Hitchhiker | 30.11.2013 18:22 | okay,dankeschön für die zeit die sie sich nehmen :).hier der erste logfile.
Malwarebytes Anti-Malware (Test) 1.75.0.1300
Malwarebytes : Free anti-malware download
Datenbank Version: v2013.11.30.04
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16428
Levi Grosse :: LEVIGROSSE-PC [Administrator]
Schutz: Aktiviert
30.11.2013 17:11:09
mbam-log-2013-11-30 (17-11-09).txt
Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 234552
Laufzeit: 7 Minute(n), 9 Sekunde(n)
Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)
Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)
Infizierte Registrierungsschlüssel: 4
HKCU\Software\Conduit\FF (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\DEALPLY (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
Infizierte Registrierungswerte: 3
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Daten: {A32E08FA-FCED-11E1-872B-206A8A8AD556} -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\DealPly|ChromeCrxPath (PUP.Optional.DealPly.A) -> Daten: C:\Program Files (x86)\DealPly\DealPly.crx -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Daten: {A32E08FA-FCED-11E1-872B-206A8A8AD556} -> Erfolgreich gelöscht und in Quarantäne gestellt.
Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)
Infizierte Verzeichnisse: 5
C:\Windows\System32\config\systemprofile\AppData\Roaming\DealPly (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows\System32\config\systemprofile\AppData\Roaming\DealPly\UpdateProc (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Levi Grosse\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Levi Grosse\AppData\Roaming\OpenCandy\15F43D30F99747F597774413FB639902 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Levi Grosse\AppData\Roaming\OpenCandy\908751062EF44B72B16CA6E3405F6B86 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
Infizierte Dateien: 4
C:\Windows\System32\config\systemprofile\AppData\Roaming\DealPly\UpdateProc\config.dat (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Windows\System32\config\systemprofile\AppData\Roaming\DealPly\UpdateProc\UpdateTask.exe (PUP.Optional.DealPly.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Levi Grosse\AppData\Roaming\OpenCandy\15F43D30F99747F597774413FB639902\Trial-14.0.1000.89_de-DE_1004733_DE-2.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Levi Grosse\AppData\Roaming\OpenCandy\908751062EF44B72B16CA6E3405F6B86\Setupsft_chr_p1v7.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
(Ende)AdwCleaner Logfile: Code:
# AdwCleaner v3.013 - Bericht erstellt am 30/11/2013 um 17:39:05
# Updated 24/11/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Levi Grosse - LEVIGROSSE-PC
# Gestartet von : C:\Users\Levi Grosse\Downloads\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\Ask
Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\Program Files (x86)\Ask.com
Ordner Gelöscht : C:\Program Files (x86)\Nation Toolbar
Ordner Gelöscht : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar
Ordner Gelöscht : C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
Ordner Gelöscht : C:\Users\Levi Grosse\AppData\Local\PackageAware
Ordner Gelöscht : C:\Users\Levi Grosse\AppData\LocalLow\AskToolbar
Ordner Gelöscht : C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432\Smartbar
Ordner Gelöscht : C:\Program Files (x86)\Mozilla Firefox\Extensions\quickstores@quickstores.de
Ordner Gelöscht : C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432\Extensions\toolbar@ask.com
Ordner Gelöscht : C:\Users\Levi Grosse\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf
Datei Gelöscht : C:\Users\Levi Grosse\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickStores.url
Datei Gelöscht : C:\Users\Levi Grosse\AppData\Roaming\Microsoft\Windows\Start Menu\QuickStores.url
Datei Gelöscht : C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432\searchplugins\Askcom.xml
Datei Gelöscht : C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432\searchplugins\softonic.xml
Datei Gelöscht : C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432\user.js
Datei Gelöscht : C:\Windows\System32\Tasks\Dealply
Datei Gelöscht : C:\Windows\System32\Tasks\DealPlyUpdate
Datei Gelöscht : C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\aaaaojmikegpiepcfdkkjaplodkpfmlo
Schlüssel Gelöscht : HKCU\Software\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\toolbar_vit_sweetim_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\toolbar_vit_sweetim_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_cinema-4d_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_cinema-4d_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{7ABBFE1C-E485-44AA-8F36-353751B4124D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{087CDC12-0A11-4D1D-8DCF-44185D7C3496}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{088BF3A9-6AE8-47B9-A3FB-26262F236C79}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2AC7B9EB-3881-4EB9-8DEE-0A731A309FDE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{349C0469-ACDD-49DF-9B3E-0D82E7C7DC4D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{41226591-6F7A-4082-B63A-67FE4A0CF7A6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{55D69CD1-6715-4C40-BF05-9519AC4DC6E6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66C8FD57-54C4-4D4F-BC95-DCCC763B410A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{717BAE33-7061-4279-8AE5-6C13BC8AF3F9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{84F06F7A-F811-48D7-8B34-3F4145183D8F}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{88F6D55F-AA3F-4003-BE69-4AC1998D6492}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8DBCDED5-08AD-41A2-9BBC-235D84F4FE06}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A0F66203-1A86-4812-9603-A57E09A4D7A3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{BC39D1B3-4471-41C1-AACA-E097FAF4B7AA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DEB85542-1311-4EC6-8A32-5372EB27FC94}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKCU\Software\APN
Schlüssel Gelöscht : HKCU\Software\Ask.com
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\DealPly
Schlüssel Gelöscht : HKCU\Software\Nation Toolbar
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\AskToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gelöscht : HKLM\Software\APN
Schlüssel Gelöscht : HKLM\Software\AskToolbar
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\Nation Toolbar
Schlüssel Gelöscht : HKLM\Software\Vittalia
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16428
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v25.0.1 (de)
[ Datei : C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432\prefs.js ]
Zeile gelöscht : user_pref("CT3248869.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3248869.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3248869.FirstTime", "true");
Zeile gelöscht : user_pref("CT3248869.FirstTimeFF3", "true");
Zeile gelöscht : user_pref("CT3248869.LoginRevertSettingsEnabled", true);
Zeile gelöscht : user_pref("CT3248869.RevertSettingsEnabled", true);
Zeile gelöscht : user_pref("CT3248869.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3248869&SearchSource=2&q=");
Zeile gelöscht : user_pref("CT3248869.UserID", "UN88179268107349783");
Zeile gelöscht : user_pref("CT3248869.addressBarTakeOverEnabledInHidden", "true");
Zeile gelöscht : user_pref("CT3248869.autoDisableScopes", -1);
Zeile gelöscht : user_pref("CT3248869.browser.search.defaultthis.engineName", true);
Zeile gelöscht : user_pref("CT3248869.cbcountry_001", "QVQ=");
Zeile gelöscht : user_pref("CT3248869.cbfirsttime", "VHVlIE5vdiAwNiAyMDEyIDE0OjEzOjM2IEdNVCswMTAw");
Zeile gelöscht : user_pref("CT3248869.defaultSearch", "true");
Zeile gelöscht : user_pref("CT3248869.embeddedsData", "[{\"appId\":\"10000002\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"instantAlert\":[...]
