Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible infection or false positive by rogue killer?


  • This topic is locked This topic is locked
21 replies to this topic

#1 JaskaTheK9

JaskaTheK9

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:01:20 PM

Posted 19 February 2016 - 05:27 AM

EDIT: SORRY, Double posted. The attacments can be  found here: http://www.bleepingcomputer.com/forums/t/605873/possible-infection-or-false-positive-by-rogue-killer/

 

Hey,

 

So I did a Rogue Killer scan, and it found something on spotify webhelper. I'm somewhat paranoid about malware so I need some confirmation about if i'm infected or not. It also found 1  weird registry entry? [PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Found

 

I did FRST scan. I added roguekiller log and the Addition FRST file as attachments.

 

FRST scan: 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:17-02-2016
Ran by jaakk (administrator) on JAAKKO (19-02-2016 12:20:04)
Running from C:\Users\jaakk\Desktop
Loaded Profiles: jaakk &  (Available Profiles: jaakk)
Platform: Windows 10 Home Version 1511 (X64) Language: suomi (Suomi)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Electronic Arts) C:\Program Files (x86)\Origin\Origin.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
(Corsair Components, Inc.) C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(GOG.com) C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Spotify Ltd) C:\Users\jaakk\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\jaakk\AppData\Roaming\Spotify\SpotifyCrashService.exe
(Spotify Ltd) C:\Users\jaakk\AppData\Roaming\Spotify\Spotify.exe
(Spotify Ltd) C:\Users\jaakk\AppData\Roaming\Spotify\Spotify.exe
(Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [15053944 2016-01-06] (Logitech Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-23] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [804168 2016-02-18] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [66328 2016-01-05] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Corsair Utility Engine] => C:\Program Files (x86)\Corsair\Corsair Utility Engine\CorsairHID.exe [13740864 2015-12-25] (Corsair Components, Inc.)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001\...\Run: [Spotify] => C:\Users\jaakk\AppData\Roaming\Spotify\Spotify.exe [6743664 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-03] (Electronic Arts)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7744568 2015-10-14] (GOG.com)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001\...\Run: [Spotify Web Helper] => C:\Users\jaakk\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524336 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify] => C:\Users\jaakk\AppData\Roaming\Spotify\Spotify.exe [6743664 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-03] (Electronic Arts)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7744568 2015-10-14] (GOG.com)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Spotify Web Helper] => C:\Users\jaakk\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524336 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [Spotify] => C:\Users\jaakk\AppData\Roaming\Spotify\Spotify.exe [6743664 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-03] (Electronic Arts)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7744568 2015-10-14] (GOG.com)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [Spotify Web Helper] => C:\Users\jaakk\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524336 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-2\...\Run: [Spotify] => C:\Users\jaakk\AppData\Roaming\Spotify\Spotify.exe [6743664 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-2\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-03] (Electronic Arts)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-2\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7744568 2015-10-14] (GOG.com)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-2\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-2\...\Run: [Spotify Web Helper] => C:\Users\jaakk\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524336 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-2\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-2\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-3\...\Run: [Spotify] => C:\Users\jaakk\AppData\Roaming\Spotify\Spotify.exe [6743664 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-3\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-03] (Electronic Arts)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-3\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7744568 2015-10-14] (GOG.com)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-3\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-3\...\Run: [Spotify Web Helper] => C:\Users\jaakk\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524336 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-3\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-3\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-4\...\Run: [Spotify] => C:\Users\jaakk\AppData\Roaming\Spotify\Spotify.exe [6743664 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-4\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2016-02-03] (Electronic Arts)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-4\...\Run: [GalaxyClient] => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe [7744568 2015-10-14] (GOG.com)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-4\...\Run: [SteelSeries Engine] => C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesEngine.exe [87040 2014-10-09] (SteelSeries ApS)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-4\...\Run: [Spotify Web Helper] => C:\Users\jaakk\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1524336 2016-02-19] (Spotify Ltd)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-4\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3014224 2016-02-04] (Valve Corporation)
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-4\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50749056 2015-12-08] (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-01-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-01-23] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-01-23] (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{0c4ec650-bb9c-4d1e-b59f-0fb3d2c358df}: [DhcpNameServer] 192.168.1.1
 
Internet Explorer:
==================
HKU\S-1-5-21-2270606022-1161141034-668459170-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-2\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-3\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-4\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-01-23] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-01-23] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2016-01-23] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2016-01-23] (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-01-23] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2016-01-23] (Microsoft Corporation)
 
FireFox:
========
FF ProfilePath: C:\Users\jaakk\AppData\Roaming\Mozilla\Firefox\Profiles\2olqdun8.default
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2016-01-23] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-01-23] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2016-01-23] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-02-09] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-02-09] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-03] (Google Inc.)
FF Extension: NoScript - C:\Users\jaakk\AppData\Roaming\Mozilla\Firefox\Profiles\2olqdun8.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-02-18]
FF Extension: uBlock Origin - C:\Users\jaakk\AppData\Roaming\Mozilla\Firefox\Profiles\2olqdun8.default\Extensions\uBlock0@raymondhill.net.xpi [2016-02-16]
FF Extension: Adblock Plus - C:\Users\jaakk\AppData\Roaming\Mozilla\Firefox\Profiles\2olqdun8.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-01-24]
 
