| |
| |||||||
Log-Analyse und Auswertung: Bluescreen bei entfernen von 3 ProgrammenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
12.12.2013, 17:55
| #1 |
| |  Bluescreen bei entfernen von 3 Programmen Schön guten Abend Ich habe seit einger zeit probleme mit meinen pc und hab mein Norton mal durch gejagt und dieser hat nix gefunden o.O im Taskmanager sind mir dann aber verdächtige prozzese auf gefallen die ich nicht kannte und da hat mir ein freund gesagt ich solle doch mal ADWCLEONER alles durch suchen lassen soweit alles gut und als ich auf lösen gehen wollte hatte ich ein Bluescreen der bericht von ADWCLEONER ist : # AdwCleaner v3.015 - Bericht erstellt am 12/12/2013 um 17:48:02 # Updated 10/12/2013 von Xplode # Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits) # Benutzername : Chris - CHRIS-PC # Gestartet von : C:\Users\Chris\Downloads\adwcleaner.exe # Option : Suchen ***** [ Dienste ] ***** Dienst Gefunden : srvPlgProtect Dienst Gefunden : SrvUpdater Dienst Gefunden : Wpm ***** [ Dateien / Ordner ] ***** Ordner Gefunden C:\Program Files (x86)\SoftwareUpdater Ordner Gefunden C:\ProgramData\Babylon Ordner Gefunden C:\ProgramData\BitGuard Ordner Gefunden C:\ProgramData\Browser Manager Ordner Gefunden C:\ProgramData\BrowserProtect Ordner Gefunden C:\ProgramData\Conduit Ordner Gefunden C:\Users\Chris\AppData\LocalLow\Conduit Ordner Gefunden C:\Users\Chris\AppData\LocalLow\somotomoviestoolbar1 Ordner Gefunden C:\Users\Chris\AppData\Roaming\okitspace Ordner Gefunden C:\Users\Chris\AppData\Roaming\OpenCandy ***** [ Verknüpfungen ] ***** Verknüpfung Gefunden : C:\Users\Public\Desktop\Mozilla Firefox.lnk ( hxxp://aartemis.com/?type=sc&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 ) Verknüpfung Gefunden : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://aartemis.com/?type=sc&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 ) Verknüpfung Gefunden : C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://aartemis.com/?type=sc&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 ) Verknüpfung Gefunden : C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://aartemis.com/?type=sc&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 ) Verknüpfung Gefunden : C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk ( hxxp://aartemis.com/?type=sc&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 ) Verknüpfung Gefunden : C:\Users\Chris\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://aartemis.com/?type=sc&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 ) Verknüpfung Gefunden : C:\Users\Chris\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk ( hxxp://aartemis.com/?type=sc&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 ) ***** [ Registrierungsdatenbank ] ***** Daten Gefunden : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\FIREFOX.EXE\shell\open\command [(Default)] - "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" hxxp://aartemis.com/?type=sc&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 Daten Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\movies~1\safety~1\safety~2.dll Daten Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\movies~1\safety~1\x64\safety~2.dll Schlüssel Gefunden : HKCU\Software\APN DTX Schlüssel Gefunden : HKCU\Software\APN PIP Schlüssel Gefunden : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} Schlüssel Gefunden : HKCU\Software\BI Schlüssel Gefunden : HKCU\Software\DataMngr Schlüssel Gefunden : HKCU\Software\InstallCore Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3444C3C5-6C56-4A16-A453-832B05BF6EA4} Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3444C3C5-6C56-4A16-A453-832B05BF6EA4} Schlüssel Gefunden : HKCU\Software\OCS Schlüssel Gefunden : HKCU\Software\powerpack Schlüssel Gefunden : HKCU\Software\SmartBar Schlüssel Gefunden : HKCU\Software\Softonic Schlüssel Gefunden : HKCU\Software\somotomoviestoolbar1 Schlüssel Gefunden : [x64] HKCU\Software\APN DTX Schlüssel Gefunden : [x64] HKCU\Software\APN PIP Schlüssel Gefunden : [x64] HKCU\Software\BI Schlüssel Gefunden : [x64] HKCU\Software\DataMngr Schlüssel Gefunden : [x64] HKCU\Software\InstallCore Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Schlüssel Gefunden : [x64] HKCU\Software\OCS Schlüssel Gefunden : [x64] HKCU\Software\powerpack Schlüssel Gefunden : [x64] HKCU\Software\SmartBar Schlüssel Gefunden : [x64] HKCU\Software\Softonic Schlüssel Gefunden : [x64] HKCU\Software\somotomoviestoolbar1 Schlüssel Gefunden : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} Schlüssel Gefunden : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C} Schlüssel Gefunden : HKLM\Software\aartemisSoftware Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{4277F7CF-0000-46CF-BA49-D624465C4BAB} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3543619C-D563-43F7-95EA-4DA7E1CC396A} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Prod.cap Schlüssel Gefunden : HKLM\Software\DataMngr Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\hifnddafpdkmjljallgdlkjiiieidmec Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3444C3C5-6C56-4A16-A453-832B05BF6EA4} Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32 Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32 Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bitguard.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bprotect.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsemngr.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserdefender.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browsermngr.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\browserprotect.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\bundlesweetimsetup.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\cltmngsvc.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta babylon.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta tb.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\delta2.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltainstaller.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltasetup.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\deltatb_2501-c733154b.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iminentsetup.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sweetimsetup.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tbdelta.exetoolbar783881609.exe Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3543619C-D563-43F7-95EA-4DA7E1CC396A} Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdater Schlüssel Gefunden : HKLM\Software\SafetyNut Schlüssel Gefunden : HKLM\Software\SoftwareUpdater Schlüssel Gefunden : HKLM\Software\Vittalia Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{06E50566-0AB7-431C-841D-62794727DAF9} Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{26E7211D-0650-43CF-8498-4C81E83AEAAA} Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Speedchecker Limited Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3444C3C5-6C56-4A16-A453-832B05BF6EA4}] Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}] Wert Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}] ***** [ Browser ] ***** -\\ Internet Explorer v0.0.0.0 Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page] - hxxp://feed.snapdo.com/?publisher=Somoto&dpid=Somoto&co=DE&userid=9872fa70-10e1-9ffb-0ec7-62bf7f3089c1&searchtype=ds&q={searchTerms}&installDate=18/10/2013 Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://aartemis.com/?type=hp&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar] - hxxp://feed.snapdo.com/?publisher=Somoto&dpid=Somoto&co=DE&userid=9872fa70-10e1-9ffb-0ec7-62bf7f3089c1&searchtype=ds&q={searchTerms}&installDate=18/10/2013 Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://aartemis.com/?type=hp&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://aartemis.com/?type=hp&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL] - hxxp://feed.snapdo.com/?publisher=Somoto&dpid=Somoto&co=DE&userid=9872fa70-10e1-9ffb-0ec7-62bf7f3089c1&searchtype=ds&q={searchTerms}&installDate=18/10/2013 Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant] - hxxp://feed.snapdo.com/?publisher=Somoto&dpid=Somoto&co=DE&userid=9872fa70-10e1-9ffb-0ec7-62bf7f3089c1&searchtype=ds&q={searchTerms}&installDate=18/10/2013 Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://feed.snapdo.com/?publisher=Somoto&dpid=Somoto&co=DE&userid=9872fa70-10e1-9ffb-0ec7-62bf7f3089c1&searchtype=ds&q={searchTerms}&installDate=18/10/2013 Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl [Default] - hxxp://feed.snapdo.com/?publisher=Somoto&dpid=Somoto&co=DE&userid=9872fa70-10e1-9ffb-0ec7-62bf7f3089c1&searchtype=ds&q={searchTerms}&installDate=18/10/2013 Einstellung Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://aartemis.com/?type=hp&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148 -\\ Mozilla Firefox v25.0.1 (de) [ Datei : C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\udvcsltt.default-1386763778493\prefs.js ] ************************* AdwCleaner[R0].txt - [12142 octets] - [12/12/2013 17:39:12] AdwCleaner[R1].txt - [11981 octets] - [12/12/2013 17:48:02] ########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [12042 octets] ########## ich hoffe dieses hilft euch mir zu helfen  im voraus schon mal danke für die hilfe |