Zeile gelöscht : user_pref("CT3248869.enableAlerts", "always");
Zeile gelöscht : user_pref("CT3248869.enableFix404ByUser", "FALSE");
Zeile gelöscht : user_pref("CT3248869.enableSearchFromAddressBar", "true");
Zeile gelöscht : user_pref("CT3248869.firstTimeDialogOpened", "true");
Zeile gelöscht : user_pref("CT3248869.fixPageNotFoundError", "true");
Zeile gelöscht : user_pref("CT3248869.fixPageNotFoundErrorByUser", "true");
Zeile gelöscht : user_pref("CT3248869.fixPageNotFoundErrorInHidden", "true");
Zeile gelöscht : user_pref("CT3248869.fixUrls", true);
Zeile gelöscht : user_pref("CT3248869.gadgetClicked", "dmlkZW9z");
Zeile gelöscht : user_pref("CT3248869.gadgetClosed", "Y2xvc2U=");
Zeile gelöscht : user_pref("CT3248869.hxxp___www_socialgrowthtechnologies_com_couponbuddy_v001.APP_WIN_FEATURES", "b3BlbnBvc2l0aW9uPW9mZnNldDo1MDs1MCxzYXZlbG9jYXRpb249MCxyZXNpemFibGU9bm8sc2Nyb2xsYmFycz1ubyx0aXRsZWJhcj[...]
Zeile gelöscht : user_pref("CT3248869.installId", "conduitinstaller.exe");
Zeile gelöscht : user_pref("CT3248869.installType", "conduitnsisintegration");
Zeile gelöscht : user_pref("CT3248869.isCheckedStartAsHidden", true);
Zeile gelöscht : user_pref("CT3248869.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3248869.isFirstTimeToolbarLoading", "false");
Zeile gelöscht : user_pref("CT3248869.isNewTabEnabled", true);
Zeile gelöscht : user_pref("CT3248869.isPerformedSmartBarTransition", "true");
Zeile gelöscht : user_pref("CT3248869.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Zeile gelöscht : user_pref("CT3248869.keyword", true);
Zeile gelöscht : user_pref("CT3248869.lastNewTabSettings", "{\"isEnabled\":false,\"newTabUrl\":\"hxxp://search.conduit.com/?ctid=CT3248869&octid=CT3248869&SearchSource=15&CUI=UN88179268107349783&SSPV=EB_SSPV&Lay=1&UM=[...]
Zeile gelöscht : user_pref("CT3248869.lastVersion", "10.15.0.562");
Zeile gelöscht : user_pref("CT3248869.migrateAppsAndComponents", true);
Zeile gelöscht : user_pref("CT3248869.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"about%3Aaddons\",\"EB_MAIN_FRAME_TITLE\":\"\",\"EB_TOOLBAR_SUB_DOMAIN\":\"hxxp://XfireNew.OurToolbar.com/[...]
Zeile gelöscht : user_pref("CT3248869.openThankYouPage", "false");
Zeile gelöscht : user_pref("CT3248869.openUninstallPage", "true");
Zeile gelöscht : user_pref("CT3248869.search.searchAppId", "10000002");
Zeile gelöscht : user_pref("CT3248869.search.searchCount", "0");
Zeile gelöscht : user_pref("CT3248869.searchFromAddressBarEnabledByUser", "false");
Zeile gelöscht : user_pref("CT3248869.searchInNewTabEnabledByUser", "true");
Zeile gelöscht : user_pref("CT3248869.searchInNewTabEnabledInHidden", "true");
Zeile gelöscht : user_pref("CT3248869.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3248869.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT3248869\"}");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://XfireNew.OurToolbar.com//xpi\"}");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"Xfire New\"}");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1364587419077");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_appsMetadata_lastUpdate", "1364964952726");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1364587418460");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_location_lastUpdate", "1364930406398");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_login_10.13.1.89_lastUpdate", "1354898156101");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_login_10.14.42.7_lastUpdate", "1360824086879");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_login_10.14.65.43_lastUpdate", "1364583771509");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_login_10.15.0.562_lastUpdate", "1364965157640");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_optimizer_lastUpdate", "1353848391469");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1364587418091");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_searchAPI_lastUpdate", "1364930406439");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_serviceMap_lastUpdate", "1364930406089");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_toolbarContextMenu_lastUpdate", "1364587418036");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_toolbarSettings_lastUpdate", "1364964952730");
Zeile gelöscht : user_pref("CT3248869.serviceLayer_services_translation_lastUpdate", "1364930406387");
Zeile gelöscht : user_pref("CT3248869.settingsINI", true);
Zeile gelöscht : user_pref("CT3248869.shouldFirstTimeDialog", "false");
Zeile gelöscht : user_pref("CT3248869.showToolbarPermission", "false");
Zeile gelöscht : user_pref("CT3248869.smartbar.CTID", "CT3248869");
Zeile gelöscht : user_pref("CT3248869.smartbar.Uninstall", "0");
Zeile gelöscht : user_pref("CT3248869.smartbar.homepage", true);
Zeile gelöscht : user_pref("CT3248869.smartbar.toolbarName", "Xfire New ");
Zeile gelöscht : user_pref("CT3248869.startPage", "userChanged");
Zeile gelöscht : user_pref("CT3248869.toolbarBornServerTime", "6-11-2012");
Zeile gelöscht : user_pref("CT3248869.toolbarCurrentServerTime", "3-4-2013");
Zeile gelöscht : user_pref("CT3248869.toolbarDisabled", "true");
Zeile gelöscht : user_pref("CT3248869.toolbarLoginClientTime", "Fri Mar 29 2013 21:01:35 GMT+0100");
Zeile gelöscht : user_pref("CT3248869.url_history0001", "aHR0cDovL2JldGEueGZpcmUuY29tL3Byb2ZpbGUvcGx1ZXN0eWxlIzo6OmNsaWNraGFuZGxlcjo6OjEzNTIyMTE1MzM2MDEsLCxodHRwOi8vYmV0YS54ZmlyZS5jb20vcHJvZmlsZS9wbHVlc3R5bGUjOjo6Y2xp[...]
Zeile gelöscht : user_pref("CT3248869.xFireLogin", "bG9naW4=");
Zeile gelöscht : user_pref("CT3248869.xFireToken", "TWpJME5EQXdPRGc2Y0d4MVpYTjBlV3hsT2pFek5USXlNVEEzT0RnNk1XWmlPVFJoTW1JeE1HSTNOVEpsWXpsalpEazRZalJqTW1GallqVmhNakF5WVdNMU9HWmlaZz09");
Zeile gelöscht : user_pref("CT3248869.xFireUN", "cGx1ZXN0eWxl");
Zeile gelöscht : user_pref("CT3248869.xFireUserID", "MjI0NDAwODg=");
Zeile gelöscht : user_pref("CT3248869_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1364975388444,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Zeile gelöscht : user_pref("Smartbar.ConduitHomepagesList", "");
Zeile gelöscht : user_pref("Smartbar.ConduitSearchEngineList", "Xfire New Customized Web Search");
Zeile gelöscht : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3248869&SearchSource=2&q=");
Zeile gelöscht : user_pref("Smartbar.keywordURLSelectedCTID", "");
Zeile gelöscht : user_pref("browser.search.defaultengine", "Ask.com");
Zeile gelöscht : user_pref("extensions.Softonic.admin", false);
Zeile gelöscht : user_pref("extensions.Softonic.aflt", "OC");
Zeile gelöscht : user_pref("extensions.Softonic.appId", "{7ABBFE1C-E485-44AA-8F36-353751B4124D}");
Zeile gelöscht : user_pref("extensions.Softonic.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.Softonic.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.Softonic.dfltSrch", true);
Zeile gelöscht : user_pref("extensions.Softonic.dnsErr", true);
Zeile gelöscht : user_pref("extensions.Softonic.excTlbr", false);
Zeile gelöscht : user_pref("extensions.Softonic.ffxUnstlRst", false);
Zeile gelöscht : user_pref("extensions.Softonic.hmpg", true);
Zeile gelöscht : user_pref("extensions.Softonic.hmpgUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=13&cc=&mi=28b65b62000000000000e006e6aa8765");
Zeile gelöscht : user_pref("extensions.Softonic.id", "28b65b62000000000000e006e6aa8765");
Zeile gelöscht : user_pref("extensions.Softonic.instlDay", "16019");
Zeile gelöscht : user_pref("extensions.Softonic.instlRef", "MOY00621");
Zeile gelöscht : user_pref("extensions.Softonic.newTab", true);
Zeile gelöscht : user_pref("extensions.Softonic.newTabUrl", "hxxp://search.softonic.com/MOY00621/tb_v1/?SearchSource=15&cc=&mi=28b65b62000000000000e006e6aa8765");
Zeile gelöscht : user_pref("extensions.Softonic.prdct", "Softonic");
Zeile gelöscht : user_pref("extensions.Softonic.prtnrId", "softonic");
Zeile gelöscht : user_pref("extensions.Softonic.rvrt", "false");
Zeile gelöscht : user_pref("extensions.Softonic.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.Softonic.srchPrvdr", "Search the web (Softonic)");
Zeile gelöscht : user_pref("extensions.Softonic.tlbrId", "opencandy2013");
Zeile gelöscht : user_pref("extensions.Softonic.tlbrSrchUrl", "hxxp://search.softonic.com/MOY00621/tb_v1?SearchSource=1&cc=&mi=28b65b62000000000000e006e6aa8765&q=");
Zeile gelöscht : user_pref("extensions.Softonic.vrsn", "1.8.21.14");
Zeile gelöscht : user_pref("extensions.Softonic.vrsnTs", "1.8.21.1411:24:38");
Zeile gelöscht : user_pref("extensions.Softonic.vrsni", "1.8.21.14");
Zeile gelöscht : user_pref("extensions.asktb.ff-original-keyword-url", "");
Zeile gelöscht : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3248869&SearchSource=2&CUI=UN88179268107349783&q=,hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3[...]
