Internet wird unterbrochen

thesavior21 · 15.04.2014, 19:16

Hallo ich habe ca seit einem Jahr das Problem dass mein Internet am Laptop häufig unterbrochen wird. Aber dieses Problem tritt nur bei meinem Laptop an, bei dem Laptop meines Mitbewohners ist es nicht so und auch bei meinen Tragbarengeräten(3DS,Tablet und Smartphone) klappt alles super.

Ich habe schon mit inSSIDer Home verschiedene Kanäle überprüft und auch in den Router Einstellungen geändert. Aber nichts ändert sich.Leider kenne ich mich mit WLAN etc. überhaupt nicht aus und würde mich über eure Hilfe sehr freuen,

Mein Router ist der Netgear WRN1000v2. Und ich benutze ihn unter Windows 8 32bit. Was für Infos wären denn noch hilfreich?

schrauber · 15.04.2014, 19:30

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

thesavior21 · 15.04.2014, 19:48

danke für die schnelle Antwort!!

FIRST LOG

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-04-2014
Ran by Stefan (administrator) on LIGHTNING on 15-04-2014 20:45:06
Running from C:\Users\Stefan\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Atheros) C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Users\Stefan\Documents\Installiert\iTunes\iTunesHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PMMUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
(Oracle Corporation) C:\Users\Stefan\Documents\Installiert\Java\bin\javaw.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [171040 2012-10-23] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe [399392 2012-10-23] (Intel Corporation)
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe [441888 2012-10-23] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-31] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-07-31] (Realtek Semiconductor)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Bluetooth Suite\BtPreLoad.exe [64640 2012-09-29] ()
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Dolby PCEE4\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [iTunesHelper] => C:\Users\Stefan\Documents\Installiert\iTunes\iTunesHelper.exe [152392 2014-02-06] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
HKU\S-1-5-21-1504080521-2891289874-2738731852-1001\...\Run: [NextLive] => C:\Windows\SysWOW64\rundll32.exe ",EntryPoint -m l
AppInit_DLLs: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC64Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll [1317152 2013-12-16] (Conduit)
AppInit_DLLs-x32: C:\PROGRA~2\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => C:\Program Files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll [1009440 2013-12-16] (Conduit)
Startup: C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 1050 J410 series.lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Deskjet 1050 J410 series.lnk -> C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP1FE760CD-BFAC-4926-973F-0B278B6686A7&SSPV=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer13.msn.com
URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File
SearchScopes: HKLM - DefaultScope {79D4EDC3-04E6-4D30-8FCA-08C6DFDD353A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {79D4EDC3-04E6-4D30-8FCA-08C6DFDD353A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - DefaultScope {79D4EDC3-04E6-4D30-8FCA-08C6DFDD353A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {79D4EDC3-04E6-4D30-8FCA-08C6DFDD353A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKCU - DefaultScope {79D4EDC3-04E6-4D30-8FCA-08C6DFDD353A} URL = 
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SP1FE760CD-BFAC-4926-973F-0B278B6686A7&q={searchTerms}&SSPV=
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www2.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=D02C1E2A704F179F&affID=119357&tsp=4996
SearchScopes: HKCU - {79D4EDC3-04E6-4D30-8FCA-08C6DFDD353A} URL = 
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Users\Stefan\Documents\Installiert\Java\bin\ssv.dll (Oracle Corporation)
BHO-x32: No Name - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} -  No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Users\Stefan\Documents\Installiert\Java\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default
FF user.js: detected! => C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\user.js
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Users\Stefan\Documents\Installiert\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Users\Stefan\Documents\Installiert\Java\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\searchplugins\conduit-search-1.xml
FF SearchPlugin: C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\searchplugins\iminent.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\Extensions\trash [2014-03-25]
FF Extension: DownloadHelper - C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\Extensions\adblockpopups@jessehakanen.net.xpi [2014-02-12]

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-09-07] (Adobe Systems)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1017424 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [220288 2012-09-29] (Qualcomm Atheros Commnucations)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-23] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-22] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-22] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [90992 2012-09-17] (ELAN Microelectronics Corp.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-08-23] (NTI Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-06-14] (Dritek System INC.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-10-25] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [81536 2012-09-28] (Atheros)