Chrome: 
=======
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.866\_platform_specific\win_x86\widevinecdmadapter.dll (Google Inc.)
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\48.0.2564.109\PepperFlash\pepflashplayer.dll ()
CHR Profile: C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google-presentaatiot) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-01-22]
CHR Extension: (Theme Creator) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\akpelnjfckgfiplcikojhomllgombffc [2016-01-22]
CHR Extension: (Google-dokumentit) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-22]
CHR Extension: (Google Drive) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-22]
CHR Extension: (Dark Skin for Youtube™) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfeknfgchonpnofdjokchhdhdnddhglm [2016-02-19]
CHR Extension: (YouTube) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-01-22]
CHR Extension: (Adblock Plus) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2016-02-04]
CHR Extension: (Google-haku) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-01-22]
CHR Extension: (Google-taulukot) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-01-22]
CHR Extension: (Google Docsin offline-tila) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-01-22]
CHR Extension: (Bookmark Manager) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2016-01-31]
CHR Extension: (Nimetön) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikoigcigbkghofmbeikkbafjbcnbiimk [2016-01-22]
CHR Extension: (Moderator toolbox for reddit) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhjpjhhkcbkmgdkahnckfboefnkgghpo [2016-01-22]
CHR Extension: (Reddit Enhancement Suite) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb [2016-01-22]
CHR Extension: (Automattinen HD YouTubelle™) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\koiaokdomkpjdgniimnkhgbilbjgpeak [2016-01-22]
CHR Extension: (Chrome Web Storen maksut) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-01-22]
CHR Extension: (My Chrome Theme) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2016-01-22]
CHR Extension: (Enhanced Steam) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\okadibdjfemgnhjiembecghcbfknbfhg [2016-01-22]
CHR Extension: (Click&Clean App) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp [2016-01-31]
CHR Extension: (Gmail) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-01-22]
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [948392 2016-02-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [466408 2016-02-18] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [466408 2016-02-18] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1417592 2016-02-18] (Avira Operations GmbH & Co. KG)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-04] ()
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [249120 2016-01-05] (Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2787512 2015-12-22] (Microsoft Corporation)
S3 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [1616440 2015-10-14] (GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [7220792 2016-01-29] (GOG.com)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-23] (NVIDIA Corporation)
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [193144 2016-01-06] (Logitech Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-23] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-23] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-23] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-02-03] (Electronic Arts)
S3 PAExec; C:\Windows\PAExec.exe [189112 2016-02-11] (Power Admin LLC)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2016-01-22] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [135880 2015-12-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [146704 2016-02-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [35488 2015-12-03] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [73032 2015-12-03] (Avira Operations GmbH & Co. KG)
R3 CorsairVBusDriver; C:\Windows\System32\drivers\CorsairVBusDriver.sys [47840 2015-11-23] (Corsair)
R3 CorsairVHidDriver; C:\Windows\System32\drivers\CorsairVHidDriver.sys [21728 2015-11-23] (Corsair)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\Windows\system32\drivers\LGJoyXlCore.sys [68384 2015-06-11] (Logitech Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-02-19] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-10-05] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\System32\drivers\TeeDriverW8x64.sys [202032 2016-01-19] (Intel Corporation)
R2 NPF; C:\Windows\system32\drivers\npf.sys [35344 2016-02-16] (CACE Technologies, Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
S3 rspLLL; C:\Windows\System32\DRIVERS\rspLLL64.sys [26368 2015-07-13] (Resplendence Software Projects Sp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [888064 2015-10-15] (Realtek                                            )
S3 SAlphamHid; C:\Windows\System32\drivers\SAlpham64.sys [39168 2014-10-08] (SteelSeries Corporation)
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [145448 2009-09-17] (SafeNet, Inc.)
S3 ssdevfactory; C:\Windows\System32\drivers\ssdevfactory.sys [40568 2015-10-03] (SteelSeries ApS)
S3 sshid; C:\Windows\System32\drivers\sshid.sys [51392 2016-01-15] (SteelSeries ApS)
U3 TrueSight; C:\Windows\System32\drivers\TrueSight.sys [24688 2016-02-19] ()
S3 USBTINSP; C:\Windows\System32\drivers\tinspusb.sys [142848 2010-03-29] (Texas Instruments)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
R3 WUDFWpdComp; C:\Windows\system32\DRIVERS\WUDFRd.sys [216064 2015-10-30] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-02-19 12:20 - 2016-02-19 12:20 - 00029997 _____ C:\Users\jaakk\Desktop\FRST.txt
2016-02-19 12:19 - 2016-02-19 12:20 - 00000000 ____D C:\FRST
2016-02-19 12:18 - 2016-02-19 12:19 - 02371072 _____ (Farbar) C:\Users\jaakk\Desktop\FRST64.exe
2016-02-19 12:10 - 2016-02-19 12:10 - 00008186 _____ C:\Users\jaakk\Desktop\roguekillerscan1.txt
2016-02-19 11:56 - 2016-02-19 12:19 - 00000000 ____D C:\ProgramData\RogueKiller
2016-02-19 11:56 - 2016-02-19 11:56 - 20945480 _____ C:\Users\jaakk\Desktop\RogueKiller.exe
2016-02-19 11:56 - 2016-02-19 11:56 - 00024688 _____ C:\Windows\system32\Drivers\TrueSight.sys
2016-02-19 11:44 - 2016-02-19 11:45 - 11443792 _____ (SurfRight B.V.) C:\Users\jaakk\Desktop\HitmanPro_x64.exe
2016-02-19 11:44 - 2016-02-19 11:44 - 00781312 _____ C:\Users\jaakk\Desktop\delfix_1.011.exe
2016-02-19 02:09 - 2016-02-19 02:10 - 59469784 _____ (Kymdata Oy ) C:\Users\jaakk\Desktop\ElectricProTasot.exe
2016-02-19 01:34 - 2016-02-19 01:34 - 00000000 ____D C:\Users\jaakk\Documents\Downloaded Installations
2016-02-19 01:34 - 2016-02-19 01:34 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2016-02-19 01:34 - 2009-09-17 07:05 - 00145448 _____ (SafeNet, Inc.) C:\Windows\system32\Drivers\sentinel64.sys
2016-02-19 01:33 - 2016-02-19 02:10 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-02-19 01:33 - 2016-02-19 01:33 - 00000446 _____ C:\Users\Public\Desktop\CADS-hakemisto 16.lnk
2016-02-19 01:33 - 2016-02-19 01:33 - 00000361 _____ C:\Users\Public\Desktop\CADS Planner Client 16.lnk
2016-02-19 01:33 - 2016-02-19 01:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kymdata
2016-02-19 01:33 - 2016-02-19 01:33 - 00000000 ____D C:\Program Files (x86)\MSECache
2016-02-19 01:33 - 2010-04-12 10:33 - 00960864 _____ (AccuSoft Corporation) C:\Windows\SysWOW64\GEAR32SD.DLL
2016-02-19 01:33 - 2003-03-05 02:00 - 00100864 _____ (Rainbow Technologies) C:\Windows\SysWOW64\sx32w.dll
2016-02-19 01:33 - 1998-09-30 02:23 - 00033792 _____ C:\Windows\SysWOW64\SP32W.DLL
2016-02-19 01:33 - 1997-06-12 14:22 - 00118272 _____ (Rainbow Technologies, Inc.) C:\Windows\SysWOW64\NSLMS324.DLL
2016-02-19 01:30 - 2016-02-19 01:30 - 172795816 _____ (Kymdata Oy ) C:\Users\jaakk\Desktop\CADSClient16.exe
2016-02-18 08:37 - 2016-02-18 08:37 - 00802465 _____ C:\Users\jaakk\Desktop\1 Yleistä.pdf
2016-02-18 08:35 - 2016-02-18 08:35 - 00343001 _____ C:\Users\jaakk\Desktop\4 Piirikaavio.pdf
2016-02-18 08:35 - 2016-02-18 08:35 - 00207997 _____ C:\Users\jaakk\Desktop\5 Sähköpiirien laitteita.pdf
2016-02-18 08:35 - 2016-02-18 08:35 - 00059239 _____ C:\Users\jaakk\Desktop\3 Yksikkötunnukset.pdf
2016-02-18 03:37 - 2016-02-18 03:38 - 00000000 ____D C:\Users\jaakk\Documents\Perkiö
2016-02-17 15:37 - 2016-02-17 15:37 - 00000714 _____ C:\Users\jaakk\AppData\Local\recently-used.xbel
2016-02-17 00:55 - 2016-02-17 00:55 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\NVIDIA
2016-02-16 17:15 - 2016-02-16 17:45 - 00000000 ____D C:\Users\jaakk\AppData\Local\NETGEARGenie
2016-02-16 17:15 - 2016-02-16 17:15 - 00369168 _____ (CACE Technologies, Inc.) C:\Windows\system32\wpcap.dll
2016-02-16 17:15 - 2016-02-16 17:15 - 00281104 _____ (CACE Technologies, Inc.) C:\Windows\SysWOW64\wpcap.dll
2016-02-16 17:15 - 2016-02-16 17:15 - 00106000 _____ (CACE Technologies, Inc.) C:\Windows\system32\packet.dll
2016-02-16 17:15 - 2016-02-16 17:15 - 00096784 _____ (CACE Technologies, Inc.) C:\Windows\SysWOW64\packet.dll
2016-02-16 17:15 - 2016-02-16 17:15 - 00035344 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys
2016-02-16 01:59 - 2016-02-16 01:59 - 00000000 ____D C:\Users\jaakk\AppData\Local\UNDERTALE
2016-02-15 20:50 - 2016-02-15 20:50 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-02-15 20:50 - 2016-02-09 07:04 - 00111672 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2016-02-15 20:49 - 2016-02-09 10:25 - 42983480 _____ C:\Windows\system32\nvcompiler.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 37616184 _____ C:\Windows\SysWOW64\nvcompiler.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 31119296 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 24944064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 21201784 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 20741880 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 17631304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 17224664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 17116936 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 02541504 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 02187712 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436191.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 01573432 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436191.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00950328 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00882232 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00786688 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFTH264.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00784640 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncMFThevc.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00745408 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00689600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00632336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFTH264.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00630592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncMFThevc.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00601752 _____ C:\Windows\system32\nvmcumd.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00541000 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00445728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00423360 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00383424 _____ (NVIDIA Corporation) C:\Windows\system32\nvDecMFTMjpeg.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00379448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00378968 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00348216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvDecMFTMjpeg.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00317144 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00175368 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00153392 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00151368 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2016-02-15 20:49 - 2016-02-09 10:25 - 00128696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2016-02-15 01:19 - 2016-02-15 17:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-02-13 17:15 - 2016-02-13 19:11 - 00000000 ____D C:\Users\jaakk\Documents\DarkMaus
2016-02-13 17:15 - 2016-02-13 17:15 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2016-02-11 22:44 - 2016-02-11 22:44 - 00000000 ____D C:\Users\jaakk\AppData\Local\Microsoft Help
2016-02-11 21:39 - 2015-07-13 11:16 - 00026368 _____ (Resplendence Software Projects Sp.) C:\Windows\system32\Drivers\rspLLL64.sys
2016-02-11 14:56 - 2016-02-11 14:56 - 00000000 ____D C:\Users\jaakk\AppData\Local\NVIDIA Corporation
2016-02-11 14:55 - 2016-02-19 01:52 - 00000000 ____D C:\ProgramData\NVIDIA
2016-02-11 14:55 - 2016-02-15 20:50 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-02-11 14:55 - 2016-02-15 20:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-02-11 14:55 - 2016-02-11 14:56 - 00000000 ____D C:\Users\jaakk\AppData\Local\NVIDIA
2016-02-11 14:55 - 2016-02-11 14:55 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-02-11 14:55 - 2016-02-09 07:29 - 06368824 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2016-02-11 14:55 - 2016-02-09 07:29 - 02992064 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2016-02-11 14:55 - 2016-02-09 07:29 - 02561472 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2016-02-11 14:55 - 2016-02-09 07:29 - 01263040 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2016-02-11 14:55 - 2016-02-09 07:29 - 00530368 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2016-02-11 14:55 - 2016-02-09 07:29 - 00392128 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2016-02-11 14:55 - 2016-02-09 07:29 - 00083512 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2016-02-11 14:55 - 2016-02-09 07:29 - 00071224 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2016-02-11 14:55 - 2016-02-06 16:58 - 06154909 _____ C:\Windows\system32\nvcoproc.bin
2016-02-11 14:55 - 2016-01-23 05:31 - 00215608 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2016-02-11 14:55 - 2016-01-23 05:31 - 00201664 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2016-02-11 14:55 - 2016-01-23 04:54 - 01542600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2016-02-11 14:55 - 2016-01-23 04:54 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2016-02-11 14:55 - 2016-01-23 04:53 - 01859936 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2016-02-11 14:55 - 2016-01-23 04:53 - 01756608 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2016-02-11 14:54 - 2016-02-11 14:54 - 00000000 ____D C:\NVIDIA
2016-02-11 14:54 - 2016-02-10 08:27 - 12478528 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2016-02-11 14:54 - 2016-02-09 10:25 - 19779648 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2016-02-11 14:54 - 2016-02-09 10:25 - 17175248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2016-02-11 14:54 - 2016-02-09 10:25 - 14115136 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2016-02-11 14:54 - 2016-02-09 10:25 - 03649576 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2016-02-11 14:54 - 2016-02-09 10:25 - 03231544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2016-02-11 14:54 - 2016-02-09 10:25 - 00035832 _____ C:\Windows\system32\nvinfo.pb
2016-02-11 14:54 - 2016-01-23 05:31 - 01924152 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6436175.dll
2016-02-11 14:54 - 2016-01-23 05:31 - 01572496 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2016-02-11 14:54 - 2016-01-23 05:31 - 01571776 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6436175.dll
2016-02-11 14:54 - 2016-01-23 05:31 - 00205456 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2016-02-11 14:54 - 2016-01-23 05:31 - 00039240 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2016-02-11 14:54 - 2015-12-18 08:11 - 00047760 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2016-02-11 14:54 - 2015-12-18 08:10 - 00099472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2016-02-11 14:54 - 2015-12-18 08:10 - 00090768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2016-02-11 14:51 - 2016-02-11 14:52 - 00000214 _____ C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job
2016-02-11 14:51 - 2016-02-11 14:51 - 00189112 _____ (Power Admin LLC) C:\Windows\PAExec.exe
2016-02-10 04:54 - 2016-01-29 08:57 - 04502352 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-02-10 04:54 - 2016-01-29 08:33 - 04064320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2016-02-10 04:54 - 2016-01-27 08:15 - 01557776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-02-10 04:54 - 2016-01-27 08:15 - 01542816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-02-10 04:54 - 2016-01-27 08:01 - 07476064 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-02-10 04:54 - 2016-01-27 08:01 - 01997328 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-02-10 04:54 - 2016-01-27 08:01 - 01819720 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-02-10 04:54 - 2016-01-27 07:59 - 00304752 _____ (Microsoft Corporation) C:\Windows\system32\systemreset.exe
