Windows\system32\nvcoproc.bin

2015-05-26 02:42 - 2014-11-22 07:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys

2015-05-26 02:42 - 2014-11-22 07:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll

2015-05-26 02:42 - 2014-11-22 07:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll

2015-05-26 02:41 - 2015-05-26 02:43 - 00000000 ____D () C:\Program Files\NVIDIA Corporation

2015-05-26 02:41 - 2015-05-26 02:41 - 00000000 ____D () C:\NVIDIA

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ___HD () C:\Program Files (x86)\Temp

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____H () C:\ProgramData\DP45977C.lfl

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files\Realtek

2015-05-26 02:40 - 2015-05-26 02:40 - 00000000 ____D () C:\Program Files (x86)\Realtek

2015-05-26 02:40 - 2014-05-28 20:23 - 03977944 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys

2015-05-26 02:40 - 2014-05-28 14:35 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll

2015-05-26 02:40 - 2014-05-28 11:38 - 01137695 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT

2015-05-26 02:40 - 2014-05-26 15:00 - 62006272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat

2015-05-26 02:40 - 2014-05-23 13:54 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll

2015-05-26 02:40 - 2014-05-22 16:24 - 00096568 _____ () C:\Windows\system32\audioLibVc.dll

2015-05-26 02:40 - 2014-05-22 13:21 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll

2015-05-26 02:40 - 2014-05-19 17:16 - 02843352 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll

2015-05-26 02:40 - 2014-05-19 10:47 - 02080472 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll

2015-05-26 02:40 - 2014-05-14 15:47 - 02119472 _____ () C:\Windows\system32\SStudio.dll

2015-05-26 02:40 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll

2015-05-26 02:40 - 2014-04-17 17:42 - 01317976 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll

2015-05-26 02:40 - 2014-04-17 17:42 - 01168472 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO5064.dll

2015-05-26 02:40 - 2014-04-17 17:42 - 01136728 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO4064.dll

2015-05-26 02:40 - 2014-04-10 12:20 - 12894808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll

2015-05-26 02:40 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 28343384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnA64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 03959384 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioVnN64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll

2015-05-26 02:40 - 2014-04-10 12:19 - 00900696 _____ (Waves Audio Ltd.) C:\Windows\SysWOW64\MaxxAudioAPOShell.dll

2015-05-26 02:40 - 2014-04-09 16:39 - 00942384 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOSettingsIPC.dll

2015-05-26 02:40 - 2014-04-09 16:38 - 05751048 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICAPOlfx.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 06218072 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll

2015-05-26 02:40 - 2014-04-07 16:03 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll

2015-05-26 02:40 - 2014-03-21 14:17 - 00291488 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll

2015-05-26 02:40 - 2014-03-19 19:19 - 00956504 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO2064.dll

2015-05-26 02:40 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl

2015-05-26 02:40 - 2014-03-05 05:11 - 01048824 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll

2015-05-26 02:40 - 2014-03-05 05:11 - 00889592 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll

2015-05-26 02:40 - 2014-03-05 05:11 - 00724728 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll

2015-05-26 02:40 - 2014-03-05 05:11 - 00246008 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll

2015-05-26 02:40 - 2014-02-27 20:02 - 02162992 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll

2015-05-26 02:40 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll

2015-05-26 02:40 - 2014-02-06 11:28 - 05804772 _____ () C:\Windows\system32\Drivers\rtvienna.dat

2015-05-26 02:40 - 2014-01-31 17:27 - 01313904 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxSpeechAPO64.dll

2015-05-26 02:40 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll

2015-05-26 02:40 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll

2015-05-26 02:40 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll

2015-05-26 02:40 - 2013-10-11 11:31 - 00947760 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll

2015-05-26 02:40 - 2013-10-07 00:26 - 00501184 _____ (DTS) C:\Windows\system32\DTSU2PLFX64.dll

2015-05-26 02:40 - 2013-10-07 00:26 - 00487360 _____ (DTS) C:\Windows\system32\DTSU2PGFX64.dll

2015-05-26 02:40 - 2013-10-07 00:26 - 00415680 _____ (DTS) C:\Windows\system32\DTSU2PREC64.dll

2015-05-26 02:40 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll

2015-05-26 02:40 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll

2015-05-26 02:40 - 2013-06-25 12:47 - 00871856 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaeapo64.dll

2015-05-26 02:40 - 2013-06-25 12:47 - 00162224 _____ (TOSHIBA Corporation) C:\Windows\system32\toseaeapo64.dll

2015-05-26 02:40 - 2013-06-25 12:46 - 00582056 _____ (TOSHIBA Corporation) C:\Windows\system32\tosasfapo64.dll

2015-05-26 02:40 - 2013-06-21 11:01 - 00109848 _____ () C:\Windows\system32\AcpiServiceVnA64.dll

2015-05-26 02:40 - 2013-04-03 14:13 - 00906800 _____ (Sony Corporation) C:\Windows\system32\MISS_APO.dll

2015-05-26 02:40 - 2012-08-31 19:18 - 07164176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00434960 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00141584 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00124176 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll

2015-05-26 02:40 - 2012-08-31 19:17 - 00075024 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll

2015-05-26 02:40 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll

2015-05-26 02:40 - 2012-01-30 11:43 - 00836544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll

2015-05-26 02:40 - 2012-01-10 10:20 - 00065944 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll

2015-05-26 02:40 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll

2015-05-26 02:40 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll

2015-05-26 02:40 - 2011-09-02 14:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll

2015-05-26 02:40 - 2011-09-02 14:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll

2015-05-26 02:40 - 2011-09-02 14:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll

2015-05-26 02:40 - 2011-08-23 17:00 - 00603984 _____ (Knowles Acoustics ) C:\Windows\system32\KAAPORT64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll

2015-05-26 02:40 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll

2015-05-26 02:40 - 2011-03-17 12:17 - 01361336 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll

2015-05-26 02:40 - 2011-03-07 17:11 - 00148416 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll

2015-05-26 02:40 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll

2015-05-26 02:40 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll

2015-05-26 02:40 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll

2015-05-26 02:40 - 2010-07-22 16:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll

2015-05-26 02:40 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll

2015-05-26 02:39 - 2015-05-26 02:39 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf

2015-05-26 02:37 - 2015-05-26 02:39 - 00000000 ____D () C:\ProgramData\Intel

2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel

2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\Intel

2015-05-26 02:37 - 2015-05-26 02:37 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Intel Corporation

2015-05-26 02:36 - 2015-05-26 02:36 - 00002253 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2015-05-26 02:36 - 2015-05-26 02:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-05-26 02:35 - 2015-06-03 14:40 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2015-05-26 02:35 - 2015-06-03 11:26 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Users\Nach\AppData\Local\Google

2015-05-26 02:35 - 2015-05-26 02:36 - 00000000 ____D () C:\Program Files (x86)\Google

2015-05-26 02:35 - 2015-05-26 02:35 - 00004060 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2015-05-26 02:35 - 2015-05-26 02:35 - 00003808 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_iusb3hcs_01009.Wdf