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [84720 2013-12-19] (Avira Operations GmbH & Co. KG)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-09-29] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwNe64.sys [11400192 2012-06-02] (Intel Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-06-14] (Dritek System Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-15 20:45 - 2014-04-15 20:45 - 00015833 _____ () C:\Users\Stefan\Downloads\FRST.txt
2014-04-15 20:44 - 2014-04-15 20:45 - 00000000 ____D () C:\FRST
2014-04-15 20:44 - 2014-04-15 20:44 - 02054144 _____ (Farbar) C:\Users\Stefan\Downloads\FRST64.exe
2014-04-15 20:43 - 2014-04-15 20:43 - 01042944 _____ (Farbar) C:\Users\Stefan\Downloads\FRST.exe
2014-04-15 20:07 - 2014-04-15 20:07 - 03046734 _____ () C:\Users\Stefan\Downloads\WNR1000_V1.0.2.62_60.0.87.zip
2014-04-15 15:34 - 2014-04-15 15:38 - 95321437 _____ () C:\Users\Stefan\Desktop\135698614533hd_clear.flv
2014-04-15 14:29 - 2014-04-15 14:48 - 142986250 _____ () C:\Users\Stefan\Downloads\PsyPass 04 Ger Sub_H264-848x480.mp4
2014-04-15 14:21 - 2014-04-15 14:21 - 01810541 _____ () C:\Users\Stefan\Desktop\mov_500.mp4
2014-04-13 15:09 - 2014-04-13 15:12 - 39276437 _____ () C:\Users\Stefan\Downloads\Dads Slim Boy Use.flv
2014-04-13 14:58 - 2014-04-13 15:09 - 138195017 _____ () C:\Users\Stefan\Downloads\Kyle King & Shay Michaels.flv
2014-04-13 13:40 - 2014-04-13 14:18 - 95349997 _____ () C:\Users\Stefan\Desktop\13569895527hd_clear.flv
2014-04-13 12:41 - 2014-04-13 12:45 - 95328268 _____ () C:\Users\Stefan\Desktop\135105772450hd_clear.flv
2014-04-13 12:23 - 2014-04-13 12:28 - 77584437 _____ () C:\Users\Stefan\Downloads\genial.flv
2014-04-13 12:19 - 2014-04-13 12:23 - 63339896 _____ () C:\Users\Stefan\Downloads\Willing to be used ^^.mp4
2014-04-13 12:14 - 2014-04-13 12:19 - 80197191 _____ () C:\Users\Stefan\Downloads\GPB _ Sexy Tied up Boy Used.mp4
2014-04-13 12:09 - 2014-04-13 12:14 - 82834238 _____ () C:\Users\Stefan\Downloads\#P@ul W@lker&amp; Goran#.mp4
2014-04-13 12:05 - 2014-04-13 12:09 - 58530809 _____ () C:\Users\Stefan\Downloads\CB Mason Gabriel.mp4
2014-04-13 12:00 - 2014-04-13 12:05 - 79791335 _____ () C:\Users\Stefan\Downloads\Austin and Shawn.mp4
2014-04-13 09:58 - 2014-04-13 09:59 - 00000000 ____D () C:\Users\Stefan\Desktop\Neuer Ordner (2)
2014-04-09 18:00 - 2014-04-09 18:00 - 00011191 _____ () C:\Users\Stefan\gsview32.ini
2014-04-09 18:00 - 2014-04-09 18:00 - 00000000 ____D () C:\Program Files (x86)\Ghostgum
2014-04-09 17:59 - 2014-04-09 17:59 - 04176190 _____ () C:\Users\Stefan\Downloads\gsview50.zip
2014-04-09 17:59 - 2014-04-09 17:59 - 00000000 ____D () C:\Users\Stefan\Downloads\gsview50
2014-04-09 17:57 - 2014-04-09 17:57 - 13044626 _____ () C:\Users\Stefan\Downloads\gs914w32.exe
2014-04-09 17:57 - 2014-04-09 17:57 - 00000000 ____D () C:\Program Files (x86)\gs
2014-04-09 16:53 - 2014-04-09 16:53 - 00076208 _____ () C:\Users\Stefan\Desktop\miete.prn
2014-04-09 16:41 - 2014-02-06 01:41 - 01257984 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 16:41 - 2014-02-06 01:41 - 00978432 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-04-09 16:41 - 2014-02-06 01:26 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-04-09 16:41 - 2014-02-06 01:19 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-09 16:39 - 2014-04-11 19:15 - 00000000 _____ () C:\Users\Stefan\Desktop\DSC_0007.jpg.part
2014-04-09 12:41 - 2014-04-09 12:41 - 00007334 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu) (3).odt
2014-04-09 12:41 - 2014-04-09 12:41 - 00000098 ____H () C:\Users\Stefan\Desktop\.~lock.OpenDocument Text (neu) (3).odt#
2014-04-06 17:36 - 2014-04-06 17:39 - 51140818 _____ () C:\Users\Stefan\Downloads\Dad and Guy.mp4
2014-04-06 17:19 - 2014-04-06 17:24 - 81006868 _____ () C:\Users\Stefan\Downloads\Deviantsxxx.mp4
2014-04-06 17:16 - 2014-04-06 17:43 - 82438930 _____ () C:\Users\Stefan\Downloads\Threesome.mp4
2014-04-06 17:05 - 2014-04-06 17:36 - 311953970 _____ () C:\Users\Stefan\Downloads\Thank You, Daddy!.mp4
2014-04-06 17:02 - 2014-04-06 17:05 - 58687702 _____ () C:\Users\Stefan\Downloads\JOHNNY HAZZARD &amp; DIESEL O'GREEN.mp4
2014-04-06 17:00 - 2014-04-06 17:02 - 35155744 _____ () C:\Users\Stefan\Downloads\Gay boys having sex on boat.mp4
2014-04-06 16:53 - 2014-04-06 16:59 - 76968621 _____ () C:\Users\Stefan\Downloads\[portalvideogay.net].flv
2014-04-06 16:46 - 2014-04-06 16:53 - 82099943 _____ () C:\Users\Stefan\Downloads\240P 400k 24992732.flv
2014-04-06 16:40 - 2014-04-06 16:46 - 74922578 _____ () C:\Users\Stefan\Downloads\240P 400k 25021702.flv
2014-04-06 16:35 - 2014-04-06 16:40 - 55822622 _____ () C:\Users\Stefan\Downloads\240P 400k 25053892.flv
2014-04-06 16:28 - 2014-04-06 16:35 - 58838294 _____ () C:\Users\Stefan\Downloads\240P 400k 25069262.flv
2014-04-06 16:23 - 2014-04-06 16:28 - 60170431 _____ () C:\Users\Stefan\Downloads\240P 400K 16592262.flv
2014-04-06 16:17 - 2014-04-06 16:23 - 58621356 _____ () C:\Users\Stefan\Downloads\240P 400k 24966592.flv
2014-04-06 11:56 - 2014-04-06 11:56 - 03527317 _____ () C:\Users\Stefan\Downloads\cashcrawler_setup.zip
2014-04-05 13:23 - 2014-04-09 17:53 - 00000000 ____D () C:\Users\Stefan\Desktop\Bewerbung Job
2014-04-05 09:18 - 2014-04-05 09:18 - 00000000 ____D () C:\Yu-Gi-Oh! Power of Chaos Common
2014-04-05 09:16 - 2014-04-05 09:16 - 00000000 ____D () C:\yugi
2014-04-05 00:34 - 2014-04-05 00:36 - 109153033 _____ () C:\Users\Stefan\Downloads\la_24_ANIME-LOADS.ORG.mp4
2014-04-05 00:32 - 2014-04-05 00:34 - 98857824 _____ () C:\Users\Stefan\Downloads\la_23_ANIME-LOADS.ORG.mp4
2014-04-05 00:30 - 2014-04-05 00:32 - 197368861 _____ () C:\Users\Stefan\Downloads\la_22_ANIME-LOADS.ORG.mp4
2014-04-05 00:28 - 2014-04-05 00:30 - 227391257 _____ () C:\Users\Stefan\Downloads\kill_21_ANIME-LOADS.ORG.mp4
2014-04-05 00:26 - 2014-04-05 00:28 - 198722878 _____ () C:\Users\Stefan\Downloads\kill_20_ANIME-LOADS.ORG.mp4
2014-04-05 00:24 - 2014-04-05 00:26 - 212855469 _____ () C:\Users\Stefan\Downloads\la_19_ANIME-LOADS.ORG.mp4
2014-04-05 00:22 - 2014-04-05 00:24 - 268818214 _____ () C:\Users\Stefan\Downloads\la_18_ANIME-LOADS.ORG.mp4
2014-04-05 00:18 - 2014-04-05 00:22 - 176924567 _____ () C:\Users\Stefan\Downloads\la_17_ANIME-LOADS.ORG.mp4
2014-04-05 00:16 - 2014-04-05 00:18 - 236623469 _____ () C:\Users\Stefan\Downloads\la_15_ANIME-LOADS.ORG.mp4
2014-04-05 00:11 - 2014-04-05 00:16 - 242038633 _____ () C:\Users\Stefan\Downloads\la_14_ANIME-LOADS.ORG.mp4
2014-04-05 00:07 - 2014-04-05 00:11 - 170633354 _____ () C:\Users\Stefan\Downloads\la_13_ANIME-LOADS.ORG.mp4
2014-04-05 00:04 - 2014-04-05 00:07 - 272570427 _____ () C:\Users\Stefan\Downloads\la_12_ANIME-LOADS.ORG.mp4
2014-04-05 00:03 - 2014-04-05 00:04 - 94882418 _____ () C:\Users\Stefan\Downloads\la_11_ANIME-LOADS.ORG.mp4
2014-04-05 00:01 - 2014-04-05 00:03 - 242048198 _____ () C:\Users\Stefan\Downloads\la_10_ANIME-LOADS.ORG.mp4
2014-04-04 23:58 - 2014-04-05 00:01 - 251061640 _____ () C:\Users\Stefan\Downloads\la_09_ANIME-LOADS.ORG.mp4
2014-04-04 23:52 - 2014-04-04 23:58 - 198262154 _____ () C:\Users\Stefan\Downloads\la_08_ANIME-LOADS.ORG.mp4
2014-04-04 23:47 - 2014-04-04 23:52 - 197997489 _____ () C:\Users\Stefan\Downloads\la_07_ANIME-LOADS.ORG.mp4
2014-04-04 23:45 - 2014-04-04 23:47 - 240718098 _____ () C:\Users\Stefan\Downloads\la_06_ANIME-LOADS.ORG.mp4
2014-04-04 23:43 - 2014-04-04 23:45 - 169121121 _____ () C:\Users\Stefan\Downloads\la_05_ANIME-LOADS.ORG.mp4
2014-04-04 23:41 - 2014-04-04 23:43 - 225000802 _____ () C:\Users\Stefan\Downloads\la_04_ANIME-LOADS.ORG.mp4
2014-04-04 23:35 - 2014-04-04 23:41 - 239386829 _____ () C:\Users\Stefan\Downloads\la_03_ANIME-LOADS.ORG.mp4
2014-04-04 23:30 - 2014-04-04 23:35 - 207420956 _____ () C:\Users\Stefan\Downloads\la_02_ANIME-LOADS.ORG.mp4
2014-04-04 22:46 - 2014-04-04 22:52 - 90500039 _____ () C:\Users\Stefan\Downloads\CB - Colby Keller & Gabriel Clark Flip-Fuck!.mp4
