Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Ran malwarebytes and then i lost internet connection


  • This topic is locked This topic is locked
42 replies to this topic

#1 HenryHasIssues

HenryHasIssues

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:06:35 PM

Posted 22 April 2015 - 03:24 PM

I done a malwarebytes scan today after i saw some ads showing up although i had ad block, after doing my scan and deleting the found issue i could no longer access applications which require internet although my internet is fully working. I tried doing a pc restore but nothing changed, so i converted it back to the original. Help will be highly appreciated.  

Attached Files


Edited by HenryHasIssues, 22 April 2015 - 04:03 PM.


BC AdBot (Login to Remove)

 


#2 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:35 PM

Posted 22 April 2015 - 04:14 PM

Hi & :welcome: to Bleeping Computer Forums!
My name is Jürgen and I will be assisting you with your Malware related problems. :warrior:

Before we move on, please read the following points carefully: :exclame:

  • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
  • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If you have illegal/cracked software, cracks, keygens, etc. on the system, please remove or uninstall them now!
  • If I don't hear from you within 5 days from this initial or any subsequent post, then this thread will be closed.
  • If I don't reply within 24 hours please PM me!
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.

Step 1

Click hidden2.png
In the Start Search box, type cmd, and then press CTRL+SHIFT+ENTER.
cmdadmin.png
 
Then type

netsh winsock reset

and press ENTER.
 
cmdadmin2.gif
 
Afterwards reboot your computer.


Edited by deeprybka, 22 April 2015 - 04:16 PM.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#3 HenryHasIssues

HenryHasIssues
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:06:35 PM

Posted 22 April 2015 - 04:19 PM

alright, i have done the steps



#4 HenryHasIssues

HenryHasIssues
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:06:35 PM

Posted 22 April 2015 - 04:26 PM

Everything seems to be working. thank you so much :) if i ever have a son i'll name him after you :) and i'll give you a donation next time i have some spare cash 



#5 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:35 PM

Posted 22 April 2015 - 04:31 PM

:)
 
Thank you. But we're not done yet.
 
Step 1

Please download adwcleaner.png AdwCleaner (by Xplode) and save it to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select "Run As Administrator"
  • Click on the Scan button.
  • After the scan has finished, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • After rebooting, a log file (that is saved in C:\AdwCleaner[S#].txt) will open automatically.
    Copy and paste the contents of that logfile in your next reply.
Step 2

frst.pngfrstscan.png

Start FRST with administator privileges.
  • Make sure the following option is checked: addition.png
  • Press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
    Please copy and paste these logs in your next reply.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#6 HenryHasIssues

HenryHasIssues
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:06:35 PM

Posted 22 April 2015 - 04:36 PM

ok one second



#7 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:35 PM

Posted 22 April 2015 - 04:45 PM

OK... :)
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#8 HenryHasIssues

HenryHasIssues
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:06:35 PM

Posted 22 April 2015 - 04:55 PM

The farbar recovery scan got to the end then it said not responding, should i wait or restart?

 

 

 

 

in the mean time here is the adwcleaner log

 

 

# AdwCleaner v4.201 - Logfile created 22/04/2015 at 22:39:22
# Updated 08/04/2015 by Xplode
# Database : 2015-04-08.1 [Local]
# Operating system : Windows 7 Ultimate Service Pack 1 (x64)
# Username : Hienis - G-PC
# Running from : C:\Users\Hienis\Downloads\adwcleaner_4.201.exe
# Option : Cleaning
 
***** [ Services ] *****
 
[#] Service Deleted : abengine
[#] Service Deleted : InjectorService
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\Program Files (x86)\MSR
Folder Deleted : C:\Program Files (x86)\WinZip Registry Optimizer
Folder Deleted : C:\Program Files (x86)\FlashBeat
Folder Deleted : C:\Program Files (x86)\TabNav
Folder Deleted : C:\Program Files (x86)\system app
Folder Deleted : C:\Windows\SysWOW64\config\systemprofile\AppData\Local\abengine
Folder Deleted : C:\Users\G\AppData\Local\Conduit
Folder Deleted : C:\Users\G\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Emilis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Folder Deleted : C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
Folder Deleted : C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
File Deleted : C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cpngackimfmofbokmjmljamhdncknpmg_0.localstorage
File Deleted : C:\Users\Emilis\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage
File Deleted : C:\Users\Emilis\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal
File Deleted : C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage
File Deleted : C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal
File Deleted : C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage
File Deleted : C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal
File Deleted : C:\END
File Deleted : C:\Windows\SysWOW64\abengine.dll
File Deleted : C:\Windows\SysWOW64\abengineOff.ini
File Deleted : C:\Windows\System32\abengine64.dll
File Deleted : C:\Windows\System32\abengineOff.ini
File Deleted : C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_answers.ask.com_0.localstorage
File Deleted : C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_answers.ask.com_0.localstorage-journal
File Deleted : C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage
File Deleted : C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_st.chatango.com_0.localstorage-journal
File Deleted : C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_uk.ask.com_0.localstorage
File Deleted : C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_uk.ask.com_0.localstorage-journal
 
***** [ Scheduled tasks ] *****
 
Task Deleted : GPUpdate
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\S
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.DataContainer
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.DataContainer.1
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.DataController
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.DataController.1
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.DataTable
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.DataTable.1
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.DataTableFields
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.DataTableFields.1
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.DataTableHolder
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.DataTableHolder.1
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.LSPLogic
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.LSPLogic.1
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.ReadOnlyManager
Key Deleted : HKLM\SOFTWARE\Classes\abengineLib.ReadOnlyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C007DADD-132A-624C-088E-59EE6CF0711F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\powerpack
Key Deleted : HKCU\Software\Tutorials
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\systweak
Key Deleted : HKLM\SOFTWARE\Trymedia Systems
Key Deleted : HKLM\SOFTWARE\TabNav
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\DF917BEA0BDE9E345B42099FC7E14699
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\B696D3C37BD0D6C33A65D38BEC459181
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\DF917BEA0BDE9E345B42099FC7E14699
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\B696D3C37BD0D6C33A65D38BEC459181
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\DF917BEA0BDE9E345B42099FC7E14699
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B696D3C37BD0D6C33A65D38BEC459181
Data Deleted : HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyEnable] - 1
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>
 
***** [ Web browsers ] *****
 
-\\ Internet Explorer v10.0.9200.17296
 
 
-\\ Google Chrome v
 
[C:\Users\Emilis\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
[C:\Users\Emilis\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.tb.ask.com/search/GGmain.jhtml?searchfor={searchTerms}&st=kwd&ptb=5912BD57-24D7-4B20-BB7A-BBF86EE8FFD1&n=780bd6d3&ind=2014041811&p2=^AW6^xdm005^YYA^gb&si=CIC3uqLl6b0CFevItAodHQgAEw
[C:\Users\Emilis\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
[C:\Users\Emilis\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb
[C:\Users\Emilis\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : gighmmpiobklfepjocnamgkkbiglidom
[C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://uk.ask.com/web?q={searchTerms}
[C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
[C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : booedmolknjekdopkepjjeckmjkdpfgl
[C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : flpcjncodpafbgdpnkljologafpionhb
[C:\Users\G\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : gighmmpiobklfepjocnamgkkbiglidom
[C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : gighmmpiobklfepjocnamgkkbiglidom
[C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Startup_URLs] : hxxp://www.mystartsearch.com/?type=hp&ts=1426620256&from=sfpsnew1&uid=WDCXWD5003AZEX-00RKKA0_WD-WMC1S017505275052
 
-\\ Chromium v
 
 
*************************
 
AdwCleaner[R0].txt - [7974 bytes] - [22/04/2015 22:36:58]
AdwCleaner[S0].txt - [7928 bytes] - [22/04/2015 22:39:22]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7987  bytes] ##########


#9 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:35 PM

Posted 22 April 2015 - 04:56 PM

Please be patient during the FRST scan... :)
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#10 HenryHasIssues

HenryHasIssues
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:06:35 PM

Posted 22 April 2015 - 04:58 PM

ok heres the farbar scan

 

 

Heres the FRST log

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-04-2015
Ran by Hienis (administrator) on G-PC on 22-04-2015 22:44:09
Running from V:\
Loaded Profiles: Hienis (Available profiles: G & Hienis & Emilis)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) D:\Malwarebytes Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\vVX1000.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Saitek) C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Spotify Ltd) C:\Users\Hienis\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
() C:\Users\Hienis\AppData\Local\NVIDIA\NvBackend\Packages\000074d7\DAO.19510325.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [VX1000] => C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [SaiVolume] => C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe [152064 2012-10-15] (Saitek)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1332296 2015-01-30] (Microsoft Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5015040 2012-02-09] (VIA)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
HKLM-x32\...\Run: [RaidCall] => C:\Program Files (x86)\RaidCall\raidcall.exe
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [2990304 2013-10-30] (Nota Inc.)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Akamai NetSession Interface] => "C:\Users\Hienis\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Spotify Web Helper] => C:\Users\Hienis\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-04-20] (Spotify Ltd)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21645408 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2889408 2015-04-14] (Valve Corporation)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Spotify] => C:\Users\Hienis\AppData\Roaming\Spotify\Spotify.exe [7112248 2015-04-20] (Spotify Ltd)
Startup: C:\Users\G\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk [2013-02-03]
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
Startup: C:\Users\Hienis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Download.lnk [2015-03-17]
ShortcutTarget: Download.lnk -> C:\ProgramData\{ca182972-6988-e97a-ca18-82972698a5c9}\Download.exe (No File)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyEnable: [S-1-5-19] => Internet Explorer proxy is enabled.
ProxyEnable: [S-1-5-20] => Internet Explorer proxy is enabled.
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-4119040938-713604465-2543066657-1003 -> {36FA201E-A3EC-45EB-AC64-F3E152043A5C} URL = 
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-17] (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll No File
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-17] (Oracle Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\system32\npDeployJava1.dll [2013-05-13] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-17] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-17] (Oracle Corporation)
FF Plugin-x32: @live.heroesandgenerals.com/npretox -> D:\games\Heroes & Generals\live\npretox-1.0.6.1\npretoxlive-1.0.6.1.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll No File
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-12-02] (Pando Networks)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll No File
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Hienis\AppData\Roaming\raidcall\plugins\nprcplugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4119040938-713604465-2543066657-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Hienis\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-07-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-4119040938-713604465-2543066657-1003: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-12-02] (Pando Networks)
FF Plugin HKU\S-1-5-21-4119040938-713604465-2543066657-1003: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-05-05] (The Happy Cloud)
FF Plugin HKU\S-1-5-21-4119040938-713604465-2543066657-1003: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
 