2016-02-10 04:54 - 2016-01-27 07:57 - 02919320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-02-10 04:54 - 2016-01-27 07:57 - 01824264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\combase.dll
2016-02-10 04:54 - 2016-01-27 07:57 - 00820704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinTypes.dll
2016-02-10 04:54 - 2016-01-27 07:56 - 21124344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-02-10 04:54 - 2016-01-27 07:55 - 05242496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\windows.storage.dll
2016-02-10 04:54 - 2016-01-27 07:55 - 00081112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OpenWith.exe
2016-02-10 04:54 - 2016-01-27 07:54 - 00295264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-02-10 04:54 - 2016-01-27 07:46 - 02606824 _____ (Microsoft Corporation) C:\Windows\system32\combase.dll
2016-02-10 04:54 - 2016-01-27 07:46 - 01270072 _____ (Microsoft Corporation) C:\Windows\system32\WinTypes.dll
2016-02-10 04:54 - 2016-01-27 07:45 - 22564328 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-02-10 04:54 - 2016-01-27 07:45 - 06605544 _____ (Microsoft Corporation) C:\Windows\system32\windows.storage.dll
2016-02-10 04:54 - 2016-01-27 07:44 - 00604928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-02-10 04:54 - 2016-01-27 07:44 - 00085320 _____ (Microsoft Corporation) C:\Windows\system32\OpenWith.exe
2016-02-10 04:54 - 2016-01-27 07:43 - 00359776 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-02-10 04:54 - 2016-01-27 07:37 - 01998176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-02-10 04:54 - 2016-01-27 07:37 - 00576352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-02-10 04:54 - 2016-01-27 07:21 - 00162816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-02-10 04:54 - 2016-01-27 07:15 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ztrace_maps.dll
2016-02-10 04:54 - 2016-01-27 07:13 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininetlui.dll
2016-02-10 04:54 - 2016-01-27 07:12 - 00045568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-02-10 04:54 - 2016-01-27 07:11 - 00118272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-02-10 04:54 - 2016-01-27 07:10 - 22394368 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-02-10 04:54 - 2016-01-27 07:10 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\hlink.dll
2016-02-10 04:54 - 2016-01-27 07:08 - 00299008 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-02-10 04:54 - 2016-01-27 07:08 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\ztrace_maps.dll
2016-02-10 04:54 - 2016-01-27 07:07 - 00203264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iassam.dll
2016-02-10 04:54 - 2016-01-27 07:05 - 19339776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-02-10 04:54 - 2016-01-27 07:05 - 18678272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-02-10 04:54 - 2016-01-27 07:05 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\wininetlui.dll
2016-02-10 04:54 - 2016-01-27 07:05 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-02-10 04:54 - 2016-01-27 07:04 - 09918976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2016-02-10 04:54 - 2016-01-27 07:04 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-02-10 04:54 - 2016-01-27 07:03 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\ngckeyenum.dll
2016-02-10 04:54 - 2016-01-27 07:02 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\hlink.dll
2016-02-10 04:54 - 2016-01-27 07:01 - 00792064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-02-10 04:54 - 2016-01-27 06:59 - 00258048 _____ (Microsoft Corporation) C:\Windows\system32\iassam.dll
2016-02-10 04:54 - 2016-01-27 06:58 - 11545088 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2016-02-10 04:54 - 2016-01-27 06:57 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-02-10 04:54 - 2016-01-27 06:55 - 12125696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-02-10 04:54 - 2016-01-27 06:55 - 03666432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-02-10 04:54 - 2016-01-27 06:54 - 24603136 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-02-10 04:54 - 2016-01-27 06:52 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-02-10 04:54 - 2016-01-27 06:50 - 02230784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-02-10 04:54 - 2016-01-27 06:50 - 01504768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-02-10 04:54 - 2016-01-27 06:50 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-02-10 04:54 - 2016-01-27 06:49 - 05662208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-02-10 04:54 - 2016-01-27 06:48 - 13382656 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-02-10 04:54 - 2016-01-27 06:44 - 00063488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgbkend.dll
2016-02-10 04:54 - 2016-01-27 06:42 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-02-10 04:54 - 2016-01-27 06:41 - 03592704 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-02-10 04:54 - 2016-01-27 06:39 - 02275328 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-02-10 04:54 - 2016-01-27 06:38 - 07835648 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-02-10 04:54 - 2016-01-27 06:38 - 01734656 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-02-10 04:54 - 2016-01-27 06:37 - 04894720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-02-10 04:54 - 2016-01-27 06:36 - 02757120 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-02-10 04:54 - 2016-01-27 06:32 - 01087488 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2016-02-10 04:54 - 2016-01-27 06:31 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\cfgbkend.dll
2016-02-09 20:03 - 2016-02-09 20:03 - 00000000 ____D C:\Users\jaakk\AppData\LocalLow\CampoSanto
2016-02-04 22:26 - 2016-02-04 22:26 - 00000000 ____D C:\Users\jaakk\Documents\Graphics
2016-02-04 22:26 - 2016-02-04 22:26 - 00000000 ____D C:\Users\jaakk\Documents\Friends
2016-02-02 11:42 - 2016-02-02 11:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2016-02-01 15:10 - 2016-02-01 15:10 - 00000000 ____D C:\Program Files (x86)\Deluge
2016-01-31 22:49 - 2016-01-31 22:49 - 00000000 ____D C:\ProgramData\HitmanPro
2016-01-31 15:39 - 2016-01-31 15:39 - 00000000 __RHD C:\MSOCache
2016-01-28 09:26 - 2016-01-16 08:37 - 00202472 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2016-01-28 09:26 - 2016-01-16 08:36 - 01173344 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-01-28 09:26 - 2016-01-16 08:36 - 00713568 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-01-28 09:26 - 2016-01-16 08:34 - 00513888 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-01-28 09:26 - 2016-01-16 08:24 - 00538632 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2016-01-28 09:26 - 2016-01-16 08:23 - 08728920 _____ (Microsoft Corp.) C:\Windows\system32\Windows.Media.Protection.PlayReady.dll
2016-01-28 09:26 - 2016-01-16 08:23 - 00848160 _____ (Microsoft Corporation) C:\Windows\system32\mfsvr.dll
2016-01-28 09:26 - 2016-01-16 08:23 - 00785088 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-01-28 09:26 - 2016-01-16 08:23 - 00536256 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-01-28 09:26 - 2016-01-16 08:23 - 00408120 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-01-28 09:26 - 2016-01-16 08:23 - 00369912 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-01-28 09:26 - 2016-01-16 08:21 - 01750440 _____ (Microsoft Corporation) C:\Windows\system32\WpcMon.exe
2016-01-28 09:26 - 2016-01-16 08:20 - 06971752 _____ (Microsoft Corp.) C:\Windows\SysWOW64\Windows.Media.Protection.PlayReady.dll
2016-01-28 09:26 - 2016-01-16 08:20 - 00652312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2016-01-28 09:26 - 2016-01-16 08:20 - 00431240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2016-01-28 09:26 - 2016-01-16 08:20 - 00366224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2016-01-28 09:26 - 2016-01-16 08:19 - 00709688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsvr.dll
2016-01-28 09:26 - 2016-01-16 08:19 - 00405568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2016-01-28 09:26 - 2016-01-16 08:12 - 01415200 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-01-28 09:26 - 2016-01-16 08:09 - 01089880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2016-01-28 09:26 - 2016-01-16 08:08 - 01174008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-01-28 09:26 - 2016-01-16 08:08 - 00440152 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-01-28 09:26 - 2016-01-16 07:46 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbser.sys
2016-01-28 09:26 - 2016-01-16 07:45 - 16986112 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-01-28 09:26 - 2016-01-16 07:44 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-01-28 09:26 - 2016-01-16 07:44 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\rasadhlp.dll
2016-01-28 09:26 - 2016-01-16 07:44 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\rastlsext.dll
2016-01-28 09:26 - 2016-01-16 07:43 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\winhttpcom.dll
2016-01-28 09:26 - 2016-01-16 07:42 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvc.dll
2016-01-28 09:26 - 2016-01-16 07:42 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\sscoreext.dll
2016-01-28 09:26 - 2016-01-16 07:41 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2016-01-28 09:26 - 2016-01-16 07:40 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\rasauto.dll
2016-01-28 09:26 - 2016-01-16 07:40 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\pcaui.exe
2016-01-28 09:26 - 2016-01-16 07:40 - 00019456 _____ (Microsoft Corporation) C:\Windows\system32\rasautou.exe
2016-01-28 09:26 - 2016-01-16 07:39 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\FilterDS.dll
2016-01-28 09:26 - 2016-01-16 07:38 - 07979008 _____ (Microsoft Corporation) C:\Windows\system32\mos.dll
2016-01-28 09:26 - 2016-01-16 07:38 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-01-28 09:26 - 2016-01-16 07:38 - 00193024 _____ (Microsoft Corporation) C:\Windows\system32\SimCfg.dll
2016-01-28 09:26 - 2016-01-16 07:38 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\winbio.dll
2016-01-28 09:26 - 2016-01-16 07:37 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\StorSvc.dll
2016-01-28 09:26 - 2016-01-16 07:37 - 00274944 _____ (Microsoft Corporation) C:\Windows\system32\DisplayManager.dll
2016-01-28 09:26 - 2016-01-16 07:37 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2016-01-28 09:26 - 2016-01-16 07:37 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\SMSRouter.dll
2016-01-28 09:26 - 2016-01-16 07:36 - 00638464 _____ (Microsoft Corporation) C:\Windows\system32\enterprisecsps.dll
2016-01-28 09:26 - 2016-01-16 07:36 - 00475648 _____ (Microsoft Corporation) C:\Windows\system32\DDDS.dll
2016-01-28 09:26 - 2016-01-16 07:36 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-01-28 09:26 - 2016-01-16 07:36 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\SimAuth.dll
2016-01-28 09:26 - 2016-01-16 07:36 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastlsext.dll
2016-01-28 09:26 - 2016-01-16 07:35 - 13018624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-01-28 09:26 - 2016-01-16 07:35 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-01-28 09:26 - 2016-01-16 07:35 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasadhlp.dll
2016-01-28 09:26 - 2016-01-16 07:34 - 00610816 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2016-01-28 09:26 - 2016-01-16 07:34 - 00590848 _____ (Microsoft Corporation) C:\Windows\system32\SmsRouterSvc.dll
2016-01-28 09:26 - 2016-01-16 07:34 - 00477696 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-01-28 09:26 - 2016-01-16 07:34 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2016-01-28 09:26 - 2016-01-16 07:34 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttpcom.dll
2016-01-28 09:26 - 2016-01-16 07:33 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\wlidcli.dll
2016-01-28 09:26 - 2016-01-16 07:33 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-01-28 09:26 - 2016-01-16 07:33 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapsBtSvc.dll
2016-01-28 09:26 - 2016-01-16 07:32 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\wbiosrvc.dll
2016-01-28 09:26 - 2016-01-16 07:32 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pcaui.exe
2016-01-28 09:26 - 2016-01-16 07:31 - 00851456 _____ (Microsoft Corporation) C:\Windows\system32\MapsStore.dll
2016-01-28 09:26 - 2016-01-16 07:31 - 00794112 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2016-01-28 09:26 - 2016-01-16 07:31 - 00440320 _____ (Microsoft Corporation) C:\Windows\system32\CredProvDataModel.dll
2016-01-28 09:26 - 2016-01-16 07:31 - 00343552 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-01-28 09:26 - 2016-01-16 07:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasautou.exe
2016-01-28 09:26 - 2016-01-16 07:30 - 02127360 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-01-28 09:26 - 2016-01-16 07:30 - 01053696 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-01-28 09:26 - 2016-01-16 07:30 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-01-28 09:26 - 2016-01-16 07:30 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimCfg.dll
2016-01-28 09:26 - 2016-01-16 07:30 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winbio.dll
2016-01-28 09:26 - 2016-01-16 07:29 - 01500672 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2016-01-28 09:26 - 2016-01-16 07:29 - 00200704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DisplayManager.dll
2016-01-28 09:26 - 2016-01-16 07:28 - 02624512 _____ (Microsoft Corporation) C:\Windows\system32\InputService.dll
2016-01-28 09:26 - 2016-01-16 07:28 - 01318912 _____ (Microsoft Corporation) C:\Windows\system32\wifinetworkmanager.dll
2016-01-28 09:26 - 2016-01-16 07:28 - 00884736 _____ (Microsoft Corporation) C:\Windows\system32\rasdlg.dll
2016-01-28 09:26 - 2016-01-16 07:28 - 00129024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SimAuth.dll
2016-01-28 09:26 - 2016-01-16 07:27 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-01-28 09:26 - 2016-01-16 07:26 - 00535040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2016-01-28 09:26 - 2016-01-16 07:26 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\TextInputFramework.dll
2016-01-28 09:26 - 2016-01-16 07:26 - 00260608 _____ C:\Windows\system32\MTFServer.dll
2016-01-28 09:26 - 2016-01-16 07:26 - 00175616 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Core.TextInput.dll
2016-01-28 09:26 - 2016-01-16 07:25 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlidcli.dll
2016-01-28 09:26 - 2016-01-16 07:25 - 00457728 _____ (Microsoft Corporation) C:\Windows\system32\ipnathlp.dll
2016-01-28 09:26 - 2016-01-16 07:25 - 00235008 _____ C:\Windows\system32\MTF.dll
2016-01-28 09:26 - 2016-01-16 07:24 - 02057216 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2016-01-28 09:26 - 2016-01-16 07:24 - 00613888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2016-01-28 09:26 - 2016-01-16 07:24 - 00350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CredProvDataModel.dll
2016-01-28 09:26 - 2016-01-16 07:24 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-01-28 09:26 - 2016-01-16 07:23 - 02050048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-01-28 09:26 - 2016-01-16 07:23 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-01-28 09:26 - 2016-01-16 07:21 - 06297088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mos.dll
2016-01-28 09:26 - 2016-01-16 07:20 - 07199232 _____ (Microsoft Corporation) C:\Windows\system32\BingMaps.dll
2016-01-28 09:26 - 2016-01-16 07:20 - 02597888 _____ (Microsoft Corporation) C:\Windows\system32\NetworkMobileSettings.dll
2016-01-28 09:26 - 2016-01-16 07:20 - 01944576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputService.dll
2016-01-28 09:26 - 2016-01-16 07:20 - 00799744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdlg.dll
2016-01-28 09:26 - 2016-01-16 07:19 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2016-01-28 09:26 - 2016-01-16 07:19 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TextInputFramework.dll
2016-01-28 09:26 - 2016-01-16 07:19 - 00162816 _____ C:\Windows\SysWOW64\MTF.dll
2016-01-28 09:26 - 2016-01-16 07:19 - 00133632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Core.TextInput.dll
2016-01-28 09:26 - 2016-01-16 07:18 - 01674240 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-01-28 09:26 - 2016-01-16 07:17 - 05503488 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2016-01-28 09:26 - 2016-01-16 07:16 - 05202944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingMaps.dll
2016-01-28 09:26 - 2016-01-16 07:16 - 01542656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2016-01-28 09:26 - 2016-01-16 07:15 - 04759040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2016-01-28 09:26 - 2016-01-16 07:14 - 01946624 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2016-01-28 09:26 - 2016-01-16 07:14 - 01626624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2016-01-28 09:26 - 2016-01-16 07:11 - 00653312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2016-01-27 16:48 - 2016-02-18 04:59 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\vlc