2014-04-04 22:43 - 2014-04-04 22:46 - 47771675 _____ () C:\Users\Stefan\Downloads\Abxxxxxxxxxxxxxxxxxxxxxxxxxxx.mp4
2014-04-04 22:33 - 2014-04-04 22:43 - 162089139 _____ () C:\Users\Stefan\Downloads\The professional escort.mp4
2014-04-04 22:27 - 2014-04-04 22:33 - 87261913 _____ () C:\Users\Stefan\Downloads\A special massage.mp4
2014-04-04 22:22 - 2014-04-04 22:27 - 73377774 _____ () C:\Users\Stefan\Downloads\white muscle guy will do anything.mp4
2014-04-04 22:17 - 2014-04-04 22:22 - 81006543 _____ () C:\Users\Stefan\Downloads\2 Big Black Cocks 1 Sore White Ass.mp4
2014-04-04 22:11 - 2014-04-04 22:17 - 79485926 _____ () C:\Users\Stefan\Downloads\Jake Bass.flv
2014-04-04 22:01 - 2014-04-04 22:07 - 62042671 _____ () C:\Users\Stefan\Downloads\Peto Coast.flv
2014-04-04 21:57 - 2014-04-04 22:11 - 61173211 _____ () C:\Users\Stefan\Downloads\Santiago F.U Marko.flv
2014-04-04 21:50 - 2014-04-04 21:57 - 101715234 _____ () C:\Users\Stefan\Downloads\wrestling team tryouts.flv
2014-04-04 21:44 - 2014-04-04 21:50 - 93182147 _____ () C:\Users\Stefan\Downloads\Sean Cody - Rich & Miles bareback.flv
2014-04-04 21:39 - 2014-04-04 21:44 - 46274203 _____ () C:\Users\Stefan\Downloads\Ð±ÐµÐ»Ñ‹Ð¹ Ð´Ð¾Ñ…Ð¾Ð´ÑÐ³Ñƒ.flv
2014-04-04 21:37 - 2014-04-04 21:39 - 249588980 _____ () C:\Users\Stefan\Downloads\la_01_ANIME-LOADS.ORG.mp4
2014-04-04 21:03 - 2014-04-04 21:03 - 15932928 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_OVA.mp4
2014-04-04 21:02 - 2014-04-04 21:03 - 42781558 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_26.mp4
2014-04-04 21:01 - 2014-04-04 21:02 - 59494147 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_19.mp4
2014-04-04 21:00 - 2014-04-04 21:01 - 53542596 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_25.mp4
2014-04-04 20:59 - 2014-04-04 21:00 - 48024856 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_24.mp4
2014-04-04 20:58 - 2014-04-04 20:59 - 46934129 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_23.mp4
2014-04-04 20:57 - 2014-04-04 20:58 - 67205641 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_22.mp4
2014-04-04 20:57 - 2014-04-04 20:57 - 47486263 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_21.mp4
2014-04-04 20:56 - 2014-04-04 20:56 - 50337302 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_20.mp4
2014-04-04 20:53 - 2014-04-04 21:01 - 52215706 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_18.mp4
2014-04-04 20:52 - 2014-04-04 20:53 - 59042638 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_17.mp4
2014-04-04 20:49 - 2014-04-04 20:57 - 52288979 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_16.mp4
2014-04-04 20:49 - 2014-04-04 20:49 - 54138304 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_15.mp4
2014-04-04 20:47 - 2014-04-04 20:47 - 43341448 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_14.mp4
2014-04-04 20:46 - 2014-04-04 20:47 - 56997308 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_13.mp4
2014-04-04 20:45 - 2014-04-04 20:46 - 55056221 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_12.mp4
2014-04-04 20:44 - 2014-04-04 20:45 - 53971435 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_11.mp4
2014-04-04 20:42 - 2014-04-04 20:43 - 52695135 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_10.mp4
2014-04-04 20:40 - 2014-04-04 20:48 - 47698577 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_09.mp4
2014-04-04 20:39 - 2014-04-04 20:40 - 67202748 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_08.mp4
2014-04-04 20:37 - 2014-04-04 20:39 - 55910929 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_07.mp4
2014-04-04 20:36 - 2014-04-04 20:37 - 58605266 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_06.mp4
2014-04-04 20:35 - 2014-04-04 20:36 - 70959028 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_05.mp4
2014-04-04 20:33 - 2014-04-04 20:34 - 63107850 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_04.mp4
2014-04-04 20:32 - 2014-04-04 20:33 - 62683692 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_03.mp4
2014-04-04 20:30 - 2014-04-04 20:31 - 75171280 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_02.mp4
2014-04-04 20:26 - 2014-04-04 20:27 - 56830933 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_01.mp4
2014-04-04 20:17 - 2014-04-04 20:19 - 198030510 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 12 Ger Sub.mp4
2014-04-04 20:15 - 2014-04-04 20:17 - 198029176 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 11 Ger Sub.mp4
2014-04-04 20:13 - 2014-04-04 20:15 - 198044013 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 10 Ger Sub.mp4
2014-04-04 20:09 - 2014-04-04 20:13 - 213350854 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 09 Ger Sub.mp4
2014-04-04 20:07 - 2014-04-04 20:08 - 197925149 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 08 Ger Sub.mp4
2014-04-04 20:05 - 2014-04-04 20:07 - 222108559 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 07 Ger Sub.mp4
2014-04-04 20:02 - 2014-04-04 20:05 - 198139195 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 06 Ger Sub.mp4
2014-04-04 20:00 - 2014-04-04 20:02 - 198032147 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 05 Ger Sub.mp4
2014-04-04 19:59 - 2014-04-04 20:00 - 198107051 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 04 Ger Sub.mp4
2014-04-04 19:57 - 2014-04-04 19:59 - 198059388 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 03 Ger Sub.mp4
2014-04-04 19:55 - 2014-04-04 19:57 - 213320605 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 02 Ger Sub.mp4
2014-04-04 19:53 - 2014-04-04 19:55 - 197908446 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 01 Ger Sub.mp4
2014-04-04 19:38 - 2014-04-04 20:41 - 00011467 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu) (2).odt
2014-04-03 10:55 - 2014-04-03 11:07 - 00013128 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu).odt
2014-04-02 21:07 - 2014-04-02 21:14 - 110170843 _____ () C:\Users\Stefan\Downloads\[LS] Allen King & Antonio Aguilera - 1080p.flv
2014-04-02 20:51 - 2014-04-02 21:35 - 167517812 _____ () C:\Users\Stefan\Downloads\BG - Jan 16 2014 - Trenton Ducati and Tyler Sweet (34604).flv
2014-04-02 20:42 - 2014-04-02 20:51 - 95292049 _____ () C:\Users\Stefan\Downloads\sh@y mich@3l5 @nd justin d3@n.flv
2014-04-02 20:38 - 2014-04-02 20:42 - 55705449 _____ () C:\Users\Stefan\Downloads\Johnny Rapid's jailhouse fuck.flv
2014-04-02 20:29 - 2014-04-02 20:38 - 104728142 _____ () C:\Users\Stefan\Downloads\BEST FUCK.flv
2014-04-02 20:22 - 2014-04-02 20:29 - 55087997 _____ () C:\Users\Stefan\Downloads\Breno Lopez & Jay Roberts.flv
2014-04-02 20:17 - 2014-04-02 20:22 - 87164810 _____ () C:\Users\Stefan\Downloads\[SeanCody] SC-1757 Joey & Cameron - 1080p.flv
2014-04-02 20:04 - 2014-04-02 20:17 - 153005814 _____ () C:\Users\Stefan\Downloads\No Means Yes 2.flv.part
2014-04-02 20:00 - 2014-04-02 20:04 - 50483340 _____ () C:\Users\Stefan\Downloads\Tim Kruger and Thierry Lamasse.flv
2014-04-02 19:51 - 2014-04-02 20:00 - 94319703 _____ () C:\Users\Stefan\Downloads\Gabriel Vand.flv
2014-04-02 19:46 - 2014-04-02 19:51 - 74211215 _____ () C:\Users\Stefan\Downloads\Colby Keller &amp; Levi Michaels.mp4
2014-04-02 19:42 - 2014-04-02 19:59 - 260862333 _____ () C:\Users\Stefan\Downloads\Daddy's Reform School Playmate..mp4
2014-04-02 19:40 - 2014-04-02 19:46 - 90674646 _____ () C:\Users\Stefan\Downloads\Closing the deal.mp4
2014-04-02 19:38 - 2014-04-02 19:42 - 43978172 _____ () C:\Users\Stefan\Downloads\Pizza Delivery 2.mp4
2014-04-02 19:34 - 2014-04-02 19:40 - 94744773 _____ () C:\Users\Stefan\Downloads\kline1.mp4
2014-04-02 19:26 - 2014-04-02 19:38 - 180028035 _____ () C:\Users\Stefan\Downloads\gay francais.mp4
2014-04-02 19:26 - 2014-04-02 19:34 - 115866361 _____ () C:\Users\Stefan\Downloads\landon and jimmy.mp4
2014-03-30 21:52 - 2014-03-30 21:54 - 53818840 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_37__Xvid_ger.sub__CC196300_.mp4