|
12.12.2013, 18:28
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Bluescreen bei entfernen von 3 Programmen Hallo und
__________________ Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
12.12.2013, 18:39
| #3 |
| | Bluescreen bei entfernen von 3 Programmen FRST.txt
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-12-2013
Ran by Chris (administrator) on CHRIS-PC on 12-12-2013 18:36:59
Running from C:\Users\Chris\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Microsoft Corporation) C:\Windows\System32\audiodg.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
( ) C:\Windows\System32\lxcccoms.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccsvchst.exe
(NVIDIA) C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccsvchst.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AutoIt Team) C:\Users\Chris\vwerh\WY.exe
(AutoIt Team) C:\Users\Chris\keilk\OGsYm.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v2.0.50727\RegSvcs.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Farbar) C:\Users\Chris\Downloads\FRST64(1).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2273056 2013-11-29] (NVIDIA Corporation)
HKLM\...\Run: [LXCCCATS] - rundll32 C:\Windows\system32\spool\DRIVERS\x64\3\LXCCtime.dll,RunDLLEntry
HKLM\...\Policies\Explorer\Run: [Mediahost] - C:\Users\Chris\AppData\Roaming\dwm.exe No File
HKCU\...\Run: [EADM] - C:\Program Files (x86)\Origin\Origin.exe [3551576 2013-11-20] (Electronic Arts)
HKCU\...\Run: [NVIDIA nTune] - "C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
HKCU\...\RunOnce: [vwerh] - C:\Users\Chris\vwerh\81073.vbs [188 2013-12-10] ()
HKCU\...\RunOnce: [keilk] - C:\Users\Chris\keilk\96730.vbs [188 2013-12-11] ()
MountPoints2: {d596283f-2b8f-11e3-9c54-20cf307cb345} - G:\AutoRun.exe
HKLM-x32\...\Run: [HDAudDeck] - C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2770432 2010-02-10] (VIA)
HKLM-x32\...\Run: [Turbo Key] - C:\Program Files (x86)\ASUS\Turbo Key\TurboKey.exe [1874432 2009-11-24] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
AppInit_DLLs: c:\progra~2\movies~1\safety~1\x64\safety~2.dll [ ] ()
AppInit_DLLs-x32: c:\progra~2\movies~1\safety~1\safety~2.dll [ ] ()
IFEO\bitguard.exe: [Debugger] tasklist.exe
IFEO\bprotect.exe: [Debugger] tasklist.exe
IFEO\browsemngr.exe: [Debugger] tasklist.exe
IFEO\browserdefender.exe: [Debugger] tasklist.exe
IFEO\browsermngr.exe: [Debugger] tasklist.exe
IFEO\browserprotect.exe: [Debugger] tasklist.exe
IFEO\bundlesweetimsetup.exe: [Debugger] tasklist.exe
IFEO\cltmngsvc.exe: [Debugger] tasklist.exe
IFEO\delta babylon.exe: [Debugger] tasklist.exe
IFEO\delta tb.exe: [Debugger] tasklist.exe
IFEO\delta2.exe: [Debugger] tasklist.exe
IFEO\deltainstaller.exe: [Debugger] tasklist.exe
IFEO\deltasetup.exe: [Debugger] tasklist.exe
IFEO\deltatb.exe: [Debugger] tasklist.exe
IFEO\deltatb_2501-c733154b.exe: [Debugger] tasklist.exe
IFEO\iminentsetup.exe: [Debugger] tasklist.exe
IFEO\rjatydimofu.exe: [Debugger] tasklist.exe
IFEO\sweetimsetup.exe: [Debugger] tasklist.exe
IFEO\tbdelta.exetoolbar783881609.exe: [Debugger] tasklist.exe
Startup: C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\start.lnk
ShortcutTarget: start.lnk -> C:\Users\Chris\vwerh\81073.vbs ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xD9E403932DBCCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://aartemis.com/?type=hp&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.aartemis.com/web/?type=ds&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.aartemis.com/web/?type=ds&ts=1386757194&from=vit&uid=SAMSUNGXHD161GJ_S14DJ90Z557148&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=Somoto&dpid=Somoto&co=DE&userid=9872fa70-10e1-9ffb-0ec7-62bf7f3089c1&searchtype=ds&q={searchTerms}&installDate=18/10/2013
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=Somoto&dpid=Somoto&co=DE&userid=9872fa70-10e1-9ffb-0ec7-62bf7f3089c1&searchtype=ds&q={searchTerms}&installDate=18/10/2013
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\coieplg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ips\ipsbho.dll (Symantec Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 11 %windir%\system32\vsocklib.dll File Not found ()
Winsock: Catalog9 12 %windir%\system32\vsocklib.dll File Not found ()
Winsock: Catalog9 13 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll File Not found ()
Winsock: Catalog9 14 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll File Not found ()
Winsock: Catalog9 15 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll File Not found ()
Winsock: Catalog9 16 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll File Not found ()
Winsock: Catalog9 17 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll File Not found ()
Winsock: Catalog9 18 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll File Not found ()
Winsock: Catalog9 19 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll File Not found ()
Winsock: Catalog9 20 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll File Not found ()
Winsock: Catalog9 21 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda.dll File Not found ()
Winsock: Catalog9-x64 11 %windir%\system32\vsocklib.dll File Not found ()
Winsock: Catalog9-x64 12 %windir%\system32\vsocklib.dll File Not found ()
Winsock: Catalog9-x64 13 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll File Not found ()
Winsock: Catalog9-x64 14 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll File Not found ()
Winsock: Catalog9-x64 15 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll File Not found ()
Winsock: Catalog9-x64 16 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll File Not found ()
Winsock: Catalog9-x64 17 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll File Not found ()
Winsock: Catalog9-x64 18 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll File Not found ()
Winsock: Catalog9-x64 19 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll File Not found ()
Winsock: Catalog9-x64 20 C:\Program Files (x86)\Avira\AntiVir Desktop\avsda64.dll File Not found ()
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\udvcsltt.default-1386763778493
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Chris\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Chris\AppData\Local\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Extension: Adblock Plus - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\udvcsltt.default-1386763778493\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\coFFPlgn\
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\IPSFF
FF HKLM-x32\...\Firefox\Extensions: [OKitSpace@OKitSpace.es] - C:\Users\Chris\AppData\Roaming\okitSpace\Firefox
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
==================== Services (Whitelisted) =================
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [90112 2009-08-19] (ASUSTeK Computer Inc.)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-09-19] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-09-19] (BlueStack Systems, Inc.)