2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Deployment

2015-05-26 02:35 - 2015-05-26 02:35 - 00000000 ____D () C:\Users\Nach\AppData\Local\Apps\2.0

2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files\Intel

2015-05-26 02:34 - 2015-05-26 02:39 - 00000000 ____D () C:\Program Files (x86)\Intel

2015-05-26 02:34 - 2015-05-26 02:34 - 00000000 ____D () C:\Intel

2015-05-26 02:34 - 2014-02-21 13:56 - 00041984 _____ (Intel Corporation) C:\Windows\system32\Drivers\USB3Ver.dll

2015-05-26 02:33 - 2015-05-28 02:55 - 00000000 ____D () C:\ProgramData\Package Cache

2015-05-26 02:28 - 2015-05-28 01:37 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information

2015-05-26 02:28 - 2015-05-26 02:28 - 00057560 _____ () C:\Users\Nach\AppData\Local\GDIPFONTCACHEV1.DAT

2015-05-26 02:27 - 2015-05-26 19:00 - 00775384 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI

2015-05-26 02:26 - 2015-05-26 02:26 - 00000000 ____D () C:\ProgramData\Downloaded Installations

2015-05-26 02:24 - 2012-07-26 01:55 - 00785512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys

2015-05-26 02:24 - 2012-07-26 01:55 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys

2015-05-26 02:24 - 2012-07-25 23:36 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll

2015-05-26 02:24 - 2012-06-02 11:35 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf

2015-05-26 02:22 - 2015-06-03 14:10 - 01576246 _____ () C:\Windows\WindowsUpdate.log

2015-05-26 02:22 - 2015-06-03 11:06 - 00001413 _____ () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2015-05-26 02:22 - 2015-05-27 20:26 - 00000000 ____D () C:\Users\Nach

2015-05-26 02:22 - 2015-05-26 02:22 - 00000020 ___SH () C:\Users\Nach\ntuser.ini

2015-05-26 02:22 - 2015-05-26 02:22 - 00000000 __SHD () C:\Recovery

2015-05-26 02:22 - 2009-07-14 01:54 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2015-05-26 02:22 - 2009-07-14 01:49 - 00000000 ___RD () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

 

==================== One Month Modified files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-06-03 14:44 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-06-03 14:44 - 2009-07-14 01:45 - 00031088 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-06-03 14:43 - 2009-07-14 01:51 - 00043846 _____ () C:\Windows\setupact.log

2015-06-03 11:32 - 2009-07-14 02:13 - 00783606 _____ () C:\Windows\system32\PerfStringBackup.INI

2015-06-03 11:26 - 2009-07-14 02:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2015-06-03 11:06 - 2009-07-14 01:45 - 00265552 _____ () C:\Windows\system32\FNTCACHE.DAT

2015-06-03 11:05 - 2011-04-12 05:28 - 00000000 ____D () C:\Program Files\Windows Journal

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\zh-HK

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\SysWOW64\tr-TR

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\zh-HK

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\tr-TR

2015-06-03 11:05 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\PolicyDefinitions

2015-06-02 21:29 - 2010-11-21 00:47 - 00149122 _____ () C:\Windows\PFRO.log

2015-06-02 05:11 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\NDF

2015-06-01 21:54 - 2009-07-14 02:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games

2015-05-28 00:44 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\rescache

2015-05-27 19:41 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\Offline Web Pages

2015-05-27 02:07 - 2009-07-14 00:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared

2015-05-26 20:45 - 2009-07-14 00:20 - 00000000 __RHD () C:\Users\Public\Libraries

2015-05-26 14:43 - 2009-07-14 00:20 - 00000000 __RSD () C:\Windows\Media

2015-05-26 06:30 - 2009-07-14 02:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template

2015-05-26 05:38 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\LiveKernelReports

2015-05-26 05:32 - 2009-07-14 01:46 - 00002790 _____ () C:\Windows\DtcInstall.log

2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories

2015-05-26 05:32 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\system32\sysprep

2015-05-26 05:30 - 2011-04-12 05:28 - 00000000 ____D () C:\Windows\CSC

2015-05-26 04:38 - 2009-07-14 02:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD

2015-05-26 03:11 - 2009-07-14 01:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk

2015-05-26 02:42 - 2009-07-14 00:20 - 00000000 ____D () C:\Windows\Help

2015-05-26 02:24 - 2009-07-14 02:32 - 00000000 ____D () C:\Windows\system32\restore

2015-05-26 02:22 - 2009-07-14 01:45 - 00000000 ____D () C:\Windows\Setup

 

==================== Files in the root of some directories =======

 

2015-05-28 01:36 - 2015-05-28 01:36 - 0000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag

2015-05-26 02:44 - 2015-05-27 20:25 - 2128896 _____ () C:\Users\Nach\AppData\Local\file__0.localstorage

2015-05-26 02:40 - 2015-05-26 02:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

 

Some files in TEMP:

====================

C:\Users\Nach\AppData\Local\Temp\Quarantine.exe

C:\Users\Nach\AppData\Local\Temp\sqlite3.dll

 

 

==================== Bamital & volsnap Check =================

 

(There is no automatic fix for files that do not pass verification.)

 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

 

 

LastRegBack: 2015-05-27 04:41

 

==================== End of log ============================

 

 

 

 

ADDITION

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015

Ran by Nach at 2015-06-03 14:45:05

Running from C:\Users\Nach\Desktop

Boot Mode: Normal

==========================================================

 

 

==================== Accounts: =============================

 

Administrator (S-1-5-21-318558523-3823039876-2902504939-500 - Administrator - Disabled)

Guest (S-1-5-21-318558523-3823039876-2902504939-501 - Limited - Disabled)

Nach (S-1-5-21-318558523-3823039876-2902504939-1000 - Administrator - Enabled) => C:\Users\Nach

 

==================== Security Center ========================

 

(If an entry is included in the fixlist, it will be removed.)

 

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}

AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

 

==================== Installed Programs ======================

 

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 

 

Adobe Acrobat Reader DC - Português (HKLM-x32\...\{AC76BA86-7AD7-1046-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)

Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version:  - Hidden Path Entertainment, Ensemble Studios)

Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 18.20.0.1429 - Bitdefender)

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden

Canon MP Navigator EX 2.1 (HKLM-x32\...\MP Navigator EX 2.1) (Version:  - )

Canon MX330 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX330_series) (Version:  - Canon Inc.)

Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)

CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )

Creation Master 15.0 (HKLM-x32\...\Creation Master 15_is1) (Version:  - FIFA MASTER)

EA SPORTS™ FIFA 15 (HKLM-x32\...\{3D4ADA2B-F028-4307-ADF4-6F9AA44725DA}) (Version: 1.7.0.0 - Electronic Arts)

erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden

Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)

Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden

Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version:  - Rockstar North)

GRID (HKLM-x32\...\Steam App 12750) (Version:  - Codemasters Studios)

Heaven Benchmark version 4.0 (HKLM-x32\...\Unigine Heaven Benchmark (Basic Edition)_is1) (Version: 4.0 - Unigine Corp.)

Intel® Chipset Device Software (x32 Version: 10.0.20 - Intel® Corporation) Hidden

Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)

Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)

Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.)

Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)

Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)

Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)

Mozilla Firefox 38.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 en-US)) (Version: 38.0.5 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)

MSI Afterburner 4.1.0 (HKLM-x32\...\Afterburner) (Version: 4.1.0 - MSI Co., LTD)

NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)

NVIDIA GeForce Experience 2.4.3.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.31 - NVIDIA Corporation)

NVIDIA Graphics Driver 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation)

NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)

NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)

OpenAL (HKLM-x32\...\OpenAL) (Version:  - )

Origin (HKLM-x32\...\Origin) (Version: 9.5.12.2862 - Electronic Arts, Inc.)

Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden

Qualcomm Atheros Killer E220x Drivers (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden

Qualcomm Atheros Killer Network Manager Suite (HKLM-x32\...\{FE5DFB80-6937-4154-A2C7-EF845C1301F8}) (Version: 1.0.30.1259 - Qualcomm Atheros)

Qualcomm Atheros Network Manager (Version: 1.0.30.1259 - Qualcomm Atheros) Hidden

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.)

Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)

SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden

SHIELD Wireless Controller Driver (Version: 2.4.3.31 - NVIDIA Corporation) Hidden

Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)

Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.)

Sophos Virus Removal Tool (HKLM-x32\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.5.4 - Sophos Limited)

Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)

TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)

The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.0.0 - GOG.com)

Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)

WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

 

==================== Custom CLSID (Whitelisted): ==========================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== Restore Points =========================

 

30-05-2015 21:11:57 Installed DirectX

01-06-2015 21:54:23 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030

01-06-2015 21:54:31 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030

02-06-2015 21:43:16 Installed Sophos Virus Removal Tool.

03-06-2015 10:42:56 Windows Update

 

==================== Hosts content: ===============================

 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

 

2009-07-13 23:34 - 2009-06-10 18:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

 

==================== Scheduled Tasks (Whitelisted) =============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

Task: {332DF19C-15ED-47C2-B41B-FD0966C6D230} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated)

Task: {4A459083-3C0D-47DF-BBF8-B954C9A7F079} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {606810AD-FC6E-406F-95B8-97AD30DF8C6C} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2014-12-06] ()

Task: {70553BA1-A890-422D-B3A2-07A9FD4BCDDF} - System32\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {714D0294-6844-47CB-BBB4-E3355CF88D6B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {8FD47602-92B6-4BA3-AB5C-DF206E6E8809} - System32\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-26] (Google Inc.)

Task: {AD7D643B-DA81-43C4-A6C1-6BC52C59CF93} - System32\Tasks\EVGAPrecisionX => C:\Program Files (x86)\EVGA\PrecisionX 16\PrecisionX_x64.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0977f3e5f393.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0977f4b8115c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

 

==================== Loaded Modules (Whitelisted) ==============

 

2015-05-27 19:38 - 2014-08-27 16:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll

2015-05-27 19:38 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll

2015-05-27 19:38 - 2014-12-17 14:34 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui

2015-05-27 19:38 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll

2015-05-27 20:24 - 2015-05-27 20:24 - 00790368 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpbr.mdl

2015-05-27 20:24 - 2015-05-27 20:24 - 00711064 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpdsp.mdl

2015-05-27 20:24 - 2015-05-27 20:24 - 02683520 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttpph.mdl

2015-05-27 20:24 - 2015-05-27 20:24 - 01326504 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_00350_002\ashttprbl.mdl

2015-05-26 02:42 - 2015-05-12 00:30 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll

2014-12-06 04:03 - 2014-12-06 04:03 - 00565760 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe

2014-09-18 04:23 - 2014-09-18 04:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll

2015-03-12 15:23 - 2015-03-12 15:23 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll

2014-09-18 04:23 - 2014-09-18 04:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll

2015-03-12 15:23 - 2015-03-12 15:23 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll

2013-08-08 14:30 - 2013-08-08 14:30 - 00283648 _____ () C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe

2014-12-06 04:01 - 2014-12-06 04:01 - 00071680 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll

2014-12-06 04:01 - 2014-12-06 04:01 - 00056832 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll

2014-12-06 04:02 - 2014-12-06 04:02 - 00217600 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll

2014-12-06 04:01 - 2014-12-06 04:01 - 00353792 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll

2014-12-06 04:02 - 2014-12-06 04:02 - 00649216 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll

2015-05-26 02:43 - 2015-05-07 21:36 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll

2012-09-13 00:38 - 2012-09-13 00:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll

2012-09-13 00:38 - 2012-09-13 00:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll

2012-09-13 00:38 - 2012-09-13 00:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll

2012-09-13 00:38 - 2012-09-13 00:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll

2012-09-13 00:38 - 2012-09-13 00:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll

2015-05-26 02:36 - 2015-05-22 17:22 - 14982472 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\PepperFlash\pepflashplayer.dll

2014-03-20 11:43 - 2014-03-20 11:43 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

2015-05-26 02:36 - 2015-05-22 17:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll

2015-05-26 02:36 - 2015-05-22 17:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll

 

==================== Alternate Data Streams (Whitelisted) =========

 

(If an entry is included in the fixlist, only the ADS will be removed.)

 

AlternateDataStreams: C:\Users\Nach\Desktop\FRST64.exe:BDU

AlternateDataStreams: C:\Users\Nach\Desktop\rkill.exe:BDU

AlternateDataStreams: C:\Users\Nach\Desktop\SecurityCheck.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\dxwebsetup.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\md64-win-mx330-1_02-ej.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\mpnx_2_1-win-2_13-ea23_2.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\SkypeSetupFull.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe:BDU

AlternateDataStreams: C:\Users\Nach\Downloads\Xbox360_64Eng.exe:BDU

 

==================== Safe Mode (Whitelisted) ===================

 

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SophosVirusRemovalTool => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SophosVirusRemovalTool => ""="Service"

 

==================== EXE Association (Whitelisted) ===============

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

 

 

==================== Internet Explorer trusted/restricted ===============

 

(If an entry is included in the fixlist, it will be removed from the registry.)

 

 

==================== Other Areas ============================

 

(Currently there is no automatic fix for this section.)

 

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 89.248.166.149 - 8.8.8.8

 

==================== MSCONFIG/TASK MANAGER disabled items ==

 

(Currently there is no automatic fix for this section.)

 

 

==================== FirewallRules (Whitelisted) ===============

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

FirewallRules: [sPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe

FirewallRules: [sPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe

 

==================== Faulty Device Manager Devices =============

 

 

==================== Event log errors: =========================

 

Application errors:

==================

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:61990 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:53692 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:52704 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60476 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60530 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:64689 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:62882 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57344 length 0 too short

 

Error: (06/03/2015 02:43:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:61990 length 0 too short

 

Error: (06/03/2015 02:43:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:53692 length 0 too short

 

 

System errors:

=============

Error: (06/03/2015 11:27:00 AM) (Source: Service Control Manager) (EventID: 7024) (User: )

Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

 

Error: (06/03/2015 11:17:27 AM) (Source: Service Control Manager) (EventID: 7024) (User: )

Description: The HomeGroup Listener service terminated with service-specific error %%-2147023143.

 

Error: (06/03/2015 11:16:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Print Spooler service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

 

Error: (06/03/2015 11:16:21 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

 

Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

 

Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Skype Click to Call PNR Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/03/2015 11:16:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Skype Click to Call Updater service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/03/2015 11:14:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/03/2015 11:14:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: The Intel® Rapid Storage Technology service terminated unexpectedly.  It has done this 1 time(s).