Zeile gelöscht : user_pref("smartbar.machineId", "+P3+YYUGQIQ4WHKGII506FSSWAI4R3BOFD6CUBPCUN06LTN80E4EKN8Z7U9WZW59Q51WCVNN1GYT6CUQTLYHAG");
Zeile gelöscht : user_pref("smartbar.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3248869&SearchSource=2&q=");
*************************
AdwCleaner[R0].txt - [21011 octets] - [30/11/2013 17:37:01]
AdwCleaner[S0].txt - [20479 octets] - [30/11/2013 17:39:05]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [20540 octets] ########## --- --- ---
im~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Levi Grosse on 30.11.2013 at 17:54:12,36
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1147604465-3722986022-2268924545-1001\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{5861E997-CB08-496D-BA30-BFA64B579B7F}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{C15DCA49-3B9D-46C1-BD7A-C957F2B4703F}
Successfully deleted: [Registry Key] "hkey_current_user\software\microsoft\internet explorer\low rights\elevationpolicy\{a5aa24ea-11b8-4113-95ae-9ed71deaf12a}"
~~~ Files
Successfully deleted: [File] C:\Windows\syswow64\sho6C6B.tmp
~~~ Folders
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\Levi Grosse\appdata\local\{8C9CBD34-19E6-4B96-980D-6CAFDD638486}
Successfully deleted: [Empty Folder] C:\Users\Levi Grosse\appdata\local\{A5428FA0-EC62-459C-BCC8-258836EFFFBD}
~~~ FireFox
Emptied folder: C:\Users\Levi Grosse\AppData\Roaming\mozilla\firefox\profiles\ue577egx.default-1351350689432\minidumps [900 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 30.11.2013 at 18:14:40,18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-11-2013
Ran by Levi Grosse (administrator) on LEVIGROSSE-PC on 30-11-2013 18:20:29
Running from C:\Users\Levi Grosse\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\Windows\SysWOW64\LckFldService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Atheros) C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\SeaPort.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Farbar) C:\Users\Levi Grosse\Downloads\FRST64(2).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12452456 2012-02-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1158248 2012-02-08] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] - C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1021056 2012-03-08] (Atheros Communications)
HKLM\...\Run: [AthBtTray] - C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800896 2012-03-08] (Atheros Commnucations)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2886416 2012-03-02] (Synaptics Incorporated)
HKLM\...\Run: [Power Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1829768 2012-02-07] (Acer Incorporated)
HKLM\...\Run: [InstantUpdate] - C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuDaemon.exe [124520 2012-04-06] ()
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1028384 2013-11-08] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26624 2010-11-21] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Steam] - C:\Program Files (x86)\Steam\Steam.exe [1823656 2013-11-28] (Valve Corporation)
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20472992 2013-10-02] (Skype Technologies S.A.)
HKCU\...\Run: [mapdisk] - C:\Users\Levi Grosse\Documents\ArmAWork\mapdisk.bat [54 2013-09-14] ()
HKCU\...\Run: [Skitch] - C:\Program Files (x86)\Evernote\Skitch\Skitch.exe [4304704 2013-08-09] (Evernote)
HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [296984 2012-01-05] (NTI Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\Dolby PCEE4\pcee4.exe [506712 2011-06-01] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-27] (Intel Corporation)
HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1105488 2012-03-24] (Dritek System Inc.)
HKLM-x32\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [4767304 2013-03-07] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [20131121] - C:\Program Files\AVAST Software\Avast\Setup\emupdate\b079aac6-7a48-4db8-ab22-6291d3c7afef.exe [180184 2013-11-23] (AVAST Software)
HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162408 2011-09-13] ()
HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [162408 2011-09-13] ()
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-11-23] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [141336 2013-11-23] (NVIDIA Corporation)
Startup: C:\Users\Levi Grosse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Sign In
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Atheros Commnucations)
BHO-x32: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - avast! WebRep - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM-x32 - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.2.241.0\BingExt.dll (Microsoft Corporation.)
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll (McAfee, Inc.)