R2 lxcc_device; C:\Windows\system32\lxcccoms.exe [566704 2007-03-26] ( )
R2 lxcc_device; C:\Windows\SysWow64\lxcccoms.exe [537520 2007-03-26] ( )
R2 N360; C:\Program Files (x86)\Norton 360\Engine\20.4.0.40\ccSvcHst.exe [144368 2013-05-21] (Symantec Corporation)
R2 nTuneService; C:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [180224 2007-09-04] (NVIDIA)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1370912 2013-11-29] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15128352 2013-11-29] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-10-10] ()
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-17] ()
S4 TGCM_ImportWiFiSvc; C:\Program Files (x86)\o2\Mobile Connection Manager\ImpWiFiSvc.exe [199600 2010-11-11] (Telefónica I+D)
S3 aspnet_state; %SystemRoot%\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [x]
S4 NetMsmqActivator; "%SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe" -NetMsmqActivator [x]
S4 NetPipeActivator; %SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [x]
S4 NetTcpActivator; %SystemRoot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [x]
==================== Drivers (Whitelisted) ====================
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20131203.001\BHDrvx64.sys [1526488 2013-12-03] (Symantec Corporation)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-09-19] (BlueStack Systems)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1404000.028\ccSetx64.sys [169048 2013-04-16] (Symantec Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-10-03] (DT Soft Ltd)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2013-12-10] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2013-12-10] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20131210.001\IDSvia64.sys [521816 2013-12-07] (Symantec Corporation)
S3 massfilter_hs; C:\Windows\System32\drivers\massfilter_hs.sys [12800 2009-02-03] (ZTE Incorporated)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-17] ()
R3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20131211.032\ENG64.SYS [126040 2013-12-10] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20131211.032\EX64.SYS [2099288 2013-12-10] (Symantec Corporation)
R3 NVR0Dev; C:\Windows\nvoclk64.sys [39968 2007-09-04] (NVidia Corp.)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-10-30] (NVIDIA Corporation)
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1404000.028\SRTSP64.SYS [796760 2013-05-16] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1404000.028\SRTSPX64.SYS [36952 2013-03-05] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360x64\1404000.028\SYMDS64.SYS [493656 2013-05-21] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360x64\1404000.028\SYMEFA64.SYS [1139800 2013-05-23] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177312 2013-12-11] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1404000.028\Ironx64.SYS [224416 2013-03-05] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1404000.028\SYMNETS.SYS [433752 2013-04-25] (Symantec Corporation)
S2 TBPanel; No ImagePath
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-12 18:36 - 2013-12-12 18:36 - 01927106 _____ (Farbar) C:\Users\Chris\Downloads\FRST64(1).exe
2013-12-12 18:23 - 2013-12-12 18:37 - 00017142 _____ C:\Users\Chris\Downloads\FRST.txt
2013-12-12 18:23 - 2013-12-12 18:23 - 00000784 _____ C:\Users\Chris\Downloads\Addition.txt
2013-12-12 18:23 - 2013-12-12 18:23 - 00000000 ____D C:\FRST
2013-12-12 18:22 - 2013-12-12 18:23 - 01927106 _____ (Farbar) C:\Users\Chris\Downloads\FRST64.exe
2013-12-12 18:16 - 2013-12-12 18:16 - 00001077 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2013-12-12 18:16 - 2013-12-12 18:16 - 00000000 ____D C:\Users\Chris\AppData\Local\VS Revo Group
2013-12-12 18:16 - 2013-12-12 18:16 - 00000000 ____D C:\ProgramData\VS Revo Group
2013-12-12 18:16 - 2013-12-12 18:16 - 00000000 ____D C:\Program Files\VS Revo Group
2013-12-12 18:16 - 2009-12-30 11:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2013-12-12 18:14 - 2013-12-12 18:14 - 10031224 _____ (VS Revo Group ) C:\Users\Chris\Downloads\RevoUninProSetup.exe
2013-12-12 18:08 - 2013-12-12 18:08 - 00000000 __SHD C:\Windows\SysWOW64\{$1284-9213-2940-1289$}
2013-12-12 17:59 - 2013-12-12 17:59 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-12 17:59 - 2013-12-12 17:59 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Malwarebytes
2013-12-12 17:59 - 2013-12-12 17:59 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-12 17:59 - 2013-12-12 17:59 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-12 17:59 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-12 17:39 - 2013-12-12 17:48 - 00000000 ____D C:\AdwCleaner
2013-12-12 17:39 - 2013-12-12 17:45 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-12 17:38 - 2013-12-12 17:38 - 01226802 _____ C:\Users\Chris\Downloads\adwcleaner.exe
2013-12-12 15:41 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-12 15:41 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-12 15:41 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-12 15:41 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-12 15:41 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-12 15:41 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-12 15:41 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-12 15:41 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-12 15:41 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-12 15:41 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-12 15:41 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-12 15:41 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-12 15:41 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-12 15:41 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-12 15:41 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-12 15:41 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-12 15:41 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-12 15:41 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-12 15:41 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-12 15:41 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-12 15:41 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-12 15:41 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-12 15:41 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-12 15:41 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-12 15:41 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-12 15:41 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-12 15:41 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-12 15:41 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-12 15:40 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-12 15:40 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-12 15:40 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-12 15:38 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-12 15:38 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-12 15:38 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-12 15:38 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-12 15:38 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-12 15:38 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-12 15:38 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-12 15:38 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-12 15:38 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-12 15:38 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-12 15:38 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-12 15:38 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-12 15:38 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-12 15:38 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-12 15:38 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-12 15:32 - 2013-12-12 17:41 - 484285192 _____ C:\Windows\MEMORY.DMP