2016-01-26 14:29 - 2016-01-26 14:29 - 00000540 _____ C:\Users\jaakk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ladatut tiedostot.lnk
2016-01-26 14:29 - 2016-01-26 14:29 - 00000279 _____ C:\Users\jaakk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roskakori.lnk
2016-01-26 11:02 - 2016-01-26 11:02 - 00000000 ____D C:\Users\jaakk\AppData\Local\Fallout4
2016-01-25 23:44 - 2016-01-25 23:44 - 00000000 ____D C:\Users\jaakk\Documents\Mukautetut Office-mallit
2016-01-25 15:31 - 2016-01-25 15:31 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-01-25 15:31 - 2016-01-25 15:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-01-24 19:18 - 2016-02-19 12:16 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Skype
2016-01-24 18:01 - 2016-01-24 18:01 - 00000000 ____D C:\Users\jaakk\Documents\jaakko1995
2016-01-24 18:01 - 2016-01-24 17:58 - 19599360 _____ C:\Users\jaakk\Documents\main.db
2016-01-24 11:44 - 2016-01-24 11:44 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2016-01-24 11:44 - 2016-01-24 11:44 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_wpdcomp_01_11_00.Wdf
2016-01-24 10:07 - 2016-01-24 10:07 - 00000000 ____D C:\Users\jaakk\AppData\LocalLow\Thunder Lotus Games
2016-01-23 08:58 - 2016-01-23 08:58 - 00000000 ____D C:\Windows\system32\SleepStudy
2016-01-23 06:22 - 2016-01-23 06:22 - 00000000 ____D C:\Users\jaakk\AppData\Local\Macromedia
2016-01-23 06:21 - 2016-02-19 02:40 - 00000000 ____D C:\Users\jaakk\AppData\Local\Adobe
2016-01-23 03:41 - 2016-01-23 03:41 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\SteelSeries
2016-01-23 03:41 - 2016-01-23 03:41 - 00000000 ____D C:\Users\jaakk\AppData\Local\SteelSeries_ApS
2016-01-23 03:40 - 2016-01-23 03:40 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-01-23 03:40 - 2016-01-23 03:40 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-01-23 03:40 - 2016-01-23 03:40 - 00000000 ____D C:\Program Files\MSBuild
2016-01-23 03:40 - 2016-01-23 03:40 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-01-23 03:40 - 2016-01-23 03:40 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-01-23 03:40 - 2015-10-23 17:47 - 00778936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationNative_v0300.dll
2016-01-23 03:40 - 2015-10-23 17:47 - 00103120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-01-23 03:40 - 2015-10-23 17:47 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2016-01-23 03:40 - 2015-10-23 17:46 - 01166520 _____ (Microsoft Corporation) C:\Windows\system32\PresentationNative_v0300.dll
2016-01-23 03:40 - 2015-10-23 17:46 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2016-01-23 03:40 - 2015-10-23 17:45 - 00124624 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-01-23 03:39 - 2016-01-23 03:39 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SteelSeries
2016-01-23 02:10 - 2016-02-10 20:59 - 00000000 ____D C:\Users\jaakk\AppData\Local\CrashDumps
2016-01-23 02:07 - 2016-01-23 02:07 - 00000000 ____D C:\Users\jaakk\Documents\MyTile
2016-01-23 01:58 - 2016-01-23 01:58 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2016-01-23 01:46 - 2016-01-23 01:46 - 00000000 ____D C:\Program Files\Microsoft Office
2016-01-23 01:44 - 2016-01-23 01:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-01-23 01:41 - 2016-01-23 01:41 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-01-23 01:21 - 2016-01-23 01:28 - 00000450 _____ C:\Users\jaakk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HBO Nordic.website
2016-01-22 22:09 - 2016-02-19 11:08 - 00004168 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{D6B483A8-2B85-4D9D-90C4-AFF2DA13E7FD}
2016-01-22 21:28 - 2016-02-15 18:42 - 00000000 ____D C:\Users\jaakk\Documents\The Witcher 3
2016-01-22 09:40 - 2016-01-22 09:40 - 00000000 ____D C:\Users\jaakk\AppData\Local\ElevatedDiagnostics
2016-01-22 07:50 - 2016-01-22 07:50 - 00000000 ____D C:\Users\jaakk\AppData\Local\GalaxyCommunicationService
2016-01-22 07:50 - 2016-01-22 07:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battlefield 4
2016-01-22 07:50 - 2016-01-22 07:50 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2016-01-22 07:49 - 2016-01-22 07:49 - 00281872 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2016-01-22 07:49 - 2016-01-22 07:49 - 00281872 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2016-01-22 07:49 - 2016-01-22 07:49 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2016-01-22 07:31 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2016-01-22 07:31 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2016-01-22 07:31 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2016-01-22 07:31 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2016-01-22 07:31 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2016-01-22 07:31 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2016-01-22 07:31 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2016-01-22 07:31 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2016-01-22 07:31 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2016-01-22 07:31 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2016-01-22 07:31 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2016-01-22 07:31 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2016-01-22 07:31 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2016-01-22 07:31 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2016-01-22 07:31 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2016-01-22 07:31 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2016-01-22 07:31 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2016-01-22 07:31 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2016-01-22 07:31 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2016-01-22 07:31 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2016-01-22 07:31 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2016-01-22 07:31 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2016-01-22 07:30 - 2016-02-05 14:15 - 00000000 ____D C:\Users\jaakk\AppData\Local\Ubisoft Game Launcher
2016-01-22 07:30 - 2016-01-22 07:30 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2016-01-22 07:30 - 2016-01-22 07:30 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2016-01-22 07:28 - 2016-01-22 07:28 - 00000000 ____D C:\Users\jaakk\Documents\Transfered Gamesaves
2016-01-22 07:14 - 2016-02-18 03:38 - 00000000 ____D C:\Users\jaakk\Documents\SAMK
2016-01-22 07:14 - 2016-01-22 07:14 - 00000000 ____D C:\Users\jaakk\Documents\Telltale Games
2016-01-22 07:14 - 2016-01-22 07:14 - 00000000 ____D C:\Users\jaakk\Documents\My Games
2016-01-22 06:54 - 2016-02-17 15:30 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\deluge
2016-01-22 06:54 - 2016-02-01 15:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Deluge
2016-01-22 06:46 - 2016-01-22 06:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SteelSeries
2016-01-22 06:45 - 2016-01-23 03:39 - 00000000 ____D C:\ProgramData\SteelSeries
2016-01-22 06:45 - 2016-01-23 03:38 - 00000000 ____D C:\Program Files\SteelSeries
2016-01-22 06:45 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2016-01-22 06:45 - 2010-05-26 11:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2016-01-22 06:39 - 2016-01-22 06:39 - 00003336 _____ C:\Windows\System32\Tasks\SamsungMagician
2016-01-22 06:38 - 2016-01-22 06:38 - 00000000 ____D C:\ProgramData\Samsung
2016-01-22 06:38 - 2016-01-22 06:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Magician
2016-01-22 06:38 - 2016-01-22 06:38 - 00000000 ____D C:\Program Files (x86)\Samsung
2016-01-22 06:36 - 2016-01-24 10:22 - 00000000 ____D C:\Fraps
2016-01-22 06:36 - 2016-01-22 06:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-01-22 06:34 - 2016-01-22 06:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2016-01-22 06:34 - 2016-01-22 06:34 - 00000000 ____D C:\Program Files\CPUID
2016-01-22 06:25 - 2016-01-22 06:31 - 00000000 ____D C:\Program Files (x86)\GalaxyClient
2016-01-22 06:25 - 2016-01-22 06:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2016-01-22 06:25 - 2016-01-22 06:25 - 00000000 ____D C:\ProgramData\GOG.com
2016-01-22 06:23 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2016-01-22 06:23 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2016-01-22 06:23 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2016-01-22 06:23 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2016-01-22 06:23 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2016-01-22 06:23 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2016-01-22 06:23 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2016-01-22 06:23 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2016-01-22 06:23 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2016-01-22 06:23 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2016-01-22 06:23 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2016-01-22 06:23 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2016-01-22 06:23 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2016-01-22 06:23 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2016-01-22 06:23 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2016-01-22 06:23 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2016-01-22 06:23 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2016-01-22 06:23 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2016-01-22 06:23 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2016-01-22 06:23 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2016-01-22 06:23 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2016-01-22 06:23 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2016-01-22 06:23 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2016-01-22 06:23 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2016-01-22 06:23 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2016-01-22 06:23 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2016-01-22 06:23 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2016-01-22 06:23 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2016-01-22 06:23 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2016-01-22 06:23 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2016-01-22 06:23 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2016-01-22 06:23 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2016-01-22 06:23 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2016-01-22 06:23 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2016-01-22 06:23 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2016-01-22 06:23 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2016-01-22 06:23 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2016-01-22 06:23 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2016-01-22 06:23 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2016-01-22 06:23 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2016-01-22 06:23 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2016-01-22 06:23 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2016-01-22 06:23 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2016-01-22 06:23 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2016-01-22 06:23 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2016-01-22 06:23 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2016-01-22 06:23 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2016-01-22 06:23 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2016-01-22 06:23 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2016-01-22 06:23 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2016-01-22 06:23 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2016-01-22 06:23 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2016-01-22 06:23 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2016-01-22 06:23 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2016-01-22 06:23 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2016-01-22 06:23 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2016-01-22 06:23 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2016-01-22 06:23 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2016-01-22 06:23 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2016-01-22 06:23 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2016-01-22 06:23 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2016-01-22 06:23 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2016-01-22 06:23 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2016-01-22 06:23 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2016-01-22 06:23 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2016-01-22 06:23 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2016-01-22 06:23 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2016-01-22 06:23 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2016-01-22 06:23 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2016-01-22 06:23 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2016-01-22 06:23 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2016-01-22 06:23 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2016-01-22 06:23 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2016-01-22 06:23 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2016-01-22 06:23 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2016-01-22 06:23 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2016-01-22 06:23 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2016-01-22 06:23 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2016-01-22 06:23 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2016-01-22 06:23 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2016-01-22 06:23 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2016-01-22 06:23 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2016-01-22 06:23 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2016-01-22 06:23 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2016-01-22 06:23 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2016-01-22 06:23 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2016-01-22 06:23 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2016-01-22 06:23 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2016-01-22 06:23 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2016-01-22 06:23 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2016-01-22 06:23 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2016-01-22 06:23 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2016-01-22 06:23 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2016-01-22 06:23 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2016-01-22 06:23 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2016-01-22 06:23 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2016-01-22 06:23 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2016-01-22 06:23 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2016-01-22 06:23 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2016-01-22 06:23 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2016-01-22 06:23 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2016-01-22 06:23 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2016-01-22 06:23 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2016-01-22 06:23 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2016-01-22 06:23 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2016-01-22 06:23 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2016-01-22 06:23 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2016-01-22 06:23 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2016-01-22 06:23 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2016-01-22 06:23 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2016-01-22 06:23 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2016-01-22 06:23 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2016-01-22 06:23 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2016-01-22 06:23 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2016-01-22 06:23 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2016-01-22 06:23 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2016-01-22 06:23 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2016-01-22 06:23 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2016-01-22 06:23 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2016-01-22 06:23 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2016-01-22 06:23 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2016-01-22 06:23 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2016-01-22 06:23 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2016-01-22 06:23 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2016-01-22 06:23 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2016-01-22 06:23 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2016-01-22 06:23 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2016-01-22 06:23 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2016-01-22 06:23 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2016-01-22 06:23 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2016-01-22 06:23 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2016-01-22 06:23 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2016-01-22 06:23 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2016-01-22 06:23 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2016-01-22 06:23 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2016-01-22 06:23 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2016-01-22 06:22 - 2016-01-22 06:23 - 00000000 ____D C:\Windows\SysWOW64\directx