Handler-x32: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF ProfilePath: C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432
FF DefaultSearchEngine: NationSearch
FF SelectedSearchEngine: NationSearch
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/SAFFPlugin - C:\Program Files (x86)\McAfee\SiteAdvisor\npmcffplg32.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432\searchplugins\Nation.xml
FF SearchPlugin: C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432\searchplugins\xfire-new-customized-web-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: exif_viewer - C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432\Extensions\exif_viewer@mozilla.doslash.org.xpi
FF Extension: stylish - C:\Users\Levi Grosse\AppData\Roaming\Mozilla\Firefox\Profiles\ue577egx.default-1351350689432\Extensions\{46551EC9-40F0-4e47-8E18-8E5CF550CFB8}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files (x86)\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files (x86)\McAfee\SiteAdvisor
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! WebRep - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho] - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx
CHR HKLM-x32\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
==================== Services (Whitelisted) =================
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-11-28] (Adobe Systems)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [45248 2013-03-07] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-08-21] ()
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [109352 2013-10-15] (SurfRight B.V.)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [127320 2012-03-16] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [162648 2012-03-16] (Intel Corporation)
R2 LckFldService; C:\Windows\SysWow64\LckFldService.exe [36864 2005-06-22] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 mi-raysat_3dsmax2012_64; C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe [86016 2011-02-22] ()
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [256536 2012-01-05] (NTI Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15125280 2013-11-08] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-11-17] ()
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Atheros\Ath_WlanAgent.exe [76960 2012-02-27] (Atheros)
==================== Drivers (Whitelisted) ====================
R2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [33400 2013-03-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [80816 2013-03-07] (AVAST Software)
R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [70992 2013-03-07] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65336 2013-03-07] ()
R1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [1025808 2013-03-07] (AVAST Software)
R1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [377920 2013-03-07] (AVAST Software)
R1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [68920 2013-03-07] (AVAST Software)
S3 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [178624 2013-03-07] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-09-28] (NVIDIA Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [x]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-30 18:19 - 2013-11-30 18:20 - 01959070 _____ (Farbar) C:\Users\Levi Grosse\Downloads\FRST64(2).exe
2013-11-30 18:19 - 2013-11-30 18:19 - 01092069 _____ (Farbar) C:\Users\Levi Grosse\Downloads\FRST(1).exe
2013-11-30 18:18 - 2013-11-30 18:18 - 01092069 _____ (Farbar) C:\Users\Levi Grosse\Downloads\FRST.exe
2013-11-30 18:14 - 2013-11-30 18:14 - 00001913 _____ C:\Users\Levi Grosse\Desktop\JRT.txt
2013-11-30 17:54 - 2013-11-30 17:54 - 00000000 ____D C:\Windows\ERUNT
2013-11-30 17:52 - 2013-11-30 17:52 - 01034531 _____ (Thisisu) C:\Users\Levi Grosse\Downloads\JRT.exe
2013-11-30 17:34 - 2013-11-30 17:39 - 00000000 ____D C:\AdwCleaner
2013-11-30 17:33 - 2013-11-30 17:33 - 01091882 _____ C:\Users\Levi Grosse\Downloads\adwcleaner.exe
2013-11-30 17:09 - 2013-11-30 17:09 - 00001077 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-30 17:09 - 2013-11-30 17:09 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Malwarebytes
2013-11-30 17:09 - 2013-11-30 17:09 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-30 17:09 - 2013-11-30 17:09 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-30 17:09 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-11-30 17:08 - 2013-11-30 17:08 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Levi Grosse\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-30 15:47 - 2013-11-30 15:52 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-11-30 15:40 - 2013-11-30 15:47 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Origin
2013-11-30 15:40 - 2013-11-30 15:47 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Origin
2013-11-30 15:37 - 2013-11-30 15:40 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-30 15:35 - 2013-11-30 15:36 - 16952720 _____ (Electronic Arts, Inc.) C:\Users\Levi Grosse\Downloads\OriginThinSetup.exe
2013-11-29 16:02 - 2013-11-29 16:02 - 00030979 _____ C:\ComboFix.txt
2013-11-29 15:43 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2013-11-29 15:43 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2013-11-29 15:43 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-11-29 15:43 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-11-29 15:43 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-11-29 15:43 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2013-11-29 15:43 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2013-11-29 15:43 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2013-11-29 15:42 - 2013-11-29 16:02 - 00000000 ____D C:\Qoobox
2013-11-29 15:42 - 2013-11-29 16:00 - 00000000 ____D C:\Windows\erdnt
2013-11-29 15:42 - 2013-11-29 15:41 - 05150163 ____R (Swearware) C:\Users\Levi Grosse\Desktop\ComboFix.exe
2013-11-29 15:40 - 2013-11-29 15:41 - 05150163 ____R (Swearware) C:\Users\Levi Grosse\Downloads\ComboFix.exe
2013-11-29 13:40 - 2013-11-29 13:40 - 06139504 _____ (Unity Technologies ApS) C:\Users\Levi Grosse\Downloads\UnityWebPlayerFull(1).exe
2013-11-28 18:55 - 2013-11-28 18:58 - 00027959 _____ C:\Users\Levi Grosse\Downloads\Addition.txt
2013-11-28 18:52 - 2013-11-30 18:20 - 00019216 _____ C:\Users\Levi Grosse\Downloads\FRST.txt
2013-11-28 18:52 - 2013-11-28 18:52 - 00000000 ____D C:\FRST
2013-11-28 18:50 - 2013-11-28 18:52 - 01959024 _____ (Farbar) C:\Users\Levi Grosse\Downloads\FRST64(1).exe
2013-11-28 14:35 - 2013-11-28 14:36 - 01958850 _____ (Farbar) C:\Users\Levi Grosse\Downloads\FRST64.exe
2013-11-28 13:36 - 2013-11-28 13:36 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\NVIDIA
2013-11-28 12:10 - 2013-11-28 12:10 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-11-28 12:10 - 2013-11-28 12:10 - 00000000 ____D C:\Windows\system32\NV
2013-11-28 11:59 - 2013-11-23 18:42 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-11-28 11:59 - 2013-11-23 18:42 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-11-28 11:59 - 2013-11-23 18:42 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-11-28 11:59 - 2013-11-23 18:42 - 01065248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2013-11-28 11:59 - 2013-11-23 18:42 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-11-28 11:59 - 2013-11-23 18:42 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-11-28 11:59 - 2013-11-23 18:42 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2013-11-28 11:59 - 2013-11-23 18:42 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-11-28 11:59 - 2013-11-22 17:28 - 03498475 _____ C:\Windows\system32\nvcoproc.bin