2013-12-11 16:52 - 2013-12-11 16:53 - 00000000 _RSHD C:\Users\Chris\keilk
2013-12-11 12:26 - 2013-12-11 12:26 - 00000000 ____D C:\Windows\System32\Tasks\Norton 360
2013-12-11 11:35 - 2007-03-26 07:50 - 00233392 _____ ( ) C:\Windows\system32\lxccih.exe
2013-12-11 11:35 - 2007-03-26 07:49 - 00566704 _____ ( ) C:\Windows\system32\lxcccoms.exe
2013-12-11 11:35 - 2007-03-26 07:49 - 00537520 _____ ( ) C:\Windows\SysWOW64\lxcccoms.exe
2013-12-11 11:35 - 2007-03-26 07:49 - 00385968 _____ ( ) C:\Windows\SysWOW64\lxccih.exe
2013-12-11 11:35 - 2007-03-26 07:49 - 00381872 _____ ( ) C:\Windows\SysWOW64\lxcccfg.exe
2013-12-11 11:35 - 2007-03-26 07:49 - 00236464 _____ ( ) C:\Windows\system32\lxcccfg.exe
2013-12-11 11:35 - 2007-03-26 07:49 - 00181168 _____ ( ) C:\Windows\SysWOW64\lxccppls.exe
2013-12-11 11:35 - 2007-03-26 07:44 - 00002148 _____ C:\Windows\SysWOW64\lxcc.loc
2013-12-11 11:35 - 2007-03-26 07:44 - 00002148 _____ C:\Windows\system32\lxcc.loc
2013-12-11 11:35 - 2007-03-23 09:07 - 00216576 _____ (Lexmark International, Inc.) C:\Windows\system32\lxccins.dll
2013-12-11 11:35 - 2007-03-23 09:07 - 00183808 _____ (Lexmark International, Inc.) C:\Windows\system32\lxccinsb.dll
2013-12-11 11:35 - 2007-03-23 09:07 - 00095744 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcccu.dll
2013-12-11 11:35 - 2007-03-23 09:07 - 00067584 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcccub.dll
2013-12-11 11:35 - 2007-03-23 09:06 - 00628224 _____ (Lexmark International, Inc.) C:\Windows\system32\lxccutil.dll
2013-12-11 11:35 - 2007-03-23 09:05 - 00200704 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxccinsb.dll
2013-12-11 11:35 - 2007-03-23 09:05 - 00155648 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxccins.dll
2013-12-11 11:35 - 2007-03-23 09:05 - 00086016 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcccub.dll
2013-12-11 11:35 - 2007-03-23 09:05 - 00073728 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcccu.dll
2013-12-11 11:35 - 2007-03-23 09:03 - 00446464 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxccutil.dll
2013-12-11 11:35 - 2007-03-19 04:51 - 00096768 _____ (Lexmark International, Inc.) C:\Windows\system32\lxccinsr.dll
2013-12-11 11:35 - 2007-03-19 04:51 - 00023040 _____ (Lexmark International, Inc.) C:\Windows\system32\lxcccur.dll
2013-12-11 11:35 - 2007-03-19 04:50 - 00131072 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxccjswr.dll
2013-12-11 11:35 - 2007-03-19 04:50 - 00116736 _____ (Lexmark International, Inc.) C:\Windows\system32\lxccjswr.dll
2013-12-11 11:35 - 2007-03-19 04:50 - 00114688 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxccinsr.dll
2013-12-11 11:35 - 2007-03-19 04:50 - 00036864 _____ (Lexmark International, Inc.) C:\Windows\SysWOW64\lxcccur.dll
2013-12-11 11:35 - 2007-02-07 03:18 - 00385024 _____ () C:\Windows\SysWOW64\lxcccomx.dll
2013-12-11 11:35 - 2007-01-30 11:54 - 00410112 _____ ( ) C:\Windows\system32\lxccpmui.dll
2013-12-11 11:35 - 2007-01-30 11:51 - 01418240 _____ ( ) C:\Windows\system32\lxccserv.dll
2013-12-11 11:35 - 2007-01-30 11:42 - 00249856 _____ ( ) C:\Windows\system32\lxcccomm.dll
2013-12-11 11:35 - 2007-01-30 11:38 - 00488448 _____ ( ) C:\Windows\system32\lxcclmpm.dll
2013-12-11 11:35 - 2007-01-30 11:36 - 00194048 _____ C:\Windows\system32\lxccinst.dll
2013-12-11 11:35 - 2007-01-30 11:35 - 00226816 _____ ( ) C:\Windows\system32\lxcciesc.dll
2013-12-11 11:35 - 2007-01-30 11:33 - 00010752 _____ ( ) C:\Windows\system32\lxccpplc.dll
2013-12-11 11:35 - 2007-01-30 11:31 - 00696320 _____ ( ) C:\Windows\system32\lxcccomc.dll
2013-12-11 11:35 - 2007-01-30 11:30 - 00035328 _____ ( ) C:\Windows\system32\lxccprox.dll
2013-12-11 11:35 - 2007-01-30 11:20 - 00238592 _____ ( ) C:\Windows\system32\lxccinpa.dll
2013-12-11 11:35 - 2007-01-30 11:19 - 01099776 _____ ( ) C:\Windows\system32\lxccusb1.dll
2013-12-11 11:35 - 2007-01-30 11:12 - 00305664 _____ ( ) C:\Windows\system32\lxcchcp.dll
2013-12-11 11:35 - 2007-01-30 11:10 - 00660480 _____ ( ) C:\Windows\system32\lxcchbn3.dll
2013-12-11 11:35 - 2007-01-30 10:47 - 00643072 _____ ( ) C:\Windows\SysWOW64\lxccpmui.dll
2013-12-11 11:35 - 2007-01-30 10:46 - 01224704 _____ ( ) C:\Windows\SysWOW64\lxccserv.dll
2013-12-11 11:35 - 2007-01-30 10:38 - 00421888 _____ ( ) C:\Windows\SysWOW64\lxcccomm.dll
2013-12-11 11:35 - 2007-01-30 10:36 - 00585728 _____ ( ) C:\Windows\SysWOW64\lxcclmpm.dll
2013-12-11 11:35 - 2007-01-30 10:35 - 00397312 _____ ( ) C:\Windows\SysWOW64\lxcciesc.dll
2013-12-11 11:35 - 2007-01-30 10:35 - 00274432 _____ C:\Windows\SysWOW64\lxccinst.dll
2013-12-11 11:35 - 2007-01-30 10:32 - 00094208 _____ ( ) C:\Windows\SysWOW64\lxccpplc.dll
2013-12-11 11:35 - 2007-01-30 10:31 - 00684032 _____ ( ) C:\Windows\SysWOW64\lxcccomc.dll
2013-12-11 11:35 - 2007-01-30 10:30 - 00163840 _____ ( ) C:\Windows\SysWOW64\lxccprox.dll
2013-12-11 11:35 - 2007-01-30 10:22 - 00413696 _____ ( ) C:\Windows\SysWOW64\lxccinpa.dll
2013-12-11 11:35 - 2007-01-30 10:21 - 00995328 _____ ( ) C:\Windows\SysWOW64\lxccusb1.dll
2013-12-11 11:35 - 2007-01-30 10:17 - 00696320 _____ ( ) C:\Windows\SysWOW64\lxcchbn3.dll
2013-12-11 11:35 - 2007-01-22 03:20 - 00069632 _____ (Lexmark International) C:\Windows\SysWOW64\lxcccfg.dll
2013-12-11 11:35 - 2005-12-12 06:08 - 00983092 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lxccgf.dll
2013-12-11 11:35 - 2005-12-12 06:08 - 00983092 _____ (Microsoft Corporation) C:\Windows\system32\lxccgf.dll
2013-12-11 11:21 - 2013-12-12 18:07 - 00000000 ____D C:\ProgramData\WPM
2013-12-11 11:15 - 2013-12-11 11:36 - 00004883 _____ C:\Windows\system32\LexFiles.ulf
2013-12-11 11:15 - 2013-12-11 11:18 - 00000000 ____D C:\Lexmark
2013-12-11 11:15 - 2013-12-11 11:15 - 00001218 _____ C:\lxccinst.csv
2013-12-11 11:15 - 2013-12-11 11:15 - 00000278 _____ C:\LXCCfire.csv
2013-12-11 11:15 - 2013-12-11 11:15 - 00000000 ____D C:\Program Files\Lexmark 3300 Series
2013-12-11 11:15 - 2013-12-11 11:15 - 00000000 ____D C:\Program Files (x86)\Lexmark 3300 Series
2013-12-11 09:36 - 2013-12-12 18:07 - 00029322 _____ C:\Windows\PFRO.log
2013-12-10 22:05 - 2013-12-12 18:29 - 00012432 _____ C:\Windows\setupact.log
2013-12-10 22:05 - 2013-12-10 22:05 - 00000000 _____ C:\Windows\setuperr.log
2013-12-10 21:15 - 2013-12-10 21:15 - 00003108 _____ C:\Windows\System32\Tasks\{DE9D38B2-FE08-4D8D-AD67-429F8414B395}
2013-12-10 21:10 - 2013-12-11 12:21 - 00003206 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2013-12-10 21:10 - 2013-12-11 10:02 - 00177312 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2013-12-10 21:10 - 2013-12-11 10:02 - 00007631 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2013-12-10 21:10 - 2013-12-10 21:10 - 00000000 ____D C:\Program Files\Symantec