2014-03-30 21:50 - 2014-03-30 21:52 - 56107566 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_36__Xvid_ger.sub__160A759B_.mp4
2014-03-30 21:47 - 2014-03-30 21:57 - 51457649 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_35__Xvid_ger.sub__EFD333FF_.mp4
2014-03-30 21:46 - 2014-03-30 21:47 - 47480120 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_34__Xvid_ger.sub__20F56A17_.mp4
2014-03-30 21:43 - 2014-03-30 21:45 - 55497507 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_33__Xvid_ger.sub__6EC902BC_.mp4
2014-03-30 21:41 - 2014-03-30 21:43 - 50877129 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_32v2__Xvid_ger.sub__B5979266_.mp4
2014-03-30 21:39 - 2014-03-30 21:41 - 58621991 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_31__Xvid_ger.sub__FB5341BC_.mp4
2014-03-30 21:32 - 2014-03-30 21:34 - 49729717 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_30__Xvid_ger.sub__8784B483_.mp4
2014-03-30 21:30 - 2014-03-30 21:32 - 50228073 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_29__Xvid_ger.sub__A5FEBEF3_.mp4
2014-03-30 21:29 - 2014-03-30 21:29 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-30 21:29 - 2014-03-30 21:29 - 00000000 _____ () C:\Windows\setupact.log
2014-03-30 21:23 - 2014-03-30 21:56 - 52560329 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_28__Xvid_ger.sub__3DFB4CFB_.mp4
2014-03-30 21:19 - 2014-03-30 21:20 - 46465729 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_27__Xvid_ger.sub__4E12E180_.mp4
2014-03-30 21:17 - 2014-03-30 21:19 - 57991189 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_26__Xvid_ger.sub__890BD73F_.mp4
2014-03-30 21:15 - 2014-03-30 21:16 - 54767747 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_25__Xvid_ger.sub__7B9C8288_.mp4
2014-03-30 21:13 - 2014-03-30 21:14 - 51281361 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_24__Xvid_ger.sub__6A054AD4_.mp4
2014-03-30 21:11 - 2014-03-30 21:12 - 53139643 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_23__Xvid_ger.sub__1CC51FF8_.mp4
2014-03-30 21:09 - 2014-03-30 21:10 - 48853068 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_22__Xvid_ger.sub__E157E8E2_.mp4
2014-03-30 20:41 - 2014-03-30 20:42 - 47274937 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_21__Xvid_ger.sub__BCAF2C6C_.mp4
2014-03-30 20:17 - 2014-03-30 20:18 - 48435266 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_19__Xvid_ger.sub__0C17CC8A_.mp4
2014-03-30 20:17 - 2014-03-30 20:17 - 47074196 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_18__Xvid_ger.sub__BC1F662A_.mp4
2014-03-30 20:16 - 2014-03-30 20:16 - 50328767 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_17__Xvid_ger.sub__70D96388_.mp4
2014-03-30 20:15 - 2014-03-30 20:15 - 45455700 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_16__Xvid_ger.sub__25932D6D_.mp4
2014-03-30 20:14 - 2014-03-30 20:15 - 49896156 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_20__Xvid_ger.sub__5C1D4E77_.mp4
2014-03-30 20:11 - 2014-03-30 20:12 - 50106472 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_15__Xvid_ger.sub__5CAFAE3F_.mp4
2014-03-30 20:10 - 2014-03-30 20:11 - 44393400 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_14__Xvid_ger.sub__44C3B507_.mp4
2014-03-30 20:09 - 2014-03-30 20:10 - 48393856 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_13__Xvid_ger.sub__DB87559C_.mp4
2014-03-30 20:09 - 2014-03-30 20:09 - 46515515 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_12__Xvid_ger.sub__A3E9AD43_.mp4
2014-03-30 20:08 - 2014-03-30 20:08 - 49817493 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_11__Xvid_ger.sub__3AB75B0F_.mp4
2014-03-30 20:02 - 2014-03-30 20:02 - 53459302 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_10__Xvid_ger.sub__5F0FD77F_.mp4
2014-03-30 20:01 - 2014-03-30 20:01 - 50216117 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_09__Xvid_ger.sub__028F875C_.mp4
2014-03-30 20:00 - 2014-03-30 20:00 - 51101370 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_08__Xvid_ger.sub__E37D1B4E_.mp4
2014-03-30 19:59 - 2014-03-30 20:00 - 50559248 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_07__Xvid_ger.sub__1E1C37D8_.mp4
2014-03-30 19:58 - 2014-03-30 19:59 - 55140980 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_06__Xvid_ger.sub__E98F7EB1_.mp4
2014-03-30 14:49 - 2014-03-30 14:50 - 43169315 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_05__Xvid_ger.sub__44F1A26E_.mp4
2014-03-30 14:48 - 2014-03-30 14:49 - 46135178 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_04__Xvid_ger.sub__BD57706F_.mp4
2014-03-30 14:39 - 2014-03-30 14:48 - 46173032 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_03__Xvid_ger.sub__5E0781B4_.mp4
2014-03-30 14:36 - 2014-03-30 14:37 - 52949996 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_02__Xvid_ger.sub__477CE0D8_.mp4
2014-03-30 14:13 - 2014-04-15 20:02 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\vlc
2014-03-30 14:13 - 2014-03-30 14:13 - 00001074 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-03-30 14:11 - 2014-03-30 14:11 - 24677393 _____ () C:\Users\Stefan\Downloads\vlc-2.1.3-win32.exe
2014-03-30 13:59 - 2014-03-30 13:59 - 00130707 _____ () C:\Users\Stefan\Downloads\_subs4u_Death_Note_01_37_Xvid_ger.sub_.torrent
2014-03-30 13:59 - 2014-03-30 13:59 - 00000000 ____D () C:\Users\Stefan\Desktop\KHOST
2014-03-30 13:57 - 2014-03-30 14:07 - 51847442 _____ () C:\Users\Stefan\Downloads\139461862337hd.flv
2014-03-30 13:57 - 2014-03-30 13:57 - 02079653 _____ () C:\Users\Stefan\Downloads\83a65757-e807-4c8d-90ef-bc7b1d36e4a7.mp4
2014-03-30 13:39 - 2014-03-30 13:39 - 06639616 _____ () C:\Users\Stefan\Downloads\inSSIDer-installer.msi
2014-03-30 13:05 - 2014-03-30 13:06 - 00000000 ____D () C:\Users\Stefan\AppData\Local\MetaGeek,_LLC
2014-03-30 13:04 - 2014-03-30 13:04 - 00002491 _____ () C:\Users\Public\Desktop\inSSIDer Home.lnk
2014-03-30 13:03 - 2014-03-30 13:03 - 00001405 _____ () C:\Users\Public\Desktop\Xirrus Wi-Fi Inspector.lnk
2014-03-30 13:02 - 2014-03-30 13:02 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Xirrus
2014-03-30 13:01 - 2014-03-30 13:01 - 04767744 _____ () C:\Users\Stefan\Downloads\inSSIDer31-installer.msi
2014-03-30 13:00 - 2014-03-30 13:00 - 22224144 _____ (Xirrus) C:\Users\Stefan\Downloads\WiFiInspector-Setup-1.2.1.4.exe
2014-03-30 12:30 - 2014-03-30 12:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 00:00 - 2014-03-29 00:00 - 00000000 ____D () C:\Users\Stefan\Documents\CyberLink
2014-03-25 17:50 - 2014-03-25 17:50 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-25 17:50 - 2014-03-25 17:50 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-25 17:50 - 2014-03-25 17:50 - 00000000 ____D () C:\Users\Stefan\AppData\Local\Skype
2014-03-24 14:21 - 2014-04-05 15:08 - 00000000 ____D () C:\Users\Stefan\Desktop\Bewerbung
2014-03-19 18:20 - 2014-03-19 18:21 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Schiffbruch
2014-03-19 18:18 - 2014-03-19 18:18 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-03-18 09:56 - 2014-03-18 09:56 - 00308560 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-17 21:46 - 2014-03-17 21:46 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\iFunbox_UserCache
2014-03-17 21:46 - 2014-03-17 21:46 - 00000000 ____D () C:\Program Files (x86)\i-Funbox DevTeam
2014-03-17 21:43 - 2014-03-17 21:44 - 15016222 _____ ( ) C:\Users\Stefan\Downloads\ifunbox27_setup.exe
2014-03-16 16:40 - 2014-03-16 16:41 - 32815896 _____ (DVDVideoSoft Ltd. ) C:\Users\Stefan\Downloads\FreeYouTubeToiPhoneConverter-2.12.29.303.exe
2014-03-16 15:26 - 2013-10-25 09:34 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-03-16 15:26 - 2013-10-25 00:34 - 00248240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-03-16 15:25 - 2014-01-31 02:48 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-16 15:25 - 2014-01-31 02:06 - 01628160 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll

==================== One Month Modified Files and Folders =======

2014-04-15 20:45 - 2014-04-15 20:45 - 00015833 _____ () C:\Users\Stefan\Downloads\FRST.txt
2014-04-15 20:45 - 2014-04-15 20:44 - 00000000 ____D () C:\FRST
2014-04-15 20:45 - 2013-09-13 21:33 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Skype
2014-04-15 20:44 - 2014-04-15 20:44 - 02054144 _____ (Farbar) C:\Users\Stefan\Downloads\FRST64.exe
2014-04-15 20:43 - 2014-04-15 20:43 - 01042944 _____ (Farbar) C:\Users\Stefan\Downloads\FRST.exe
2014-04-15 20:07 - 2014-04-15 20:07 - 03046734 _____ () C:\Users\Stefan\Downloads\WNR1000_V1.0.2.62_60.0.87.zip
2014-04-15 20:02 - 2014-03-30 14:13 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\vlc
2014-04-15 20:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\sru
2014-04-15 19:44 - 2014-02-12 15:18 - 01886808 _____ () C:\Windows\WindowsUpdate.log
2014-04-15 15:38 - 2014-04-15 15:34 - 95321437 _____ () C:\Users\Stefan\Desktop\135698614533hd_clear.flv
2014-04-15 15:34 - 2013-09-08 11:58 - 02523648 ___SH () C:\Users\Stefan\Desktop\Thumbs.db
2014-04-15 14:52 - 2013-09-04 14:11 - 02786304 ___SH () C:\Users\Stefan\Downloads\Thumbs.db
2014-04-15 14:48 - 2014-04-15 14:29 - 142986250 _____ () C:\Users\Stefan\Downloads\PsyPass 04 Ger Sub_H264-848x480.mp4
2014-04-15 14:21 - 2014-04-15 14:21 - 01810541 _____ () C:\Users\Stefan\Desktop\mov_500.mp4
2014-04-13 15:12 - 2014-04-13 15:09 - 39276437 _____ () C:\Users\Stefan\Downloads\Dads Slim Boy Use.flv
2014-04-13 15:09 - 2014-04-13 14:58 - 138195017 _____ () C:\Users\Stefan\Downloads\Kyle King & Shay Michaels.flv
2014-04-13 14:56 - 2014-02-12 14:34 - 00000000 ____D () C:\Users\Stefan\Documents\Bluetooth Folder
2014-04-13 14:18 - 2014-04-13 13:40 - 95349997 _____ () C:\Users\Stefan\Desktop\13569895527hd_clear.flv
2014-04-13 12:45 - 2014-04-13 12:41 - 95328268 _____ () C:\Users\Stefan\Desktop\135105772450hd_clear.flv
2014-04-13 12:28 - 2014-04-13 12:23 - 77584437 _____ () C:\Users\Stefan\Downloads\genial.flv
2014-04-13 12:23 - 2014-04-13 12:19 - 63339896 _____ () C:\Users\Stefan\Downloads\Willing to be used ^^.mp4
2014-04-13 12:19 - 2014-04-13 12:14 - 80197191 _____ () C:\Users\Stefan\Downloads\GPB _ Sexy Tied up Boy Used.mp4
2014-04-13 12:14 - 2014-04-13 12:09 - 82834238 _____ () C:\Users\Stefan\Downloads\#P@ul W@lker&amp; Goran#.mp4
2014-04-13 12:09 - 2014-04-13 12:05 - 58530809 _____ () C:\Users\Stefan\Downloads\CB Mason Gabriel.mp4
2014-04-13 12:05 - 2014-04-13 12:00 - 79791335 _____ () C:\Users\Stefan\Downloads\Austin and Shawn.mp4
2014-04-13 09:59 - 2014-04-13 09:58 - 00000000 ____D () C:\Users\Stefan\Desktop\Neuer Ordner (2)
2014-04-12 22:55 - 2013-06-14 21:47 - 00753134 _____ () C:\Windows\system32\perfh007.dat
2014-04-12 22:55 - 2013-06-14 21:47 - 00155826 _____ () C:\Windows\system32\perfc007.dat
2014-04-12 22:55 - 2012-07-26 09:28 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-12 22:49 - 2014-02-12 00:51 - 00006290 _____ () C:\Windows\PFRO.log
2014-04-12 22:49 - 2013-08-28 20:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-12 22:49 - 2013-06-14 12:10 - 00053284 _____ () C:\Windows\system32\wpbbin.exe
2014-04-12 22:49 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-12 00:17 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-04-11 21:38 - 2013-09-04 10:47 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-11 21:34 - 2013-09-04 10:47 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-11 19:15 - 2014-04-09 16:39 - 00000000 _____ () C:\Users\Stefan\Desktop\DSC_0007.jpg.part
2014-04-11 19:05 - 2013-09-04 11:39 - 00000000 ____D () C:\Users\Stefan\AppData\Local\CrashDumps
2014-04-09 23:57 - 2013-11-24 13:12 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\BitTorrent
2014-04-09 18:00 - 2014-04-09 18:00 - 00011191 _____ () C:\Users\Stefan\gsview32.ini
2014-04-09 18:00 - 2014-04-09 18:00 - 00000000 ____D () C:\Program Files (x86)\Ghostgum
2014-04-09 18:00 - 2013-10-24 20:35 - 00400384 ___SH () C:\Users\Stefan\Documents\Thumbs.db
2014-04-09 18:00 - 2013-08-28 20:44 - 00000000 ____D () C:\Users\Stefan
2014-04-09 17:59 - 2014-04-09 17:59 - 04176190 _____ () C:\Users\Stefan\Downloads\gsview50.zip
2014-04-09 17:59 - 2014-04-09 17:59 - 00000000 ____D () C:\Users\Stefan\Downloads\gsview50
2014-04-09 17:58 - 2013-08-28 20:45 - 00000000 ____D () C:\Users\Stefan\AppData\Local\VirtualStore
2014-04-09 17:57 - 2014-04-09 17:57 - 13044626 _____ () C:\Users\Stefan\Downloads\gs914w32.exe
2014-04-09 17:57 - 2014-04-09 17:57 - 00000000 ____D () C:\Program Files (x86)\gs
2014-04-09 17:53 - 2014-04-05 13:23 - 00000000 ____D () C:\Users\Stefan\Desktop\Bewerbung Job
2014-04-09 16:53 - 2014-04-09 16:53 - 00076208 _____ () C:\Users\Stefan\Desktop\miete.prn
2014-04-09 12:41 - 2014-04-09 12:41 - 00007334 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu) (3).odt
2014-04-09 12:41 - 2014-04-09 12:41 - 00000098 ____H () C:\Users\Stefan\Desktop\.~lock.OpenDocument Text (neu) (3).odt#
2014-04-06 21:55 - 2014-01-05 21:28 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\newnext.me
2014-04-06 17:43 - 2014-04-06 17:16 - 82438930 _____ () C:\Users\Stefan\Downloads\Threesome.mp4
2014-04-06 17:39 - 2014-04-06 17:36 - 51140818 _____ () C:\Users\Stefan\Downloads\Dad and Guy.mp4
2014-04-06 17:36 - 2014-04-06 17:05 - 311953970 _____ () C:\Users\Stefan\Downloads\Thank You, Daddy!.mp4
2014-04-06 17:24 - 2014-04-06 17:19 - 81006868 _____ () C:\Users\Stefan\Downloads\Deviantsxxx.mp4
2014-04-06 17:05 - 2014-04-06 17:02 - 58687702 _____ () C:\Users\Stefan\Downloads\JOHNNY HAZZARD &amp; DIESEL O'GREEN.mp4
2014-04-06 17:02 - 2014-04-06 17:00 - 35155744 _____ () C:\Users\Stefan\Downloads\Gay boys having sex on boat.mp4
2014-04-06 16:59 - 2014-04-06 16:53 - 76968621 _____ () C:\Users\Stefan\Downloads\[portalvideogay.net].flv
2014-04-06 16:53 - 2014-04-06 16:46 - 82099943 _____ () C:\Users\Stefan\Downloads\240P 400k 24992732.flv
2014-04-06 16:46 - 2014-04-06 16:40 - 74922578 _____ () C:\Users\Stefan\Downloads\240P 400k 25021702.flv
2014-04-06 16:40 - 2014-04-06 16:35 - 55822622 _____ () C:\Users\Stefan\Downloads\240P 400k 25053892.flv
2014-04-06 16:35 - 2014-04-06 16:28 - 58838294 _____ () C:\Users\Stefan\Downloads\240P 400k 25069262.flv
2014-04-06 16:28 - 2014-04-06 16:23 - 60170431 _____ () C:\Users\Stefan\Downloads\240P 400K 16592262.flv
2014-04-06 16:23 - 2014-04-06 16:17 - 58621356 _____ () C:\Users\Stefan\Downloads\240P 400k 24966592.flv
2014-04-06 15:01 - 2013-09-01 17:42 - 00000000 ____D () C:\Users\Stefan\AppData\Local\Last.fm
2014-04-06 12:04 - 2013-08-30 20:41 - 00000000 ____D () C:\Users\Stefan\Documents\Installiert
2014-04-06 11:56 - 2014-04-06 11:56 - 03527317 _____ () C:\Users\Stefan\Downloads\cashcrawler_setup.zip
2014-04-05 15:08 - 2014-03-24 14:21 - 00000000 ____D () C:\Users\Stefan\Desktop\Bewerbung
2014-04-05 09:18 - 2014-04-05 09:18 - 00000000 ____D () C:\Yu-Gi-Oh! Power of Chaos Common
2014-04-05 09:16 - 2014-04-05 09:16 - 00000000 ____D () C:\yugi
2014-04-05 00:36 - 2014-04-05 00:34 - 109153033 _____ () C:\Users\Stefan\Downloads\la_24_ANIME-LOADS.ORG.mp4
2014-04-05 00:34 - 2014-04-05 00:32 - 98857824 _____ () C:\Users\Stefan\Downloads\la_23_ANIME-LOADS.ORG.mp4
2014-04-05 00:32 - 2014-04-05 00:30 - 197368861 _____ () C:\Users\Stefan\Downloads\la_22_ANIME-LOADS.ORG.mp4
2014-04-05 00:30 - 2014-04-05 00:28 - 227391257 _____ () C:\Users\Stefan\Downloads\kill_21_ANIME-LOADS.ORG.mp4
2014-04-05 00:28 - 2014-04-05 00:26 - 198722878 _____ () C:\Users\Stefan\Downloads\kill_20_ANIME-LOADS.ORG.mp4
2014-04-05 00:26 - 2014-04-05 00:24 - 212855469 _____ () C:\Users\Stefan\Downloads\la_19_ANIME-LOADS.ORG.mp4
2014-04-05 00:24 - 2014-04-05 00:22 - 268818214 _____ () C:\Users\Stefan\Downloads\la_18_ANIME-LOADS.ORG.mp4
2014-04-05 00:22 - 2014-04-05 00:18 - 176924567 _____ () C:\Users\Stefan\Downloads\la_17_ANIME-LOADS.ORG.mp4
2014-04-05 00:18 - 2014-04-05 00:16 - 236623469 _____ () C:\Users\Stefan\Downloads\la_15_ANIME-LOADS.ORG.mp4
2014-04-05 00:16 - 2014-04-05 00:11 - 242038633 _____ () C:\Users\Stefan\Downloads\la_14_ANIME-LOADS.ORG.mp4
2014-04-05 00:11 - 2014-04-05 00:07 - 170633354 _____ () C:\Users\Stefan\Downloads\la_13_ANIME-LOADS.ORG.mp4
2014-04-05 00:07 - 2014-04-05 00:04 - 272570427 _____ () C:\Users\Stefan\Downloads\la_12_ANIME-LOADS.ORG.mp4
2014-04-05 00:04 - 2014-04-05 00:03 - 94882418 _____ () C:\Users\Stefan\Downloads\la_11_ANIME-LOADS.ORG.mp4
2014-04-05 00:03 - 2014-04-05 00:01 - 242048198 _____ () C:\Users\Stefan\Downloads\la_10_ANIME-LOADS.ORG.mp4
2014-04-05 00:01 - 2014-04-04 23:58 - 251061640 _____ () C:\Users\Stefan\Downloads\la_09_ANIME-LOADS.ORG.mp4
2014-04-04 23:58 - 2014-04-04 23:52 - 198262154 _____ () C:\Users\Stefan\Downloads\la_08_ANIME-LOADS.ORG.mp4