2016-01-22 06:22 - 2016-01-22 06:22 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RivaTuner Statistics Server
2016-01-22 06:22 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2016-01-22 06:22 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2016-01-22 06:22 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2016-01-22 06:22 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2016-01-22 06:22 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2016-01-22 06:22 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2016-01-22 06:22 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2016-01-22 06:22 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2016-01-22 06:22 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2016-01-22 06:22 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2016-01-22 06:22 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2016-01-22 06:22 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2016-01-22 06:22 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2016-01-22 06:22 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2016-01-22 06:22 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2016-01-22 06:22 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2016-01-22 06:21 - 2016-01-22 06:24 - 00000000 ____D C:\Program Files (x86)\MSI Afterburner
2016-01-22 06:21 - 2016-01-22 06:22 - 00000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2016-01-22 06:21 - 2016-01-22 06:21 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2016-01-22 06:10 - 2016-01-22 06:10 - 00000000 ____D C:\Program Files (x86)\Origin Games
2016-01-22 06:08 - 2016-02-19 01:53 - 00000000 ____D C:\ProgramData\Origin
2016-01-22 06:08 - 2016-01-22 17:02 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Origin
2016-01-22 06:08 - 2016-01-22 06:10 - 00000000 ____D C:\Users\jaakk\AppData\Local\Origin
2016-01-22 06:08 - 2016-01-22 06:08 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-01-22 06:08 - 2016-01-22 06:08 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-01-22 06:07 - 2016-02-03 13:27 - 00000000 ____D C:\Program Files (x86)\Origin
2016-01-22 05:58 - 2016-01-22 05:58 - 00000000 ____D C:\Users\jaakk\AppData\Local\Logitech
2016-01-22 05:58 - 2016-01-22 05:58 - 00000000 ____D C:\ProgramData\LogiShrd
2016-01-22 05:57 - 2016-01-22 05:57 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Logitech
2016-01-22 05:57 - 2016-01-22 05:57 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Logishrd
2016-01-22 05:57 - 2016-01-22 05:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2016-01-22 05:57 - 2016-01-22 05:57 - 00000000 ____D C:\Program Files\Logitech Gaming Software
2016-01-22 05:52 - 2016-01-22 05:52 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Corsair
2016-01-22 05:52 - 2016-01-22 05:52 - 00000000 ____D C:\Users\jaakk\AppData\Local\Corsair
2016-01-22 05:51 - 2016-01-22 05:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Corsair Utility Engine
2016-01-22 05:51 - 2016-01-22 05:51 - 00000000 ____D C:\Program Files (x86)\Corsair
2016-01-22 05:40 - 2016-02-04 21:58 - 00000000 ____D C:\Users\jaakk\AppData\Local\nuclearthrone
2016-01-22 05:40 - 2016-01-22 05:40 - 00000000 ____D C:\Users\jaakk\AppData\LocalLow\Camouflaj
2016-01-22 05:12 - 2016-01-22 05:12 - 00000000 ____D C:\Users\jaakk\AppData\Local\Steam
2016-01-22 05:06 - 2016-02-10 21:08 - 00000000 ____D C:\Windows\system32\MRT
2016-01-22 05:06 - 2016-02-10 21:05 - 146614896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-01-22 05:06 - 2016-01-05 04:51 - 01317640 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-01-22 05:06 - 2016-01-05 04:51 - 01141496 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-01-22 05:06 - 2016-01-05 04:50 - 00671472 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-01-22 05:06 - 2016-01-05 04:48 - 00499432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-01-22 05:06 - 2016-01-05 04:45 - 02587696 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-01-22 05:06 - 2016-01-05 04:42 - 02026736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2016-01-22 05:06 - 2016-01-05 04:37 - 02544256 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2016-01-22 05:06 - 2016-01-05 04:37 - 01299504 _____ (Microsoft Corporation) C:\Windows\system32\mfnetsrc.dll
2016-01-22 05:06 - 2016-01-05 04:37 - 00858952 _____ (Microsoft Corporation) C:\Windows\system32\mfnetcore.dll
2016-01-22 05:06 - 2016-01-05 04:37 - 00245840 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-01-22 05:06 - 2016-01-05 04:37 - 00234504 _____ (Microsoft Corporation) C:\Windows\system32\mftranscode.dll
2016-01-22 05:06 - 2016-01-05 04:36 - 00808800 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-01-22 05:06 - 2016-01-05 04:33 - 02180128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2016-01-22 05:06 - 2016-01-05 04:33 - 01118208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetsrc.dll
2016-01-22 05:06 - 2016-01-05 04:33 - 00701384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfnetcore.dll
2016-01-22 05:06 - 2016-01-05 04:33 - 00208176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mftranscode.dll
2016-01-22 05:06 - 2016-01-05 04:33 - 00116728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2016-01-22 05:06 - 2016-01-05 04:31 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2016-01-22 05:06 - 2016-01-05 04:27 - 01594408 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-01-22 05:06 - 2016-01-05 04:24 - 00796352 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-01-22 05:06 - 2016-01-05 04:23 - 01804664 _____ (Microsoft Corporation) C:\Windows\system32\WMALFXGFXDSP.dll
2016-01-22 05:06 - 2016-01-05 04:23 - 01309376 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-01-22 05:06 - 2016-01-05 04:23 - 00786696 _____ (Microsoft Corporation) C:\Windows\system32\WMADMOD.DLL
2016-01-22 05:06 - 2016-01-05 04:23 - 00119320 _____ (Microsoft Corporation) C:\Windows\system32\MP3DMOD.DLL
2016-01-22 05:06 - 2016-01-05 04:21 - 01371792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-01-22 05:06 - 2016-01-05 04:17 - 00695752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMADMOD.DLL
2016-01-22 05:06 - 2016-01-05 04:16 - 00100160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP3DMOD.DLL
2016-01-22 05:06 - 2016-01-05 03:57 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\usermgrcli.dll
2016-01-22 05:06 - 2016-01-05 03:56 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\omadmclient.exe
2016-01-22 05:06 - 2016-01-05 03:54 - 00162816 _____ (Microsoft Corporation) C:\Windows\system32\DeviceCensus.exe
2016-01-22 05:06 - 2016-01-05 03:53 - 00148992 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2016-01-22 05:06 - 2016-01-05 03:50 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\uReFS.dll
2016-01-22 05:06 - 2016-01-05 03:50 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2016-01-22 05:06 - 2016-01-05 03:49 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOE.DLL
2016-01-22 05:06 - 2016-01-05 03:49 - 00749056 _____ (Microsoft Corporation) C:\Windows\system32\PhoneService.dll
2016-01-22 05:06 - 2016-01-05 03:49 - 00167936 _____ (Microsoft Corporation) C:\Windows\system32\ProximityCommon.dll
2016-01-22 05:06 - 2016-01-05 03:48 - 01009152 _____ (Microsoft Corporation) C:\Windows\system32\WMSPDMOD.DLL
2016-01-22 05:06 - 2016-01-05 03:48 - 00387072 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-01-22 05:06 - 2016-01-05 03:48 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usermgrcli.dll
2016-01-22 05:06 - 2016-01-05 03:47 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\MessagingDataModel2.dll
2016-01-22 05:06 - 2016-01-05 03:47 - 00479232 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-01-22 05:06 - 2016-01-05 03:47 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\ksproxy.ax
2016-01-22 05:06 - 2016-01-05 03:45 - 00678912 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2016-01-22 05:06 - 2016-01-05 03:45 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\facecredentialprovider.dll
2016-01-22 05:06 - 2016-01-05 03:44 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2016-01-22 05:06 - 2016-01-05 03:43 - 00912384 _____ (Microsoft Corporation) C:\Windows\system32\usermgr.dll
2016-01-22 05:06 - 2016-01-05 03:43 - 00604672 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-01-22 05:06 - 2016-01-05 03:43 - 00584704 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2016-01-22 05:06 - 2016-01-05 03:41 - 00558592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uReFS.dll
2016-01-22 05:06 - 2016-01-05 03:40 - 00890880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOD.DLL
2016-01-22 05:06 - 2016-01-05 03:40 - 00123392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ProximityCommon.dll
2016-01-22 05:06 - 2016-01-05 03:39 - 03428864 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2016-01-22 05:06 - 2016-01-05 03:39 - 00569856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2016-01-22 05:06 - 2016-01-05 03:39 - 00498176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MessagingDataModel2.dll
2016-01-22 05:06 - 2016-01-05 03:38 - 00389120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-01-22 05:06 - 2016-01-05 03:36 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2016-01-22 05:06 - 2016-01-05 03:36 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-01-22 05:06 - 2016-01-05 03:30 - 02796032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2016-01-22 05:06 - 2015-12-07 06:57 - 00973664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LicenseManager.dll
2016-01-22 05:06 - 2015-12-07 06:55 - 01281376 _____ (Microsoft Corporation) C:\Windows\system32\LicenseManager.dll
2016-01-22 05:06 - 2015-12-07 06:49 - 00412512 _____ (Microsoft Corporation) C:\Windows\system32\wifitask.exe
2016-01-22 05:06 - 2015-12-07 06:48 - 01155944 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 01092456 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 01065080 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 01020096 _____ (Microsoft Corporation) C:\Windows\system32\mfsrcsnk.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00983464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00884256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00823264 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00794888 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00696160 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00670928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00526856 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00502112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00498448 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00462760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00450904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00337840 _____ (Microsoft Corporation) C:\Windows\system32\MFPlay.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00289248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFPlay.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-01-22 05:06 - 2015-12-07 06:48 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2016-01-22 05:06 - 2015-12-07 06:47 - 00925064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2016-01-22 05:06 - 2015-12-07 06:47 - 00898184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfsrcsnk.dll
2016-01-22 05:06 - 2015-12-07 06:47 - 00716928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2016-01-22 05:06 - 2015-12-07 06:46 - 03671888 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-01-22 05:06 - 2015-12-07 06:45 - 00264544 _____ (Microsoft Corporation) C:\Windows\system32\ContentDeliveryManager.Utilities.dll
2016-01-22 05:06 - 2015-12-07 06:15 - 01035776 _____ (Microsoft Corporation) C:\Windows\system32\XboxNetApiSvc.dll
2016-01-22 05:06 - 2015-12-07 06:10 - 00824320 _____ (Microsoft Corporation) C:\Windows\system32\WpcWebFilter.dll
2016-01-22 05:06 - 2015-12-07 06:09 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\flvprophandler.dll
2016-01-22 05:06 - 2015-12-07 06:09 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\policymanagerprecheck.dll
2016-01-22 05:06 - 2015-12-07 06:07 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\ProvPluginEng.dll
2016-01-22 05:06 - 2015-12-07 06:06 - 00572928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WpcWebFilter.dll
2016-01-22 05:06 - 2015-12-07 06:06 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCore.dll
2016-01-22 05:06 - 2015-12-07 06:06 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\InstallAgent.exe
2016-01-22 05:06 - 2015-12-07 06:05 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\provisioningcsp.dll
2016-01-22 05:06 - 2015-12-07 06:04 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\moshost.dll
2016-01-22 05:06 - 2015-12-07 06:04 - 00056320 _____ (Microsoft Corporation) C:\Windows\system32\provtool.exe
2016-01-22 05:06 - 2015-12-07 06:02 - 00269824 _____ (Microsoft Corporation) C:\Windows\system32\moshostcore.dll
2016-01-22 05:06 - 2015-12-07 06:02 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InstallAgent.exe
2016-01-22 05:06 - 2015-12-07 06:01 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\StoreAgent.dll
2016-01-22 05:06 - 2015-12-07 06:00 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\MSFlacDecoder.dll
2016-01-22 05:06 - 2015-12-07 06:00 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2016-01-22 05:06 - 2015-12-07 06:00 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-01-22 05:06 - 2015-12-07 05:59 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\MBMediaManager.dll
2016-01-22 05:06 - 2015-12-07 05:59 - 00292352 _____ (Microsoft Corporation) C:\Windows\system32\provengine.dll
2016-01-22 05:06 - 2015-12-07 05:59 - 00286208 _____ (Microsoft Corporation) C:\Windows\system32\provhandlers.dll
2016-01-22 05:06 - 2015-12-07 05:59 - 00165376 _____ (Microsoft Corporation) C:\Windows\system32\provdatastore.dll
2016-01-22 05:06 - 2015-12-07 05:58 - 00459776 _____ (Microsoft Corporation) C:\Windows\system32\MapConfiguration.dll
2016-01-22 05:06 - 2015-12-07 05:57 - 00409088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\StoreAgent.dll
2016-01-22 05:06 - 2015-12-07 05:57 - 00270848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSFlacDecoder.dll
2016-01-22 05:06 - 2015-12-07 05:56 - 00607232 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2016-01-22 05:06 - 2015-12-07 05:56 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\mfmkvsrcsnk.dll
2016-01-22 05:06 - 2015-12-07 05:55 - 00346112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapConfiguration.dll
2016-01-22 05:06 - 2015-12-07 05:53 - 00381952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmkvsrcsnk.dll
2016-01-22 05:06 - 2015-12-07 05:51 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\fveapibase.dll
2016-01-22 05:06 - 2015-12-07 05:50 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.Audio.dll
2016-01-22 05:06 - 2015-12-07 05:49 - 01105920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.Audio.dll
2016-01-22 05:06 - 2015-12-07 05:45 - 02582016 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2016-01-22 05:06 - 2015-12-07 05:45 - 00900608 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2016-01-22 05:06 - 2015-12-07 05:45 - 00683008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2016-01-22 05:06 - 2015-12-07 05:43 - 00931328 _____ (Microsoft Corporation) C:\Windows\system32\MSMPEG2ENC.DLL
2016-01-22 05:06 - 2015-12-07 05:41 - 02061824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2016-01-22 05:06 - 2015-12-07 05:40 - 01995776 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2016-01-22 05:06 - 2015-12-07 05:40 - 01706496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2016-01-22 05:06 - 2015-12-07 05:39 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\fveapi.dll
2016-01-22 05:06 - 2015-12-07 05:38 - 00871936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSMPEG2ENC.DLL
2016-01-22 05:06 - 2015-12-07 05:33 - 00375296 _____ (Microsoft Corporation) C:\Windows\system32\MDEServer.exe
2016-01-22 05:06 - 2015-12-07 05:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\dialserver.dll
2016-01-22 05:06 - 2015-12-01 09:12 - 02152800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-01-22 05:06 - 2015-11-24 12:26 - 01399224 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2016-01-22 05:06 - 2015-11-24 11:37 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rmcast.sys