2013-12-10 21:10 - 2013-12-10 21:10 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2013-12-10 21:09 - 2013-12-11 12:21 - 00000000 ____D C:\Windows\system32\Drivers\N360x64
2013-12-10 21:09 - 2013-12-10 21:09 - 00000000 ____D C:\Program Files (x86)\Norton 360
2013-12-10 00:11 - 2013-12-10 00:12 - 00000000 _RSHD C:\Users\Chris\vwerh
2013-12-09 20:24 - 2013-12-10 11:12 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Curse Advertising
2013-12-09 20:23 - 2013-12-10 20:54 - 00000000 ____D C:\Users\Chris\AppData\Local\Deployment
2013-12-09 20:23 - 2013-12-09 20:23 - 00000000 ____D C:\Users\Chris\AppData\Local\Apps\2.0
2013-12-09 15:35 - 2013-12-11 12:52 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2013-12-09 15:35 - 2013-12-09 15:35 - 00001260 _____ C:\Users\Public\Desktop\World of Warcraft.lnk
2013-12-03 22:22 - 2013-12-03 22:22 - 00000000 ____D C:\Users\Chris\Documents\Diablo III
2013-12-03 21:55 - 2013-12-03 22:22 - 00000000 ____D C:\Program Files (x86)\Diablo III
2013-12-03 21:55 - 2013-12-03 21:56 - 00001162 _____ C:\Users\Public\Desktop\Diablo III.lnk
2013-12-03 14:40 - 2013-10-30 18:03 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-12-03 14:40 - 2013-10-30 18:02 - 00032544 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-12-02 12:41 - 2013-12-02 12:41 - 00004249 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-12-02 12:41 - 2013-12-02 12:41 - 00000000 ____D C:\ProgramData\Oracle
2013-12-02 12:41 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-12-02 12:41 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-12-02 12:41 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-12-02 12:41 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-11-30 17:25 - 2013-11-30 17:25 - 00000000 ____D C:\Users\Chris\AppData\Local\Blizzard Entertainment
2013-11-30 00:20 - 2013-11-30 12:08 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Software Informer
2013-11-30 00:20 - 2013-11-30 00:20 - 00000000 ____D C:\ProgramData\Informer Technologies, Inc
2013-11-28 17:08 - 2013-11-28 18:40 - 00000000 ____D C:\Users\Chris\AppData\Local\ESN Sonar
2013-11-28 14:34 - 2013-11-23 20:26 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 12613920 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-28 14:34 - 2013-11-23 20:26 - 11566648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 11441664 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 09663656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433193.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433193.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-11-28 14:34 - 2013-11-23 20:26 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-11-23 12:18 - 2013-11-23 12:18 - 00590112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-23 00:03 - 2013-11-23 00:03 - 00000000 ____D C:\Users\Chris\AppData\Local\EMU
2013-11-22 23:58 - 2013-12-12 18:30 - 00000000 ____D C:\Windows\Minidump
2013-11-22 23:57 - 2013-11-22 23:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-11-22 23:57 - 2013-11-22 23:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-11-22 23:33 - 2013-11-22 23:33 - 00000923 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-11-22 23:33 - 2013-11-22 23:33 - 00000000 ____D C:\Users\Chris\AppData\Roaming\MotioninJoy
2013-11-22 23:33 - 2013-11-22 23:33 - 00000000 ____D C:\Program Files\MotioninJoy
2013-11-22 23:33 - 2012-05-12 12:31 - 00121416 _____ (MotioninJoy) C:\Windows\system32\Drivers\MijXfilt.sys
2013-11-22 23:33 - 2011-12-07 19:42 - 00328712 _____ (Logitech Inc.) C:\Windows\system32\MijFrc.dll
2013-11-22 23:33 - 2011-12-07 19:42 - 00074960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\xusb21.sys
2013-11-21 08:31 - 2013-11-21 23:50 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-11-21 08:31 - 2013-11-21 08:31 - 00000000 ____D C:\Users\Chris\AppData\Local\SplitMediaLabs
2013-11-21 08:31 - 2013-11-21 08:31 - 00000000 ____D C:\ProgramData\SplitMediaLabs
2013-11-21 08:30 - 2013-11-21 08:30 - 00000000 ____D C:\Users\Chris\AppData\Roaming\SplitMediaLabs
2013-11-21 05:54 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-21 05:54 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-21 05:54 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-21 05:54 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-21 05:54 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-21 05:54 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-20 18:20 - 2013-11-23 02:18 - 00000000 ____D C:\Users\Chris\Documents\Ghost Games
2013-11-20 18:03 - 2013-12-11 14:04 - 00000000 ____D C:\Program Files (x86)\Need for Speed Rivals
2013-11-20 02:27 - 2007-07-03 15:41 - 01524736 _____ (Microsoft Corporation) C:\Windows\system32\MFC71.dll
2013-11-20 02:27 - 2007-07-03 15:41 - 00978944 _____ (Microsoft Corporation) C:\Windows\system32\msvcp71.dll
2013-11-20 02:27 - 2007-07-03 15:41 - 00520192 _____ (Microsoft Corporation) C:\Windows\system32\msvcr71.dll
2013-11-20 02:27 - 2007-06-25 21:21 - 02065920 _____ (NVIDIA Corporation) C:\Windows\system32\nvcplUI.exe
2013-11-20 02:27 - 2007-06-25 21:21 - 01064448 _____ (NVIDIA Corporation) C:\Windows\system32\nvcplUIR.dll
2013-11-20 02:27 - 2007-06-25 21:21 - 00403456 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.cpl
2013-11-20 02:27 - 2007-06-25 21:21 - 00381952 _____ (NVIDIA Corporation) C:\Windows\system32\nvexpBar.dll
2013-11-19 20:50 - 2013-11-14 12:56 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-19 20:50 - 2013-11-14 12:56 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-19 14:33 - 2013-11-19 14:33 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-11-19 14:33 - 2013-11-19 14:33 - 00000000 ____D C:\Program Files\CCleaner
2013-11-19 14:15 - 2013-11-19 14:15 - 00000256 _____ C:\lxcc.log
2013-11-18 15:05 - 2013-11-18 15:05 - 00000000 ____D C:\Program Files\Realmware
2013-11-16 19:18 - 2013-11-16 19:18 - 00000000 ____D C:\Users\Chris\AppData\Roaming\pokerth
2013-11-16 19:18 - 2013-11-16 19:18 - 00000000 ____D C:\Program Files (x86)\PokerTH-1.1-beta3
2013-11-16 00:41 - 2013-12-12 18:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-15 09:57 - 2013-11-15 09:57 - 00000000 ____D C:\Users\Chris\Documents\4A Games
2013-11-15 09:13 - 2013-11-15 09:13 - 00000000 ____D C:\Users\Chris\AppData\Local\4A Games
2013-11-15 09:04 - 2013-12-03 21:32 - 00000000 ____D C:\Program Files (x86)\Deep Silver
2013-11-14 18:50 - 2013-11-14 18:50 - 00003084 _____ C:\Windows\System32\Tasks\{6AA16182-BFE4-42C2-9F68-E533D8F1F3DB}
2013-11-13 20:07 - 2013-11-30 12:24 - 00000000 ____D C:\Users\Chris\Documents\Assassin's Creed IV Black Flag