2013-11-28 11:30 - 2013-11-23 20:26 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 18293096 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 12613920 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-28 11:30 - 2013-11-23 20:26 - 11566648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 11441664 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 09663656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433193.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433193.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-11-28 11:30 - 2013-11-23 20:26 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2013-11-28 11:30 - 2013-11-23 20:26 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-11-28 11:21 - 2013-11-28 11:21 - 00003240 _____ C:\Windows\System32\Tasks\{F948D6A6-E943-4D72-B154-17C8CA7B3B4D}
2013-11-28 11:14 - 2013-11-28 11:14 - 18518646 _____ (InstallShield Software Corporation) C:\Users\Levi Grosse\Downloads\Photoshop_Plugins_x64_8.55.0109.1800(2).exe
2013-11-28 11:07 - 2013-11-28 11:07 - 00000000 ____D C:\PS_CS2_Gr_NonRet
2013-11-28 10:57 - 2013-11-28 10:58 - 18518646 _____ (InstallShield Software Corporation) C:\Users\Levi Grosse\Downloads\Photoshop_Plugins_x64_8.55.0109.1800(1).exe
2013-11-28 10:43 - 2013-11-08 21:47 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-28 10:43 - 2013-11-08 21:47 - 00955168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-28 10:40 - 2013-09-28 00:01 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-11-28 10:40 - 2013-09-28 00:01 - 00028960 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-11-27 13:18 - 2013-11-28 11:16 - 00151552 _____ C:\Windows\SysWOW64\nvRegDev.dll
2013-11-27 13:17 - 2013-11-28 11:21 - 00061440 _____ C:\Windows\SysWOW64\nvPhotoshopUtil.dll
2013-11-27 13:17 - 2013-11-28 11:21 - 00040960 _____ C:\Windows\SysWOW64\nvISWOW64.dll
2013-11-27 13:16 - 2013-11-27 13:17 - 18518646 _____ (InstallShield Software Corporation) C:\Users\Levi Grosse\Downloads\Photoshop_Plugins_x64_8.55.0109.1800.exe
2013-11-27 08:48 - 2013-11-27 10:01 - 01195004 _____ C:\Users\Levi Grosse\Desktop\untitled.blend
2013-11-26 21:01 - 2013-11-26 21:04 - 112496772 _____ C:\Users\Levi Grosse\Downloads\@HAFM_A3_Stable_v1.rar.part
2013-11-24 10:36 - 2013-11-24 10:36 - 00000000 _____ C:\Users\Levi Grosse\Documents\ts3_clientui-win64-1380283653-2013-11-24 10_36_50.272604.dmp
2013-11-24 10:34 - 2013-11-24 10:34 - 00188754 _____ C:\Users\Levi Grosse\Documents\ts3_clientui-win64-1380283653-2013-11-24 10_34_05.199162.dmp
2013-11-24 09:26 - 2013-11-29 11:57 - 00000000 ____D C:\Users\Levi Grosse\Desktop\lol fun
2013-11-24 04:09 - 2013-11-24 04:09 - 00188526 _____ C:\Users\Levi Grosse\Documents\ts3_clientui-win64-1380283653-2013-11-24 04_09_33.084763.dmp
2013-11-24 04:08 - 2013-11-24 04:08 - 00181447 _____ C:\Users\Levi Grosse\Documents\ts3_clientui-win64-1380283653-2013-11-24 04_08_43.455113.dmp
2013-11-24 04:07 - 2013-11-24 04:07 - 00219694 _____ C:\Users\Levi Grosse\Documents\ts3_clientui-win64-1380283653-2013-11-24 04_07_16.031364.dmp
2013-11-23 02:39 - 2013-11-23 02:39 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Unity
2013-11-23 02:18 - 2013-11-23 02:18 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\.mono
2013-11-23 02:14 - 2013-11-23 02:14 - 06137144 _____ (Unity Technologies ApS) C:\Users\Levi Grosse\Downloads\UnityWebPlayerFull.exe
2013-11-22 09:31 - 2013-11-22 09:31 - 20730241 _____ C:\Users\Levi Grosse\Downloads\@IanSky_Scope_Mod_R6.1.rar
2013-11-22 07:45 - 2013-11-22 07:47 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Autodesk
2013-11-22 07:41 - 2013-11-22 07:41 - 00000000 ____D C:\Users\Levi Grosse\Documents\Inventor Server x64 Autodesk 3ds Max 2012 64-bit - English
2013-11-22 07:41 - 2013-11-22 07:41 - 00000000 ____D C:\Program Files\Common Files\Macrovision Shared
2013-11-22 07:37 - 2013-11-28 13:43 - 00000000 ____D C:\Users\Levi Grosse\Documents\3dsMax
2013-11-22 07:36 - 2013-11-22 07:42 - 00000000 ____D C:\Program Files\Autodesk
2013-11-22 07:36 - 2013-11-22 07:40 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2013-11-22 07:35 - 2013-11-22 07:35 - 00000000 ____D C:\Program Files (x86)\Autodesk
2013-11-22 07:15 - 2013-11-22 07:46 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Autodesk
2013-11-22 07:15 - 2013-11-22 07:46 - 00000000 ____D C:\ProgramData\Autodesk
2013-11-22 07:06 - 2013-11-22 07:06 - 00000000 ____D C:\Autodesk
2013-11-20 02:58 - 2013-11-20 02:58 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\SIX_Projects
2013-11-20 02:57 - 2013-11-20 03:07 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\six-updater
2013-11-20 02:56 - 2013-11-20 02:56 - 00000000 ____D C:\Program Files (x86)\SIX Projects
2013-11-20 02:54 - 2013-11-20 02:54 - 16906651 _____ (Oleg N. Scherbakov) C:\Users\Levi Grosse\Downloads\su-setup(1).exe
2013-11-20 02:49 - 2013-11-20 02:50 - 16906651 _____ (Oleg N. Scherbakov) C:\Users\Levi Grosse\Downloads\su-setup.exe
2013-11-20 02:26 - 2013-11-20 02:26 - 11311984 _____ (SIX Networks) C:\Users\Levi Grosse\Downloads\withSIX-Play(1).exe
2013-11-19 23:01 - 2013-11-19 23:01 - 00000000 _____ C:\Users\Levi Grosse\Downloads\HandBrake-0.9.9-i686-Win_GUI.exe
2013-11-19 23:00 - 2013-11-19 23:01 - 13189037 _____ C:\Users\Levi Grosse\Downloads\HandBrake-0.9.9-i686-Win_GUI.exe.part
2013-11-19 13:36 - 2013-11-19 13:41 - 177171911 _____ C:\Users\Levi Grosse\Downloads\German_Weapons_Pack_v1.7.rar
2013-11-19 13:27 - 2013-11-19 13:28 - 41023637 _____ C:\Users\Levi Grosse\Downloads\FA18_v1.51_ARMA_3.rar
2013-11-19 13:26 - 2013-11-19 13:26 - 00802768 _____ C:\Users\Levi Grosse\Downloads\ado_boussole.rar
2013-11-19 13:20 - 2013-11-19 13:26 - 205994424 _____ C:\Users\Levi Grosse\Downloads\@idzgladius.rar
2013-11-19 10:33 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-19 10:27 - 2013-11-19 10:27 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-19 10:27 - 2013-11-19 10:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-19 10:27 - 2013-11-19 10:27 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-19 10:27 - 2013-11-19 10:27 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-19 10:27 - 2013-11-19 10:27 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-19 10:27 - 2013-11-19 10:27 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-19 10:27 - 2013-11-19 10:27 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-19 10:27 - 2013-11-19 10:27 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-19 10:27 - 2013-11-19 10:27 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-19 10:27 - 2013-11-19 10:27 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-19 10:27 - 2013-11-19 10:27 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 10:25 - 2013-11-19 10:33 - 00009916 _____ C:\Windows\IE11_main.log
2013-11-17 16:10 - 2013-11-17 16:10 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Arktos Entertainment
2013-11-17 16:08 - 2013-11-17 16:08 - 00000000 ____D C:\Users\Levi Grosse\Documents\Arktos
2013-11-16 21:52 - 2013-11-16 21:52 - 02810471 _____ C:\Users\Levi Grosse\Downloads\@Bike.rar
2013-11-15 22:58 - 2013-11-27 01:13 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-15 21:45 - 2013-11-15 21:45 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\DCS