 

Error: (06/03/2015 11:14:27 AM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

 

 

Microsoft Office:

=========================

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:61990 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:53692 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:52704 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60476 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:60530 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:64689 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:62882 length 0 too short

 

Error: (06/03/2015 02:43:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:57344 length 0 too short

 

Error: (06/03/2015 02:43:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:61990 length 0 too short

 

Error: (06/03/2015 02:43:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )

Description: DNS Message from 89.248.166.149:53 to 192.168.0.2:53692 length 0 too short

 

 

==================== Memory info =========================== 

 

Processor: Intel® Core i5-4690K CPU @ 3.50GHz

Percentage of memory in use: 35%

Total physical RAM: 16293.58 MB

Available physical RAM: 10583.64 MB

Total Pagefile: 32585.35 MB

Available Pagefile: 26262.07 MB

Total Virtual: 8192 MB

Available Virtual: 8191.82 MB

 

==================== Drives ================================

 

Drive c: () (Fixed) (Total:238.37 GB) (Free:9.36 GB) NTFS

Drive d: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from reading drive)]

Drive e: (Data) (Fixed) (Total:931.51 GB) (Free:376.58 GB) NTFS

Drive f: (Móvel) (Fixed) (Total:1863.01 GB) (Free:445.35 GB) NTFS

Drive g: (Software) (Fixed) (Total:801.51 GB) (Free:722.62 GB) NTFS

 

==================== MBR & Partition Table ==================

 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 000A788F)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=238.4 GB) - (Type=07 NTFS)

 

========================================================

Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 0AE75AEB)

Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

 

========================================================

Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 2E2F1945)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=801.5 GB) - (Type=07 NTFS)

 

========================================================

Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1D42D274)

Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

 

========================================================

Disk: 4 (Size: 111.8 GB) (Disk ID: 00087AEE)

Partition 1: (Active) - (Size=243 MB) - (Type=83)

Partition 2: (Not Active) - (Size=111.6 GB) - (Type=05)

 

==================== End of log ============================

 

_________________________________________________________________________________________________________________________________________________

 

 

 

I will now close Chrome to run RogueKiller

[Russian pop ups with counter on web browser (wasnt solved =/ )]

Thanks. So here's the Malware Bytes Scan:

 

 

Malwarebytes Anti-Malware

www.malwarebytes.org

 

Scan Date: 6/3/2015

Scan Time: 2:33:34 PM

Logfile: 

Administrator: Yes

 

Version: 2.01.6.1022

Malware Database: v2015.06.03.04

Rootkit Database: v2015.06.02.01

License: Trial

Malware Protection: Enabled

Malicious Website Protection: Enabled

Self-protection: Enabled

 

OS: Windows 7 Service Pack 1

CPU: x64

File System: NTFS

User: Nach

 

Scan Type: Threat Scan

Result: Completed

Objects Scanned: 339567

Time Elapsed: 3 min, 46 sec

 

Memory: Enabled

Startup: Enabled

Filesystem: Enabled

Archives: Enabled

Rootkits: Enabled

Heuristics: Enabled

PUP: Enabled

PUM: Enabled

 

Processes: 0

(No malicious items detected)

 

Modules: 0

(No malicious items detected)

 

Registry Keys: 0

(No malicious items detected)

 

Registry Values: 0

(No malicious items detected)

 

Registry Data: 0

(No malicious items detected)

 

Folders: 0

(No malicious items detected)

 

Files: 0

(No malicious items detected)

 

Physical Sectors: 0

(No malicious items detected)

 

 

(end)

_________________________________________________________________________________________________________________________________

 

 

Farbar:

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-05-2015

Ran by Nach (administrator) on NACH-PC on 03-06-2015 14:44:53

Running from C:\Users\Nach\Desktop

Loaded Profiles: Nach (Available Profiles: Nach)

Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)

Internet Explorer Version 10 (Default browser: Chrome)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

 

==================== Processes (Whitelisted) =================

 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

 

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe

() C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe

(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe

() C:\Program Files\Qualcomm Atheros\Network Manager\NetworkManager.exe

(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe

(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTgui.exe

(Sophos Limited) C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Malwarebytes Corp.) E:\Downloads\mbar-1.09.1.1004.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

 

 

==================== Registry (Whitelisted) ==================

 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

 

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7611608 2014-05-27] (Realtek Semiconductor)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-07] (NVIDIA Corporation)

HKLM\...\Run: [shadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)

HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)

HKLM\...\Run: [bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1691112 2015-05-27] (Bitdefender)

HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\...\Run: [bitdefender Wallet Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [790880 2015-05-27] (Bitdefender)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-05-28]

ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{401FADAA-1C16-4721-9F02-19067E1A1CA8}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)

Startup: C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Product Registration.lnk [2015-05-28]

ShortcutTarget: Logitech . Product Registration.lnk -> C:\Program Files (x86)\Logitech\Ereg\eReg.exe (Leader Technologies/Logitech)

ShellIconOverlayIdentifiers: [__SafeBox1] -> {152C96EB-288E-4EDC-B7C6-D21F8250ADF3} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

ShellIconOverlayIdentifiers: [__SafeBox2] -> {342DAA0B-D796-460D-8566-901E08A1CCAD} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

ShellIconOverlayIdentifiers: [__SafeBox3] -> {57595DAE-1AE1-4D97-A49E-67CBB53B52DF} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

ShellIconOverlayIdentifiers: [__SafeBox4] -> {33816773-98AE-4723-ADE0-EBE54C8B5A67} => C:\Program Files\Bitdefender\Bitdefender SafeBox\SafeBoxShell.dll [2014-07-04] (Bitdefender)

 

==================== Internet (Whitelisted) ====================

 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

 

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKU\S-1-5-21-318558523-3823039876-2902504939-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/pt-br/?ocid=iehp

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

BHO: Bitdefender Wallet  -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender)

BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)

BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender)

BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

Toolbar: HKLM - Bitdefender Wallet  - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll [2015-05-27] (Bitdefender)

Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll [2015-05-27] (Bitdefender)

Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)

Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 89.248.166.149 8.8.8.8

 

FireFox:

========

FF ProfilePath: C:\Users\Nach\AppData\Roaming\Mozilla\Firefox\Profiles\ceywwvhy.default

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-26] (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-03-17] (Adobe Systems Inc.)

FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext

FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2015-05-27]

FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff

FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2015-05-27]

FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext

 

Chrome: 

=======

CHR Profile: C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Google Drive) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-05-26]

CHR Extension: (YouTube) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-05-26]

CHR Extension: (Google Search) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-05-26]

CHR Extension: (AdBlock) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-28]

CHR Extension: (Bookmark Manager) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-05-26]

CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-06-02]

CHR Extension: (Skype Click to Call) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-27]

CHR Extension: (Google Wallet) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-26]

CHR Extension: (Gmail) - C:\Users\Nach\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-05-26]

CHR HKLM-x32\...\Chrome\Extension: [fabcmochhfpldjekobfaaggijgohadih] - https://clients2.google.com/service/update2/crx

CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

 

==================== Services (Whitelisted) =================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-12-09] (Bitdefender)

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)

R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)

R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-07] (NVIDIA Corporation)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation)

S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel® Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation)

S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)

S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-07] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-07] (NVIDIA Corporation)

S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1997168 2015-06-01] (Electronic Arts)

R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [343040 2013-08-08] (Qualcomm Atheros) [File not signed]

S4 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [94624 2013-07-08] (Bitdefender)

R3 SophosVirusRemovalTool; C:\Program Files (x86)\Sophos\Sophos Virus Removal Tool\SVRTservice.exe [153384 2014-11-26] (Sophos Limited)

R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-10-27] (Bitdefender)

R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1547936 2015-05-27] (Bitdefender)

R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-13] (Microsoft Corporation)

 

==================== Drivers (Whitelisted) ====================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1306464 2015-05-27] (BitDefender)

R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [262544 2015-05-27] (BitDefender)

R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [677104 2015-05-27] (BitDefender)

R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2015-05-27] (BitDefender LLC)

R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107080 2012-10-29] (BitDefender LLC)

S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)

R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-17] (BitDefender)

R1 BfLwf; C:\Windows\System32\DRIVERS\bflwfx64.sys [67888 2013-02-13] (Qualcomm Atheros, Inc.)

R3 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [160544 2015-05-27] (BitDefender LLC)

R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28008 2014-04-11] (Intel Corporation)

R3 Ke2200; C:\Windows\System32\DRIVERS\e22w7x64.sys [154320 2013-03-20] (Qualcomm Atheros, Inc.)

R3 LGSHidFilt; C:\Windows\System32\DRIVERS\LGSHidFilt.Sys [64280 2013-05-30] (Logitech Inc.)

S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)

S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)

R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [118272 2014-03-20] (Intel Corporation)

R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-07] (NVIDIA Corporation)

R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)

R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [13368 2013-03-11] ()

R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2014-10-15] (BitDefender S.R.L.)

 

==================== NetSvcs (Whitelisted) ===================

 

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

 

 

==================== One Month Created files and folders ========

 

(If an entry is included in the fixlist, the file/folder will be moved.)

 

2015-06-03 14:44 - 2015-06-03 14:44 - 00017666 _____ () C:\Users\Nach\Desktop\FRST.txt

2015-06-03 14:43 - 2015-06-03 14:44 - 00000000 ____D () C:\FRST

2015-06-03 14:43 - 2015-06-03 14:43 - 02108928 _____ (Farbar) C:\Users\Nach\Desktop\FRST64.exe

2015-06-03 11:56 - 2015-06-03 11:56 - 00082824 _____ (BitDefender SRL) C:\Windows\system32\Drivers\bdsandbox.sys

2015-06-03 11:06 - 2015-06-03 11:06 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Adobe

2015-06-03 10:52 - 2015-06-03 10:52 - 19221504 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 15407616 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 14317568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2015-06-03 10:52 - 2015-06-03 10:52 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2015-06-03 10:52 - 2015-06-03 10:52 - 02647552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02240512 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 02046464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01766912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2015-06-03 10:52 - 2015-06-03 10:52 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2015-06-03 10:52 - 2015-06-03 10:52 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2015-06-03 10:52 - 2015-06-03 10:52 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01129984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00526848 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2015-06-03 10:52 - 2015-06-03 10:52 - 00391680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2015-06-03 10:52 - 2015-06-03 10:52 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2015-06-03 10:52 - 2015-06-03 10:52 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2015-06-03 10:52 - 2015-06-03 10:52 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2015-06-03 10:52 - 2015-06-03 10:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2015-06-03 10:52 - 2015-06-03 10:52 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2015-06-03 10:50 - 2015-06-03 10:50 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 02776576 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 02284544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01988096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01887232 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01682432 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01504768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01238528 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01175552 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01158144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 01080832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00648192 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00604160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00522752 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00363008 _____ (Microsoft Corporation) C:\Windows\system32\dxgi.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00333312 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00293376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxgi.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00249856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecsExt.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10core.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00207872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecsExt.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00194560 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00010752 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00009728 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00005632 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2015-06-03 10:50 - 2015-06-03 10:50 - 00002560 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2015-06-03 10:48 - 2015-06-03 10:53 - 00011231 _____ () C:\Windows\IE10_main.log

2015-06-03 10:45 - 2015-06-03 10:47 - 00003318 _____ () C:\Windows\IE9_main.log

2015-06-03 10:43 - 2015-06-03 10:45 - 00000000 ____D () C:\Windows\system32\MRT

2015-06-03 10:43 - 2015-04-01 11:16 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2015-06-03 10:40 - 2015-03-06 02:56 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2015-06-03 10:40 - 2015-03-06 02:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2015-06-03 10:40 - 2015-03-06 02:42 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2015-06-03 10:40 - 2015-03-06 02:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2015-06-03 10:40 - 2015-03-06 02:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe

2015-06-03 10:40 - 2015-03-06 02:41 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2015-06-03 10:40 - 2015-03-06 02:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll

2015-06-03 10:40 - 2015-03-06 02:38 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll

2015-06-03 10:40 - 2015-03-06 02:36 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2015-06-03 10:40 - 2015-03-06 02:10 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2015-06-03 10:40 - 2015-03-06 02:09 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2015-06-03 10:40 - 2015-03-06 02:09 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe

2015-06-03 10:40 - 2015-03-06 02:07 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll

2015-06-03 10:40 - 2015-03-06 02:07 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll

2015-06-03 10:40 - 2015-03-06 02:06 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll

2015-06-03 10:40 - 2015-02-26 00:25 - 03204096 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2015-06-03 10:40 - 2015-01-29 00:23 - 05554104 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2015-06-03 10:40 - 2015-01-29 00:19 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll

2015-06-03 10:40 - 2015-01-29 00:19 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll

2015-06-03 10:40 - 2015-01-29 00:19 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2015-06-03 10:40 - 2015-01-29 00:18 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe

2015-06-03 10:40 - 2015-01-29 00:18 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2015-06-03 10:40 - 2015-01-29 00:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2015-06-03 10:40 - 2015-01-29 00:05 - 03973048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2015-06-03 10:40 - 2015-01-29 00:05 - 03917752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2015-06-03 10:40 - 2015-01-29 00:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll

2015-06-03 10:40 - 2015-01-28 23:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll

2015-06-03 10:40 - 2014-09-12 22:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll

2015-06-03 10:40 - 2014-09-12 22:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll

2015-06-03 10:40 - 2014-08-21 03:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll

2015-06-03 10:40 - 2014-08-21 03:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll

2015-06-03 10:40 - 2014-08-21 03:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll

2015-06-03 10:40 - 2014-08-21 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll

2015-06-03 10:40 - 2014-03-24 23:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2015-06-03 10:40 - 2014-03-24 23:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2015-06-03 10:40 - 2014-02-03 23:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll

2015-06-03 10:40 - 2014-02-03 23:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll

2015-06-03 10:40 - 2013-10-02 23:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2015-06-03 10:40 - 2013-10-02 23:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2015-06-03 10:40 - 2013-09-27 22:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