Chrome: 
=======
CHR Profile: C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-03]
CHR Extension: (Google Drive) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-03]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-27]
CHR Extension: (YouTube) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-09-30]
CHR Extension: (Google Search) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-09-30]
CHR Extension: (Block site) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2014-10-09]
CHR Extension: (ChromeVox) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgejglhpjiefppelpmljglcjbhoiplfn [2014-08-04]
CHR Extension: (Google Wallet) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Gmail) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-09-30]
StartMenuInternet: Google Chrome.73C4VME42AQ3AIVGVNS3BQC524 - C:\Users\G\AppData\Local\Google\Chrome\Application\chrome.exe
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [814464 2015-02-06] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-01-01] (BitRaider, LLC)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-06-30] (BitRaider, LLC)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [93048 2014-06-06] (EasyAntiCheat Ltd)
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1581440 2015-02-25] (Echobit LLC)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 MBAMScheduler; D:\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation)
S2 MBAMService; D:\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2015-01-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366512 2015-01-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1930608 2015-04-04] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-11-18] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-02-05] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2015-01-17] (Tunngle.net GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-11] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [X]
S3 DAUpdaterSvc; C:\games\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 athrusb; C:\Windows\System32\DRIVERS\athrxusb.sys [1075712 2008-07-29] (Atheros Communications, Inc.)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2014-07-01] (BitRaider)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2015-01-02] (BitRaider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-09-27] (DT Soft Ltd)
R3 EvolveVirtualAdapter; C:\Windows\System32\DRIVERS\evolve.sys [21656 2013-04-03] (Echobit, LLC)
S3 LADF_BakerCOnly; C:\Windows\System32\DRIVERS\ladfBakerCamd64.sys [410184 2011-03-18] (Logitech)
S3 LADF_BakerROnly; C:\Windows\System32\DRIVERS\ladfBakerRamd64.sys [335688 2011-03-18] (Logitech)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-04-22] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-03-17] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [274696 2014-11-15] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124560 2014-11-15] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 SaiK1107; C:\Windows\System32\DRIVERS\SaiK1107.sys [180584 2012-12-05] (Saitek)
R3 SaiK1705; C:\Windows\System32\DRIVERS\SaiK1705.sys [180584 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU1705; C:\Windows\System32\DRIVERS\SaiU1705.sys [47208 2012-09-20] (Saitek)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-04-22 22:41 - 2015-04-22 22:41 - 00000011 _____ () C:\END
2015-04-22 22:36 - 2015-04-22 22:39 - 00000000 ____D () C:\AdwCleaner
2015-04-22 22:35 - 2015-04-22 22:36 - 02217984 _____ () C:\Users\Hienis\Downloads\adwcleaner_4.201.exe
2015-04-22 22:32 - 2015-04-22 22:34 - 74818632 _____ (Logitech Inc.) C:\Users\Hienis\Downloads\LGS_8.58.183_x64_Logitech.exe
2015-04-22 19:30 - 2015-04-22 22:44 - 00000000 ____D () C:\FRST
2015-04-22 03:32 - 2015-04-22 03:32 - 01976294 _____ () C:\Users\Hienis\Downloads\enbseries_falloutnv_v0267.zip
2015-04-22 02:53 - 2015-04-22 02:53 - 02528592 _____ () C:\Users\Hienis\Downloads\FNVEdit_3_1-34703-3-1.7z
2015-04-22 01:40 - 2015-04-22 01:40 - 00001240 _____ () C:\Users\Hienis\Desktop\Crusader Kings II.lnk
2015-04-22 01:40 - 2015-04-22 01:40 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Crusader Kings II
2015-04-22 00:03 - 2015-04-22 00:03 - 00001286 _____ () C:\Users\Hienis\Desktop\nvse_loader.exe - Shortcut.lnk
2015-04-21 23:17 - 2015-04-21 23:17 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Fallout New Vegas - NMC's Texture Pack
2015-04-21 21:44 - 2015-04-22 02:56 - 00000000 ____D () C:\Users\Hienis\AppData\Local\FalloutNV
2015-04-21 21:44 - 2015-04-21 21:44 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Fallout New Vegas - Ultimate Edition
2015-04-20 18:17 - 2015-04-20 18:17 - 01881088 _____ (Eric Zhang) C:\Users\Hienis\Downloads\EZBlocker.exe
2015-04-20 18:17 - 2015-04-20 18:17 - 00000000 ____D () C:\Users\Hienis\AppData\Local\Eric_Zhang
2015-04-19 19:34 - 2015-04-19 19:34 - 04275918 _____ () C:\Users\Hienis\Downloads\Pillars of Eternity V1.0.2.0524 Trainer +7 MrAntiFun.zip
2015-04-19 18:43 - 2015-04-19 18:43 - 00000647 _____ () C:\Users\Public\Desktop\Pillars of Eternity.lnk
2015-04-16 23:50 - 2015-04-16 23:50 - 04140245 _____ () C:\Users\Hienis\Downloads\Mount & Blade Warband V1.161 Trainer +8 MrAntiFun.zip
2015-04-16 20:00 - 2015-04-16 20:01 - 04243127 _____ () C:\Users\Hienis\Downloads\StarDrive 2 V1.00 Trainer +11 MrAntiFun.zip
2015-04-16 18:44 - 2015-04-16 18:44 - 00000770 _____ () C:\Users\Hienis\Desktop\Age of Wonders III Eternal Lords.lnk
2015-04-16 18:44 - 2015-04-16 18:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Age of Wonders III Eternal Lords
2015-04-15 13:34 - 2015-03-25 04:24 - 03298816 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 02553856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 13:34 - 2015-03-25 04:23 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 13:34 - 2015-03-25 04:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 13:34 - 2015-03-25 04:23 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 13:34 - 2015-03-25 04:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-15 13:34 - 2015-03-25 04:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-15 13:34 - 2015-03-25 04:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-15 13:34 - 2015-03-25 04:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-15 13:34 - 2015-03-25 04:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-15 13:34 - 2015-03-10 06:29 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 13:34 - 2015-03-10 06:28 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 13:34 - 2015-03-10 06:28 - 01409024 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 13:34 - 2015-03-10 06:28 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 19292672 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 15409152 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 02656256 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 13:34 - 2015-03-10 06:26 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 13:34 - 2015-03-10 06:26 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 13:34 - 2015-03-10 06:26 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 14373376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 02864640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 01763328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 13767680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-15 13:34 - 2015-03-10 04:48 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-04-15 13:34 - 2015-03-10 04:32 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 13:34 - 2015-03-10 04:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-15 13:34 - 2015-03-10 04:07 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 13:34 - 2015-03-10 03:42 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-04-15 13:34 - 2015-03-10 03:39 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-15 13:34 - 2015-03-10 03:16 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-04-15 13:33 - 2015-03-23 04:25 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 13:33 - 2015-03-23 04:25 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 13:33 - 2015-03-23 04:24 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 13:33 - 2015-03-23 04:24 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 13:33 - 2015-03-23 04:24 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 13:33 - 2015-03-23 04:24 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 13:33 - 2015-03-23 04:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 13:33 - 2015-03-23 04:17 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 13:32 - 2015-03-05 06:12 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 13:32 - 2015-03-05 05:05 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-15 13:26 - 2015-03-17 06:22 - 05557696 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 13:26 - 2015-03-17 06:22 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 13:26 - 2015-03-17 06:22 - 00095672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 13:26 - 2015-03-17 06:19 - 01727904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 13:26 - 2015-03-17 06:17 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-04-15 13:26 - 2015-03-17 06:17 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 13:26 - 2015-03-17 06:17 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 13:26 - 2015-03-17 06:16 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 13:26 - 2015-03-17 06:16 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-04-15 13:26 - 2015-03-17 06:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-04-15 13:26 - 2015-03-17 06:15 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 13:26 - 2015-03-17 06:15 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 13:26 - 2015-03-17 06:13 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 13:26 - 2015-03-17 06:13 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-04-15 13:26 - 2015-03-17 06:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-04-15 13:26 - 2015-03-17 05:59 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-04-15 13:26 - 2015-03-17 05:56 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-15 13:26 - 2015-03-17 05:56 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-15 13:26 - 2015-03-17 05:56 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-04-15 13:26 - 2015-03-17 05:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-04-15 13:26 - 2015-03-17 05:56 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-04-15 13:26 - 2015-03-17 05:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-04-15 13:26 - 2015-03-17 05:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-04-15 13:26 - 2015-03-17 05:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-15 13:26 - 2015-03-17 05:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 04:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-04-15 13:26 - 2015-03-17 04:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-04-15 13:26 - 2015-03-17 04:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 04:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 04:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 04:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-15 13:26 - 2015-03-10 04:25 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 13:26 - 2015-03-10 04:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 13:26 - 2015-03-10 04:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-15 13:26 - 2015-03-10 04:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-04-15 13:26 - 2015-02-25 04:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-15 13:25 - 2015-03-04 05:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 13:25 - 2015-03-04 05:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 13:25 - 2015-03-04 05:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-14 22:07 - 2015-04-14 23:20 - 00000000 ____D () C:\Users\Hienis\Desktop\RimWorld
2015-04-13 23:00 - 2015-04-08 21:32 - 00560968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-13 22:58 - 2015-04-09 01:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 17176128 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-13 22:58 - 2015-04-09 01:58 - 02935416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 01086424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00927440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-12 13:50 - 2015-04-12 13:50 - 00000000 ____D () C:\Program Files (x86)\Samsung
2015-04-12 13:49 - 2015-04-12 13:49 - 00000000 ____D () C:\ProgramData\Samsung
2015-04-11 17:21 - 2015-04-11 17:25 - 00000690 _____ () C:\Users\Public\Desktop\StarDrive 2.lnk
2015-04-10 13:57 - 2015-04-22 18:05 - 00010598 _____ () C:\Windows\PFRO.log
2015-04-10 02:12 - 2015-04-10 02:12 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
2015-04-10 02:11 - 2015-04-10 02:12 - 00000000 ___HD () C:\Program Files (x86)\Zero G Registry
2015-04-10 02:11 - 2015-04-10 02:12 - 00000000 ____D () C:\Windows\jre
2015-04-09 20:24 - 2015-04-09 20:24 - 00000000 ___HD () C:\Users\Hienis\InstallAnywhere
2015-04-09 13:48 - 2015-04-09 14:37 - 00000000 ____D () C:\Users\Hienis\AppData\Local\The Spatials
2015-04-05 15:02 - 2015-04-05 15:02 - 00001246 _____ () C:\Users\Hienis\Desktop\Attilb.exe - Shortcut.lnk
2015-04-05 01:00 - 2015-04-05 01:00 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-05 01:00 - 2015-04-05 01:00 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-04 20:57 - 2015-04-22 22:41 - 00008895 _____ () C:\Windows\setupact.log
2015-04-04 20:57 - 2015-04-04 20:57 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-04 15:49 - 2015-04-04 15:54 - 00000000 ____D () C:\Program Files (x86)\The Sims 4
2015-04-02 21:39 - 2015-04-02 21:48 - 00000000 ____D () C:\Users\Hienis\Documents\InfiniteCrisis
2015-04-02 21:39 - 2015-04-02 21:39 - 00000000 ____D () C:\Users\Hienis\AppData\Local\InfiniteCrisis
2015-04-02 14:43 - 2015-04-02 14:43 - 00000000 ____D () C:\ProgramData\Turbine
2015-03-31 13:11 - 2015-03-31 13:11 - 00003092 _____ () C:\Windows\System32\Tasks\fres3005
2015-03-31 13:10 - 2015-03-31 13:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-03-31 13:10 - 2015-03-31 13:10 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-03-30 19:49 - 2015-03-30 19:49 - 00000745 _____ () C:\Users\Public\Desktop\Divinity - Original Sin.lnk
2015-03-30 15:05 - 2015-03-30 15:05 - 00000000 ____D () C:\Users\Hienis\Desktop\orcish_inn_0_0_8
2015-03-28 00:30 - 2015-03-28 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BioShock Infinite
2015-03-27 14:13 - 2015-03-27 14:13 - 00000000 ____D () C:\Users\Hienis\Documents\My Cheat Tables
2015-03-25 23:28 - 2015-03-25 23:28 - 00000000 ____D () C:\Users\Hienis\Desktop\orcish_inn_0_0_7
2015-03-23 21:42 - 2015-03-23 23:42 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Bioshock2Steam
2015-03-23 21:42 - 2015-03-23 21:42 - 00000000 ____D () C:\Users\Hienis\Documents\Bioshock2
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-04-22 22:50 - 2012-10-16 12:13 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-22 22:47 - 2015-01-16 20:37 - 00000000 ____D () C:\Users\Hienis\AppData\Local\LogMeIn Hamachi
2015-04-22 22:47 - 2014-06-18 23:41 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-22 22:47 - 2012-09-30 12:11 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Skype
2015-04-22 22:45 - 2012-09-25 04:27 - 02076670 _____ () C:\Windows\WindowsUpdate.log
2015-04-22 22:43 - 2012-10-05 20:34 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Spotify
2015-04-22 22:42 - 2012-10-05 20:35 - 00000000 ____D () C:\Users\Hienis\AppData\Local\Spotify
2015-04-22 22:41 - 2012-09-26 15:47 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-22 22:41 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-22 22:39 - 2009-07-14 05:45 - 00020880 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-22 22:39 - 2009-07-14 05:45 - 00020880 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-22 22:31 - 2015-03-12 01:29 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-22 20:29 - 2009-07-14 06:08 - 00032620 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-04-22 19:30 - 2013-02-03 01:03 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\uTorrent
2015-04-22 19:30 - 2009-07-14 06:13 - 00797730 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-22 19:29 - 2015-03-03 17:57 - 00002450 _____ () C:\Users\Hienis\Documents\Uninstall Dragon Age.log
2015-04-22 19:28 - 2012-09-29 12:49 - 00000000 ____D () C:\Users\Hienis
2015-04-22 19:02 - 2013-05-27 19:02 - 00000000 ____D () C:\Users\G\AppData\Local\LogMeIn Hamachi
2015-04-22 19:02 - 2012-09-29 12:43 - 00000000 ____D () C:\Users\Emilis
2015-04-22 19:02 - 2012-09-25 04:27 - 00000000 ____D () C:\Users\G
2015-04-22 19:02 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-22 19:02 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2015-04-22 18:55 - 2013-07-20 09:49 - 00000000 ____D () C:\Users\G\AppData\Local\Spotify
2015-04-22 18:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Vss
2015-04-22 18:04 - 2014-12-03 10:26 - 00000000 ____D () C:\Program Files (x86)\Game of Thrones A Telltale Games Series
2015-04-22 18:04 - 2012-12-08 18:26 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\TS3Client
2015-04-22 18:02 - 2012-09-26 15:27 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4119040938-713604465-2543066657-1000UA.job
2015-04-22 14:02 - 2012-09-26 15:27 - 00000840 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4119040938-713604465-2543066657-1000Core.job
2015-04-22 12:50 - 2012-12-12 21:57 - 00000000 ____D () C:\Users\Hienis\Documents\Nexus Mod Manager
2015-04-22 01:47 - 2013-09-14 14:45 - 00000000 ____D () C:\Users\Hienis\AppData\Local\SKIDROW
2015-04-22 01:46 - 2015-01-07 21:19 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AGOT
2015-04-22 01:35 - 2015-03-03 18:00 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics
2015-04-21 23:33 - 2014-07-28 16:59 - 00000890 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2015-04-21 23:33 - 2014-02-05 18:01 - 00000000 ____D () C:\Program Files\Nexus Mod Manager
2015-04-21 21:44 - 2012-09-30 13:27 - 00000000 ____D () C:\Users\Hienis\Documents\My Games
2015-04-21 21:25 - 2013-05-27 23:09 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Mumble
2015-04-21 15:55 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-04-19 21:19 - 2013-12-13 21:21 - 00000000 ____D () C:\Windows\rescache
2015-04-19 21:09 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2015-04-19 16:32 - 2014-08-16 02:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-04-17 17:06 - 2013-11-01 15:44 - 00000000 ____D () C:\ProgramData\Oracle
2015-04-17 17:05 - 2015-02-04 22:12 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-04-17 17:04 - 2015-02-04 22:11 - 00000000 ____D () C:\Program Files (x86)\Java
2015-04-16 16:08 - 2012-09-25 13:21 - 00000000 ____D () C:\Windows\Panther
2015-04-16 16:06 - 2014-12-10 12:18 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-16 16:06 - 2014-05-06 07:56 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-16 00:35 - 2012-09-27 15:46 - 00781596 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-04-16 00:33 - 2013-08-04 02:57 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-16 00:19 - 2012-09-26 16:00 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-15 20:25 - 2014-12-20 21:49 - 00000000 ____D () C:\Users\Hienis\Documents\Mount&Blade Warband Savegames
2015-04-14 18:52 - 2012-10-16 12:13 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-14 18:52 - 2012-10-16 12:13 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-14 18:52 - 2012-10-16 12:13 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-13 23:01 - 2012-10-25 22:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-13 23:01 - 2012-09-26 15:34 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-04-10 02:17 - 2015-03-18 04:04 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2015-04-09 01:58 - 2014-11-18 19:58 - 14617288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-04-09 01:58 - 2014-11-11 00:17 - 00078480 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-04-09 01:58 - 2014-11-11 00:17 - 00066704 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-04-09 01:58 - 2014-11-11 00:12 - 12689592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-04-09 01:58 - 2014-11-11 00:12 - 03317344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-04-09 01:58 - 2014-11-11 00:12 - 00029329 _____ () C:\Windows\system32\nvinfo.pb
2015-04-08 22:30 - 2014-11-11 00:18 - 06841488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-04-08 22:30 - 2014-11-11 00:18 - 03478344 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-04-08 22:30 - 2014-11-11 00:18 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-04-08 22:30 - 2014-11-11 00:18 - 00936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-04-08 22:30 - 2014-11-11 00:18 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-04-08 22:30 - 2014-11-11 00:18 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-04-08 18:52 - 2014-11-11 00:18 - 04336074 _____ () C:\Windows\system32\nvcoproc.bin
2015-04-05 14:53 - 2012-09-27 15:17 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-04-05 14:52 - 2012-09-27 15:17 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-04-04 18:35 - 2012-10-20 18:53 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\vlc
2015-04-04 17:07 - 2014-06-10 12:31 - 00000000 ____D () C:\ProgramData\Origin
2015-04-04 15:50 - 2015-02-05 18:43 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-04-04 15:30 - 2014-09-04 16:45 - 00000000 ____D () C:\Users\Hienis\Documents\Electronic Arts
2015-04-04 09:25 - 2012-10-31 17:22 - 00000000 ____D () C:\Users\Emilis\AppData\Roaming\Skype
2015-04-04 09:24 - 2012-09-29 12:43 - 00000000 ____D () C:\Users\Emilis\AppData\Local\LogMeIn Hamachi
2015-04-02 14:43 - 2012-10-11 22:22 - 00000000 ____D () C:\Users\Hienis\AppData\Local\Turbine
2015-03-31 15:09 - 2009-07-14 08:46 - 00000000 __SHD () C:\Windows\BitLockerDiscoveryVolumeContents
2015-03-30 20:13 - 2015-01-28 13:58 - 00000000 ____D () C:\ProgramData\Tunngle
2015-03-30 20:12 - 2015-03-12 01:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-03-30 20:10 - 2014-07-27 11:16 - 00000000 ____D () C:\Users\Hienis\Documents\Larian Studios
2015-03-30 15:25 - 2012-12-13 16:38 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-03-30 15:16 - 2013-04-28 21:46 - 00000000 ____D () C:\ProgramData\Package Cache
2015-03-30 15:15 - 2014-12-25 14:23 - 00000638 _____ () C:\Users\Public\Desktop\Elite Dangerous Launcher.lnk
2015-03-28 20:56 - 2012-10-08 17:50 - 00000000 ____D () C:\Games
2015-03-28 04:44 - 2014-06-02 16:22 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-03-28 04:44 - 2013-11-01 18:13 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-03-28 04:43 - 2014-06-02 16:22 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-03-28 04:43 - 2013-11-01 18:13 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-03-27 23:35 - 2015-03-10 03:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2015-03-27 23:34 - 2014-04-14 01:12 - 00000000 ____D () C:\Users\Hienis\AppData\Local\Setup Integrity Check
2015-03-25 20:03 - 2012-12-16 13:49 - 00000000 ____D () C:\Users\Hienis\Desktop\saves
2015-03-25 20:00 - 2014-04-09 19:40 - 00000000 ____D () C:\Users\Hienis\Documents\Telltale Games
2015-03-25 02:04 - 2014-08-22 22:44 - 00000000 ____D () C:\Users\Hienis\Desktop\PICS
2015-03-24 08:58 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Resources
 