2013-11-13 20:03 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 20:03 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 20:03 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 20:03 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 20:03 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 20:03 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 20:03 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 20:03 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 20:03 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 20:03 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 20:03 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 20:03 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 20:03 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 20:03 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 20:03 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 20:03 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 20:03 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 20:03 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 20:03 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 20:03 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 20:03 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 20:03 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 20:03 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 20:03 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 20:03 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 20:03 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 20:03 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 20:03 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 20:03 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 20:03 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-12 14:50 - 2013-11-12 16:49 - 441583242 _____ C:\Users\Levi Grosse\Downloads\@jsrs2.0.rar
2013-11-10 11:23 - 2013-11-10 11:23 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-11-10 11:23 - 2013-11-10 11:23 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\TuneUp Software
2013-11-10 11:21 - 2013-11-10 11:30 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\DVDVideoSoft
2013-11-10 11:18 - 2013-11-10 11:19 - 32206488 _____ (DVDVideoSoft Ltd. ) C:\Users\Levi Grosse\Downloads\FreeYouTubeToMP3Converter_3.12.16.1030.exe
2013-11-10 10:41 - 2013-11-10 10:41 - 00000000 ____D C:\Users\Levi Grosse\Documents\Movie Studio Platinum 12.0 Projekte
2013-11-10 10:28 - 2013-11-10 10:32 - 185831992 _____ (Sony Creative Software Inc.) C:\Users\Levi Grosse\Downloads\moviestudiope12.0.334_64bit.exe
2013-11-09 23:14 - 2013-11-09 23:14 - 00394148 _____ C:\Users\Levi Grosse\Downloads\dbo_animationfiles.rar
2013-11-07 23:40 - 2013-11-07 23:50 - 00000173 _____ C:\Windows\user_bmvg5.ini
2013-11-07 12:36 - 2013-11-07 12:36 - 00000000 ____D C:\Users\Levi Grosse\Documents\arma 2
2013-11-07 12:36 - 2013-11-07 12:36 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\SIX Networks
2013-11-07 12:36 - 2013-11-07 12:36 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\SIX Networks
2013-11-07 12:36 - 2013-11-07 12:36 - 00000000 ____D C:\ProgramData\SIX Networks
2013-11-07 12:22 - 2013-11-07 12:22 - 01005568 _____ (Microsoft Corporation) C:\Users\Levi Grosse\Downloads\dotNetFx45_Full_setup.exe
2013-11-07 12:17 - 2013-11-07 12:19 - 11300072 _____ (SIX Networks) C:\Users\Levi Grosse\Downloads\withSIX-Play.exe
2013-11-03 09:12 - 2013-11-03 09:12 - 00000000 ____D C:\ProgramData\GFACE
2013-11-02 23:51 - 2013-11-02 23:51 - 00002072 _____ C:\Users\Public\Desktop\Blender.lnk
2013-11-02 23:49 - 2013-11-02 23:51 - 43398086 _____ C:\Users\Levi Grosse\Downloads\blender-2.69-windows32.exe
==================== One Month Modified Files and Folders =======
2013-11-30 18:20 - 2013-11-30 18:19 - 01959070 _____ (Farbar) C:\Users\Levi Grosse\Downloads\FRST64(2).exe
2013-11-30 18:20 - 2013-11-28 18:52 - 00019216 _____ C:\Users\Levi Grosse\Downloads\FRST.txt
2013-11-30 18:20 - 2012-09-11 18:15 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Skype
2013-11-30 18:19 - 2013-11-30 18:19 - 01092069 _____ (Farbar) C:\Users\Levi Grosse\Downloads\FRST(1).exe
2013-11-30 18:18 - 2013-11-30 18:18 - 01092069 _____ (Farbar) C:\Users\Levi Grosse\Downloads\FRST.exe
2013-11-30 18:14 - 2013-11-30 18:14 - 00001913 _____ C:\Users\Levi Grosse\Desktop\JRT.txt
2013-11-30 18:08 - 2013-02-23 20:50 - 00000000 ____D C:\Program Files (x86)\Steam
2013-11-30 17:54 - 2013-11-30 17:54 - 00000000 ____D C:\Windows\ERUNT
2013-11-30 17:52 - 2013-11-30 17:52 - 01034531 _____ (Thisisu) C:\Users\Levi Grosse\Downloads\JRT.exe
2013-11-30 17:52 - 2013-03-23 18:56 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-30 17:48 - 2009-07-14 05:45 - 00024416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-30 17:48 - 2009-07-14 05:45 - 00024416 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-30 17:42 - 2013-10-02 18:24 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Skitch
2013-11-30 17:41 - 2012-06-21 04:34 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2013-11-30 17:40 - 2013-06-06 00:51 - 00221914 _____ C:\Windows\PFRO.log
2013-11-30 17:40 - 2013-06-06 00:51 - 00034248 _____ C:\Windows\setupact.log
2013-11-30 17:40 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-30 17:39 - 2013-11-30 17:34 - 00000000 ____D C:\AdwCleaner
2013-11-30 17:39 - 2012-06-21 04:23 - 01188395 _____ C:\Windows\WindowsUpdate.log
2013-11-30 17:33 - 2013-11-30 17:33 - 01091882 _____ C:\Users\Levi Grosse\Downloads\adwcleaner.exe
2013-11-30 17:09 - 2013-11-30 17:09 - 00001077 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2013-11-30 17:09 - 2013-11-30 17:09 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Malwarebytes
2013-11-30 17:09 - 2013-11-30 17:09 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-11-30 17:09 - 2013-11-30 17:09 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-11-30 17:08 - 2013-11-30 17:08 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Levi Grosse\Downloads\mbam-setup-1.75.0.1300.exe
2013-11-30 16:48 - 2013-08-23 02:56 - 00000000 ____D C:\Users\Levi Grosse\Desktop\Asphalt
2013-11-30 16:48 - 2012-11-29 19:53 - 00000000 ____D C:\Users\Levi Grosse\Desktop\Blender_Projekte
2013-11-30 16:16 - 2012-06-21 04:34 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2013-11-30 15:52 - 2013-11-30 15:47 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-11-30 15:47 - 2013-11-30 15:40 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Origin
2013-11-30 15:47 - 2013-11-30 15:40 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Origin
2013-11-30 15:47 - 2012-12-19 19:26 - 00000000 ____D C:\ProgramData\Origin
2013-11-30 15:40 - 2013-11-30 15:37 - 00000000 ____D C:\Program Files (x86)\Origin
2013-11-30 15:36 - 2013-11-30 15:35 - 16952720 _____ (Electronic Arts, Inc.) C:\Users\Levi Grosse\Downloads\OriginThinSetup.exe
2013-11-30 15:28 - 2012-09-14 18:13 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Unity
2013-11-29 20:31 - 2012-09-11 17:54 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Adobe
2013-11-29 16:02 - 2013-11-29 16:02 - 00030979 _____ C:\ComboFix.txt
2013-11-29 16:02 - 2013-11-29 15:42 - 00000000 ____D C:\Qoobox
2013-11-29 16:02 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default
2013-11-29 16:00 - 2013-11-29 15:42 - 00000000 ____D C:\Windows\erdnt
2013-11-29 15:58 - 2013-09-14 11:16 - 00000000 ____D C:\Users\Levi Grosse\Documents\ArmAWork
2013-11-29 15:58 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2013-11-29 15:56 - 2012-09-11 23:48 - 00000000 ____D C:\Users\Levi Grosse
2013-11-29 15:41 - 2013-11-29 15:42 - 05150163 ____R (Swearware) C:\Users\Levi Grosse\Desktop\ComboFix.exe
2013-11-29 15:41 - 2013-11-29 15:40 - 05150163 ____R (Swearware) C:\Users\Levi Grosse\Downloads\ComboFix.exe
2013-11-29 14:54 - 2013-06-22 01:37 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Arma 3