2013-11-13 12:27 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 12:27 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 12:26 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 12:26 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 12:26 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 12:26 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 12:26 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 12:26 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 12:26 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 12:26 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 12:26 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 12:26 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 12:26 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 12:26 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 12:26 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 12:26 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 12:26 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 12:26 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 12:26 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 12:26 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 12:26 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 12:26 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 12:26 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 12:26 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 01:19 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-13 01:16 - 2013-11-13 01:16 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-13 01:16 - 2013-11-13 01:16 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-13 01:16 - 2013-11-13 01:16 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-13 01:16 - 2013-11-13 01:16 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-13 01:16 - 2013-11-13 01:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-13 01:16 - 2013-11-13 01:16 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-13 01:16 - 2013-11-13 01:16 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-12 23:22 - 2013-11-12 23:22 - 00000000 ____D C:\Program Files (x86)\dumps
2013-11-12 23:21 - 2013-12-12 18:29 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-12 15:00 - 2013-11-15 09:46 - 00000000 ____D C:\ProgramData\Steam
==================== One Month Modified Files and Folders =======
2013-12-12 18:37 - 2013-12-12 18:23 - 00017142 _____ C:\Users\Chris\Downloads\FRST.txt
2013-12-12 18:36 - 2013-12-12 18:36 - 01927106 _____ (Farbar) C:\Users\Chris\Downloads\FRST64(1).exe
2013-12-12 18:30 - 2013-11-22 23:58 - 00000000 ____D C:\Windows\Minidump
2013-12-12 18:29 - 2013-12-10 22:05 - 00012432 _____ C:\Windows\setupact.log
2013-12-12 18:29 - 2013-11-16 00:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-12 18:29 - 2013-11-12 23:21 - 00000000 ____D C:\Program Files (x86)\Steam
2013-12-12 18:23 - 2013-12-12 18:23 - 00000784 _____ C:\Users\Chris\Downloads\Addition.txt
2013-12-12 18:23 - 2013-12-12 18:23 - 00000000 ____D C:\FRST
2013-12-12 18:23 - 2013-12-12 18:22 - 01927106 _____ (Farbar) C:\Users\Chris\Downloads\FRST64.exe
2013-12-12 18:16 - 2013-12-12 18:16 - 00001077 _____ C:\Users\Public\Desktop\Revo Uninstaller Pro.lnk
2013-12-12 18:16 - 2013-12-12 18:16 - 00000000 ____D C:\Users\Chris\AppData\Local\VS Revo Group
2013-12-12 18:16 - 2013-12-12 18:16 - 00000000 ____D C:\ProgramData\VS Revo Group
2013-12-12 18:16 - 2013-12-12 18:16 - 00000000 ____D C:\Program Files\VS Revo Group
2013-12-12 18:15 - 2009-07-14 05:45 - 00014928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-12 18:15 - 2009-07-14 05:45 - 00014928 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-12 18:14 - 2013-12-12 18:14 - 10031224 _____ (VS Revo Group ) C:\Users\Chris\Downloads\RevoUninProSetup.exe
2013-12-12 18:13 - 2013-09-28 09:59 - 01740232 _____ C:\Windows\WindowsUpdate.log
2013-12-12 18:08 - 2013-12-12 18:08 - 00000000 __SHD C:\Windows\SysWOW64\{$1284-9213-2940-1289$}
2013-12-12 18:07 - 2013-12-11 11:21 - 00000000 ____D C:\ProgramData\WPM
2013-12-12 18:07 - 2013-12-11 09:36 - 00029322 _____ C:\Windows\PFRO.log
2013-12-12 18:07 - 2013-09-28 11:14 - 00000000 ____D C:\Program Files (x86)\Origin
2013-12-12 18:07 - 2013-09-28 10:24 - 00000000 ____D C:\ProgramData\NVIDIA
2013-12-12 18:07 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-12 18:06 - 2013-10-03 00:08 - 00000000 ____D C:\ProgramData\Conduit
2013-12-12 18:03 - 2013-10-08 23:23 - 00000000 ____D C:\Users\Chris\AppData\Roaming\MSoft
2013-12-12 17:59 - 2013-12-12 17:59 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-12 17:59 - 2013-12-12 17:59 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Malwarebytes
2013-12-12 17:59 - 2013-12-12 17:59 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-12 17:59 - 2013-12-12 17:59 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-12 17:57 - 2013-10-25 12:46 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3919549038-3600163271-2148911538-1001UA.job
2013-12-12 17:48 - 2013-12-12 17:39 - 00000000 ____D C:\AdwCleaner
2013-12-12 17:45 - 2013-12-12 17:39 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Chris\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-12 17:45 - 2013-09-28 10:38 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-12 17:41 - 2013-12-12 15:32 - 484285192 _____ C:\Windows\MEMORY.DMP
2013-12-12 17:38 - 2013-12-12 17:38 - 01226802 _____ C:\Users\Chris\Downloads\adwcleaner.exe
2013-12-12 16:32 - 2013-09-28 10:55 - 00000000 ____D C:\Windows\Panther
2013-12-12 16:32 - 2009-07-14 18:58 - 00620498 _____ C:\Windows\system32\perfh007.dat
2013-12-12 16:32 - 2009-07-14 18:58 - 00123918 _____ C:\Windows\system32\perfc007.dat
2013-12-12 16:31 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-12-12 16:17 - 2013-10-03 16:48 - 00000000 ____D C:\Users\Chris\AppData\Local\CrashDumps
2013-12-12 16:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2013-12-12 16:02 - 2013-09-28 10:56 - 01540420 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-12-12 15:52 - 2009-07-14 06:13 - 01651750 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-12 15:46 - 2009-07-14 05:45 - 00275856 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-12 15:40 - 2013-09-29 10:43 - 00000000 ____D C:\Windows\system32\MRT
2013-12-12 15:39 - 2013-09-29 10:43 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-12 13:37 - 2013-10-02 14:16 - 00000000 ____D C:\Users\Chris\AppData\Roaming\vlc
2013-12-12 10:57 - 2013-10-25 12:46 - 00001068 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3919549038-3600163271-2148911538-1001Core.job
2013-12-11 23:36 - 2013-10-30 20:24 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-12-11 16:57 - 2013-10-30 20:24 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-12-11 16:53 - 2013-12-11 16:52 - 00000000 _RSHD C:\Users\Chris\keilk
2013-12-11 16:53 - 2013-09-28 10:06 - 00000000 ___RD C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-11 16:52 - 2013-09-28 10:06 - 00000000 ____D C:\Users\Chris
2013-12-11 15:52 - 2013-09-28 12:35 - 00000000 ____D C:\Users\Chris\AppData\Roaming\TS3Client
2013-12-11 14:04 - 2013-11-20 18:03 - 00000000 ____D C:\Program Files (x86)\Need for Speed Rivals
2013-12-11 12:52 - 2013-12-09 15:35 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2013-12-11 12:26 - 2013-12-11 12:26 - 00000000 ____D C:\Windows\System32\Tasks\Norton 360
2013-12-11 12:21 - 2013-12-10 21:10 - 00003206 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2013-12-11 12:21 - 2013-12-10 21:09 - 00000000 ____D C:\Windows\system32\Drivers\N360x64
2013-12-11 11:48 - 2013-11-03 12:48 - 00000000 ____D C:\Program Files\Lx_cats
2013-12-11 11:36 - 2013-12-11 11:15 - 00004883 _____ C:\Windows\system32\LexFiles.ulf
2013-12-11 11:21 - 2013-10-18 16:15 - 00001338 _____ C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2013-12-11 11:21 - 2013-09-28 10:34 - 00001325 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-11 11:21 - 2013-09-28 10:06 - 00001611 _____ C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-11 11:18 - 2013-12-11 11:15 - 00000000 ____D C:\Lexmark