==================== Files in the root of some directories =======
 
2014-07-04 01:57 - 2003-12-18 12:33 - 0020102 _____ () C:\Program Files (x86)\Readme.txt
2014-01-01 21:38 - 2014-06-24 14:47 - 0000301 _____ () C:\Users\Hienis\AppData\Roaming\BreakingPoint_Login.ini
2014-01-01 23:22 - 2014-06-24 14:47 - 0001548 _____ () C:\Users\Hienis\AppData\Roaming\BreakingPoint_Options.ini
2014-09-28 01:42 - 2014-09-28 01:42 - 0085273 _____ () C:\Users\Hienis\AppData\Roaming\icarus-dxdiag.xml
2013-03-09 18:47 - 2013-03-09 18:47 - 0001432 _____ () C:\Users\Hienis\AppData\Roaming\temp14593.txt
2012-10-11 22:22 - 2012-10-11 22:22 - 0000094 _____ () C:\Users\Hienis\AppData\Local\fusioncache.dat
2015-02-03 20:07 - 2015-02-03 20:07 - 0000000 ___SH () C:\Users\Hienis\AppData\Local\LumaEmu
2014-03-01 01:36 - 2014-03-01 01:36 - 0000862 _____ () C:\Users\Hienis\AppData\Local\recently-used.xbel
2014-09-17 13:22 - 2014-09-17 13:22 - 0007605 _____ () C:\Users\Hienis\AppData\Local\Resmon.ResmonCfg
 
Some content of TEMP:
====================
C:\Users\Emilis\AppData\Local\Temp\drm_dialogs.dll
C:\Users\G\AppData\Local\Temp\AutoRun.exe
C:\Users\G\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\G\AppData\Local\Temp\avg_12.1.0.20.exe
C:\Users\G\AppData\Local\Temp\dotnetfx 3.5 sp1.exe
C:\Users\G\AppData\Local\Temp\drm_dialogs.dll
C:\Users\G\AppData\Local\Temp\drm_dyndata_7400009.dll
C:\Users\G\AppData\Local\Temp\eauninstall.exe
C:\Users\G\AppData\Local\Temp\install_reader10_uk_mssa_aih.exe
C:\Users\G\AppData\Local\Temp\Lifecam3.0.204.0.exe
C:\Users\G\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\G\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\G\AppData\Local\Temp\nvStInst.exe
C:\Users\G\AppData\Local\Temp\Onlive_Updater_1354217879.exe
C:\Users\G\AppData\Local\Temp\SimCity 4 Deluxe_uninst.exe
C:\Users\G\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\G\AppData\Local\Temp\Uninstall.exe
C:\Users\G\AppData\Local\Temp\winziprosetup_20130121.exe
C:\Users\G\AppData\Local\Temp\_unps.exe
C:\Users\Hienis\AppData\Local\Temp\CH.dll
C:\Users\Hienis\AppData\Local\Temp\Copy.dll
C:\Users\Hienis\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Hienis\AppData\Local\Temp\Nexus Mod Manager-0.54.10.exe
C:\Users\Hienis\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Hienis\AppData\Local\Temp\nvStInst.exe
C:\Users\Hienis\AppData\Local\Temp\Quarantine.exe
C:\Users\Hienis\AppData\Local\Temp\sqlite3.dll
C:\Users\Hienis\AppData\Local\Temp\SRLDetectionLibrary6963960328538130639.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-04-16 17:42
 