2013-11-29 13:40 - 2013-11-29 13:40 - 06139504 _____ (Unity Technologies ApS) C:\Users\Levi Grosse\Downloads\UnityWebPlayerFull(1).exe
2013-11-29 11:57 - 2013-11-24 09:26 - 00000000 ____D C:\Users\Levi Grosse\Desktop\lol fun
2013-11-28 18:58 - 2013-11-28 18:55 - 00027959 _____ C:\Users\Levi Grosse\Downloads\Addition.txt
2013-11-28 18:52 - 2013-11-28 18:52 - 00000000 ____D C:\FRST
2013-11-28 18:52 - 2013-11-28 18:50 - 01959024 _____ (Farbar) C:\Users\Levi Grosse\Downloads\FRST64(1).exe
2013-11-28 14:36 - 2013-11-28 14:35 - 01958850 _____ (Farbar) C:\Users\Levi Grosse\Downloads\FRST64.exe
2013-11-28 13:43 - 2013-11-22 07:37 - 00000000 ____D C:\Users\Levi Grosse\Documents\3dsMax
2013-11-28 13:36 - 2013-11-28 13:36 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\NVIDIA
2013-11-28 13:06 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-28 12:10 - 2013-11-28 12:10 - 00000000 ____D C:\Windows\SysWOW64\NV
2013-11-28 12:10 - 2013-11-28 12:10 - 00000000 ____D C:\Windows\system32\NV
2013-11-28 12:10 - 2013-05-26 13:41 - 00000000 ____D C:\ProgramData\NVIDIA
2013-11-28 11:59 - 2012-06-21 04:30 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2013-11-28 11:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2013-11-28 11:58 - 2013-05-26 13:39 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2013-11-28 11:58 - 2012-06-21 04:30 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-11-28 11:37 - 2012-09-11 23:49 - 00068064 _____ C:\Users\Levi Grosse\AppData\Local\GDIPFONTCACHEV1.DAT
2013-11-28 11:34 - 2009-07-14 05:45 - 00314928 _____ C:\Windows\system32\FNTCACHE.DAT
2013-11-28 11:21 - 2013-11-28 11:21 - 00003240 _____ C:\Windows\System32\Tasks\{F948D6A6-E943-4D72-B154-17C8CA7B3B4D}
2013-11-28 11:21 - 2013-11-27 13:17 - 00061440 _____ C:\Windows\SysWOW64\nvPhotoshopUtil.dll
2013-11-28 11:21 - 2013-11-27 13:17 - 00040960 _____ C:\Windows\SysWOW64\nvISWOW64.dll
2013-11-28 11:16 - 2013-11-27 13:18 - 00151552 _____ C:\Windows\SysWOW64\nvRegDev.dll
2013-11-28 11:14 - 2013-11-28 11:14 - 18518646 _____ (InstallShield Software Corporation) C:\Users\Levi Grosse\Downloads\Photoshop_Plugins_x64_8.55.0109.1800(2).exe
2013-11-28 11:11 - 2012-03-28 19:57 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-11-28 11:10 - 2012-09-11 23:50 - 00000000 ___RD C:\Users\Levi Grosse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-11-28 11:07 - 2013-11-28 11:07 - 00000000 ____D C:\PS_CS2_Gr_NonRet
2013-11-28 10:58 - 2013-11-28 10:57 - 18518646 _____ (InstallShield Software Corporation) C:\Users\Levi Grosse\Downloads\Photoshop_Plugins_x64_8.55.0109.1800(1).exe
2013-11-28 06:06 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-27 13:20 - 2012-03-28 19:43 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-27 13:17 - 2013-11-27 13:16 - 18518646 _____ (InstallShield Software Corporation) C:\Users\Levi Grosse\Downloads\Photoshop_Plugins_x64_8.55.0109.1800.exe
2013-11-27 10:24 - 2012-10-11 20:19 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\TS3Client
2013-11-27 10:01 - 2013-11-27 08:48 - 01195004 _____ C:\Users\Levi Grosse\Desktop\untitled.blend
2013-11-27 04:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2013-11-27 01:13 - 2013-11-15 22:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-26 21:04 - 2013-11-26 21:01 - 112496772 _____ C:\Users\Levi Grosse\Downloads\@HAFM_A3_Stable_v1.rar.part
2013-11-24 10:36 - 2013-11-24 10:36 - 00000000 _____ C:\Users\Levi Grosse\Documents\ts3_clientui-win64-1380283653-2013-11-24 10_36_50.272604.dmp
2013-11-24 10:34 - 2013-11-24 10:34 - 00188754 _____ C:\Users\Levi Grosse\Documents\ts3_clientui-win64-1380283653-2013-11-24 10_34_05.199162.dmp
2013-11-24 04:09 - 2013-11-24 04:09 - 00188526 _____ C:\Users\Levi Grosse\Documents\ts3_clientui-win64-1380283653-2013-11-24 04_09_33.084763.dmp
2013-11-24 04:08 - 2013-11-24 04:08 - 00181447 _____ C:\Users\Levi Grosse\Documents\ts3_clientui-win64-1380283653-2013-11-24 04_08_43.455113.dmp
2013-11-24 04:07 - 2013-11-24 04:07 - 00219694 _____ C:\Users\Levi Grosse\Documents\ts3_clientui-win64-1380283653-2013-11-24 04_07_16.031364.dmp
2013-11-23 20:26 - 2013-11-28 11:30 - 30361888 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 22951200 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 18293096 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 18208624 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 15862272 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 15218504 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 12613920 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2013-11-23 20:26 - 2013-11-28 11:30 - 11566648 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 11441664 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 09663656 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 09619872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 03069608 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 02697248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433193.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433193.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 01436528 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 00707360 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 00657184 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 00609568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 00562464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2013-11-23 20:26 - 2013-11-28 11:30 - 00032544 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2013-11-23 20:26 - 2013-11-28 11:30 - 00023754 _____ C:\Windows\system32\nvinfo.pb
2013-11-23 18:42 - 2013-11-28 11:59 - 06674208 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2013-11-23 18:42 - 2013-11-28 11:59 - 03490080 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2013-11-23 18:42 - 2013-11-28 11:59 - 02559776 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2013-11-23 18:42 - 2013-11-28 11:59 - 01065248 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2013-11-23 18:42 - 2013-11-28 11:59 - 00922912 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2013-11-23 18:42 - 2013-11-28 11:59 - 00219424 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2013-11-23 18:42 - 2013-11-28 11:59 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2013-11-23 18:42 - 2013-11-28 11:59 - 00063776 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2013-11-23 02:39 - 2013-11-23 02:39 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Unity
2013-11-23 02:18 - 2013-11-23 02:18 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\.mono
2013-11-23 02:14 - 2013-11-23 02:14 - 06137144 _____ (Unity Technologies ApS) C:\Users\Levi Grosse\Downloads\UnityWebPlayerFull.exe
2013-11-22 17:28 - 2013-11-28 11:59 - 03498475 _____ C:\Windows\system32\nvcoproc.bin
2013-11-22 09:31 - 2013-11-22 09:31 - 20730241 _____ C:\Users\Levi Grosse\Downloads\@IanSky_Scope_Mod_R6.1.rar
2013-11-22 07:47 - 2013-11-22 07:45 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Autodesk
2013-11-22 07:46 - 2013-11-22 07:15 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Autodesk
2013-11-22 07:46 - 2013-11-22 07:15 - 00000000 ____D C:\ProgramData\Autodesk
2013-11-22 07:45 - 2012-03-28 19:42 - 00000000 ____D C:\ProgramData\FLEXnet
2013-11-22 07:42 - 2013-11-22 07:36 - 00000000 ____D C:\Program Files\Autodesk
2013-11-22 07:41 - 2013-11-22 07:41 - 00000000 ____D C:\Users\Levi Grosse\Documents\Inventor Server x64 Autodesk 3ds Max 2012 64-bit - English
2013-11-22 07:41 - 2013-11-22 07:41 - 00000000 ____D C:\Program Files\Common Files\Macrovision Shared