2016-01-22 05:06 - 2015-11-24 11:26 - 01337240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2016-01-22 05:06 - 2015-11-24 11:19 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\shutdownux.dll
2016-01-22 05:06 - 2015-11-24 11:12 - 00523776 _____ (Microsoft Corporation) C:\Windows\system32\catsrvut.dll
2016-01-22 05:06 - 2015-11-24 10:55 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-01-22 05:06 - 2015-11-24 10:52 - 01717248 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-01-22 05:06 - 2015-11-24 10:49 - 01648640 _____ (Microsoft Corporation) C:\Windows\system32\comsvcs.dll
2016-01-22 05:06 - 2015-11-24 10:14 - 00415744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\catsrvut.dll
2016-01-22 05:06 - 2015-11-24 09:59 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-01-22 05:06 - 2015-11-24 09:57 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comsvcs.dll
2016-01-22 05:06 - 2015-11-24 09:29 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-01-22 05:06 - 2015-11-24 09:04 - 02155008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2016-01-22 05:06 - 2015-11-22 12:47 - 02653816 _____ C:\Windows\system32\CoreUIComponents.dll
2016-01-22 05:06 - 2015-11-22 12:41 - 01859448 _____ C:\Windows\SysWOW64\CoreUIComponents.dll
2016-01-22 05:06 - 2015-11-22 12:41 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-01-22 05:06 - 2015-11-22 12:34 - 00080600 _____ (Microsoft Corporation) C:\Windows\system32\wwapi.dll
2016-01-22 05:06 - 2015-11-22 12:33 - 00095072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdstor.sys
2016-01-22 05:06 - 2015-11-22 12:33 - 00058408 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll
2016-01-22 05:06 - 2015-11-22 12:33 - 00051680 _____ (Microsoft Corporation) C:\Windows\system32\SensorsUtilsV2.dll
2016-01-22 05:06 - 2015-11-22 12:30 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-01-22 05:06 - 2015-11-22 12:25 - 00063528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wwapi.dll
2016-01-22 05:06 - 2015-11-22 12:24 - 02772584 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2016-01-22 05:06 - 2015-11-22 12:14 - 02185840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2016-01-22 05:06 - 2015-11-22 11:55 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManagerProxy.dll
2016-01-22 05:06 - 2015-11-22 11:54 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\ETWCoreUIComponentsResources.dll
2016-01-22 05:06 - 2015-11-22 11:54 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\capimg.sys
2016-01-22 05:06 - 2015-11-22 11:50 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2016-01-22 05:06 - 2015-11-22 11:43 - 00704000 _____ (Microsoft Corporation) C:\Windows\system32\CellularAPI.dll
2016-01-22 05:06 - 2015-11-22 11:43 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2016-01-22 05:06 - 2015-11-22 11:43 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XblAuthManagerProxy.dll
2016-01-22 05:06 - 2015-11-22 11:42 - 00589312 _____ (Microsoft Corporation) C:\Windows\system32\MbaeApi.dll
2016-01-22 05:06 - 2015-11-22 11:42 - 00138240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ETWCoreUIComponentsResources.dll
2016-01-22 05:06 - 2015-11-22 11:41 - 00948224 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthManager.dll
2016-01-22 05:06 - 2015-11-22 11:39 - 00957440 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2016-01-22 05:06 - 2015-11-22 11:39 - 00938496 _____ (Microsoft Corporation) C:\Windows\system32\MapControlCore.dll
2016-01-22 05:06 - 2015-11-22 11:39 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\modernexecserver.dll
2016-01-22 05:06 - 2015-11-22 11:38 - 01223168 _____ (Microsoft Corporation) C:\Windows\system32\Unistore.dll
2016-01-22 05:06 - 2015-11-22 11:38 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-01-22 05:06 - 2015-11-22 11:38 - 00320000 _____ (Microsoft Corporation) C:\Windows\system32\cryptngc.dll
2016-01-22 05:06 - 2015-11-22 11:38 - 00060928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssign32.dll
2016-01-22 05:06 - 2015-11-22 11:37 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2016-01-22 05:06 - 2015-11-22 11:37 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2016-01-22 05:06 - 2015-11-22 11:36 - 01042432 _____ (Microsoft Corporation) C:\Windows\system32\BingOnlineServices.dll
2016-01-22 05:06 - 2015-11-22 11:34 - 02843136 _____ (Microsoft Corporation) C:\Windows\system32\cdp.dll
2016-01-22 05:06 - 2015-11-22 11:32 - 00340480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToDevice.dll
2016-01-22 05:06 - 2015-11-22 11:31 - 00470528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MbaeApi.dll
2016-01-22 05:06 - 2015-11-22 11:31 - 00416768 _____ (Microsoft Corporation) C:\Windows\system32\dmenrollengine.dll
2016-01-22 05:06 - 2015-11-22 11:28 - 00948224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Unistore.dll
2016-01-22 05:06 - 2015-11-22 11:28 - 00870400 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2016-01-22 05:06 - 2015-11-22 11:28 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2016-01-22 05:06 - 2015-11-22 11:27 - 03993600 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers_nt.dll
2016-01-22 05:06 - 2015-11-22 11:27 - 00241664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptngc.dll
2016-01-22 05:06 - 2015-11-22 11:26 - 03355136 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2016-01-22 05:06 - 2015-11-22 11:26 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2016-01-22 05:06 - 2015-11-22 11:26 - 00709120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BingOnlineServices.dll
2016-01-22 05:06 - 2015-11-22 11:26 - 00421888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2016-01-22 05:06 - 2015-11-22 11:20 - 01860096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdp.dll
2016-01-22 05:06 - 2015-11-22 11:18 - 00697856 _____ (Microsoft Corporation) C:\Windows\system32\PlayToManager.dll
2016-01-22 05:06 - 2015-11-22 11:18 - 00458752 _____ (Microsoft Corporation) C:\Windows\system32\PlayToDevice.dll
2016-01-22 05:06 - 2015-11-22 11:17 - 02680320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2016-01-22 05:06 - 2015-11-22 11:11 - 00517632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PlayToManager.dll
2016-01-22 05:06 - 2015-11-21 07:44 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-AppModelExecEvents.dll
2016-01-22 05:06 - 2015-11-21 07:29 - 00286720 _____ (Microsoft Corporation) C:\Windows\system32\deviceaccess.dll
2016-01-22 05:06 - 2015-11-21 07:07 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\deviceaccess.dll
2016-01-22 05:06 - 2015-11-13 08:55 - 00035680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wimmount.sys
2016-01-22 05:06 - 2015-11-13 08:51 - 00698208 _____ (Microsoft Corporation) C:\Windows\system32\wimgapi.dll
2016-01-22 05:06 - 2015-11-13 08:51 - 00523616 _____ (Microsoft Corporation) C:\Windows\system32\wimserv.exe
2016-01-22 05:06 - 2015-11-13 08:51 - 00334736 _____ (Microsoft Corporation) C:\Windows\system32\policymanager.dll
2016-01-22 05:06 - 2015-11-13 08:43 - 00586208 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-01-22 05:06 - 2015-11-13 08:43 - 00110032 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-01-22 05:06 - 2015-11-13 08:43 - 00035656 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-01-22 05:06 - 2015-11-13 08:42 - 00516544 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-01-22 05:06 - 2015-11-13 08:42 - 00088392 _____ (Microsoft Corporation) C:\Windows\system32\remoteaudioendpoint.dll
2016-01-22 05:06 - 2015-11-13 08:33 - 00911648 _____ (Microsoft Corporation) C:\Windows\system32\dcomp.dll
2016-01-22 05:06 - 2015-11-13 08:33 - 00586080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wimgapi.dll
2016-01-22 05:06 - 2015-11-13 08:33 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-01-22 05:06 - 2015-11-13 08:32 - 00296488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\policymanager.dll
2016-01-22 05:06 - 2015-11-13 08:21 - 00511320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2016-01-22 05:06 - 2015-11-13 08:21 - 00454056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2016-01-22 05:06 - 2015-11-13 08:21 - 00073360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\remoteaudioendpoint.dll
2016-01-22 05:06 - 2015-11-13 08:21 - 00032040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2016-01-22 05:06 - 2015-11-13 08:09 - 00675064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dcomp.dll
2016-01-22 05:06 - 2015-11-13 07:58 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\tetheringservice.dll
2016-01-22 05:06 - 2015-11-13 07:57 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\PhoneProviders.dll
2016-01-22 05:06 - 2015-11-13 07:55 - 00450560 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Internal.Bluetooth.dll
2016-01-22 05:06 - 2015-11-13 07:53 - 00517632 _____ (Microsoft Corporation) C:\Windows\system32\winspool.drv
2016-01-22 05:06 - 2015-11-13 07:49 - 00674816 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-01-22 05:06 - 2015-11-13 07:39 - 02444288 _____ (Microsoft Corporation) C:\Windows\system32\twinui.appcore.dll
2016-01-22 05:06 - 2015-11-13 07:30 - 00315904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Internal.Bluetooth.dll
2016-01-22 05:06 - 2015-11-13 07:27 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winspool.drv
2016-01-22 05:06 - 2015-11-13 07:19 - 02001408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.appcore.dll
2016-01-22 05:06 - 2015-11-05 14:05 - 00118624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2016-01-22 05:06 - 2015-11-05 12:40 - 00630632 _____ (Microsoft Corporation) C:\Windows\system32\fontdrvhost.exe
2016-01-22 05:06 - 2015-11-05 12:25 - 00578912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2016-01-22 05:06 - 2015-11-05 11:41 - 00540752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontdrvhost.exe
2016-01-22 05:06 - 2015-11-05 11:10 - 00803840 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-01-22 05:06 - 2015-11-05 10:15 - 00647168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-01-22 05:05 - 2016-01-05 03:57 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\RMSRoamingSecurity.dll
2016-01-22 05:05 - 2016-01-05 03:52 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-01-22 05:05 - 2016-01-05 03:51 - 00472576 _____ (Microsoft Corporation) C:\Windows\system32\DscCore.dll
2016-01-22 05:05 - 2016-01-05 03:51 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\UserMgrProxy.dll
2016-01-22 05:05 - 2016-01-05 03:49 - 01582080 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2016-01-22 05:05 - 2016-01-05 03:42 - 00166912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserMgrProxy.dll
2016-01-22 05:05 - 2016-01-05 03:41 - 01070080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMSPDMOE.DLL
2016-01-22 05:05 - 2016-01-05 03:39 - 00235008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ksproxy.ax
2016-01-22 05:05 - 2015-12-07 06:15 - 00075776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.XboxLive.ProxyStub.dll
2016-01-22 05:05 - 2015-12-07 06:09 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\StorageUsage.dll
2016-01-22 05:05 - 2015-12-07 06:07 - 00134656 _____ (Microsoft Corporation) C:\Windows\system32\wificonnapi.dll
2016-01-22 05:05 - 2015-12-07 06:05 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\BackgroundTransferHost.exe
2016-01-22 05:05 - 2015-12-07 06:01 - 00034304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BackgroundTransferHost.exe
2016-01-22 05:05 - 2015-11-24 12:01 - 02756096 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-01-22 05:05 - 2015-11-24 11:54 - 00007680 _____ (Microsoft Corporation) C:\Windows\system32\readingviewresources.dll
2016-01-22 05:05 - 2015-11-24 11:53 - 00115200 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-01-22 05:05 - 2015-11-24 11:45 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wshrm.dll
2016-01-22 05:05 - 2015-11-24 10:54 - 02756096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-01-22 05:05 - 2015-11-22 12:00 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\MapsCSP.dll
2016-01-22 05:05 - 2015-11-22 12:00 - 00058368 _____ (Microsoft Corporation) C:\Windows\system32\MosResource.dll
2016-01-22 05:05 - 2015-11-22 11:57 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MapControls.dll
2016-01-22 05:05 - 2015-11-22 11:57 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCoreRes.dll
2016-01-22 05:05 - 2015-11-22 11:57 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MosTrace.dll
2016-01-22 05:05 - 2015-11-22 11:57 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Microsoft-Windows-MosHost.dll
2016-01-22 05:05 - 2015-11-22 11:56 - 01268736 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.Resources.dll
2016-01-22 05:05 - 2015-11-22 11:56 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MosHostClient.dll
2016-01-22 05:05 - 2015-11-22 11:56 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\ihvrilproxy.dll
2016-01-22 05:05 - 2015-11-22 11:56 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rilproxy.dll
2016-01-22 05:05 - 2015-11-22 11:55 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\MapsBtSvcProxy.dll
2016-01-22 05:05 - 2015-11-22 11:54 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.V2.dll
2016-01-22 05:05 - 2015-11-22 11:54 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2016-01-22 05:05 - 2015-11-22 11:54 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\wsplib.dll
2016-01-22 05:05 - 2015-11-22 11:54 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-01-22 05:05 - 2015-11-22 11:54 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\WordBreakers.dll
2016-01-22 05:05 - 2015-11-22 11:54 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\nativemap.dll
2016-01-22 05:05 - 2015-11-22 11:54 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\MapControlStringsRes.dll
2016-01-22 05:05 - 2015-11-22 11:52 - 00060928 _____ (Microsoft Corporation) C:\Windows\system32\XblAuthTokenBrokerExt.dll
2016-01-22 05:05 - 2015-11-22 11:52 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\mapsupdatetask.dll
2016-01-22 05:05 - 2015-11-22 11:51 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\dmcertinst.exe
2016-01-22 05:05 - 2015-11-22 11:51 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\MosStorage.dll
2016-01-22 05:05 - 2015-11-22 11:51 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\mapstoasttask.dll
2016-01-22 05:05 - 2015-11-22 11:51 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-01-22 05:05 - 2015-11-22 11:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-01-22 05:05 - 2015-11-22 11:49 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\Wwanpref.dll
2016-01-22 05:05 - 2015-11-22 11:48 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosResource.dll
2016-01-22 05:05 - 2015-11-22 11:45 - 06572032 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2016-01-22 05:05 - 2015-11-22 11:45 - 00264192 _____ (Nokia) C:\Windows\system32\NmaDirect.dll
2016-01-22 05:05 - 2015-11-22 11:45 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft-Windows-MapControls.dll
2016-01-22 05:05 - 2015-11-22 11:45 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\wwancfg.dll
2016-01-22 05:05 - 2015-11-22 11:45 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCoreRes.dll
2016-01-22 05:05 - 2015-11-22 11:45 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft-Windows-MosTrace.dll
2016-01-22 05:05 - 2015-11-22 11:45 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Microsoft-Windows-MosHost.dll
2016-01-22 05:05 - 2015-11-22 11:44 - 01268736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.Resources.dll
2016-01-22 05:05 - 2015-11-22 11:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosHostClient.dll
2016-01-22 05:05 - 2015-11-22 11:42 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\mdmmigrator.dll
2016-01-22 05:05 - 2015-11-22 11:42 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WordBreakers.dll
2016-01-22 05:05 - 2015-11-22 11:42 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlStringsRes.dll
2016-01-22 05:05 - 2015-11-22 11:41 - 01814528 _____ (Microsoft Corporation) C:\Windows\system32\pnidui.dll
2016-01-22 05:05 - 2015-11-22 11:40 - 01056256 _____ (Microsoft Corporation) C:\Windows\system32\JpMapControl.dll
2016-01-22 05:05 - 2015-11-22 11:40 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2016-01-22 05:05 - 2015-11-22 11:40 - 00049152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XblAuthTokenBrokerExt.dll
2016-01-22 05:05 - 2015-11-22 11:39 - 01713664 _____ (Microsoft Corporation) C:\Windows\system32\SRHInproc.dll
2016-01-22 05:05 - 2015-11-22 11:39 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\NMAA.dll
2016-01-22 05:05 - 2015-11-22 11:39 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\offlinelsa.dll
2016-01-22 05:05 - 2015-11-22 11:39 - 00058368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MosStorage.dll