==================== End Of Log ============================Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-04-2015

Ran by Hienis (administrator) on G-PC on 22-04-2015 22:44:09
Running from V:\
Loaded Profiles: Hienis (Available profiles: G & Hienis & Emilis)
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Malwarebytes Corporation) D:\Malwarebytes Anti-Malware\mbamscheduler.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\vVX1000.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Saitek) C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Nota Inc.) C:\Program Files (x86)\Gyazo\GyStation.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Spotify Ltd) C:\Users\Hienis\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(LogMeIn Inc.) C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
() C:\Users\Hienis\AppData\Local\NVIDIA\NvBackend\Packages\000074d7\DAO.19510325.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [VX1000] => C:\Windows\vVX1000.exe [762736 2010-05-20] (Microsoft Corporation)
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2673296 2015-03-28] (NVIDIA Corporation)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [SaiVolume] => C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe [152064 2012-10-15] (Saitek)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1332296 2015-01-30] (Microsoft Corporation)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [12697368 2014-10-14] (Logitech Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5015040 2012-02-09] (VIA)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
HKLM-x32\...\Run: [RaidCall] => C:\Program Files (x86)\RaidCall\raidcall.exe
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-03-30] (LogMeIn Inc.)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [2990304 2013-10-30] (Nota Inc.)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Akamai NetSession Interface] => "C:\Users\Hienis\AppData\Local\Akamai\netsession_win.exe"
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Spotify Web Helper] => C:\Users\Hienis\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-04-20] (Spotify Ltd)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21645408 2014-07-24] (Skype Technologies S.A.)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7063832 2014-11-21] (Piriform Ltd)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2889408 2015-04-14] (Valve Corporation)
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Run: [Spotify] => C:\Users\Hienis\AppData\Roaming\Spotify\Spotify.exe [7112248 2015-04-20] (Spotify Ltd)
Startup: C:\Users\G\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MagicDisc.lnk [2013-02-03]
ShortcutTarget: MagicDisc.lnk -> C:\Program Files (x86)\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
Startup: C:\Users\Hienis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Download.lnk [2015-03-17]
ShortcutTarget: Download.lnk -> C:\ProgramData\{ca182972-6988-e97a-ca18-82972698a5c9}\Download.exe (No File)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled.
ProxyEnable: [S-1-5-19] => Internet Explorer proxy is enabled.
ProxyEnable: [S-1-5-20] => Internet Explorer proxy is enabled.
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://uk.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-4119040938-713604465-2543066657-1003 -> {36FA201E-A3EC-45EB-AC64-F3E152043A5C} URL = 
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-17] (Oracle Corporation)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll No File
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-17] (Oracle Corporation)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
FF Plugin: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelogx64.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin: @java.com/DTPlugin,version=10.21.2 -> C:\Windows\system32\npDeployJava1.dll [2013-05-13] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @esn/npbattlelog,version=2.6.2 -> C:\Program Files (x86)\Battlelog Web Plugins\2.6.2\npbattlelog.dll [2015-01-13] (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-17] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-17] (Oracle Corporation)
FF Plugin-x32: @live.heroesandgenerals.com/npretox -> D:\games\Heroes & Generals\live\npretox-1.0.6.1\npretoxlive-1.0.6.1.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @nexon.net/NxGame -> C:\ProgramData\NexonUS\NGM\npNxGameUS.dll No File
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-04-08] (NVIDIA Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-12-02] (Pando Networks)
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll No File
FF Plugin-x32: @raidcall.en/RCplugin -> C:\Users\Hienis\AppData\Roaming\raidcall\plugins\nprcplugin.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4119040938-713604465-2543066657-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Hienis\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-07-07] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-4119040938-713604465-2543066657-1003: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2013-12-02] (Pando Networks)
FF Plugin HKU\S-1-5-21-4119040938-713604465-2543066657-1003: thehappycloud.com/HappyCloudPlugin -> C:\ProgramData\HappyCloud\Application\npHappyCloudPlugin.dll [2013-05-05] (The Happy Cloud)
FF Plugin HKU\S-1-5-21-4119040938-713604465-2543066657-1003: ubisoft.com/uplaypc -> C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll No File
 