2013-11-22 07:40 - 2013-11-22 07:36 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared
2013-11-22 07:36 - 2009-07-14 03:34 - 00017598 _____ C:\Windows\system32\Drivers\etc\services
2013-11-22 07:35 - 2013-11-22 07:35 - 00000000 ____D C:\Program Files (x86)\Autodesk
2013-11-22 07:30 - 2013-06-17 04:16 - 00355926 _____ C:\Windows\DirectX.log
2013-11-22 07:06 - 2013-11-22 07:06 - 00000000 ____D C:\Autodesk
2013-11-20 03:07 - 2013-11-20 02:57 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\six-updater
2013-11-20 02:58 - 2013-11-20 02:58 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\SIX_Projects
2013-11-20 02:56 - 2013-11-20 02:56 - 00000000 ____D C:\Program Files (x86)\SIX Projects
2013-11-20 02:54 - 2013-11-20 02:54 - 16906651 _____ (Oleg N. Scherbakov) C:\Users\Levi Grosse\Downloads\su-setup(1).exe
2013-11-20 02:50 - 2013-11-20 02:49 - 16906651 _____ (Oleg N. Scherbakov) C:\Users\Levi Grosse\Downloads\su-setup.exe
2013-11-20 02:26 - 2013-11-20 02:26 - 11311984 _____ (SIX Networks) C:\Users\Levi Grosse\Downloads\withSIX-Play(1).exe
2013-11-19 23:01 - 2013-11-19 23:01 - 00000000 _____ C:\Users\Levi Grosse\Downloads\HandBrake-0.9.9-i686-Win_GUI.exe
2013-11-19 23:01 - 2013-11-19 23:00 - 13189037 _____ C:\Users\Levi Grosse\Downloads\HandBrake-0.9.9-i686-Win_GUI.exe.part
2013-11-19 13:41 - 2013-11-19 13:36 - 177171911 _____ C:\Users\Levi Grosse\Downloads\German_Weapons_Pack_v1.7.rar
2013-11-19 13:28 - 2013-11-19 13:27 - 41023637 _____ C:\Users\Levi Grosse\Downloads\FA18_v1.51_ARMA_3.rar
2013-11-19 13:26 - 2013-11-19 13:26 - 00802768 _____ C:\Users\Levi Grosse\Downloads\ado_boussole.rar
2013-11-19 13:26 - 2013-11-19 13:20 - 205994424 _____ C:\Users\Levi Grosse\Downloads\@idzgladius.rar
2013-11-19 10:53 - 2012-09-11 23:50 - 00001429 _____ C:\Users\Levi Grosse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-19 10:33 - 2013-11-19 10:25 - 00009916 _____ C:\Windows\IE11_main.log
2013-11-19 10:27 - 2013-11-19 10:27 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-19 10:27 - 2013-11-19 10:27 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-19 10:27 - 2013-11-19 10:27 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-19 10:27 - 2013-11-19 10:27 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-19 10:27 - 2013-11-19 10:27 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-19 10:27 - 2013-11-19 10:27 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-19 10:27 - 2013-11-19 10:27 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-19 10:27 - 2013-11-19 10:27 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-19 10:27 - 2013-11-19 10:27 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-19 10:27 - 2013-11-19 10:27 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-19 10:27 - 2013-11-19 10:27 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-19 10:27 - 2013-11-19 10:27 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-19 10:27 - 2013-11-19 10:27 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-19 09:39 - 2013-03-05 14:30 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2013-11-18 02:17 - 2012-09-18 22:51 - 00291128 _____ C:\Windows\SysWOW64\PnkBstrB.xtr
2013-11-18 02:17 - 2012-09-18 21:58 - 00291128 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2013-11-18 02:16 - 2012-11-21 20:19 - 00000000 ___HD C:\Windows\msdownld.tmp
2013-11-18 02:00 - 2012-09-18 21:58 - 00291128 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2013-11-17 16:10 - 2013-11-17 16:10 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Arktos Entertainment
2013-11-17 16:08 - 2013-11-17 16:08 - 00000000 ____D C:\Users\Levi Grosse\Documents\Arktos
2013-11-17 16:07 - 2012-09-18 21:58 - 00076888 _____ C:\Windows\SysWOW64\PnkBstrA.exe
2013-11-16 21:52 - 2013-11-16 21:52 - 02810471 _____ C:\Users\Levi Grosse\Downloads\@Bike.rar
2013-11-16 12:53 - 2012-09-11 18:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-15 21:46 - 2012-09-14 23:03 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\CrashDumps
2013-11-15 21:45 - 2013-11-15 21:45 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\DCS
2013-11-14 01:55 - 2013-07-12 23:58 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 01:52 - 2012-10-12 20:26 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-12 16:49 - 2013-11-12 14:50 - 441583242 _____ C:\Users\Levi Grosse\Downloads\@jsrs2.0.rar
2013-11-11 05:50 - 2010-11-21 04:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2013-11-10 11:30 - 2013-11-10 11:21 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\DVDVideoSoft
2013-11-10 11:24 - 2012-09-13 17:06 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Google
2013-11-10 11:23 - 2013-11-10 11:23 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2013-11-10 11:23 - 2013-11-10 11:23 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\TuneUp Software
2013-11-10 11:23 - 2012-11-06 14:15 - 00000000 ____D C:\ProgramData\TuneUp Software
2013-11-10 11:19 - 2013-11-10 11:18 - 32206488 _____ (DVDVideoSoft Ltd. ) C:\Users\Levi Grosse\Downloads\FreeYouTubeToMP3Converter_3.12.16.1030.exe
2013-11-10 10:43 - 2013-07-06 22:50 - 00000000 ____D C:\ProgramData\Sony
2013-11-10 10:43 - 2013-04-03 21:34 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\Sony
2013-11-10 10:41 - 2013-11-10 10:41 - 00000000 ____D C:\Users\Levi Grosse\Documents\Movie Studio Platinum 12.0 Projekte
2013-11-10 10:39 - 2013-07-06 22:49 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\Sony
2013-11-10 10:32 - 2013-11-10 10:28 - 185831992 _____ (Sony Creative Software Inc.) C:\Users\Levi Grosse\Downloads\moviestudiope12.0.334_64bit.exe
2013-11-09 23:14 - 2013-11-09 23:14 - 00394148 _____ C:\Users\Levi Grosse\Downloads\dbo_animationfiles.rar
2013-11-08 21:47 - 2013-11-28 10:43 - 01064224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2013-11-08 21:47 - 2013-11-28 10:43 - 00955168 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2013-11-07 23:50 - 2013-11-07 23:40 - 00000173 _____ C:\Windows\user_bmvg5.ini
2013-11-07 12:42 - 2013-06-22 01:37 - 00000000 ____D C:\Users\Levi Grosse\Documents\Arma 3
2013-11-07 12:36 - 2013-11-07 12:36 - 00000000 ____D C:\Users\Levi Grosse\Documents\arma 2
2013-11-07 12:36 - 2013-11-07 12:36 - 00000000 ____D C:\Users\Levi Grosse\AppData\Roaming\SIX Networks
2013-11-07 12:36 - 2013-11-07 12:36 - 00000000 ____D C:\Users\Levi Grosse\AppData\Local\SIX Networks
2013-11-07 12:36 - 2013-11-07 12:36 - 00000000 ____D C:\ProgramData\SIX Networks
2013-11-07 12:22 - 2013-11-07 12:22 - 01005568 _____ (Microsoft Corporation) C:\Users\Levi Grosse\Downloads\dotNetFx45_Full_setup.exe
2013-11-07 12:19 - 2013-11-07 12:17 - 11300072 _____ (SIX Networks) C:\Users\Levi Grosse\Downloads\withSIX-Play.exe
2013-11-06 21:10 - 2012-06-21 14:11 - 01884308 _____ C:\Windows\system32\perfh007.dat
2013-11-06 21:10 - 2012-06-21 14:11 - 00534232 _____ C:\Windows\system32\perfc007.dat
2013-11-06 21:10 - 2009-07-14 06:13 - 00006540 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-03 09:12 - 2013-11-03 09:12 - 00000000 ____D C:\ProgramData\GFACE
2013-11-02 23:51 - 2013-11-02 23:51 - 00002072 _____ C:\Users\Public\Desktop\Blender.lnk
2013-11-02 23:51 - 2013-11-02 23:49 - 43398086 _____ C:\Users\Levi Grosse\Downloads\blender-2.69-windows32.exe
2013-11-02 10:32 - 2012-03-28 20:18 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-11-02 10:32 - 2012-03-28 20:18 - 00000000 ____D C:\ProgramData\Skype
Some content of TEMP:
====================
C:\Users\Levi Grosse\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-20 07:11
==================== End Of Log ============================ --- --- --- |