2013-12-11 11:15 - 2013-12-11 11:15 - 00001218 _____ C:\lxccinst.csv
2013-12-11 11:15 - 2013-12-11 11:15 - 00000278 _____ C:\LXCCfire.csv
2013-12-11 11:15 - 2013-12-11 11:15 - 00000000 ____D C:\Program Files\Lexmark 3300 Series
2013-12-11 11:15 - 2013-12-11 11:15 - 00000000 ____D C:\Program Files (x86)\Lexmark 3300 Series
2013-12-11 10:02 - 2013-12-10 21:10 - 00177312 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2013-12-11 10:02 - 2013-12-10 21:10 - 00007631 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2013-12-10 22:05 - 2013-12-10 22:05 - 00000000 _____ C:\Windows\setuperr.log
2013-12-10 21:17 - 2013-10-03 00:07 - 00000000 ____D C:\Users\Chris\AppData\Roaming\DAEMON Tools Lite
2013-12-10 21:15 - 2013-12-10 21:15 - 00003108 _____ C:\Windows\System32\Tasks\{DE9D38B2-FE08-4D8D-AD67-429F8414B395}
2013-12-10 21:11 - 2013-09-28 10:13 - 00000000 ____D C:\ProgramData\Norton
2013-12-10 21:10 - 2013-12-10 21:10 - 00000000 ____D C:\Program Files\Symantec
2013-12-10 21:10 - 2013-12-10 21:10 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2013-12-10 21:09 - 2013-12-10 21:09 - 00000000 ____D C:\Program Files (x86)\Norton 360
2013-12-10 20:55 - 2013-09-28 13:49 - 00000000 ____D C:\Windows\pss
2013-12-10 20:54 - 2013-12-09 20:23 - 00000000 ____D C:\Users\Chris\AppData\Local\Deployment
2013-12-10 11:12 - 2013-12-09 20:24 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Curse Advertising
2013-12-10 00:12 - 2013-12-10 00:11 - 00000000 _RSHD C:\Users\Chris\vwerh
2013-12-09 23:14 - 2013-10-03 00:01 - 00000000 ____D C:\Program Files (x86)\JDownloader
2013-12-09 20:23 - 2013-12-09 20:23 - 00000000 ____D C:\Users\Chris\AppData\Local\Apps\2.0
2013-12-09 15:35 - 2013-12-09 15:35 - 00001260 _____ C:\Users\Public\Desktop\World of Warcraft.lnk
2013-12-09 10:52 - 2013-10-25 12:46 - 00004094 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3919549038-3600163271-2148911538-1001UA
2013-12-09 10:52 - 2013-10-25 12:46 - 00003698 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3919549038-3600163271-2148911538-1001Core
2013-12-03 22:22 - 2013-12-03 22:22 - 00000000 ____D C:\Users\Chris\Documents\Diablo III
2013-12-03 22:22 - 2013-12-03 21:55 - 00000000 ____D C:\Program Files (x86)\Diablo III
2013-12-03 21:56 - 2013-12-03 21:55 - 00001162 _____ C:\Users\Public\Desktop\Diablo III.lnk
2013-12-03 21:32 - 2013-11-15 09:04 - 00000000 ____D C:\Program Files (x86)\Deep Silver
2013-12-03 14:42 - 2013-10-01 13:08 - 00000000 ____D C:\Users\Chris\AppData\Local\NVIDIA Corporation
2013-12-03 14:42 - 2013-09-29 13:27 - 00000000 ____D C:\Users\Chris\AppData\Local\NVIDIA
2013-12-03 14:41 - 2013-09-28 10:24 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-12-03 14:41 - 2013-09-28 10:23 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-12-03 14:41 - 2013-09-28 10:21 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-12-02 12:41 - 2013-12-02 12:41 - 00004249 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-12-02 12:41 - 2013-12-02 12:41 - 00000000 ____D C:\ProgramData\Oracle
2013-12-02 12:41 - 2013-10-03 16:16 - 00000000 ____D C:\Program Files (x86)\Java
2013-11-30 17:25 - 2013-11-30 17:25 - 00000000 ____D C:\Users\Chris\AppData\Local\Blizzard Entertainment
2013-11-30 12:24 - 2013-11-13 20:07 - 00000000 ____D C:\Users\Chris\Documents\Assassin's Creed IV Black Flag
2013-11-30 12:08 - 2013-11-30 00:20 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Software Informer
2013-11-30 00:20 - 2013-11-30 00:20 - 00000000 ____D C:\ProgramData\Informer Technologies, Inc
2013-11-29 18:51 - 2013-10-20 22:57 - 00000000 ____D C:\Program Files (x86)\Ubisoft
2013-11-29 17:56 - 2013-11-01 14:07 - 01096480 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-29 17:56 - 2013-11-01 14:07 - 00979744 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-28 18:40 - 2013-11-28 17:08 - 00000000 ____D C:\Users\Chris\AppData\Local\ESN Sonar
2013-11-28 14:37 - 2013-09-28 12:03 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins
2013-11-26 12:54 - 2013-12-12 15:41 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-26 11:19 - 2013-12-12 15:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-26 11:18 - 2013-12-12 15:41 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-26 11:11 - 2013-12-12 15:40 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-26 10:48 - 2013-12-12 15:41 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-26 10:46 - 2013-12-12 15:41 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-26 10:41 - 2013-12-12 15:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-26 10:29 - 2013-12-12 15:41 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-26 10:27 - 2013-12-12 15:41 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-26 10:23 - 2013-12-12 15:41 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-26 10:21 - 2013-12-12 15:41 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-26 10:18 - 2013-12-12 15:41 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-26 10:18 - 2013-12-12 15:41 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-26 10:16 - 2013-12-12 15:41 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-26 09:57 - 2013-12-12 15:41 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-26 09:38 - 2013-12-12 15:41 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-26 09:38 - 2013-12-12 15:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-26 09:35 - 2013-12-12 15:40 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-26 09:32 - 2013-12-12 15:41 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-26 09:28 - 2013-12-12 15:41 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-26 09:16 - 2013-12-12 15:40 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-26 09:02 - 2013-12-12 15:41 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-26 08:48 - 2013-12-12 15:41 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-26 08:32 - 2013-12-12 15:41 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-26 08:26 - 2013-12-12 15:41 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-26 08:07 - 2013-12-12 15:41 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-26 07:40 - 2013-12-12 15:41 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-26 07:34 - 2013-12-12 15:41 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-26 07:34 - 2013-12-12 15:41 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-26 07:33 - 2013-12-12 15:41 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-26 07:27 - 2013-12-12 15:41 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-24 11:34 - 2013-09-28 10:38 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-24 11:34 - 2013-09-28 10:38 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-24 11:34 - 2013-09-28 10:38 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-24 11:34 - 2013-09-28 10:38 - 00000000 ____D C:\Users\Chris\AppData\Local\Adobe