Chrome: 
=======
CHR Profile: C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-03]
CHR Extension: (Google Drive) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-03]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-27]
CHR Extension: (YouTube) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-09-30]
CHR Extension: (Google Search) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-09-30]
CHR Extension: (Block site) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2014-10-09]
CHR Extension: (ChromeVox) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\kgejglhpjiefppelpmljglcjbhoiplfn [2014-08-04]
CHR Extension: (Google Wallet) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Gmail) - C:\Users\Hienis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-09-30]
StartMenuInternet: Google Chrome.73C4VME42AQ3AIVGVNS3BQC524 - C:\Users\G\AppData\Local\Google\Chrome\Application\chrome.exe
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [814464 2015-02-06] ()
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-01-01] (BitRaider, LLC)
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [477960 2014-06-30] (BitRaider, LLC)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [93048 2014-06-06] (EasyAntiCheat Ltd)
S3 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1581440 2015-02-25] (Echobit LLC)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152144 2015-03-28] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [417552 2015-03-30] (LogMeIn, Inc.)
R2 MBAMScheduler; D:\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation)
S2 MBAMService; D:\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2015-01-30] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366512 2015-01-30] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1878672 2015-03-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22995600 2015-03-28] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [1930608 2015-04-04] (Electronic Arts)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2014-11-18] ()
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2015-02-05] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [762320 2015-01-17] (Tunngle.net GmbH)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27760 2011-11-11] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [X]
S3 DAUpdaterSvc; C:\games\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 athrusb; C:\Windows\System32\DRIVERS\athrxusb.sys [1075712 2008-07-29] (Atheros Communications, Inc.)
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2014-07-01] (BitRaider)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2015-01-02] (BitRaider)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-09-27] (DT Soft Ltd)
R3 EvolveVirtualAdapter; C:\Windows\System32\DRIVERS\evolve.sys [21656 2013-04-03] (Echobit, LLC)
S3 LADF_BakerCOnly; C:\Windows\System32\DRIVERS\ladfBakerCamd64.sys [410184 2011-03-18] (Logitech)
S3 LADF_BakerROnly; C:\Windows\System32\DRIVERS\ladfBakerRamd64.sys [335688 2011-03-18] (Logitech)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-04-22] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-03-17] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [274696 2014-11-15] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124560 2014-11-15] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-03-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation)
R3 SaiK1107; C:\Windows\System32\DRIVERS\SaiK1107.sys [180584 2012-12-05] (Saitek)
R3 SaiK1705; C:\Windows\System32\DRIVERS\SaiK1705.sys [180584 2012-09-20] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 SaiU1705; C:\Windows\System32\DRIVERS\SaiU1705.sys [47208 2012-09-20] (Saitek)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-04-22 22:41 - 2015-04-22 22:41 - 00000011 _____ () C:\END
2015-04-22 22:36 - 2015-04-22 22:39 - 00000000 ____D () C:\AdwCleaner
2015-04-22 22:35 - 2015-04-22 22:36 - 02217984 _____ () C:\Users\Hienis\Downloads\adwcleaner_4.201.exe
2015-04-22 22:32 - 2015-04-22 22:34 - 74818632 _____ (Logitech Inc.) C:\Users\Hienis\Downloads\LGS_8.58.183_x64_Logitech.exe
2015-04-22 19:30 - 2015-04-22 22:44 - 00000000 ____D () C:\FRST
2015-04-22 03:32 - 2015-04-22 03:32 - 01976294 _____ () C:\Users\Hienis\Downloads\enbseries_falloutnv_v0267.zip
2015-04-22 02:53 - 2015-04-22 02:53 - 02528592 _____ () C:\Users\Hienis\Downloads\FNVEdit_3_1-34703-3-1.7z
2015-04-22 01:40 - 2015-04-22 01:40 - 00001240 _____ () C:\Users\Hienis\Desktop\Crusader Kings II.lnk
2015-04-22 01:40 - 2015-04-22 01:40 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Crusader Kings II
2015-04-22 00:03 - 2015-04-22 00:03 - 00001286 _____ () C:\Users\Hienis\Desktop\nvse_loader.exe - Shortcut.lnk
2015-04-21 23:17 - 2015-04-21 23:17 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Fallout New Vegas - NMC's Texture Pack
2015-04-21 21:44 - 2015-04-22 02:56 - 00000000 ____D () C:\Users\Hienis\AppData\Local\FalloutNV
2015-04-21 21:44 - 2015-04-21 21:44 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Fallout New Vegas - Ultimate Edition
2015-04-20 18:17 - 2015-04-20 18:17 - 01881088 _____ (Eric Zhang) C:\Users\Hienis\Downloads\EZBlocker.exe
2015-04-20 18:17 - 2015-04-20 18:17 - 00000000 ____D () C:\Users\Hienis\AppData\Local\Eric_Zhang
2015-04-19 19:34 - 2015-04-19 19:34 - 04275918 _____ () C:\Users\Hienis\Downloads\Pillars of Eternity V1.0.2.0524 Trainer +7 MrAntiFun.zip
2015-04-19 18:43 - 2015-04-19 18:43 - 00000647 _____ () C:\Users\Public\Desktop\Pillars of Eternity.lnk
2015-04-16 23:50 - 2015-04-16 23:50 - 04140245 _____ () C:\Users\Hienis\Downloads\Mount & Blade Warband V1.161 Trainer +8 MrAntiFun.zip
2015-04-16 20:00 - 2015-04-16 20:01 - 04243127 _____ () C:\Users\Hienis\Downloads\StarDrive 2 V1.00 Trainer +11 MrAntiFun.zip
2015-04-16 18:44 - 2015-04-16 18:44 - 00000770 _____ () C:\Users\Hienis\Desktop\Age of Wonders III Eternal Lords.lnk
2015-04-16 18:44 - 2015-04-16 18:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Age of Wonders III Eternal Lords
2015-04-15 13:34 - 2015-03-25 04:24 - 03298816 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 02553856 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00191488 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-15 13:34 - 2015-03-25 04:24 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-15 13:34 - 2015-03-25 04:23 - 00135168 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-15 13:34 - 2015-03-25 04:23 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-15 13:34 - 2015-03-25 04:23 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-04-15 13:34 - 2015-03-25 04:00 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-15 13:34 - 2015-03-25 04:00 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-15 13:34 - 2015-03-25 04:00 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-15 13:34 - 2015-03-25 04:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-15 13:34 - 2015-03-25 04:00 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-15 13:34 - 2015-03-10 06:29 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-15 13:34 - 2015-03-10 06:28 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-15 13:34 - 2015-03-10 06:28 - 01409024 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-15 13:34 - 2015-03-10 06:28 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 19292672 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 15409152 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 02656256 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-15 13:34 - 2015-03-10 06:27 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-15 13:34 - 2015-03-10 06:26 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-15 13:34 - 2015-03-10 06:26 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-15 13:34 - 2015-03-10 06:26 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 14373376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 02864640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 01763328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-15 13:34 - 2015-03-10 04:49 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 13767680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-15 13:34 - 2015-03-10 04:48 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-04-15 13:34 - 2015-03-10 04:48 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-04-15 13:34 - 2015-03-10 04:32 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-15 13:34 - 2015-03-10 04:07 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-15 13:34 - 2015-03-10 04:07 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-15 13:34 - 2015-03-10 03:42 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2015-04-15 13:34 - 2015-03-10 03:39 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-15 13:34 - 2015-03-10 03:16 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2015-04-15 13:33 - 2015-03-23 04:25 - 00769536 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-04-15 13:33 - 2015-03-23 04:25 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-04-15 13:33 - 2015-03-23 04:24 - 00957952 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-04-15 13:33 - 2015-03-23 04:24 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-04-15 13:33 - 2015-03-23 04:24 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-04-15 13:33 - 2015-03-23 04:24 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-04-15 13:33 - 2015-03-23 04:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-04-15 13:33 - 2015-03-23 04:17 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-04-15 13:32 - 2015-03-05 06:12 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-15 13:32 - 2015-03-05 05:05 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-15 13:26 - 2015-03-17 06:22 - 05557696 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-15 13:26 - 2015-03-17 06:22 - 00155576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-15 13:26 - 2015-03-17 06:22 - 00095672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-15 13:26 - 2015-03-17 06:19 - 01727904 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-15 13:26 - 2015-03-17 06:17 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-04-15 13:26 - 2015-03-17 06:17 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-04-15 13:26 - 2015-03-17 06:17 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-04-15 13:26 - 2015-03-17 06:16 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-04-15 13:26 - 2015-03-17 06:16 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-15 13:26 - 2015-03-17 06:16 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-04-15 13:26 - 2015-03-17 06:15 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-04-15 13:26 - 2015-03-17 06:15 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-04-15 13:26 - 2015-03-17 06:15 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-15 13:26 - 2015-03-17 06:13 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-15 13:26 - 2015-03-17 06:13 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:11 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 06:01 - 03976632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-04-15 13:26 - 2015-03-17 06:01 - 03920824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-04-15 13:26 - 2015-03-17 05:59 - 01309696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-04-15 13:26 - 2015-03-17 05:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-04-15 13:26 - 2015-03-17 05:56 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-15 13:26 - 2015-03-17 05:56 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-15 13:26 - 2015-03-17 05:56 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-04-15 13:26 - 2015-03-17 05:56 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-04-15 13:26 - 2015-03-17 05:56 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-04-15 13:26 - 2015-03-17 05:56 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-04-15 13:26 - 2015-03-17 05:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-04-15 13:26 - 2015-03-17 05:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-15 13:26 - 2015-03-17 05:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 05:50 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 04:45 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-04-15 13:26 - 2015-03-17 04:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-04-15 13:26 - 2015-03-17 04:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 04:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 04:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-04-15 13:26 - 2015-03-17 04:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-04-15 13:26 - 2015-03-10 04:25 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-15 13:26 - 2015-03-10 04:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-15 13:26 - 2015-03-10 04:08 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-15 13:26 - 2015-03-10 04:05 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-04-15 13:26 - 2015-02-25 04:18 - 00754688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-15 13:25 - 2015-03-04 05:55 - 00367552 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2015-04-15 13:25 - 2015-03-04 05:41 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\clfsw32.dll
2015-04-15 13:25 - 2015-03-04 05:10 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clfsw32.dll
2015-04-14 22:07 - 2015-04-14 23:20 - 00000000 ____D () C:\Users\Hienis\Desktop\RimWorld
2015-04-13 23:00 - 2015-04-08 21:32 - 00560968 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-04-13 22:58 - 2015-04-09 01:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 17176128 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-04-13 22:58 - 2015-04-09 01:58 - 02935416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 01086424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00927440 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00150648 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2015-04-13 22:58 - 2015-04-09 01:58 - 00128512 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2015-04-12 13:50 - 2015-04-12 13:50 - 00000000 ____D () C:\Program Files (x86)\Samsung
2015-04-12 13:49 - 2015-04-12 13:49 - 00000000 ____D () C:\ProgramData\Samsung
2015-04-11 17:21 - 2015-04-11 17:25 - 00000690 _____ () C:\Users\Public\Desktop\StarDrive 2.lnk
2015-04-10 13:57 - 2015-04-22 18:05 - 00010598 _____ () C:\Windows\PFRO.log
2015-04-10 02:12 - 2015-04-10 02:12 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Elder Scrolls Online
2015-04-10 02:11 - 2015-04-10 02:12 - 00000000 ___HD () C:\Program Files (x86)\Zero G Registry
2015-04-10 02:11 - 2015-04-10 02:12 - 00000000 ____D () C:\Windows\jre
2015-04-09 20:24 - 2015-04-09 20:24 - 00000000 ___HD () C:\Users\Hienis\InstallAnywhere
2015-04-09 13:48 - 2015-04-09 14:37 - 00000000 ____D () C:\Users\Hienis\AppData\Local\The Spatials
2015-04-05 15:02 - 2015-04-05 15:02 - 00001246 _____ () C:\Users\Hienis\Desktop\Attilb.exe - Shortcut.lnk
2015-04-05 01:00 - 2015-04-05 01:00 - 00000000 ___SD () C:\Windows\SysWOW64\GWX
2015-04-05 01:00 - 2015-04-05 01:00 - 00000000 ___SD () C:\Windows\system32\GWX
2015-04-04 20:57 - 2015-04-22 22:41 - 00008895 _____ () C:\Windows\setupact.log
2015-04-04 20:57 - 2015-04-04 20:57 - 00000000 _____ () C:\Windows\setuperr.log
2015-04-04 15:49 - 2015-04-04 15:54 - 00000000 ____D () C:\Program Files (x86)\The Sims 4
2015-04-02 21:39 - 2015-04-02 21:48 - 00000000 ____D () C:\Users\Hienis\Documents\InfiniteCrisis
2015-04-02 21:39 - 2015-04-02 21:39 - 00000000 ____D () C:\Users\Hienis\AppData\Local\InfiniteCrisis
2015-04-02 14:43 - 2015-04-02 14:43 - 00000000 ____D () C:\ProgramData\Turbine
2015-03-31 13:11 - 2015-03-31 13:11 - 00003092 _____ () C:\Windows\System32\Tasks\fres3005
2015-03-31 13:10 - 2015-03-31 13:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2015-03-31 13:10 - 2015-03-31 13:10 - 00000000 ____D () C:\Program Files (x86)\LogMeIn Hamachi
2015-03-30 19:49 - 2015-03-30 19:49 - 00000745 _____ () C:\Users\Public\Desktop\Divinity - Original Sin.lnk
2015-03-30 15:05 - 2015-03-30 15:05 - 00000000 ____D () C:\Users\Hienis\Desktop\orcish_inn_0_0_8
2015-03-28 00:30 - 2015-03-28 00:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BioShock Infinite
2015-03-27 14:13 - 2015-03-27 14:13 - 00000000 ____D () C:\Users\Hienis\Documents\My Cheat Tables
2015-03-25 23:28 - 2015-03-25 23:28 - 00000000 ____D () C:\Users\Hienis\Desktop\orcish_inn_0_0_7
2015-03-23 21:42 - 2015-03-23 23:42 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Bioshock2Steam
2015-03-23 21:42 - 2015-03-23 21:42 - 00000000 ____D () C:\Users\Hienis\Documents\Bioshock2
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-04-22 22:50 - 2012-10-16 12:13 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-22 22:47 - 2015-01-16 20:37 - 00000000 ____D () C:\Users\Hienis\AppData\Local\LogMeIn Hamachi
2015-04-22 22:47 - 2014-06-18 23:41 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-04-22 22:47 - 2012-09-30 12:11 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Skype
2015-04-22 22:45 - 2012-09-25 04:27 - 02076670 _____ () C:\Windows\WindowsUpdate.log
2015-04-22 22:43 - 2012-10-05 20:34 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Spotify
2015-04-22 22:42 - 2012-10-05 20:35 - 00000000 ____D () C:\Users\Hienis\AppData\Local\Spotify
2015-04-22 22:41 - 2012-09-26 15:47 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-22 22:41 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-22 22:39 - 2009-07-14 05:45 - 00020880 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-04-22 22:39 - 2009-07-14 05:45 - 00020880 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-04-22 22:31 - 2015-03-12 01:29 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-22 20:29 - 2009-07-14 06:08 - 00032620 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-04-22 19:30 - 2013-02-03 01:03 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\uTorrent
2015-04-22 19:30 - 2009-07-14 06:13 - 00797730 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-22 19:29 - 2015-03-03 17:57 - 00002450 _____ () C:\Users\Hienis\Documents\Uninstall Dragon Age.log
2015-04-22 19:28 - 2012-09-29 12:49 - 00000000 ____D () C:\Users\Hienis
2015-04-22 19:02 - 2013-05-27 19:02 - 00000000 ____D () C:\Users\G\AppData\Local\LogMeIn Hamachi
2015-04-22 19:02 - 2012-09-29 12:43 - 00000000 ____D () C:\Users\Emilis
2015-04-22 19:02 - 2012-09-25 04:27 - 00000000 ____D () C:\Users\G
2015-04-22 19:02 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-22 19:02 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration
2015-04-22 18:55 - 2013-07-20 09:49 - 00000000 ____D () C:\Users\G\AppData\Local\Spotify
2015-04-22 18:05 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Vss
2015-04-22 18:04 - 2014-12-03 10:26 - 00000000 ____D () C:\Program Files (x86)\Game of Thrones A Telltale Games Series
2015-04-22 18:04 - 2012-12-08 18:26 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\TS3Client
2015-04-22 18:02 - 2012-09-26 15:27 - 00000892 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4119040938-713604465-2543066657-1000UA.job
2015-04-22 14:02 - 2012-09-26 15:27 - 00000840 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4119040938-713604465-2543066657-1000Core.job
2015-04-22 12:50 - 2012-12-12 21:57 - 00000000 ____D () C:\Users\Hienis\Documents\Nexus Mod Manager
2015-04-22 01:47 - 2013-09-14 14:45 - 00000000 ____D () C:\Users\Hienis\AppData\Local\SKIDROW
2015-04-22 01:46 - 2015-01-07 21:19 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AGOT
2015-04-22 01:35 - 2015-03-03 18:00 - 00000000 ____D () C:\Program Files (x86)\R.G. Mechanics
2015-04-21 23:33 - 2014-07-28 16:59 - 00000890 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2015-04-21 23:33 - 2014-02-05 18:01 - 00000000 ____D () C:\Program Files\Nexus Mod Manager
2015-04-21 21:44 - 2012-09-30 13:27 - 00000000 ____D () C:\Users\Hienis\Documents\My Games
2015-04-21 21:25 - 2013-05-27 23:09 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\Mumble
2015-04-21 15:55 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-04-19 21:19 - 2013-12-13 21:21 - 00000000 ____D () C:\Windows\rescache
2015-04-19 21:09 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\AppCompat
2015-04-19 16:32 - 2014-08-16 02:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-04-17 17:06 - 2013-11-01 15:44 - 00000000 ____D () C:\ProgramData\Oracle
2015-04-17 17:05 - 2015-02-04 22:12 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-04-17 17:04 - 2015-02-04 22:11 - 00000000 ____D () C:\Program Files (x86)\Java
2015-04-16 16:08 - 2012-09-25 13:21 - 00000000 ____D () C:\Windows\Panther
2015-04-16 16:06 - 2014-12-10 12:18 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-16 16:06 - 2014-05-06 07:56 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-16 00:35 - 2012-09-27 15:46 - 00781596 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2015-04-16 00:33 - 2013-08-04 02:57 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-16 00:19 - 2012-09-26 16:00 - 128913832 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-15 20:25 - 2014-12-20 21:49 - 00000000 ____D () C:\Users\Hienis\Documents\Mount&Blade Warband Savegames
2015-04-14 18:52 - 2012-10-16 12:13 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-14 18:52 - 2012-10-16 12:13 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-14 18:52 - 2012-10-16 12:13 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-04-13 23:01 - 2012-10-25 22:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-04-13 23:01 - 2012-09-26 15:34 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-04-10 02:17 - 2015-03-18 04:04 - 00000000 ____D () C:\Program Files (x86)\SystemRequirementsLab
2015-04-09 01:58 - 2014-11-18 19:58 - 14617288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-04-09 01:58 - 2014-11-11 00:17 - 00078480 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-04-09 01:58 - 2014-11-11 00:17 - 00066704 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-04-09 01:58 - 2014-11-11 00:12 - 12689592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-04-09 01:58 - 2014-11-11 00:12 - 03317344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-04-09 01:58 - 2014-11-11 00:12 - 00029329 _____ () C:\Windows\system32\nvinfo.pb
2015-04-08 22:30 - 2014-11-11 00:18 - 06841488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-04-08 22:30 - 2014-11-11 00:18 - 03478344 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-04-08 22:30 - 2014-11-11 00:18 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-04-08 22:30 - 2014-11-11 00:18 - 00936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-04-08 22:30 - 2014-11-11 00:18 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-04-08 22:30 - 2014-11-11 00:18 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-04-08 18:52 - 2014-11-11 00:18 - 04336074 _____ () C:\Windows\system32\nvcoproc.bin
2015-04-05 14:53 - 2012-09-27 15:17 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-04-05 14:52 - 2012-09-27 15:17 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-04-04 18:35 - 2012-10-20 18:53 - 00000000 ____D () C:\Users\Hienis\AppData\Roaming\vlc
2015-04-04 17:07 - 2014-06-10 12:31 - 00000000 ____D () C:\ProgramData\Origin
2015-04-04 15:50 - 2015-02-05 18:43 - 00000000 ____D () C:\Program Files (x86)\Origin
2015-04-04 15:30 - 2014-09-04 16:45 - 00000000 ____D () C:\Users\Hienis\Documents\Electronic Arts
2015-04-04 09:25 - 2012-10-31 17:22 - 00000000 ____D () C:\Users\Emilis\AppData\Roaming\Skype
2015-04-04 09:24 - 2012-09-29 12:43 - 00000000 ____D () C:\Users\Emilis\AppData\Local\LogMeIn Hamachi
2015-04-02 14:43 - 2012-10-11 22:22 - 00000000 ____D () C:\Users\Hienis\AppData\Local\Turbine
2015-03-31 15:09 - 2009-07-14 08:46 - 00000000 __SHD () C:\Windows\BitLockerDiscoveryVolumeContents
2015-03-30 20:13 - 2015-01-28 13:58 - 00000000 ____D () C:\ProgramData\Tunngle
2015-03-30 20:12 - 2015-03-12 01:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-03-30 20:10 - 2014-07-27 11:16 - 00000000 ____D () C:\Users\Hienis\Documents\Larian Studios
2015-03-30 15:25 - 2012-12-13 16:38 - 00033856 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2015-03-30 15:16 - 2013-04-28 21:46 - 00000000 ____D () C:\ProgramData\Package Cache
2015-03-30 15:15 - 2014-12-25 14:23 - 00000638 _____ () C:\Users\Public\Desktop\Elite Dangerous Launcher.lnk
2015-03-28 20:56 - 2012-10-08 17:50 - 00000000 ____D () C:\Games
2015-03-28 04:44 - 2014-06-02 16:22 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-03-28 04:44 - 2013-11-01 18:13 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-03-28 04:43 - 2014-06-02 16:22 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-03-28 04:43 - 2013-11-01 18:13 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-03-27 23:35 - 2015-03-10 03:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SEGA
2015-03-27 23:34 - 2014-04-14 01:12 - 00000000 ____D () C:\Users\Hienis\AppData\Local\Setup Integrity Check
2015-03-25 20:03 - 2012-12-16 13:49 - 00000000 ____D () C:\Users\Hienis\Desktop\saves
2015-03-25 20:00 - 2014-04-09 19:40 - 00000000 ____D () C:\Users\Hienis\Documents\Telltale Games
2015-03-25 02:04 - 2014-08-22 22:44 - 00000000 ____D () C:\Users\Hienis\Desktop\PICS
2015-03-24 08:58 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\Resources
 