2015-06-03 10:40 - 2013-08-01 23:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2015-06-03 10:40 - 2013-08-01 23:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2015-06-03 10:40 - 2013-08-01 22:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2015-06-03 10:40 - 2013-08-01 22:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2015-06-03 10:40 - 2013-08-01 09:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys

2015-06-03 10:40 - 2013-07-20 07:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2015-06-03 10:40 - 2013-07-20 07:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2015-06-03 10:40 - 2013-07-09 02:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll

2015-06-03 10:40 - 2013-07-09 02:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll

2015-06-03 10:40 - 2013-07-09 02:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2015-06-03 10:40 - 2013-07-09 01:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll

2015-06-03 10:40 - 2013-07-09 01:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll

2015-06-03 10:40 - 2013-07-09 01:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2015-06-03 10:40 - 2013-07-06 03:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2015-06-03 10:40 - 2013-06-15 01:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

2015-06-03 10:40 - 2013-06-06 02:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2015-06-03 10:40 - 2013-06-06 02:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2015-06-03 10:40 - 2013-06-06 02:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2015-06-03 10:40 - 2013-06-06 02:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2015-06-03 10:40 - 2013-06-06 01:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll

2015-06-03 10:40 - 2013-06-06 01:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2015-06-03 10:40 - 2013-06-06 01:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll

2015-06-03 10:40 - 2013-06-06 00:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2015-06-03 10:40 - 2013-06-06 00:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll

2015-06-03 10:40 - 2013-06-06 00:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll

2015-06-03 10:40 - 2013-01-03 03:00 - 00288088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS

2015-06-03 10:40 - 2012-11-09 02:45 - 00750592 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll

2015-06-03 10:40 - 2012-11-09 01:43 - 00492032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll

2015-06-03 10:40 - 2012-11-01 02:43 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll

2015-06-03 10:40 - 2012-11-01 01:47 - 01389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll

2015-06-03 10:40 - 2012-08-22 15:12 - 00376688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys

2015-06-03 10:40 - 2011-03-08 03:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll

2015-06-03 10:40 - 2011-03-08 02:28 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll

2015-06-03 10:40 - 2011-02-25 03:22 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll

2015-06-03 10:40 - 2011-02-25 02:34 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll

2015-06-03 10:40 - 2011-02-23 01:56 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys

2015-06-03 10:40 - 2011-02-23 01:56 - 00411648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys

2015-06-03 10:40 - 2011-02-23 01:55 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys

2015-06-03 06:54 - 2015-06-03 06:54 - 00000000 ____D () C:\Users\Nach\AppData\Local\VirtualStore

2015-06-02 21:43 - 2015-06-02 21:43 - 00002759 _____ () C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk

2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Sophos

2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos

2015-06-02 21:43 - 2015-06-02 21:43 - 00000000 ____D () C:\Program Files (x86)\Sophos

2015-06-02 21:37 - 2015-06-02 21:37 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-NACH-PC-Windows-7-Professional-(64-bit).dat

2015-06-02 21:37 - 2015-06-02 21:37 - 00000000 ____D () C:\RegBackup

2015-06-02 21:32 - 2015-06-03 11:16 - 00000000 ____D () C:\AdwCleaner

2015-06-02 21:00 - 2015-06-02 21:00 - 01943800 _____ (Bleeping Computer, LLC) C:\Users\Nach\Desktop\rkill.exe

2015-06-02 20:55 - 2015-06-03 14:44 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)

2015-06-02 20:54 - 2015-06-03 14:44 - 00000000 ____D () C:\Users\Nach\Desktop\mbar

2015-06-02 20:40 - 2015-06-02 20:39 - 00852639 _____ () C:\Users\Nach\Desktop\SecurityCheck.exe

2015-06-02 19:08 - 2015-06-03 14:08 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2015-06-02 19:07 - 2015-06-03 14:02 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

2015-06-02 19:07 - 2015-06-02 19:07 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\ProgramData\Malwarebytes

2015-06-02 19:07 - 2015-06-02 19:07 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-06-02 19:07 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2015-06-02 19:07 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2015-06-02 18:19 - 2015-06-02 18:19 - 00001610 _____ () C:\Windows\system32\bdsandbox.txt

2015-06-02 18:07 - 2015-06-02 21:28 - 00000000 ____D () C:\Users\Nach\AppData\Temp

2015-06-02 17:46 - 2015-06-02 17:46 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

2015-06-02 17:46 - 2015-06-02 17:46 - 00001147 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Mozilla

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Users\Nach\AppData\Local\Mozilla

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\ProgramData\Mozilla

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2015-06-02 17:46 - 2015-06-02 17:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2015-06-02 17:45 - 2015-06-02 17:45 - 00243408 _____ () C:\Users\Nach\Downloads\Firefox Setup Stub 38.0.5.exe

2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\Documents\FM_temp

2015-06-02 04:49 - 2015-06-02 04:49 - 00000000 ____D () C:\Users\Nach\AppData\Local\CreationMaster

2015-06-02 04:48 - 2015-06-02 04:48 - 00001269 _____ () C:\Users\Nach\Desktop\CM 15.lnk

2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fifa Master

2015-06-02 04:48 - 2015-06-02 04:48 - 00000000 ____D () C:\Program Files (x86)\Fifa Master

2015-06-02 04:42 - 2015-06-02 04:43 - 19412014 _____ () C:\Users\Nach\Downloads\Setup_CM_15_0.rar

2015-06-02 04:39 - 2015-06-02 04:39 - 00000562 _____ () C:\Users\Public\Desktop\Fraps.lnk

2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps

2015-06-02 04:39 - 2015-06-02 04:39 - 00000000 ____D () C:\Fraps

2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\WinRAR

2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-06-02 04:36 - 2015-06-02 04:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

2015-06-02 04:35 - 2015-06-02 04:36 - 00000000 ____D () C:\Program Files\WinRAR

2015-06-02 04:32 - 2015-06-02 04:35 - 101738804 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW210.rar

2015-06-02 04:31 - 2015-06-02 04:33 - 71594649 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW200.rar

2015-06-02 04:31 - 2015-06-02 04:32 - 12104486 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW202.rar

2015-06-02 04:31 - 2015-06-02 04:31 - 03326221 _____ () C:\Users\Nach\Downloads\FI-XV-MWMW211 (1).rar

2015-06-02 04:30 - 2015-06-02 17:43 - 00000000 ____D () C:\ProgramData\Adobe

2015-06-02 04:30 - 2015-06-02 04:30 - 00003886 _____ () C:\Windows\System32\Tasks\Adobe Acrobat Update Task

2015-06-02 04:30 - 2015-06-02 04:30 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

2015-06-02 04:30 - 2015-06-02 04:30 - 00002047 _____ () C:\Users\Public\Desktop\Acrobat Reader DC.lnk

2015-06-02 04:30 - 2015-06-02 04:30 - 00000000 ____D () C:\Program Files (x86)\Adobe

2015-06-02 04:29 - 2015-06-02 04:32 - 00000000 ____D () C:\Users\Nach\AppData\Local\Adobe

2015-06-01 22:16 - 2015-06-02 01:50 - 00000000 ____D () C:\Users\Nach\Documents\The Witcher 3

2015-06-01 21:54 - 2015-06-01 21:54 - 00001955 _____ () C:\Users\Public\Desktop\The Witcher® 3 - Wild Hunt.lnk