2014-04-04 23:52 - 2014-04-04 23:47 - 197997489 _____ () C:\Users\Stefan\Downloads\la_07_ANIME-LOADS.ORG.mp4
2014-04-04 23:47 - 2014-04-04 23:45 - 240718098 _____ () C:\Users\Stefan\Downloads\la_06_ANIME-LOADS.ORG.mp4
2014-04-04 23:45 - 2014-04-04 23:43 - 169121121 _____ () C:\Users\Stefan\Downloads\la_05_ANIME-LOADS.ORG.mp4
2014-04-04 23:43 - 2014-04-04 23:41 - 225000802 _____ () C:\Users\Stefan\Downloads\la_04_ANIME-LOADS.ORG.mp4
2014-04-04 23:41 - 2014-04-04 23:35 - 239386829 _____ () C:\Users\Stefan\Downloads\la_03_ANIME-LOADS.ORG.mp4
2014-04-04 23:35 - 2014-04-04 23:30 - 207420956 _____ () C:\Users\Stefan\Downloads\la_02_ANIME-LOADS.ORG.mp4
2014-04-04 22:52 - 2014-04-04 22:46 - 90500039 _____ () C:\Users\Stefan\Downloads\CB - Colby Keller & Gabriel Clark Flip-Fuck!.mp4
2014-04-04 22:46 - 2014-04-04 22:43 - 47771675 _____ () C:\Users\Stefan\Downloads\Abxxxxxxxxxxxxxxxxxxxxxxxxxxx.mp4
2014-04-04 22:43 - 2014-04-04 22:33 - 162089139 _____ () C:\Users\Stefan\Downloads\The professional escort.mp4
2014-04-04 22:33 - 2014-04-04 22:27 - 87261913 _____ () C:\Users\Stefan\Downloads\A special massage.mp4
2014-04-04 22:27 - 2014-04-04 22:22 - 73377774 _____ () C:\Users\Stefan\Downloads\white muscle guy will do anything.mp4
2014-04-04 22:22 - 2014-04-04 22:17 - 81006543 _____ () C:\Users\Stefan\Downloads\2 Big Black Cocks 1 Sore White Ass.mp4
2014-04-04 22:17 - 2014-04-04 22:11 - 79485926 _____ () C:\Users\Stefan\Downloads\Jake Bass.flv
2014-04-04 22:11 - 2014-04-04 21:57 - 61173211 _____ () C:\Users\Stefan\Downloads\Santiago F.U Marko.flv
2014-04-04 22:07 - 2014-04-04 22:01 - 62042671 _____ () C:\Users\Stefan\Downloads\Peto Coast.flv
2014-04-04 21:57 - 2014-04-04 21:50 - 101715234 _____ () C:\Users\Stefan\Downloads\wrestling team tryouts.flv
2014-04-04 21:50 - 2014-04-04 21:44 - 93182147 _____ () C:\Users\Stefan\Downloads\Sean Cody - Rich & Miles bareback.flv
2014-04-04 21:44 - 2014-04-04 21:39 - 46274203 _____ () C:\Users\Stefan\Downloads\Ð±ÐµÐ»Ñ‹Ð¹ Ð´Ð¾Ñ…Ð¾Ð´ÑÐ³Ñƒ.flv
2014-04-04 21:39 - 2014-04-04 21:37 - 249588980 _____ () C:\Users\Stefan\Downloads\la_01_ANIME-LOADS.ORG.mp4
2014-04-04 21:03 - 2014-04-04 21:03 - 15932928 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_OVA.mp4
2014-04-04 21:03 - 2014-04-04 21:02 - 42781558 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_26.mp4
2014-04-04 21:02 - 2014-04-04 21:01 - 59494147 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_19.mp4
2014-04-04 21:01 - 2014-04-04 21:00 - 53542596 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_25.mp4
2014-04-04 21:01 - 2014-04-04 20:53 - 52215706 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_18.mp4
2014-04-04 21:00 - 2014-04-04 20:59 - 48024856 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_24.mp4
2014-04-04 20:59 - 2014-04-04 20:58 - 46934129 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_23.mp4
2014-04-04 20:58 - 2014-04-04 20:57 - 67205641 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_22.mp4
2014-04-04 20:57 - 2014-04-04 20:57 - 47486263 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_21.mp4
2014-04-04 20:57 - 2014-04-04 20:49 - 52288979 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_16.mp4
2014-04-04 20:56 - 2014-04-04 20:56 - 50337302 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_20.mp4
2014-04-04 20:53 - 2014-04-04 20:52 - 59042638 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_17.mp4
2014-04-04 20:49 - 2014-04-04 20:49 - 54138304 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_15.mp4
2014-04-04 20:48 - 2014-04-04 20:40 - 47698577 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_09.mp4
2014-04-04 20:47 - 2014-04-04 20:47 - 43341448 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_14.mp4
2014-04-04 20:47 - 2014-04-04 20:46 - 56997308 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_13.mp4
2014-04-04 20:46 - 2014-04-04 20:45 - 55056221 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_12.mp4
2014-04-04 20:45 - 2014-04-04 20:44 - 53971435 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_11.mp4
2014-04-04 20:43 - 2014-04-04 20:42 - 52695135 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_10.mp4
2014-04-04 20:41 - 2014-04-04 19:38 - 00011467 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu) (2).odt
2014-04-04 20:40 - 2014-04-04 20:39 - 67202748 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_08.mp4
2014-04-04 20:39 - 2014-04-04 20:37 - 55910929 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_07.mp4
2014-04-04 20:37 - 2014-04-04 20:36 - 58605266 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_06.mp4
2014-04-04 20:36 - 2014-04-04 20:35 - 70959028 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_05.mp4
2014-04-04 20:34 - 2014-04-04 20:33 - 63107850 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_04.mp4
2014-04-04 20:33 - 2014-04-04 20:32 - 62683692 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_03.mp4
2014-04-04 20:31 - 2014-04-04 20:30 - 75171280 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_02.mp4
2014-04-04 20:27 - 2014-04-04 20:26 - 56830933 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_01.mp4
2014-04-04 20:19 - 2014-04-04 20:17 - 198030510 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 12 Ger Sub.mp4
2014-04-04 20:17 - 2014-04-04 20:15 - 198029176 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 11 Ger Sub.mp4
2014-04-04 20:15 - 2014-04-04 20:13 - 198044013 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 10 Ger Sub.mp4
2014-04-04 20:13 - 2014-04-04 20:09 - 213350854 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 09 Ger Sub.mp4
2014-04-04 20:08 - 2014-04-04 20:07 - 197925149 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 08 Ger Sub.mp4
2014-04-04 20:07 - 2014-04-04 20:05 - 222108559 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 07 Ger Sub.mp4
2014-04-04 20:05 - 2014-04-04 20:02 - 198139195 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 06 Ger Sub.mp4
2014-04-04 20:02 - 2014-04-04 20:00 - 198032147 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 05 Ger Sub.mp4
2014-04-04 20:00 - 2014-04-04 19:59 - 198107051 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 04 Ger Sub.mp4
2014-04-04 19:59 - 2014-04-04 19:57 - 198059388 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 03 Ger Sub.mp4
2014-04-04 19:57 - 2014-04-04 19:55 - 213320605 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 02 Ger Sub.mp4
2014-04-04 19:55 - 2014-04-04 19:53 - 197908446 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 01 Ger Sub.mp4
2014-04-03 11:07 - 2014-04-03 10:55 - 00013128 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu).odt
2014-04-02 21:35 - 2014-04-02 20:51 - 167517812 _____ () C:\Users\Stefan\Downloads\BG - Jan 16 2014 - Trenton Ducati and Tyler Sweet (34604).flv
2014-04-02 21:14 - 2014-04-02 21:07 - 110170843 _____ () C:\Users\Stefan\Downloads\[LS] Allen King & Antonio Aguilera - 1080p.flv
2014-04-02 20:51 - 2014-04-02 20:42 - 95292049 _____ () C:\Users\Stefan\Downloads\sh@y mich@3l5 @nd justin d3@n.flv
2014-04-02 20:42 - 2014-04-02 20:38 - 55705449 _____ () C:\Users\Stefan\Downloads\Johnny Rapid's jailhouse fuck.flv
2014-04-02 20:38 - 2014-04-02 20:29 - 104728142 _____ () C:\Users\Stefan\Downloads\BEST FUCK.flv
2014-04-02 20:29 - 2014-04-02 20:22 - 55087997 _____ () C:\Users\Stefan\Downloads\Breno Lopez & Jay Roberts.flv
2014-04-02 20:22 - 2014-04-02 20:17 - 87164810 _____ () C:\Users\Stefan\Downloads\[SeanCody] SC-1757 Joey & Cameron - 1080p.flv
2014-04-02 20:17 - 2014-04-02 20:04 - 153005814 _____ () C:\Users\Stefan\Downloads\No Means Yes 2.flv.part
2014-04-02 20:04 - 2014-04-02 20:00 - 50483340 _____ () C:\Users\Stefan\Downloads\Tim Kruger and Thierry Lamasse.flv
2014-04-02 20:00 - 2014-04-02 19:51 - 94319703 _____ () C:\Users\Stefan\Downloads\Gabriel Vand.flv
2014-04-02 19:59 - 2014-04-02 19:42 - 260862333 _____ () C:\Users\Stefan\Downloads\Daddy's Reform School Playmate..mp4
2014-04-02 19:51 - 2014-04-02 19:46 - 74211215 _____ () C:\Users\Stefan\Downloads\Colby Keller &amp; Levi Michaels.mp4
2014-04-02 19:46 - 2014-04-02 19:40 - 90674646 _____ () C:\Users\Stefan\Downloads\Closing the deal.mp4
2014-04-02 19:42 - 2014-04-02 19:38 - 43978172 _____ () C:\Users\Stefan\Downloads\Pizza Delivery 2.mp4
2014-04-02 19:40 - 2014-04-02 19:34 - 94744773 _____ () C:\Users\Stefan\Downloads\kline1.mp4
2014-04-02 19:38 - 2014-04-02 19:26 - 180028035 _____ () C:\Users\Stefan\Downloads\gay francais.mp4
2014-04-02 19:34 - 2014-04-02 19:26 - 115866361 _____ () C:\Users\Stefan\Downloads\landon and jimmy.mp4