==================== Files in the root of some directories =======
 
2014-07-04 01:57 - 2003-12-18 12:33 - 0020102 _____ () C:\Program Files (x86)\Readme.txt
2014-01-01 21:38 - 2014-06-24 14:47 - 0000301 _____ () C:\Users\Hienis\AppData\Roaming\BreakingPoint_Login.ini
2014-01-01 23:22 - 2014-06-24 14:47 - 0001548 _____ () C:\Users\Hienis\AppData\Roaming\BreakingPoint_Options.ini
2014-09-28 01:42 - 2014-09-28 01:42 - 0085273 _____ () C:\Users\Hienis\AppData\Roaming\icarus-dxdiag.xml
2013-03-09 18:47 - 2013-03-09 18:47 - 0001432 _____ () C:\Users\Hienis\AppData\Roaming\temp14593.txt
2012-10-11 22:22 - 2012-10-11 22:22 - 0000094 _____ () C:\Users\Hienis\AppData\Local\fusioncache.dat
2015-02-03 20:07 - 2015-02-03 20:07 - 0000000 ___SH () C:\Users\Hienis\AppData\Local\LumaEmu
2014-03-01 01:36 - 2014-03-01 01:36 - 0000862 _____ () C:\Users\Hienis\AppData\Local\recently-used.xbel
2014-09-17 13:22 - 2014-09-17 13:22 - 0007605 _____ () C:\Users\Hienis\AppData\Local\Resmon.ResmonCfg
 
Some content of TEMP:
====================
C:\Users\Emilis\AppData\Local\Temp\drm_dialogs.dll
C:\Users\G\AppData\Local\Temp\AutoRun.exe
C:\Users\G\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\G\AppData\Local\Temp\avg_12.1.0.20.exe
C:\Users\G\AppData\Local\Temp\dotnetfx 3.5 sp1.exe
C:\Users\G\AppData\Local\Temp\drm_dialogs.dll
C:\Users\G\AppData\Local\Temp\drm_dyndata_7400009.dll
C:\Users\G\AppData\Local\Temp\eauninstall.exe
C:\Users\G\AppData\Local\Temp\install_reader10_uk_mssa_aih.exe
C:\Users\G\AppData\Local\Temp\Lifecam3.0.204.0.exe
C:\Users\G\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\G\AppData\Local\Temp\nvStereoApiI.dll
C:\Users\G\AppData\Local\Temp\nvStInst.exe
C:\Users\G\AppData\Local\Temp\Onlive_Updater_1354217879.exe
C:\Users\G\AppData\Local\Temp\SimCity 4 Deluxe_uninst.exe
C:\Users\G\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\G\AppData\Local\Temp\Uninstall.exe
C:\Users\G\AppData\Local\Temp\winziprosetup_20130121.exe
C:\Users\G\AppData\Local\Temp\_unps.exe
C:\Users\Hienis\AppData\Local\Temp\CH.dll
C:\Users\Hienis\AppData\Local\Temp\Copy.dll
C:\Users\Hienis\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Hienis\AppData\Local\Temp\Nexus Mod Manager-0.54.10.exe
C:\Users\Hienis\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Hienis\AppData\Local\Temp\nvStInst.exe
C:\Users\Hienis\AppData\Local\Temp\Quarantine.exe
C:\Users\Hienis\AppData\Local\Temp\sqlite3.dll
C:\Users\Hienis\AppData\Local\Temp\SRLDetectionLibrary6963960328538130639.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-04-16 17:42
 