2015-06-01 21:54 - 2015-06-01 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com

2015-06-01 21:47 - 2015-06-01 21:47 - 00000000 ____D () C:\GOG Games

2015-05-28 20:22 - 2015-06-01 03:02 - 00000080 _____ () C:\Users\Nach\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\Documents\Rockstar Games

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Users\Nach\AppData\Local\Rockstar Games

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files\Rockstar Games

2015-05-28 20:22 - 2015-05-28 20:22 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games

2015-05-28 02:55 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll

2015-05-28 02:55 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll

2015-05-28 01:37 - 2015-05-28 01:37 - 00002783 _____ () C:\Users\Public\Desktop\Killer Network Manager.lnk

2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Qualcomm

2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Qualcomm Atheros

2015-05-28 01:37 - 2015-05-28 01:37 - 00000000 ____D () C:\Program Files\Qualcomm Atheros

2015-05-28 01:36 - 2015-05-28 01:36 - 00000000 _____ () C:\Users\Nach\AppData\Local\Driver_LOM_8161Present.flag

2015-05-27 20:26 - 2015-05-27 20:39 - 00000000 ____D () C:\Users\Nach\Valley

2015-05-27 20:24 - 2015-05-27 20:24 - 00002113 _____ () C:\Users\Public\Desktop\Valley Benchmark 1.0.lnk

2015-05-27 19:44 - 2015-05-27 19:44 - 00160544 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys

2015-05-27 19:44 - 2015-05-27 19:44 - 00084848 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll

2015-05-27 19:44 - 2015-05-27 19:44 - 00074000 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin32.dll

2015-05-27 19:39 - 2015-05-27 19:39 - 00000385 _____ () C:\Users\Nach\AppData\Roaminguser_gensett.xml

2015-05-27 19:38 - 2015-05-27 19:44 - 00677104 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys

2015-05-27 19:38 - 2015-05-27 19:44 - 00262544 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys

2015-05-27 19:38 - 2015-05-27 19:44 - 00033360 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll

2015-05-27 19:38 - 2015-05-27 19:44 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Bitdefender

2015-05-27 19:38 - 2015-05-27 19:43 - 01306464 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys

2015-05-27 19:38 - 2015-05-27 19:40 - 00000000 ____D () C:\ProgramData\BDLogging

2015-05-27 19:38 - 2015-05-27 19:38 - 00253404 ____H () C:\bdr-ld01

2015-05-27 19:38 - 2015-05-27 19:38 - 00009216 ____H () C:\bdr-ld01.mbr

2015-05-27 19:38 - 2015-05-27 19:38 - 00002122 _____ () C:\Users\Public\Desktop\Bitdefender Total Security 2015.lnk

2015-05-27 19:38 - 2015-05-27 19:38 - 00000684 ____H () C:\bdr-cf01

2015-05-27 19:38 - 2015-05-27 19:38 - 00000385 _____ () C:\Windows\system32\user_gensett.xml

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\ProgramData\Bitdefender

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender

2015-05-27 19:38 - 2015-05-27 19:38 - 00000000 ____D () C:\Program Files\Bitdefender

2015-05-27 19:38 - 2014-12-02 16:37 - 00074000 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll

2015-05-27 19:38 - 2014-10-15 17:14 - 00452040 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys

2015-05-27 19:38 - 2014-07-04 17:49 - 49563064 ____H () C:\bdr-im01.gz

2015-05-27 19:38 - 2013-11-13 15:41 - 00093600 _____ (BitDefender LLC) C:\Windows\system32\Drivers\BdfNdisf6.sys

2015-05-27 19:38 - 2013-08-13 13:38 - 03271472 ____H () C:\bdr-bz01

2015-05-27 19:38 - 2012-04-17 14:34 - 00076944 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys

2015-05-27 19:38 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll

2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\Users\Nach\Documents\WB Games

2015-05-27 16:53 - 2015-05-27 16:53 - 00000000 ____D () C:\ProgramData\Steam

2015-05-27 16:50 - 2015-05-27 16:50 - 00001670 _____ () C:\Users\Public\Desktop\Batman - Arkham City.lnk

2015-05-27 16:50 - 2015-05-27 16:50 - 00001043 _____ () C:\Users\Public\Desktop\Batman - Arkham City (Settings).lnk

2015-05-27 16:50 - 2015-05-27 16:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Batman - Arkham City

2015-05-27 16:37 - 2015-05-27 16:37 - 00000000 ____D () C:\Users\Nach\AppData\Local\Setup Integrity Check

2015-05-27 15:24 - 2015-05-27 16:37 - 00000000 ____D () C:\Games

2015-05-27 04:05 - 2015-06-03 11:26 - 00003018 _____ () C:\Windows\System32\Tasks\MSIAfterburner

2015-05-27 04:04 - 2015-06-02 01:07 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner

2015-05-27 04:04 - 2015-05-27 04:04 - 00001086 _____ () C:\Users\Nach\Desktop\MSI Afterburner.lnk

2015-05-27 04:04 - 2015-05-27 04:04 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner

2015-05-27 04:03 - 2015-05-27 04:03 - 36210245 _____ () C:\Users\Nach\Downloads\[Guru3D.com]-MSIAfterburnerSetup410.zip

2015-05-27 04:02 - 2015-05-27 04:02 - 00000000 ____D () C:\Windows\system32\appmgmt

2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\wmd_symbol_cache

2015-05-27 03:13 - 2015-05-27 03:33 - 00000000 ____D () C:\Users\Nach\Documents\Project CARS

2015-05-27 03:12 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll

2015-05-27 03:12 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll

2015-05-27 03:12 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll

2015-05-27 03:12 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll

2015-05-27 03:12 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll

2015-05-27 03:12 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll

2015-05-27 03:12 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll

2015-05-27 03:12 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll

2015-05-27 03:12 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll

2015-05-27 03:12 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll

2015-05-27 03:12 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll

2015-05-27 03:12 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll

2015-05-27 03:12 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll

2015-05-27 03:12 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll

2015-05-27 03:12 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll

2015-05-27 03:12 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll

2015-05-27 03:12 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll

2015-05-27 03:12 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll

2015-05-27 03:12 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll

2015-05-27 03:12 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll

2015-05-27 03:12 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll

2015-05-27 03:12 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll

2015-05-27 03:12 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll

2015-05-27 03:12 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll

2015-05-27 03:12 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll

2015-05-27 03:12 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll

2015-05-27 03:12 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll

2015-05-27 03:12 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll

2015-05-27 03:12 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll

2015-05-27 03:12 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll

2015-05-27 03:12 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll

2015-05-27 03:12 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll

2015-05-27 03:12 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll

2015-05-27 03:12 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll

2015-05-27 03:12 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll

2015-05-27 03:12 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll

2015-05-27 03:12 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll

2015-05-27 03:12 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll

2015-05-27 03:12 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll

2015-05-27 03:12 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll

2015-05-27 03:12 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll

2015-05-27 03:12 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll

2015-05-27 03:12 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll

2015-05-27 03:12 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll

2015-05-27 03:12 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll

2015-05-27 03:09 - 2015-05-27 03:09 - 00292184 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\dxwebsetup.exe