2014-04-02 19:02 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-03-31 23:18 - 2013-11-24 13:08 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-31 23:18 - 2013-11-24 13:08 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-30 21:57 - 2014-03-30 21:47 - 51457649 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_35__Xvid_ger.sub__EFD333FF_.mp4
2014-03-30 21:56 - 2014-03-30 21:23 - 52560329 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_28__Xvid_ger.sub__3DFB4CFB_.mp4
2014-03-30 21:54 - 2014-03-30 21:52 - 53818840 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_37__Xvid_ger.sub__CC196300_.mp4
2014-03-30 21:52 - 2014-03-30 21:50 - 56107566 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_36__Xvid_ger.sub__160A759B_.mp4
2014-03-30 21:47 - 2014-03-30 21:46 - 47480120 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_34__Xvid_ger.sub__20F56A17_.mp4
2014-03-30 21:45 - 2014-03-30 21:43 - 55497507 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_33__Xvid_ger.sub__6EC902BC_.mp4
2014-03-30 21:43 - 2014-03-30 21:41 - 50877129 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_32v2__Xvid_ger.sub__B5979266_.mp4
2014-03-30 21:41 - 2014-03-30 21:39 - 58621991 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_31__Xvid_ger.sub__FB5341BC_.mp4
2014-03-30 21:34 - 2014-03-30 21:32 - 49729717 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_30__Xvid_ger.sub__8784B483_.mp4
2014-03-30 21:32 - 2014-03-30 21:30 - 50228073 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_29__Xvid_ger.sub__A5FEBEF3_.mp4
2014-03-30 21:29 - 2014-03-30 21:29 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-30 21:29 - 2014-03-30 21:29 - 00000000 _____ () C:\Windows\setupact.log
2014-03-30 21:20 - 2014-03-30 21:19 - 46465729 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_27__Xvid_ger.sub__4E12E180_.mp4
2014-03-30 21:19 - 2014-03-30 21:17 - 57991189 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_26__Xvid_ger.sub__890BD73F_.mp4
2014-03-30 21:16 - 2014-03-30 21:15 - 54767747 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_25__Xvid_ger.sub__7B9C8288_.mp4
2014-03-30 21:14 - 2014-03-30 21:13 - 51281361 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_24__Xvid_ger.sub__6A054AD4_.mp4
2014-03-30 21:12 - 2014-03-30 21:11 - 53139643 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_23__Xvid_ger.sub__1CC51FF8_.mp4
2014-03-30 21:10 - 2014-03-30 21:09 - 48853068 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_22__Xvid_ger.sub__E157E8E2_.mp4
2014-03-30 20:42 - 2014-03-30 20:41 - 47274937 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_21__Xvid_ger.sub__BCAF2C6C_.mp4
2014-03-30 20:18 - 2014-03-30 20:17 - 48435266 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_19__Xvid_ger.sub__0C17CC8A_.mp4
2014-03-30 20:17 - 2014-03-30 20:17 - 47074196 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_18__Xvid_ger.sub__BC1F662A_.mp4
2014-03-30 20:16 - 2014-03-30 20:16 - 50328767 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_17__Xvid_ger.sub__70D96388_.mp4
2014-03-30 20:15 - 2014-03-30 20:15 - 45455700 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_16__Xvid_ger.sub__25932D6D_.mp4
2014-03-30 20:15 - 2014-03-30 20:14 - 49896156 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_20__Xvid_ger.sub__5C1D4E77_.mp4
2014-03-30 20:12 - 2014-03-30 20:11 - 50106472 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_15__Xvid_ger.sub__5CAFAE3F_.mp4
2014-03-30 20:11 - 2014-03-30 20:10 - 44393400 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_14__Xvid_ger.sub__44C3B507_.mp4
2014-03-30 20:10 - 2014-03-30 20:09 - 48393856 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_13__Xvid_ger.sub__DB87559C_.mp4
2014-03-30 20:09 - 2014-03-30 20:09 - 46515515 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_12__Xvid_ger.sub__A3E9AD43_.mp4
2014-03-30 20:08 - 2014-03-30 20:08 - 49817493 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_11__Xvid_ger.sub__3AB75B0F_.mp4
2014-03-30 20:02 - 2014-03-30 20:02 - 53459302 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_10__Xvid_ger.sub__5F0FD77F_.mp4
2014-03-30 20:01 - 2014-03-30 20:01 - 50216117 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_09__Xvid_ger.sub__028F875C_.mp4
2014-03-30 20:00 - 2014-03-30 20:00 - 51101370 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_08__Xvid_ger.sub__E37D1B4E_.mp4
2014-03-30 20:00 - 2014-03-30 19:59 - 50559248 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_07__Xvid_ger.sub__1E1C37D8_.mp4
2014-03-30 19:59 - 2014-03-30 19:58 - 55140980 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_06__Xvid_ger.sub__E98F7EB1_.mp4
2014-03-30 14:50 - 2014-03-30 14:49 - 43169315 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_05__Xvid_ger.sub__44F1A26E_.mp4
2014-03-30 14:49 - 2014-03-30 14:48 - 46135178 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_04__Xvid_ger.sub__BD57706F_.mp4
2014-03-30 14:48 - 2014-03-30 14:39 - 46173032 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_03__Xvid_ger.sub__5E0781B4_.mp4
2014-03-30 14:37 - 2014-03-30 14:36 - 52949996 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_02__Xvid_ger.sub__477CE0D8_.mp4
2014-03-30 14:13 - 2014-03-30 14:13 - 00001074 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-03-30 14:12 - 2014-01-05 21:18 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-03-30 14:11 - 2014-03-30 14:11 - 24677393 _____ () C:\Users\Stefan\Downloads\vlc-2.1.3-win32.exe
2014-03-30 14:07 - 2014-03-30 13:57 - 51847442 _____ () C:\Users\Stefan\Downloads\139461862337hd.flv
2014-03-30 13:59 - 2014-03-30 13:59 - 00130707 _____ () C:\Users\Stefan\Downloads\_subs4u_Death_Note_01_37_Xvid_ger.sub_.torrent
2014-03-30 13:59 - 2014-03-30 13:59 - 00000000 ____D () C:\Users\Stefan\Desktop\KHOST
2014-03-30 13:57 - 2014-03-30 13:57 - 02079653 _____ () C:\Users\Stefan\Downloads\83a65757-e807-4c8d-90ef-bc7b1d36e4a7.mp4
2014-03-30 13:39 - 2014-03-30 13:39 - 06639616 _____ () C:\Users\Stefan\Downloads\inSSIDer-installer.msi
2014-03-30 13:06 - 2014-03-30 13:05 - 00000000 ____D () C:\Users\Stefan\AppData\Local\MetaGeek,_LLC
2014-03-30 13:04 - 2014-03-30 13:04 - 00002491 _____ () C:\Users\Public\Desktop\inSSIDer Home.lnk
2014-03-30 13:03 - 2014-03-30 13:03 - 00001405 _____ () C:\Users\Public\Desktop\Xirrus Wi-Fi Inspector.lnk
2014-03-30 13:02 - 2014-03-30 13:02 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Xirrus
2014-03-30 13:01 - 2014-03-30 13:01 - 04767744 _____ () C:\Users\Stefan\Downloads\inSSIDer31-installer.msi
2014-03-30 13:00 - 2014-03-30 13:00 - 22224144 _____ (Xirrus) C:\Users\Stefan\Downloads\WiFiInspector-Setup-1.2.1.4.exe
2014-03-30 12:30 - 2014-03-30 12:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 00:00 - 2014-03-29 00:00 - 00000000 ____D () C:\Users\Stefan\Documents\CyberLink
2014-03-25 17:50 - 2014-03-25 17:50 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-25 17:50 - 2014-03-25 17:50 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-25 17:50 - 2014-03-25 17:50 - 00000000 ____D () C:\Users\Stefan\AppData\Local\Skype
2014-03-25 17:50 - 2013-09-13 21:33 - 00000000 ____D () C:\ProgramData\Skype
2014-03-20 23:06 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-03-19 18:21 - 2014-03-19 18:20 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Schiffbruch
2014-03-19 18:18 - 2014-03-19 18:18 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-03-18 09:56 - 2014-03-18 09:56 - 00308560 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-17 21:46 - 2014-03-17 21:46 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\iFunbox_UserCache
2014-03-17 21:46 - 2014-03-17 21:46 - 00000000 ____D () C:\Program Files (x86)\i-Funbox DevTeam
2014-03-17 21:44 - 2014-03-17 21:43 - 15016222 _____ ( ) C:\Users\Stefan\Downloads\ifunbox27_setup.exe
2014-03-17 20:47 - 2014-03-07 21:44 - 00000000 ____D () C:\Users\Stefan\Documents\Updater
2014-03-17 20:47 - 2014-02-12 15:10 - 00001247 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2014-03-17 20:47 - 2014-02-12 15:10 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\DVDVideoSoft
2014-03-17 10:06 - 2013-08-28 20:46 - 00000000 ___RD () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-17 10:06 - 2013-08-28 20:46 - 00000000 ___RD () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-03-17 01:41 - 2012-07-26 10:12 - 00000000 ___RD () C:\Windows\ToastData
2014-03-17 01:41 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-17 01:41 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-03-17 01:41 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-03-17 01:41 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-03-16 16:41 - 2014-03-16 16:40 - 32815896 _____ (DVDVideoSoft Ltd. ) C:\Users\Stefan\Downloads\FreeYouTubeToiPhoneConverter-2.12.29.303.exe