==================== End Of Log ============================ 


And heres the addition log

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22-04-2015
Ran by Hienis at 2015-04-22 22:55:37
Running from V:\
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
"BioShock Infinite" (HKLM-x32\...\{D081C29C-1DDC-4C55-BCBF-DF8519636331}_is1) (Version: 1.1.25.5165 - )
A Game of Thrones version 0.9.5 (HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\{7C82709E-75FE-4C3A-976A-8C97908DDD7B}_is1) (Version: 0.9.5 - AGOT TEAM)
A3Launcher version 0.0.0.9 (HKLM-x32\...\{E31045B4-9DB5-9EBD-44DF-BD4CFDE640DF}_is1) (Version: 0.0.0.9 - Maca134)
Addon Sync 2009 (HKLM-x32\...\{4E3AA543-09D7-401E-9DF2-2591D24C7C49}) (Version: 1.0.67 - YomaTools)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\Adobe Photoshop CS6) (Version: 13.0.0.0 - © The Computer Guy Tony)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Age of Wonders III Eternal Lords (HKLM-x32\...\Age of Wonders III Eternal Lords_is1) (Version:  - )
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
Archeage Beta (HKLM-x32\...\Glyph Archeage Beta) (Version:  - Trion Worlds, Inc.)
Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version:  - Bohemia Interactive)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version:  - Bohemia Interactive)
ArmA3Sync 1.4.54 (HKLM-x32\...\{F097E7D7-D093-4394-9EED-43AFCCD12B7A}_is1) (Version: 1.4.54 - The [S.o.E] team)
Assassin's Creed Rogue (HKLM-x32\...\Uplay Install 895) (Version:  - Ubisoft)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.12.13 - Atheros Communications Inc.)
AwesomiumSetup (HKLM-x32\...\{19EF99D1-7EE6-4B5E-ABEE-0B3825F703B0}) (Version: 1.00.0000 - SIX Networks GmbH)
Battlefield 2™ (HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: 1.00.0000 - DICE)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.23028 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version:  - )
BattlEye Uninstall (HKLM-x32\...\BattlEye for A2) (Version:  - )
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.9.9 - BitRaider, LLC)
BOSS (HKLM-x32\...\BOSS) (Version: 2.1.1 - BOSS Development Team)
CCGLauncher version 0.0.0.7 (HKLM-x32\...\{78D51CE5-799C-4FCA-9635-6F61E19EA5E3}_is1) (Version: 0.0.0.7 - Custom Combat Gaming)
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.4.2.3442 - CDBurnerXP)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version:  - Torn Banner Studios)
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Crossfire1.9 (remove only) (HKLM-x32\...\Crossfire) (Version:  - )
Crusader Kings II (HKLM-x32\...\Crusader Kings II_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, markfiter)
Crysis Wars® (HKLM-x32\...\Crysis Wars®) (Version:  - Electronic Arts)
DayZ (HKLM-x32\...\Steam App 221100) (Version:  - Bohemia Interactive)
DayZ Commander (HKLM-x32\...\{B3653588-3AC0-4A1D-950F-D96531E84374}) (Version: 0.92.91 - Dotjosh Studios)
Divinity: Original Sin (HKLM-x32\...\Divinity: Original Sin_is1) (Version:  - )
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.04 - Electronic Arts, Inc.)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
DVD Flick 1.3.0.7 (HKLM-x32\...\DVD Flick_is1) (Version: 1.3.0.7 - Dennis Meuwissen)
Dying Light Update v1.2.1 (HKLM-x32\...\RHlpbmdMaWdodA==_is1) (Version: 1 - )
Elder Kings CK2 Total Conversion (HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Elder Kings CK2 Total Conversion 0.1.5) (Version: 0.1.5 - Elder Kings Team)
Elite Dangerous Launcher version 0.4.2220.0 (HKLM-x32\...\{696F8871-C91D-4CB1-825D-36BE18065575}_is1) (Version: 0.4.2220.0 - Frontier Developments)
Endless Legend (HKLM-x32\...\Endless Legend_R.G. Gamblers_is1) (Version:  - R.G. Gamblers, Fanfar)
Endless Legend (HKLM-x32\...\Steam App 289130) (Version:  - AMPLITUDE Studios)
Endless Space (HKLM-x32\...\Endless Space_R.G. Gamblers_is1) (Version:  - R.G. Gamblers, Fanfar)
Endless Space (HKLM-x32\...\Steam App 208140) (Version:  - AMPLITUDE Studios)
Epoch Launcher (HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\de6ddf4941177887) (Version: 0.0.1.12 - Epoch Mod Team)
Europa Universalis IV: El Dorado (HKLM-x32\...\Europa Universalis IV: El Dorado_is1) (Version:  - )
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.11 - Echobit, LLC)
Fable III (x32 Version: 1.0.0001.131 - Microsoft Game Studios) Hidden
Fallout New Vegas - NMC's Texture Pack (HKLM-x32\...\Fallout New Vegas - NMC's Texture Pack_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, Panky)
Fallout New Vegas - Ultimate Edition (HKLM-x32\...\Fallout New Vegas - Ultimate Edition_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, Panky)
Galactic Civilizations III - Beta 4 version 0.70 (HKLM-x32\...\{1B0E48E6-9539-4C7A-A655-C1C7FAB15222}_is1) (Version: 0.70 - Yuzutu, Inc.)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
Google Drive (HKLM-x32\...\{6C36881B-0E51-4231-9D02-BF2149664D34}) (Version: 1.20.8672.3137 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Gyazo 2.0.2 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Happy Cloud Client (HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\HappyCloud) (Version: 4.28 - Happy Cloud, Inc.)
Infinite Crisis™ (HKLM-x32\...\Steam App 345520) (Version:  - Turbine, Inc.)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Interstellar Rift (HKLM-x32\...\{BB3DCED9-AA0C-45F1-ACBE-66FD08208B23}) (Version: 1.0 - Split Polygon)
James Cameron's AVATAR™: THE GAME (HKLM-x32\...\{7E19B002-4CA3-4C9F-BA92-91D101B97219}) (Version: 1.02.00 - Ubisoft)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Life Is Strange Episode 2 (HKLM-x32\...\Life Is Strange Episode 2_is1) (Version:  - )
Logitech Gaming Software 8.57 (HKLM\...\Logitech Gaming Software) (Version: 8.57.145 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.328 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.328 - LogMeIn, Inc.) Hidden
LOOT (HKLM-x32\...\LOOT) (Version: 0.6.0 - LOOT Development Team)
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version:  - )
Malwarebytes Anti-Malware version 2.1.4.1018 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
Medieval II Total War (HKLM-x32\...\{C0698BDA-0D29-40EE-8570-A31106DF9AB1}) (Version: 1.03.000 - SEGA)
Medieval II Total War : Kingdoms : Americas (HKLM-x32\...\{75983B66-804C-40D1-BA13-64DAF652A6F1}) (Version: 1.03.000 - SEGA)
Medieval II Total War : Kingdoms : Britannia (HKLM-x32\...\{CEDDEE73-3D36-41C2-AA40-29355D9FBD63}) (Version: 1.03.000 - SEGA)
Medieval II Total War : Kingdoms : Teutonic (HKLM-x32\...\{7AEE1963-7001-4C37-BC20-2FAEB74AA41C}) (Version: 1.03.000 - SEGA)
Men of War: Assault Squad 2 (HKLM-x32\...\Steam App 244450) (Version:  - Digitalmindsoft)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.7.205.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual J# .NET Redistributable Package 1.1 (HKLM-x32\...\{1A655D51-1423-48A3-B748-8F5A0BE294C8}) (Version: 1.1.4322 - Microsoft)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MorphVOX Junior (HKLM-x32\...\{E6C7380F-15DD-445E-BA02-B7A180BA0A5A}) (Version: 2.8.1 - Screaming Bee)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mumble 1.2.5 (HKLM-x32\...\{C7BC557D-8C8B-4F5F-83AB-D20C58CF4575}) (Version: 1.2.5 - Thorvald Natvig)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.54.10 - Black Tree Gaming)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.8 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 349.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 349.95 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 350.12 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation)
NVIDIA Graphics Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Orcs Must Die 2 (HKLM-x32\...\Orcs Must Die 2) (Version: 1.0.0.362 - Jimbo)
Orcs Must Die! 2 Complete (HKLM-x32\...\Orcs Must Die! 2 Complete_is1) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.5.2850 - Electronic Arts, Inc.)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Pandora First Contact (HKLM-x32\...\Pandora First Contact_is1) (Version:  - Slitherine)
Papers Please version 1.1.60-S (HKLM-x32\...\Papers Please_is1) (Version: 1.1.60-S - )
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
Pillars of Eternity: Royal Edition (HKLM-x32\...\Pillars of Eternity: Royal Edition_is1) (Version:  - )
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Project Reality: BF2 (HKLM\...\Project Reality: BF2 (pr)_is1) (Version: v1.2 - Project Reality)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Sid Meiers Civilization Beyond Earth (HKLM-x32\...\U2lkTWVpZXJzQ2l2aWxpemF0aW9uQmV5b25kRWFydGg=_is1) (Version: 1 - )
Six Updater (HKLM-x32\...\{AD42165D-FF3C-4975-A130-7AA2801AB5DD}) (Version: 2.09.7042 - Six Projects)
Skype™ 6.18 (HKLM-x32\...\{1845470B-EB14-4ABC-835B-E36C693DC07D}) (Version: 6.18.106 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.27.13 (HKLM\...\{BD90BC1C-115D-47E1-B85C-07AE182C3AB8}) (Version: 7.0.27.13 - Mad Catz)
Smart Technology Volume Tracker 7.0.23.0 (HKLM\...\{7C2F1B90-E6E6-4ECF-B626-4545CF6EEB2D}) (Version: 7.0.23.0 - Mad Catz)
Space Engineers (HKLM-x32\...\Steam App 244850) (Version:  - )
Spotify (HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\Spotify) (Version: 1.0.3.101.gbfa97dfe - Spotify AB)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version:  - Bioware/EA)
Star Wars® Knights of the Old Republic® II: The Sith Lords™ (HKLM-x32\...\{629F65FB-7F3C-4D66-A1C0-20722744B7B6}) (Version: 1.00.0000 - Obsidian)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
StarDrive 2 (HKLM-x32\...\StarDrive 2_is1) (Version:  - )
System Requirements Lab (HKLM-x32\...\{0F659036-14C7-4622-9505-35A0DC93526A}) (Version: 6.1.3.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
The Sims 4 - Digital Deluxe Edition by BuZeR version 1.4.83.1010 (HKLM-x32\...\{EDE11F21-E106-4225-B60F-6B131508F76F}_is1) (Version: 1.4.83.1010 - )
The Sims 4 - Get to Work (HKLM-x32\...\VGhlU2ltczQ=_is1) (Version: 1 - )
The Sims" 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts)
The Sims" 3 70s, 80s, & 90s Stuff (HKLM-x32\...\{E1868CAE-E3B9-4099-8C18-AA8944D336FD}) (Version: 17.0.77 - Electronic Arts)
The Sims" 3 Ambitions (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.0.87 - Electronic Arts)
The Sims" 3 Diesel Stuff (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts)
The Sims" 3 Fast Lane Stuff (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.0.44 - Electronic Arts)
The Sims" 3 Generations (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts)
The Sims" 3 High-End Loft Stuff (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.0.38 - Electronic Arts)
The Sims" 3 Into the Future (HKLM-x32\...\{A0BBD6C7-B546-4048-B33A-F21F5C9F5B09}) (Version: 21.0.150 - Electronic Arts)
The Sims" 3 Island Paradise (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts)
The Sims" 3 Katy Perry's Sweet Treats (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts)
The Sims" 3 Late Night (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.0.81 - Electronic Arts)
The Sims" 3 Master Suite Stuff (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts)
The Sims" 3 Movie Stuff (HKLM-x32\...\{D0087539-3C57-44E0-BEE7-D779D546CBE1}) (Version: 20.0.53 - Electronic Arts)
The Sims" 3 Outdoor Living Stuff (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.0.55 - Electronic Arts)
The Sims" 3 Pets (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts)
The Sims" 3 Seasons (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts)
The Sims" 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts)
The Sims" 3 Supernatural (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts)
The Sims" 3 Town Life Stuff (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts)
The Sims" 3 University Life (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts)
The Sims" 3 World Adventures (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.0.86 - Electronic Arts)
The Sims™ 3 + Expansions Uninstaller (HKLM-x32\...\The Sims™ 3 + Expansions Uninstaller) (Version: 1.0.0.11 - Electronic Arts)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Total War - Attila (Update to v1.2) (HKLM-x32\...\Total War - Attila (Update to v1.2)_is1) (Version:  - )
Total War: Attila (HKLM-x32\...\Total War: Attila_is1) (Version:  - )
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: Tunngle - Tunngle.net GmbH)
Unity Web Player (HKU\S-1-5-21-4119040938-713604465-2543066657-1003\...\UnityWebPlayer) (Version: 4.5.2f1 - Unity Technologies ApS)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Uplay (HKLM-x32\...\Uplay) (Version: 4.9 - Ubisoft)
VIA Platform Device Manager (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
VLC media player 2.0.3 (HKLM-x32\...\VLC media player) (Version: 2.0.3 - VideoLAN)
War Thunder (HKLM-x32\...\Steam App 236390) (Version:  - Gaijin Entertainment)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63  - Nullsoft, Inc)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Xenonauts (HKLM-x32\...\Xenonauts_is1) (Version:  - )
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
 
==================== Restore Points  =========================
 
22-04-2015 11:24:54 Windows Update
22-04-2015 18:20:54 Restore Operation
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-14 03:34 - 2015-04-20 18:18 - 00000900 ____A C:\Windows\system32\Drivers\etc\hosts
0.0.0.0 pubads.g.doubleclick.net
0.0.0.0 securepubads.g.doubleclick.net
 