2013-11-23 20:26 - 2013-11-28 14:34 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 12613920 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-23 20:26 - 2013-11-28 14:34 - 11566648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 11441664 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 09663656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433193.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433193.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-11-23 20:26 - 2013-11-28 14:34 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-11-23 20:26 - 2013-10-08 12:49 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-11-23 20:26 - 2013-10-08 12:49 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-11-23 20:26 - 2013-09-28 10:53 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-11-23 20:26 - 2013-09-28 10:23 - 18293096 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-23 20:26 - 2013-09-28 10:23 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-23 20:26 - 2013-09-28 10:22 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-11-23 20:26 - 2013-09-28 10:22 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-11-23 18:42 - 2010-12-12 22:46 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-11-23 18:42 - 2010-12-12 22:46 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-11-23 18:42 - 2010-12-12 22:46 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-11-23 18:42 - 2010-12-12 22:46 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-11-23 18:42 - 2010-12-12 22:46 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-11-23 18:42 - 2010-12-12 22:46 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-11-23 12:18 - 2013-11-23 12:18 - 00590112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2013-11-23 02:18 - 2013-11-20 18:20 - 00000000 ____D C:\Users\Chris\Documents\Ghost Games
2013-11-23 00:03 - 2013-11-23 00:03 - 00000000 ____D C:\Users\Chris\AppData\Local\EMU
2013-11-22 23:57 - 2013-11-22 23:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2013-11-22 23:57 - 2013-11-22 23:57 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_MijXfilt_01009.Wdf
2013-11-22 23:33 - 2013-11-22 23:33 - 00000923 _____ C:\Users\Public\Desktop\DS3 Tool.lnk
2013-11-22 23:33 - 2013-11-22 23:33 - 00000000 ____D C:\Users\Chris\AppData\Roaming\MotioninJoy
2013-11-22 23:33 - 2013-11-22 23:33 - 00000000 ____D C:\Program Files\MotioninJoy
2013-11-22 22:53 - 2013-09-29 09:54 - 00000000 ____D C:\Users\Chris\Documents\My Games
2013-11-22 21:14 - 2013-09-28 11:33 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-11-22 17:28 - 2013-09-28 10:59 - 03498475 _____ C:\Windows\system32\nvcoproc.bin
2013-11-22 08:41 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-21 23:50 - 2013-11-21 08:31 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-11-21 21:19 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-11-21 08:31 - 2013-11-21 08:31 - 00000000 ____D C:\Users\Chris\AppData\Local\SplitMediaLabs
2013-11-21 08:31 - 2013-11-21 08:31 - 00000000 ____D C:\ProgramData\SplitMediaLabs
2013-11-21 08:30 - 2013-11-21 08:30 - 00000000 ____D C:\Users\Chris\AppData\Roaming\SplitMediaLabs
2013-11-20 02:27 - 2013-09-28 10:10 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-19 20:47 - 2013-10-02 12:27 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-11-19 14:33 - 2013-11-19 14:33 - 00002772 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2013-11-19 14:33 - 2013-11-19 14:33 - 00000000 ____D C:\Program Files\CCleaner
2013-11-19 14:15 - 2013-11-19 14:15 - 00000256 _____ C:\lxcc.log
2013-11-18 15:05 - 2013-11-18 15:05 - 00000000 ____D C:\Program Files\Realmware
2013-11-18 15:05 - 2013-10-10 19:11 - 00000000 ____D C:\Users\Chris\AppData\Roaming\Realmware
2013-11-17 00:09 - 2013-10-30 20:24 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-16 20:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-11-16 19:18 - 2013-11-16 19:18 - 00000000 ____D C:\Users\Chris\AppData\Roaming\pokerth
2013-11-16 19:18 - 2013-11-16 19:18 - 00000000 ____D C:\Program Files (x86)\PokerTH-1.1-beta3
2013-11-16 08:12 - 2013-09-28 10:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-15 09:57 - 2013-11-15 09:57 - 00000000 ____D C:\Users\Chris\Documents\4A Games
2013-11-15 09:46 - 2013-11-12 15:00 - 00000000 ____D C:\ProgramData\Steam
2013-11-15 09:13 - 2013-11-15 09:13 - 00000000 ____D C:\Users\Chris\AppData\Local\4A Games
2013-11-15 07:01 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-14 18:50 - 2013-11-14 18:50 - 00003084 _____ C:\Windows\System32\Tasks\{6AA16182-BFE4-42C2-9F68-E533D8F1F3DB}
2013-11-14 12:56 - 2013-11-19 20:50 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433182.dll
2013-11-14 12:56 - 2013-11-19 20:50 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433182.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-13 01:16 - 2013-11-13 01:16 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-13 01:16 - 2013-11-13 01:16 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-13 01:16 - 2013-11-13 01:16 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-13 01:16 - 2013-11-13 01:16 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-13 01:16 - 2013-11-13 01:16 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-13 01:16 - 2013-11-13 01:16 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-13 01:16 - 2013-11-13 01:16 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-13 01:16 - 2013-11-13 01:16 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-12 23:22 - 2013-11-12 23:22 - 00000000 ____D C:\Program Files (x86)\dumps
2013-11-12 03:23 - 2013-12-12 15:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-11-12 03:07 - 2013-12-12 15:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-10 07:21
==================== End Of Log ============================
[/CODE] Addition.txt Code:
ATTFilter
==================== Memory info ===========================
Percentage of memory in use: 23%
Total physical RAM: 8190.18 MB
Available physical RAM: 6244.22 MB
Total Pagefile: 16378.54 MB
Available Pagefile: 14323.3 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:148.95 GB) (Free:35.79 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 8EC825FC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)
==================== End Of Log ============================
==================== Memory info ===========================
Percentage of memory in use: 25%
Total physical RAM: 8190.18 MB
Available physical RAM: 6125.04 MB
Total Pagefile: 16378.54 MB
Available Pagefile: 14249.86 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:148.95 GB) (Free:35.81 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149 GB) (Disk ID: 8EC825FC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
13.12.2013, 14:34
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bluescreen bei entfernen von 3 Programmen Was ist mit meiner Frage nach bisherigen Funden und falls es welche gab die Logs dazu? Außerdem ist das additions.txt Log unvollständig. Bitte FRST neu runterladen, doppelklicken, Haken bei additions setzen und auf Scan klicken. Das neue additions.txt Log hier wieder posten.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
| Themen zu Bluescreen bei entfernen von 3 Programmen |
| appdata, appdatalow, askbar, bericht, betriebssystem, bluescreen, browser, dateien, desktop, entfernen, gen, google, helper, home, image, internet, launch, microsoft, mozilla, norton, ordner, probleme, programme, registrierungsdatenbank, roaming, speedchecker, suche, taskmanager, tools, windows |
Linear-Darstellung