2016-01-22 05:05 - 2015-11-22 11:34 - 00108544 _____ (Microsoft Corporation) C:\Windows\system32\InputLocaleManager.dll
2016-01-22 05:05 - 2015-11-22 11:34 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\EditBufferTestHook.dll
2016-01-22 05:05 - 2015-11-22 11:33 - 00205824 _____ (Nokia) C:\Windows\SysWOW64\NmaDirect.dll
2016-01-22 05:05 - 2015-11-22 11:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JpMapControl.dll
2016-01-22 05:05 - 2015-11-22 11:28 - 01443328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRHInproc.dll
2016-01-22 05:05 - 2015-11-22 11:28 - 00784896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NMAA.dll
2016-01-22 05:05 - 2015-11-22 11:28 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\offlinelsa.dll
2016-01-22 05:05 - 2015-11-22 11:27 - 00711680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MapControlCore.dll
2016-01-22 05:05 - 2015-11-22 11:27 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\enrollmentapi.dll
2016-01-22 05:05 - 2015-11-22 11:24 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InputLocaleManager.dll
2016-01-22 05:05 - 2015-11-22 11:24 - 00059904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EditBufferTestHook.dll
2016-01-22 05:05 - 2015-11-13 08:07 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Management.Provisioning.ProxyStub.dll
2016-01-22 05:05 - 2015-11-13 08:06 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\RemovableMediaProvisioningPlugin.dll
2016-01-22 05:05 - 2015-11-13 08:05 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\KnobsCsp.dll
2016-01-22 05:05 - 2015-11-13 08:05 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\BarcodeProvisioningPlugin.dll
2016-01-22 05:05 - 2015-11-13 08:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.proxy.dll
2016-01-22 05:05 - 2015-11-13 08:05 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\tetheringconfigsp.dll
2016-01-22 05:05 - 2015-11-13 08:04 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\NFCProvisioningPlugin.dll
2016-01-22 05:05 - 2015-11-13 08:04 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\LaunchWinApp.exe
2016-01-22 05:05 - 2015-11-13 08:04 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\IcsEntitlementHost.exe
2016-01-22 05:05 - 2015-11-13 08:03 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\tetheringclient.dll
2016-01-22 05:05 - 2015-11-13 08:00 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\tzautoupdate.dll
2016-01-22 05:05 - 2015-11-13 07:59 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\AppCapture.dll
2016-01-22 05:05 - 2015-11-13 07:56 - 00163328 _____ (Microsoft Corporation) C:\Windows\system32\provops.dll
2016-01-22 05:05 - 2015-11-13 07:40 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LaunchWinApp.exe
2016-01-22 05:05 - 2015-11-13 07:40 - 00027136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.proxy.dll
2016-01-22 05:05 - 2015-11-13 07:34 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppCapture.dll
2016-01-22 05:05 - 2015-11-13 07:33 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\bcastdvr.exe
2016-01-22 05:05 - 2015-11-13 07:30 - 00334336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcastdvr.exe
2016-01-22 05:05 - 2015-11-13 07:23 - 00490496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-01-22 05:05 - 2015-11-05 12:08 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-01-22 05:05 - 2015-11-05 12:08 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-01-22 05:05 - 2015-11-05 12:04 - 00045568 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-01-22 05:05 - 2015-11-05 12:00 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-01-22 05:05 - 2015-11-05 11:44 - 00365568 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-01-22 05:05 - 2015-11-05 11:03 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-01-22 05:05 - 2015-11-05 11:02 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-01-22 05:05 - 2015-11-05 10:59 - 00037376 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-01-22 05:05 - 2015-11-05 10:55 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-01-22 05:05 - 2015-11-05 10:42 - 00303104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-01-22 04:55 - 2016-02-19 10:31 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-01-22 04:54 - 2016-01-22 04:54 - 00000000 ____D C:\Users\jaakk\Tracing
2016-01-22 04:45 - 2016-01-23 06:21 - 00000000 ____D C:\Users\jaakk\AppData\Local\Mozilla
2016-01-22 04:45 - 2016-01-22 04:45 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Mozilla
2016-01-22 04:44 - 2016-01-22 04:44 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Avira
2016-01-22 04:43 - 2016-02-18 10:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2016-01-22 04:43 - 2016-02-18 10:01 - 00146704 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2016-01-22 04:43 - 2016-01-22 05:19 - 00000000 ____D C:\ProgramData\Avira
2016-01-22 04:43 - 2016-01-22 05:19 - 00000000 ____D C:\Program Files (x86)\Avira
2016-01-22 04:43 - 2016-01-22 04:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-01-22 04:43 - 2016-01-22 04:43 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-01-22 04:43 - 2016-01-22 04:43 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-01-22 04:43 - 2015-12-03 15:24 - 00135880 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2016-01-22 04:43 - 2015-12-03 15:24 - 00073032 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys
2016-01-22 04:43 - 2015-12-03 15:24 - 00035488 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys
2016-01-22 04:43 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-01-22 04:43 - 2015-10-05 09:50 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-01-22 04:43 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-01-22 04:42 - 2016-02-19 11:06 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Spotify
2016-01-22 04:42 - 2016-02-19 02:51 - 00000000 ____D C:\Users\jaakk\AppData\Local\Spotify
2016-01-22 04:42 - 2016-02-15 17:31 - 00001119 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\paint.net.lnk
2016-01-22 04:42 - 2016-02-15 17:31 - 00000000 ____D C:\Program Files\paint.net
2016-01-22 04:42 - 2016-01-25 15:31 - 00000000 ____D C:\ProgramData\Skype
2016-01-22 04:42 - 2016-01-22 04:59 - 00000000 ____D C:\Users\jaakk\AppData\Local\paint.net
2016-01-22 04:42 - 2016-01-22 04:42 - 00001839 _____ C:\Users\jaakk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2016-01-22 04:42 - 2016-01-22 04:42 - 00000000 ____D C:\Users\jaakk\AppData\Local\CEF
2016-01-22 04:41 - 2016-02-19 01:53 - 00000000 ____D C:\Program Files (x86)\Steam
2016-01-22 04:41 - 2016-02-15 17:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-22 04:41 - 2016-01-22 06:59 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Notepad++
2016-01-22 04:41 - 2016-01-22 04:41 - 00001231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-01-22 04:41 - 2016-01-22 04:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-01-22 04:41 - 2016-01-22 04:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-01-22 04:41 - 2016-01-22 04:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2016-01-22 04:41 - 2016-01-22 04:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-01-22 04:41 - 2016-01-22 04:41 - 00000000 ____D C:\Program Files\VideoLAN
2016-01-22 04:41 - 2016-01-22 04:41 - 00000000 ____D C:\Program Files\7-Zip
2016-01-22 04:41 - 2016-01-22 04:41 - 00000000 ____D C:\Program Files (x86)\Notepad++
2016-01-22 04:22 - 2016-02-19 11:32 - 00001030 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-22 04:22 - 2016-02-19 06:32 - 00001026 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-22 04:22 - 2016-02-10 20:32 - 00002269 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-01-22 04:22 - 2016-02-03 06:27 - 00004088 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-01-22 04:22 - 2016-02-03 06:27 - 00003856 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-01-22 04:22 - 2016-01-22 06:13 - 00000000 ____D C:\Users\jaakk\AppData\Local\Google
2016-01-22 04:22 - 2016-01-22 04:22 - 00000000 ____D C:\Program Files (x86)\Google
2016-01-22 04:19 - 2016-02-19 02:20 - 01383594 _____ C:\Windows\system32\PerfStringBackup.INI
2016-01-22 04:19 - 2016-01-23 04:53 - 00112216 _____ C:\Windows\system32\NvRtmpStreamer64.dll
2016-01-22 04:19 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2016-01-22 04:19 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2016-01-22 04:19 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2016-01-22 04:19 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2016-01-22 04:19 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2016-01-22 04:19 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2016-01-22 04:18 - 2016-02-05 12:32 - 00000000 ____D C:\ProgramData\Package Cache
2016-01-22 04:18 - 2016-01-22 04:18 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Macromedia
2016-01-22 04:17 - 2016-01-22 08:27 - 00000000 ___RD C:\Users\jaakk\OneDrive
2016-01-22 04:17 - 2016-01-22 04:17 - 00002387 _____ C:\Users\jaakk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-01-22 04:17 - 2016-01-22 04:17 - 00000000 ____D C:\Users\jaakk\AppData\Local\MicrosoftEdge
2016-01-22 04:17 - 2016-01-22 04:17 - 00000000 ____D C:\Users\jaakk\AppData\Local\Comms
2016-01-22 04:17 - 2016-01-22 04:17 - 00000000 ____D C:\Users\jaakk\AppData\Local\ActiveSync
2016-01-22 04:17 - 2016-01-22 04:17 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-01-22 04:15 - 2016-02-18 01:03 - 00000000 ____D C:\Users\jaakk\AppData\Local\Packages
2016-01-22 04:15 - 2016-02-11 14:55 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-01-22 04:15 - 2016-02-10 21:02 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-01-22 04:15 - 2016-01-22 04:15 - 00000000 ____D C:\Users\jaakk\AppData\Roaming\Adobe
2016-01-22 04:15 - 2016-01-22 04:15 - 00000000 ____D C:\Users\jaakk\AppData\Local\VirtualStore
2016-01-22 04:15 - 2016-01-22 04:15 - 00000000 ____D C:\Users\jaakk\AppData\Local\TileDataLayer
2016-01-22 04:15 - 2016-01-22 04:15 - 00000000 ____D C:\Users\jaakk\AppData\Local\Publishers
2016-01-22 04:13 - 2016-02-19 01:52 - 00000000 ____D C:\Users\jaakk
2016-01-22 04:13 - 2016-01-22 04:13 - 00000020 ___SH C:\Users\jaakk\ntuser.ini
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 _SHDL C:\Users\jaakk\Verkkoympäristö
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 _SHDL C:\Users\jaakk\Tulostinympäristö
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 _SHDL C:\Users\jaakk\Omat tiedostot
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 _SHDL C:\Users\jaakk\Mallit
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 _SHDL C:\Users\jaakk\Käynnistä-valikko
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 _SHDL C:\Users\jaakk\Documents\Omat videotiedostot
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 _SHDL C:\Users\jaakk\Documents\Omat musiikkitiedostot
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 _SHDL C:\Users\jaakk\Documents\Omat kuvatiedostot
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 _SHDL C:\Users\jaakk\AppData\Roaming\Microsoft\Windows\Start Menu\Ohjelmat
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_ASMBSW_01_11_00.Wdf
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 ____D C:\Program Files\ASUS
2016-01-22 04:13 - 2016-01-22 04:13 - 00000000 ____D C:\Program Files (x86)\ASUS
2016-01-22 04:13 - 2013-07-04 03:32 - 00028672 _____ (ASUSTek Computer Inc.) C:\Windows\SysWOW64\AsIO.dll
2016-01-22 04:13 - 2013-07-04 03:32 - 00015232 _____ C:\Windows\SysWOW64\Drivers\AsIO.sys
2016-01-22 04:11 - 2016-01-22 04:11 - 00000000 ____D C:\ProgramData\USOShared
2016-01-22 04:10 - 2016-02-19 01:52 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Public\Documents\Omat videotiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Public\Documents\Omat musiikkitiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Public\Documents\Omat kuvatiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default\Verkkoympäristö
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default\Tulostinympäristö
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default\Omat tiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default\Mallit
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default\Käynnistä-valikko
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default\Documents\Omat videotiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default\Documents\Omat musiikkitiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default\Documents\Omat kuvatiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Ohjelmat
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default User\Documents\Omat videotiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default User\Documents\Omat musiikkitiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default User\Documents\Omat kuvatiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Ohjelmat
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\ProgramData\Työpöytä
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\ProgramData\Tiedostot
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Ohjelmat
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\ProgramData\Mallit
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\ProgramData\Käynnistä-valikko
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Program Files\Common Files\Järjestelmä
2016-01-22 04:10 - 2016-01-22 04:10 - 00000000 _SHDL C:\Documents and Settings
2016-01-22 04:10 - 2015-10-30 09:17 - 02718208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2016-01-22 04:09 - 2016-02-19 01:52 - 00363616 _____ C:\Windows\system32\FNTCACHE.DAT
2016-01-22 04:09 - 2016-01-22 04:10 - 00000000 ____D C:\Windows\Panther
2016-01-22 04:09 - 2016-01-22 04:09 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-02-19 02:20 - 2015-10-30 20:02 - 00435198 _____ C:\Windows\system32\perfh00B.dat
2016-02-19 02:20 - 2015-10-30 20:02 - 00081386 _____ C:\Windows\system32\perfc00B.dat
2016-02-19 02:20 - 2015-10-30 09:21 - 00000000 ____D C:\Windows\INF
2016-02-19 01:52 - 2015-10-30 08:28 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-02-18 21:24 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\AppReadiness
2016-02-18 17:31 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-02-13 06:34 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\rescache
2016-02-11 14:55 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\Help
2016-02-10 21:01 - 2015-10-30 20:04 - 00000000 ____D C:\Program Files\Windows Journal
2016-02-10 06:13 - 2015-10-30 09:11 - 00000000 ____D C:\Windows\CbsTemp
2016-02-03 21:01 - 2015-10-30 09:26 - 00828920 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-02-03 21:01 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-01-28 23:02 - 2015-10-30 09:24 - 00000000 ___SD C:\Windows\system32\F12
2016-01-28 23:02 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\PurchaseDialog
2016-01-28 23:02 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-01-28 23:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\WinBioPlugIns
2016-01-28 23:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\oobe
2016-01-28 23:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\appraiser
2016-01-28 23:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\bcastdvr
2016-01-24 07:00 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\NDF
2016-01-23 04:44 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\appcompat
2016-01-23 03:40 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\MUI
2016-01-23 03:40 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\MUI
2016-01-23 01:58 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-01-23 01:58 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-01-22 05:17 - 2015-10-30 08:28 - 00000000 ____D C:\Windows\SysWOW64\Dism
2016-01-22 05:16 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\SystemResetPlatform
2016-01-22 05:16 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\Provisioning
2016-01-22 05:16 - 2015-10-30 08:28 - 00000000 ____D C:\Windows\system32\Dism
2016-01-22 04:24 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\DevicesFlow
2016-01-22 04:15 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\PrintDialog
2016-01-22 04:15 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\MiracastView
2016-01-22 04:13 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\WinBioDatabase
2016-01-22 04:11 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\USOPrivate
2016-01-22 04:10 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\spool
2016-01-22 04:10 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\FxsTmp
2016-01-22 04:10 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Windows NT
2016-01-22 04:10 - 2015-10-30 08:28 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-01-22 04:10 - 2015-10-30 08:28 - 00000000 ____D C:\Windows\system32\Sysprep
2016-01-22 04:09 - 2015-10-30 20:08 - 00000000 ____D C:\Windows\ServiceProfiles
2016-01-22 04:09 - 2015-10-30 09:24 - 00028672 _____ C:\Windows\system32\config\BCD-Template
2016-01-22 04:09 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\LiveKernelReports
 