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {16C2D6F2-E049-48F7-8226-193F32513BA8} - System32\Tasks\shutdown pc => C:\Windows\System32\Shutdown.exe [2009-07-14] (Microsoft Corporation)
Task: {1FE2DE85-4AAA-414D-AE2C-5893B5CD9EED} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-20] (Google Inc.)
Task: {20AD4588-85F1-4A33-990E-C1AEC71EC3F8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-03-20] (Google Inc.)
Task: {2D1C2E36-D465-4C88-B38B-864039C2EECC} - System32\Tasks\{D9761FD2-2D9C-42C1-8EEC-E8D89FE03A83} => pcalua.exe -a I:\Update3\setup.exe -d I:\Update3
Task: {3940B723-23D1-4FC9-92C5-4622F277D935} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {3EE6DE48-322C-4E66-B5B9-504F506954F1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {472A75C3-7E0F-4652-883E-24E6F1971A10} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4119040938-713604465-2543066657-1000UA => C:\Users\G\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-26] (Google Inc.)
Task: {47751349-1AA6-4315-B810-10BFABA89F86} - System32\Tasks\ASUS\i-Setup221354 => C:\Windows\Chipset\AsusSetup.exe [2010-09-08] (ASUSTeK Computer Inc.)
Task: {678CEAE6-828D-4A06-8533-4269A36CB994} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {7B2B0ABF-37EF-4720-ADB2-A2DF442C6887} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: {860B5D82-E905-447F-B4E4-811DDF2CBB04} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {8D93CF77-E7D7-4573-9DA2-F48F0CFEDBB8} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-25] (Microsoft Corporation)
Task: {A2DBAA38-17E4-477E-A622-A6897F55F233} - System32\Tasks\{037C4678-A6CB-4BFD-BC60-8F36B6CACD20} => pcalua.exe -a G:\AUTORUN.EXE -d G:\
Task: {A89225E7-57C8-47A8-8E1B-BF757C9B9453} - \GPUpdateCheck No Task File <==== ATTENTION
Task: {AF6663F4-F863-4F74-980F-A8163DCEE4EB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4119040938-713604465-2543066657-1000Core => C:\Users\G\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-26] (Google Inc.)
Task: {C1366C6A-D59E-460D-A0D4-5B7383463219} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {CF4F1353-A029-46A0-819C-524BBCF7E590} - System32\Tasks\trik3004 => C:\PROGRA~2\TabNav\trik3004.exe
Task: {D34B05B5-5848-4210-8FFB-EF71F06E2CFD} - System32\Tasks\{20BDC102-726D-490C-A412-A24890DC136F} => pcalua.exe -a C:\Users\Hienis\AppData\Roaming\mystartsearch\UninstallManager.exe -c  -ptid=sfpsnew1
Task: {D6DA0702-0027-45B0-B380-CF21C81DDA49} - System32\Tasks\fres3005 => C:\Program Files (x86)\HighlightSearches\fres3005.exe [2015-03-23] ()
Task: {EEC5CE21-7861-4E2E-A481-4C2D45A446FF} - System32\Tasks\{4DD4AA6D-7F03-4920-ABE1-2F60447D0CDD} => pcalua.exe -a "D:\games\Dragon Age Inquisition\Dragon Age Inquisition Game Downloader.exe" -d "D:\games\Dragon Age Inquisition"
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4119040938-713604465-2543066657-1000Core.job => C:\Users\G\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4119040938-713604465-2543066657-1000UA.job => C:\Users\G\AppData\Local\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) ==============
 
2014-11-11 00:18 - 2015-04-08 22:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-20 08:01 - 2015-02-20 08:01 - 00022528 _____ () C:\Windows\System32\us001lm.dll
2013-04-28 21:45 - 2015-02-05 23:16 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-05-12 10:49 - 2014-05-12 10:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2012-09-26 15:20 - 2011-12-06 02:58 - 00078448 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2012-09-26 15:20 - 2011-12-06 02:58 - 00386160 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2015-04-22 22:43 - 2015-04-22 22:43 - 05600504 _____ () C:\Users\Hienis\AppData\Local\NVIDIA\NvBackend\Packages\000074d7\DAO.19510325.exe
2015-03-30 23:09 - 2015-03-28 04:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-02-22 10:32 - 2015-02-17 23:44 - 01117512 _____ () C:\Users\G\AppData\Local\Google\Chrome\Application\40.0.2214.115\libglesv2.dll
2015-02-22 10:32 - 2015-02-17 23:44 - 00211272 _____ () C:\Users\G\AppData\Local\Google\Chrome\Application\40.0.2214.115\libegl.dll
2015-02-22 10:32 - 2015-02-17 23:44 - 09171272 _____ () C:\Users\G\AppData\Local\Google\Chrome\Application\40.0.2214.115\pdf.dll
2015-02-22 10:32 - 2015-02-17 23:44 - 14965064 _____ () C:\Users\G\AppData\Local\Google\Chrome\Application\40.0.2214.115\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\abengine => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
 
==================== EXE Association (whitelisted) ===============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, the associated entry will be removed from the registry.)
 
IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-4119040938-713604465-2543066657-1003\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.1.1
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Spotify => "C:\Users\Hienis\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Hienis\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: VX1000 => C:\Windows\vVX1000.exe
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-4119040938-713604465-2543066657-500 - Administrator - Disabled)
ASPNET (S-1-5-21-4119040938-713604465-2543066657-1002 - Limited - Enabled)
Emilis (S-1-5-21-4119040938-713604465-2543066657-1004 - Limited - Enabled) => C:\Users\Emilis
G (S-1-5-21-4119040938-713604465-2543066657-1000 - Administrator - Enabled) => C:\Users\G
Guest (S-1-5-21-4119040938-713604465-2543066657-501 - Limited - Disabled)
Hienis (S-1-5-21-4119040938-713604465-2543066657-1003 - Administrator - Enabled) => C:\Users\Hienis
HomeGroupUser$ (S-1-5-21-4119040938-713604465-2543066657-1007 - Limited - Enabled)
 
==================== Faulty Device Manager Devices =============
 
Name: Programmable Root Enumerator
Description: Programming Support
Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a}
Manufacturer: Mad Catz
Service: SaiNtBus
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (04/22/2015 10:41:42 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (04/22/2015 10:41:42 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (04/22/2015 10:41:42 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]
 
Error: (04/22/2015 10:20:21 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (04/22/2015 10:20:21 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (04/22/2015 10:20:21 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]
 
Error: (04/22/2015 09:38:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: LCore.exe, version: 8.57.145.0, time stamp: 0x543d6bf8
Faulting module name: Qt5Network.dll, version: 5.1.1.0, time stamp: 0x53695429
Exception code: 0xc0000005
Fault offset: 0x0000000000078280
Faulting process id: 0xf18
Faulting application start time: 0xLCore.exe0
Faulting application path: LCore.exe1
Faulting module path: LCore.exe2
Report Id: LCore.exe3
 
Error: (04/22/2015 09:37:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Skype.exe, version: 6.18.32.106, time stamp: 0x53d13f7e
Faulting module name: Skype.exe, version: 6.18.32.106, time stamp: 0x53d13f7e
Exception code: 0x40000015
Fault offset: 0x00bd336e
Faulting process id: 0x758
Faulting application start time: 0xSkype.exe0
Faulting application path: Skype.exe1
Faulting module path: Skype.exe2
Report Id: Skype.exe3
 
Error: (04/22/2015 08:30:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: nvstreamsvc.exe, version: 4.1.1944.2762, time stamp: 0x5515f674
Faulting module name: nvstreamsvc.exe, version: 4.1.1944.2762, time stamp: 0x5515f674
Exception code: 0x40000015
Fault offset: 0x000000000044cf4a
Faulting process id: 0x5f4
Faulting application start time: 0xnvstreamsvc.exe0
Faulting application path: nvstreamsvc.exe1
Faulting module path: nvstreamsvc.exe2
Report Id: nvstreamsvc.exe3
 
Error: (04/22/2015 08:29:48 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
 
 
System errors:
=============
Error: (04/22/2015 10:40:06 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: 
%%1056
 
Error: (04/22/2015 10:39:36 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
Error: (04/22/2015 10:39:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Modules Installer service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
 
Error: (04/22/2015 10:39:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The MBAMScheduler service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (04/22/2015 10:39:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The MBAMService service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (04/22/2015 10:39:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Software Protection service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
 
Error: (04/22/2015 10:39:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Injector Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (04/22/2015 10:39:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The abengine service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 200 milliseconds: Restart the service.
 
Error: (04/22/2015 10:39:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
Error: (04/22/2015 10:39:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (04/22/2015 10:41:42 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (04/22/2015 10:41:42 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (04/22/2015 10:41:42 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]
 
Error: (04/22/2015 10:20:21 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]
 
Error: (04/22/2015 10:20:21 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]
 
Error: (04/22/2015 10:20:21 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]
 
Error: (04/22/2015 09:38:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: LCore.exe8.57.145.0543d6bf8Qt5Network.dll5.1.1.053695429c00000050000000000078280f1801d07d3c48807c11C:\Program Files\Logitech Gaming Software\LCore.exeC:\Program Files\Logitech Gaming Software\Qt5Network.dll883ee75c-e92f-11e4-8c98-3085a9b323fc
 
Error: (04/22/2015 09:37:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Skype.exe6.18.32.10653d13f7eSkype.exe6.18.32.10653d13f7e4000001500bd336e75801d07d3c28764651C:\Program Files (x86)\Skype\Phone\Skype.exeC:\Program Files (x86)\Skype\Phone\Skype.exe67cf973a-e92f-11e4-8c98-3085a9b323fc
 
Error: (04/22/2015 08:30:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: nvstreamsvc.exe4.1.1944.27625515f674nvstreamsvc.exe4.1.1944.27625515f67440000015000000000044cf4a5f401d07d32b474c3c4C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exefb2a15fd-e925-11e4-8c98-3085a9b323fc
 
Error: (04/22/2015 08:29:48 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-3350P CPU @ 3.10GHz
Percentage of memory in use: 51%
Total physical RAM: 8144.54 MB
Available physical RAM: 3964.06 MB
Total Pagefile: 16287.28 MB
Available Pagefile: 12261.58 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:270.35 GB) (Free:52.07 GB) NTFS
Drive d: () (Fixed) (Total:195.31 GB) (Free:19.59 GB) NTFS
Drive v: (KINGSTON) (Removable) (Total:3.73 GB) (Free:3.54 GB) FAT32
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 0322DD59)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=270.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS)
 
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 3.7 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=3.7 GB) - (Type=0C)
 
==================== End Of Log ============================


#11 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:35 PM

Posted 22 April 2015 - 05:05 PM

Step 1

Please downloadesetlogo.pngOnline Scanner and save it to your Desktop.
  • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
  • Start installer.pngwith administartor privileges.
  • Select the option Yes, I accept the Terms of Use and click on Start.
  • Choose the following settings:
settings.png
  • Click on Start. The virus signature database will begin to download. This may take some time.
  • When completed the Online Scan will begin automatically.
    Note: This scan might take a long time! Please be patient.
  • When completed, click on Finish.
  • A log filelog.pngis created at logpath.png
    Copy and paste the content of this log file in your next reply.
esetlog.png

Note: Do not forget to re-enable your antivirus application after running the above scan!
eset.gif
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#12 HenryHasIssues

HenryHasIssues
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:06:35 PM

Posted 22 April 2015 - 05:06 PM

oh and one more thing, i am still getting adware on some websites, and on google the first 7 or so results are ads. also some of my programs and games on steam either stop responding upon starting or say file fail or something along those lines



#13 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:07:35 PM

Posted 22 April 2015 - 05:13 PM

Please follow my instructions above (ESET scan). Thank you.
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#14 HenryHasIssues

HenryHasIssues
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:06:35 PM

Posted 22 April 2015 - 05:16 PM

yeah i am doing the scan still



#15 HenryHasIssues

HenryHasIssues
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:06:35 PM

Posted 22 April 2015 - 05:36 PM

if the scan takes more than a hour i will contact you tomorrow at 4pm as i have stuff to do






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users