2015-05-27 02:07 - 2015-05-27 02:07 - 00002122 _____ () C:\Users\Nach\Desktop\Project CARS.lnk

2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Project CARS

2015-05-27 02:07 - 2015-05-27 02:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics

2015-05-27 02:06 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll

2015-05-27 01:54 - 2015-05-27 01:54 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics

2015-05-27 00:03 - 2015-06-02 04:22 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\vlc

2015-05-27 00:03 - 2015-05-27 00:03 - 00001066 _____ () C:\Users\Public\Desktop\VLC media player.lnk

2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN

2015-05-27 00:03 - 2015-05-27 00:03 - 00000000 ____D () C:\Program Files (x86)\VideoLAN

2015-05-27 00:01 - 2015-05-27 00:02 - 28849904 _____ () C:\Users\Nach\Downloads\vlc-2.2.1-win32.exe

2015-05-26 22:40 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll

2015-05-26 22:40 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll

2015-05-26 22:40 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll

2015-05-26 22:40 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll

2015-05-26 22:40 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll

2015-05-26 22:40 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll

2015-05-26 22:40 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll

2015-05-26 22:40 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll

2015-05-26 22:40 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll

2015-05-26 22:40 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll

2015-05-26 22:40 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll

2015-05-26 22:40 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll

2015-05-26 22:40 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll

2015-05-26 22:40 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll

2015-05-26 22:40 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll

2015-05-26 22:40 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll

2015-05-26 22:40 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll

2015-05-26 22:40 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll

2015-05-26 22:40 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll

2015-05-26 22:40 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll

2015-05-26 22:40 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll

2015-05-26 22:40 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll

2015-05-26 22:40 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll

2015-05-26 22:40 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll

2015-05-26 22:40 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll

2015-05-26 22:40 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll

2015-05-26 22:40 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll

2015-05-26 22:40 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll

2015-05-26 22:40 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll

2015-05-26 22:40 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll

2015-05-26 22:40 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll

2015-05-26 22:40 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll

2015-05-26 22:40 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll

2015-05-26 22:40 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll

2015-05-26 22:40 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll

2015-05-26 22:40 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll

2015-05-26 22:40 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll

2015-05-26 22:40 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll

2015-05-26 22:40 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll

2015-05-26 22:40 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll

2015-05-26 22:40 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll

2015-05-26 22:40 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll

2015-05-26 22:40 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll

2015-05-26 22:40 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll

2015-05-26 22:40 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll

2015-05-26 20:45 - 2015-05-31 09:31 - 00000000 ____D () C:\Users\Nach\Documents\FIFA 15

2015-05-26 20:38 - 2015-05-30 21:12 - 00074969 _____ () C:\Windows\DirectX.log

2015-05-26 20:38 - 2015-05-26 20:38 - 07878008 _____ (Microsoft Corporation) C:\Users\Nach\Downloads\Xbox360_64Eng.exe

2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf

2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Xbox 360 Accessories

2015-05-26 20:38 - 2015-05-26 20:38 - 00000000 ____D () C:\Program Files\Microsoft Xbox 360 Accessories

2015-05-26 20:36 - 2015-05-26 20:36 - 00419840 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00413696 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00133632 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00110592 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll

2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Users\Nach\Documents\Codemasters

2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\ProgramData\Codemasters

2015-05-26 20:36 - 2015-05-26 20:36 - 00000000 ____D () C:\Program Files (x86)\OpenAL

2015-05-26 19:43 - 2015-05-26 19:43 - 00000000 ____D () C:\Users\Nach\Tracing

2015-05-26 19:42 - 2015-06-02 20:55 - 00000000 ____D () C:\Users\Nach\AppData\Roaming\Skype

2015-05-26 19:42 - 2015-05-27 19:48 - 00000000 ___RD () C:\Program Files (x86)\Skype

2015-05-26 19:42 - 2015-05-26 19:42 - 43034752 _____ (Skype Technologies S.A.) C:\Users\Nach\Downloads\SkypeSetupFull.exe

2015-05-26 19:42 - 2015-05-26 19:42 - 00002697 _____ () C:\Users\Public\Desktop\Skype.lnk

2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\Users\Nach\AppData\Local\Skype

2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Skype

2015-05-26 19:42 - 2015-05-26 19:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

2015-05-26 18:51 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE

2015-05-26 18:43 - 2015-05-27 02:42 - 00027508 _____ () C:\Windows\IE11_main.log

 

 

CONTINUE

[Russian pop ups with counter on web browser (wasnt solved =/ )]

Hi. I've recently acquired this malware I dont know how. I had it in my previous install but as I was going to format it, I left it. So I formated and sure enough after a week there it was again.

 

It's some pop ups that appear as blank on chrome. I installed Firefox and the same problem occurs, but this time it wasn't blank (probably due to the fact that there was no adblock there).

 

Here's an example of the problem:

photo sharing websites

 

 

I sought help on bleepcomputers, it seemed like it worked but it didn't! Still the same problem.

 

 

I was using BitDefender when I contracted this malware. After it I downloaded many softwares as per instruction on beepcomputer. Including MalwareBytes. Something very peculiar happened when I dealt with malwarebytes tho: it blocked a page or something like that. And now when I browse with malware bytes on pages wont load properly or wont load at all.

For instance, when I try to open youtube.com I get the following message:

ERR_NAME_NOT_RESOLVED

 

It looks like something like a proxy is rerouting me.

 

 

 

He asked me to run the following programs:

Security Check

 

Farbar Service Scanner

 

Mini ToolBox

 

MalwareBytes  Anti-Malware

 

Malwarebytes AntiRoot Kit

 

RKill

 

Tempfile Cleaner

 

AdwCleaner

 

Junkware Removal Tool (I couldnt entirely close Bitdefender to run it, but I did shut off its active Antivirus)

 

Sophos Virus Removal Tool

 

 

 

I ran all of 'em. If you want the logs for that I'd be happy to oblige.

 

 

 

 

PS: I've had yesterday and today a total of 3 video driver losses and recoveries during normal web browsing. Weird, not sure if it's related.

 

Thanks! Sorry for the long text, I tried to be thorough.

 

 

[Russian pop ups with counter on web browser]

Oh yeah and something that really struck me: now if I have Malwarebytes open pages don't load properly. Some open with just the text and most wont open at all, with the message:

 

ERR_NAME_NOT_RESOLVED

[Russian pop ups with counter on web browser]

They open every time I open certain pages. They are blank, apparently because of AdBlock. I installed Firefox (I use Chrome) to see if they show up there too and they showed up with actual images in the blank boxes, there's no adblock there since it was a fresh install. They don't load at the same time the page is loaded, they load a few seconds after. Here's a picture. I'm using BitDefender.

 

 

Here's the picture of it happening in Toms Hardware page, as an example.

 

Now I installed malware bytes, currently running the gree trial of pro version. I had a hyperscan done and it didnt alleviate the problem.

 

Plz how do I get rid of it? How come it passed through bitdefender?

Thanks in advance.