==================== Files in the root of some directories =======
 
2016-02-17 15:37 - 2016-02-17 15:37 - 0000714 _____ () C:\Users\jaakk\AppData\Local\recently-used.xbel
 
Some files in TEMP:
====================
C:\Users\jaakk\AppData\Local\Temp\avgnt.exe
C:\Users\jaakk\AppData\Local\Temp\dllnt_dump.dll
C:\Users\jaakk\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\jaakk\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\jaakk\AppData\Local\Temp\nvStInst.exe
C:\Users\jaakk\AppData\Local\Temp\sonarinst.exe
C:\Users\jaakk\AppData\Local\Temp\sqlite3.dll
C:\Users\jaakk\AppData\Local\Temp\x2blapi.dll
C:\Users\jaakk\AppData\Local\Temp\xmlUpdater.exe
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2016-02-18 05:19
 
==================== End of FRST.txt ============================

Attached Files


Edited by JaskaTheK9, 19 February 2016 - 05:33 AM.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 40,159 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:20 AM

Posted 19 February 2016 - 10:28 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===
This process was only closed while the program was executidng, nothing to worry about.

¤¤¤ Processes : 1 ¤¤¤
[Proc.RunPE] SpotifyWebHelper.exe(6228) -- C:\Users\jaakk\AppData\Roaming\Spotify\SpotifyWebHelper.exe[7] -> Killed [TermProc]


===

It also found 1 weird registry entry? [PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Found

This is set by Chrome.

===

If you did not set your start page to hxxps://fi.hbonordic.com/ then you browser may have been compromised.
To remove these setting run this fix.

Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.
 
start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

HKU\S-1-5-21-2270606022-1161141034-668459170-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-1\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-2\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-3\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
HKU\S-1-5-21-2270606022-1161141034-668459170-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-4\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fi.hbonordic.com/
End

Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Reset Chrome...
Open Google Chrome, click on menu icon google-chrome-setting-icon.png which is located right side top of the google chrome.
 
Click "Settings" then "Show advanced settings" at the bottom of the screen.
 
Click "Reset browser settings" button.
 
Clear your cache and cookies
https://support.google.com/chromebook/answer/183083?hl=en

Restart Chrome.

====

Any remaining issues?

#3 JaskaTheK9

JaskaTheK9
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:01:20 PM

Posted 19 February 2016 - 10:45 AM

Hey, thanks for the quick response. Looks like paranoia got the better of me, huh. I set Edge and Internet Explorer homepages to HBONordic myself, so nothing to worry about there.

 

 

 

It also found 1 weird registry entry? [PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Found

This is set by Chrome.

 

 

I went to check the registry, and it leads to HKEY_LOCAL_MACHINE\Software\Partner\Wallet . It has empty value. Can you tell anything more about this? Why was it flagged as PUP, should I delete it? I tried searching information about it, but nothing reliable came up. Someone claims it has to do with adware called "dealply", but did not found any concrete proof of this. 

 

Thanks again, really appreciate what you are doing here.



#4 JaskaTheK9

JaskaTheK9
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:01:20 PM

Posted 20 February 2016 - 12:04 AM

Hey,

 

I reset chrome settings just to be sure. The  [PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Found still comes up on RogueKiller. Should I go ahead and delete it?



#5 JaskaTheK9

JaskaTheK9
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:01:20 PM

Posted 20 February 2016 - 12:27 AM

Hey again,

 

I did another HitmanPro scan, and it came up with something called "conduit". (search conduit com) in chrome. I deleted it, but short while after I scanned again and it had re appeared. Hitman did not save the log for somereason. It didn't classify it as an "threat". It had this weird shield icon as an picture.

 

EDIT: I used AdwCleaner, it also found the conduit thing, hadn't noticed it before since it was under Chrome tab. Here is the log:

 

# AdwCleaner v5.035 - Logfile created 20/02/2016 at 07:27:28
# Updated 18/02/2016 by Xplode
# Database : 2016-02-18.5 [Server]
# Operating system : Windows 10 Home  (x64)
# Username : jaakk - JAAKKO
# Running from : C:\Users\jaakk\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
Folder Found : C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp
 
***** [ Files ] *****
 
 
***** [ DLL ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Web browsers ] *****
 
[C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : hwmonitor.en.softonic.com
[C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : netflix.com
[C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : bookmark-manager-extension.en.softonic.com
[C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search.conduit.com
[C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : pdabfienifkbhoihedcgeogidfmibmhp
 
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1312 bytes] ##########
 
 
I deleted the:
 
[C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : search.conduit.com
[C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : pdabfienifkbhoihedcgeogidfmibmhp
 
EDIT2: The "pdabfienifkbhoihedcgeogidfmibmhp" appeared once again after deletion in AdwCleaner. This is apparently chrome extension called "Click&Clean App".  Another extension which I do not use anymore: "magic actions for youtube" tried to get me install this, but I did not do so.
 
AdwCleaner Log 2:
 
# AdwCleaner v5.035 - Logfile created 20/02/2016 at 07:43:56
# Updated 18/02/2016 by Xplode
# Database : 2016-02-18.5 [Server]
# Operating system : Windows 10 Home  (x64)
# Username : jaakk - JAAKKO
# Running from : C:\Users\jaakk\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
Folder Found : C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp
 
***** [ Files ] *****
 
 
***** [ DLL ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Web browsers ] *****
 
[C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : pdabfienifkbhoihedcgeogidfmibmhp
 
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [816 bytes] ##########
 
Edit 3: Here is a HitmanPro log 
 
HitmanPro 3.7.12.256
www.hitmanpro.com
 
   Computer name . . . . : JAAKKO
   Windows . . . . . . . : 10.0.0.10586.X64/4
   User name . . . . . . : JAAKKO\jaakk
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free
 
   Scan date . . . . . . : 2016-02-20 07:59:16
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 59s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No
 
   Threats . . . . . . . : 0
   Traces  . . . . . . . : 7
 
   Objects scanned . . . : 1 586 983
   Files scanned . . . . : 44 531
   Remnants scanned  . . : 379 704 files / 1 162 748 keys
 
Potential Unwanted Programs _________________________________________________
 
   search.conduit.com
   C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Web Data
 
 
Cookies _____________________________________________________________________
 
   C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Cookies:adzerk.net
   C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Cookies:doubleclick.net
   C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Cookies:paypal.d1.sc.omtrdc.net
   C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Cookies:scorecardresearch.com
   C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Cookies:stats.paypal.com
   C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Cookies:yadro.ru
 
 
 
Edit4: The pdabfienifkbhoihedcgeogidfmibmhp keeps re appearing everytime after deletion. Its not on my installed chrome addons, atleast not visible. How can I get rid of this? Thanks again!!
 
 
 
# AdwCleaner v5.035 - Logfile created 20/02/2016 at 08:07:47
# Updated 18/02/2016 by Xplode
# Database : 2016-02-18.5 [Server]
# Operating system : Windows 10 Home  (x64)
# Username : jaakk - JAAKKO
# Running from : C:\Users\jaakk\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
Folder Found : C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp
 
***** [ Files ] *****
 
 
***** [ DLL ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Web browsers ] *****
 
[C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : pdabfienifkbhoihedcgeogidfmibmhp
 
########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [816 bytes] ##########
 
 
Edit5: Sorry for constant updates. I found the source file: C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp
I left it alone for now.

Edited by JaskaTheK9, 20 February 2016 - 01:43 AM.


#6 nasdaq

nasdaq

  • Malware Response Team
  • 40,159 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:20 AM

Posted 20 February 2016 - 08:03 AM

This should remove it.

Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.
 
start


CloseProcesses:


CHR Extension: (Click&Clean App) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp
C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===


Do you still have an issue with this?
Another extension which I do not use anymore: "magic actions for youtube" tried to get me install this, but I did not do so.





.

#7 JaskaTheK9

JaskaTheK9
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:01:20 PM

Posted 20 February 2016 - 09:06 AM

Hello, nasdaq

 

The folder is indeed gone, and AdwCleaner does not pick it up anymore. However, it does pick up the: [C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : pdabfienifkbhoihedcgeogidfmibmhp . I have added that AdwCleaner log as an attachments. There is also the matter of [PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Found by RogueKiller. Should I go ahead and delete it? Added that RogueKiller log as an attachment.

 

Here is the requested fixlog.txt

 

Fix result of Farbar Recovery Scan Tool (x64) Version:17-02-2016

Ran by jaakk (2016-02-20 15:38:04) Run:1
Running from C:\Users\jaakk\Desktop
Loaded Profiles: jaakk &  (Available Profiles: jaakk)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
start
 
 
CloseProcesses:
 
 
CHR Extension: (Click&Clean App) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp
C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp
 
End
*****************
 
Processes closed successfully.
CHR Extension: (Click&Clean App) - C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp => not found
C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp => moved successfully
 
 
The system needed a reboot.
 
==== End of Fixlog 15:38:05 ====

Attached Files



#8 nasdaq

nasdaq

  • Malware Response Team
  • 40,159 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:20 AM

Posted 20 February 2016 - 09:35 AM

Lets find out where this Extension is hidden.

Please download SystemLook from one of the links below and save it to your Desktop.
Download Mirror #1
Download Mirror #2


If your operating system is 64 bit download this tool:
SystemLook_x64.exe
  • Double-click SystemLook.exe
  • to run it.
  • Copy and paste the content
  • of the following bold text into the main textfield:
    :reg
    pdabfienifkbhoihedcgeogidfmibmhp
  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
  • Note: The log can also be found on your Desktop entitled SystemLook.txt.
===

Yes you can delete this key with the RogueKiller tool.
[PUP] (X64) HKEY_LOCAL_MACHINE\Software\Partner -> Found

#9 JaskaTheK9

JaskaTheK9
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:01:20 PM

Posted 20 February 2016 - 09:57 AM

Here is the systemlook log. It finished the scan pretty much instantly:

 

SystemLook 30.07.11 by jpshortstuff
Log created at 16:56 on 20/02/2016 by jaakk
Administrator - Elevation successful
 
========== reg ==========
 
[pdabfienifkbhoihedcgeogidfmibmhp]
Hive unrecognized.
 
-= EOF =-


#10 nasdaq

nasdaq

  • Malware Response Team
  • 40,159 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:20 AM

Posted 20 February 2016 - 10:51 AM


This may be the issue.

Chrome Extension
How to Uninstall Extension with "Installed by Enterprise Policy" from Google?

http://forums.anvisoft.com/viewtopic-51-8494-0.html

If and only If you are at easy in looking in the Registry follow the search in the Policy keys.


If you see any reference to pdabfienifkbhoihedcgeogidfmibmhp remove it as suggested.

Make sure you have the exact string.

Click save and exit the Registry.

How is it now?

#11 JaskaTheK9

JaskaTheK9
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:01:20 PM

Posted 20 February 2016 - 11:17 AM

I tried to look for the "pdabfienifkbhoihedcgeogidfmibmhp " But I could not find even the Chrome entry in the regedit. This is Win10, 64bit machine. I tried to use the regedit search function, I pasted the "pdabfienifkbhoihedcgeogidfmibmhp " to it, but the search went for ever, and when trying to cancel out of it, regedit stopped responding. Picture of my regedit in attachment. I could try to delete it via AdwClener now that the folder itself is gone? Maybe it stays away this time?

Attached Files



#12 JaskaTheK9

JaskaTheK9
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:01:20 PM

Posted 20 February 2016 - 01:40 PM

 I could try to delete it via AdwClener now that the folder itself is gone? Maybe it stays away this time?

 

That did not work. It re-appeared after AdwCleaner restarted the computer.

 

---

 

# AdwCleaner v5.035 - Logfile created 20/02/2016 at 20:31:55
# Updated 18/02/2016 by Xplode
# Database : 2016-02-20.3 [Server]
# Operating system : Windows 10 Home  (x64)
# Username : jaakk - JAAKKO
# Running from : C:\Users\jaakk\Desktop\AdwCleaner.exe
# Option : Cleaning
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
 
***** [ Files ] *****
 
 
***** [ DLLs ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Web browsers ] *****
 
[-] [C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : pdabfienifkbhoihedcgeogidfmibmhp
 
*************************
 
:: "Tracing" keys removed
:: Winsock settings cleared
 
########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [793 bytes] ##########
 
---
 
# AdwCleaner v5.035 - Logfile created 20/02/2016 at 20:35:31
# Updated 18/02/2016 by Xplode
# Database : 2016-02-20.3 [Server]
# Operating system : Windows 10 Home  (x64)
# Username : jaakk - JAAKKO
# Running from : C:\Users\jaakk\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
Folder Found : C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdabfienifkbhoihedcgeogidfmibmhp
 
***** [ Files ] *****
 
 
***** [ DLL ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Web browsers ] *****
 
[C:\Users\jaakk\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Found : pdabfienifkbhoihedcgeogidfmibmhp
 
########## EOF - C:\AdwCleaner\AdwCleaner[S9].txt - [816 bytes] ##########
 


#13 nasdaq

nasdaq

  • Malware Response Team
  • 40,159 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:20 AM

Posted 20 February 2016 - 01:53 PM


Try this.



#14 JaskaTheK9

JaskaTheK9
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:01:20 PM

Posted 20 February 2016 - 01:54 PM

I did new FRST scan in case you want the newest data. I have scanned with Hitman Pro, Rogue Killer and AdwCleaner. The entry on AdwCleaner remains as the only problem.

 

 

 

 

Attached Files



#15 JaskaTheK9

JaskaTheK9
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:01:20 PM

Posted 20 February 2016 - 01:58 PM

Try this.

I run Windows 10 machine, and I do not have the Apps Launcher.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users