Some content of TEMP:
====================
C:\Users\Stefan\AppData\Local\Temp\AutoRun.exe
C:\Users\Stefan\AppData\Local\Temp\AutoRunGUI.dll
C:\Users\Stefan\AppData\Local\Temp\avgnt.exe
C:\Users\Stefan\AppData\Local\Temp\eauninstall.exe
C:\Users\Stefan\AppData\Local\Temp\First15.exe
C:\Users\Stefan\AppData\Local\Temp\FreemakeVideoConverter_4.1.3.5.exe
C:\Users\Stefan\AppData\Local\Temp\The Sims 2 Pets_uninst.exe
C:\Users\Stefan\AppData\Local\Temp\VP6Install.exe
C:\Users\Stefan\AppData\Local\Temp\VP6VFW.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-07 21:47

==================== End Of Log ============================

--- --- ---

ADDITION LOG

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 14-04-2014
Ran by Stefan at 2014-04-15 20:46:04
Running from C:\Users\Stefan\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

 clear.fi SDK - Video 2 (x32 Version: 2.1.1925 - CyberLink Corp.) Hidden
 clear.fi SDK- Movie 2 (x32 Version: 2.1.2008 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0059 - NTI Corporation)
Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3007 - Acer Incorporated)
Acer Instant Update Service (HKLM\...\{F6100F13-F183-47A2-94A8-9AAC4976E228}) (Version: 1.00.3013 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3006 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3011 - Acer Incorporated)
AcerCloud (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.01.3115 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.00.3201 - Acer Incorporated)
Adobe Bridge 1.0 (x32 Version: 001.000.001 - Adobe Systems) Hidden
Adobe Common File Installer (x32 Version: 1.00.001 - Adobe System Incorporated) Hidden
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.8.800.94 - Adobe Systems Incorporated)
Adobe Help Center 1.0 (x32 Version: 1.0.1 - Adobe Systems) Hidden
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe Photoshop CS2 (x32 Version: 9.0 - Adobe Systems, Inc.) Hidden
Adobe Reader XI (11.0.06) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Stock Photos 1.0 (x32 Version: 1.0.1 - Adobe Systems) Hidden
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
Any Video Converter 5.5.5 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (HKLM-x32\...\{21FC2093-6E43-460B-B9B0-5F5AA35BBB0F}) (Version: 3.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FE86CB0C-FCB3-4358-B4B0-B0A41E33B3DD}) (Version: 7.1.0.32 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Backup Manager v4 (x32 Version: 4.0.0.0059 - NTI Corporation) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
BitTorrent (HKCU\...\BitTorrent) (Version: 7.8.2.30332 - BitTorrent Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.01.3108 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.01.3108 - Acer Incorporated)
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3103_44819 - CyberLink Corp.)
CyberLink MediaEspresso 6.5 (x32 Version: 6.5.3103_44819 - CyberLink Corp.) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.17 - Piriform)
Delicious: Emily's True Love Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Der VerkehrsGigant-Gold Edition (HKLM-x32\...\Der VerkehrsGigant-Gold Edition) (Version:  - )
Die Sims 2 (HKLM-x32\...\{6E7DD182-9FC6-4651-0095-2E666CC6AF35}) (Version:  - )
Die Sims™ 2 Haustiere (HKLM-x32\...\{4817189D-1785-4627-A33C-39FD90919300}) (Version:  - )
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.13 - Dolby Laboratories Inc)
ETDWare PS/2-X64 11.6.10.001_WHQL (HKLM\...\Elantech) (Version: 11.6.10.001 - ELAN Microelectronic Corp.)
Free YouTube to iPhone Converter version 2.12.29.303 (HKLM-x32\...\Free YouTube to iPhone Converter_is1) (Version: 2.12.29.303 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.20.1230 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.20.1230 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.1.3 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.3 - Ellora Assets Corporation)
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.14) (Version: 9.14 - Artifex Software Inc.)
GSview 5.0 (HKLM-x32\...\GSview 5.0) (Version: 5.0 - Ghostgum Software Pty Ltd)
HP Deskjet 1050 J410 series - Grundlegende Software für das Gerät (HKLM\...\{C3F12DD0-54B1-4B2B-A82B-FA43502BC550}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Deskjet 1050 J410 series Hilfe (HKLM-x32\...\{5C90D8CF-F12A-41C6-9007-3B651A1F0D78}) (Version: 140.0.66.66 - Hewlett Packard)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
iFunbox (v2.7.2386.747), iFunbox DevTeam (HKLM-x32\...\iFunbox_is1) (Version: v2.7.2386.747 - )
inSSIDer Home (HKLM-x32\...\{9E54E4AE-B67A-4925-8E92-0E1F9817FD73}) (Version: 3.1.2.1 - MetaGeek, LLC)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
Island Tribe (x32 Version: 2.2.0.98 - WildTangent) Hidden
iTunes (HKLM\...\{96B53CA8-5ABB-49D8-96F1-F6C0D73A76C6}) (Version: 11.1.4.62 - Apple Inc.)
Java 7 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Last.fm Scrobbler 2.1.36 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.6 - Acer Inc.)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3004 - Acer Incorporated)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Office Runtime (x32 Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Mozilla Firefox 28.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
MyWinLocker (Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.24 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.24 - Egis Technology Inc.) Hidden
NTI Media Maker 9 (HKLM-x32\...\InstallShield_{D3D5C4E8-040F-4C6F-8105-41D43CF94F44}) (Version: 9.0.2.9008 - NTI Corporation)
NTI Media Maker 9 (x32 Version: 9.0.2.9008 - NTI Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3200 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.01.3200 - Acer)
OpenOffice 4.0.0 (HKLM-x32\...\{B28DBCBA-60F8-40ED-B35B-F510C327946C}) (Version: 4.00.9702 - Apache Software Foundation)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.210 - Qualcomm Atheros Communications)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.15 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6690 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.27028 - Realtek Semiconductor Corp.)
Schiffbruch (HKLM-x32\...\{76DADFC6-885D-11D6-AAEC-0004769EEFEB}) (Version: 1.00.0000 - Schiffbruch)
Search Protect (HKLM-x32\...\SearchProtect) (Version: 2.9.8.2 - Conduit) <==== ATTENTION
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
System Requirements Lab CYRI (HKLM-x32\...\{E362724E-9320-4946-AF34-874E7B6B2927}) (Version: 6.0.7.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{A407FC22-36BF-4C82-A516-59D94BC505A9}) (Version: 1.0.5.0 - Husdawg, LLC)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VoiceOver Kit (HKLM-x32\...\{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}) (Version: 1.42.128.0 - Apple Inc.)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.9.3 - WildTangent) Hidden
WinRAR 5.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Xirrus Wi-Fi Inspector (HKLM-x32\...\{BBB21AB1-2C45-435D-A05A-B563072E7B9B}) (Version: 1.2.1.4 - Xirrus)
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Restore Points  =========================

19-03-2014 16:20:34 Schiffbruch wird installiert
28-03-2014 19:49:06 Geplanter Prüfpunkt
30-03-2014 11:02:49 Installed Xirrus Wi-Fi Inspector
05-04-2014 07:17:24 Installed Exe to msi converter free
09-04-2014 17:36:48 Windows Update
13-04-2014 08:23:27 Windows Update

==================== Hosts content: ==========================

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {03EC6AEF-D98E-4FCD-AD25-D3ECAB3EEAA3} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-08-22] (Acer Incorporated)
Task: {0C247A13-9ED6-4BAB-9C08-063024C2EB4D} - System32\Tasks\Microsoft\Windows\Setup\Windows Upgrade Notification Task => C:\Windows\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)
Task: {0F48634C-5C55-4D22-8684-EDAFEBE95FEE} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2012-07-31] (Acer Incorporated)
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {43212E98-CD4D-4C0F-B87B-F5C9A11C307E} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2012-06-22] ()
Task: {46A572BA-9B87-4DB0-AABE-241C20FB5170} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2012-08-22] ()
Task: {4ECF7C26-C559-41CC-8169-9207B2077A43} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2012-07-11] (Egis Technology Inc.)
Task: {67E7B763-2692-4EF5-A857-69AF965D4049} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\system32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)
Task: {9D87C868-73CC-45C9-B90D-98460617E12B} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2012-08-22] ()
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {AA371565-8733-4DE3-AEA6-369A2D9E17BF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {B98DD0F6-6ECE-4E36-9777-C55FCB952499} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-07-04] (CyberLink)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {CAF540D5-6268-4641-8B2F-BE91C08FA295} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2012-07-11] (Egis Technology Inc.)
Task: {EA4A3725-F0CF-4E8A-A43E-C92B153D7715} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {FAD58BBB-D816-48DF-9972-52B7F146DF49} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2012-08-30] ()

==================== Loaded Modules (whitelisted) =============

2012-07-26 09:58 - 2012-07-26 09:53 - 00170864 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2013-06-14 21:33 - 2012-10-23 21:37 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-09-29 19:02 - 2012-09-29 19:02 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll
2012-09-29 18:57 - 2012-09-29 18:57 - 00020992 _____ () C:\Program Files (x86)\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll
2012-09-29 18:59 - 2012-09-29 18:59 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2012-09-29 19:01 - 2012-09-29 19:01 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2012-08-22 15:04 - 2012-08-22 15:04 - 00044176 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
2012-08-22 15:04 - 2012-08-22 15:04 - 00025232 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
2013-12-01 17:44 - 2013-11-22 13:01 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-02-06 01:52 - 2014-02-06 01:52 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-06 01:52 - 2014-02-06 01:52 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-08-23 09:26 - 2012-08-23 09:26 - 00465384 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
2012-08-23 09:25 - 2012-08-23 09:25 - 00125504 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll
2012-08-23 09:26 - 2012-08-23 09:26 - 00155712 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\VolumeSnapshot.dll
2012-08-23 09:25 - 2012-08-23 09:25 - 00118336 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\Online.dll
2012-08-23 09:25 - 2012-08-23 09:25 - 01081408 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll
2012-08-23 09:25 - 2012-08-23 09:25 - 00052288 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OsSettingPort.dll
2012-08-23 09:26 - 2012-08-23 09:26 - 00727616 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OutlookShadow.dll
2013-06-14 12:33 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-03-30 12:30 - 2014-03-30 12:30 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== Disabled items from MSCONFIG ==============


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/13/2014 03:14:23 PM) (Source: Application Hang) (User: )
Description: Programm Explorer.EXE, Version 6.2.9200.16628 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1620

Startzeit: 01cf56edcadc2de5

Endzeit: 91

Anwendungspfad: C:\Windows\Explorer.EXE

Berichts-ID: 871776b4-c30d-11e3-bea9-9c2a704f17a0

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (04/11/2014 09:39:29 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (04/11/2014 09:39:29 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (04/11/2014 09:39:29 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (04/11/2014 09:37:31 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (04/11/2014 09:37:31 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (04/11/2014 09:37:31 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (04/11/2014 07:05:40 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: FlashPlayerPlugin_11_8_800_94.exe, Version: 11.8.800.94, Zeitstempel: 0x51c4d74d
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00fe17e0
ID des fehlerhaften Prozesses: 0x1288
Startzeit der fehlerhaften Anwendung: 0xFlashPlayerPlugin_11_8_800_94.exe0
Pfad der fehlerhaften Anwendung: FlashPlayerPlugin_11_8_800_94.exe1
Pfad des fehlerhaften Moduls: FlashPlayerPlugin_11_8_800_94.exe2
Berichtskennung: FlashPlayerPlugin_11_8_800_94.exe3
Vollständiger Name des fehlerhaften Pakets: FlashPlayerPlugin_11_8_800_94.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: FlashPlayerPlugin_11_8_800_94.exe5

Error: (04/09/2014 11:58:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15625

Error: (04/09/2014 11:58:01 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15625


System errors:
=============
Error: (04/12/2014 10:53:25 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Software Protection" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (04/12/2014 10:53:25 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Software Protection erreicht.

Error: (04/12/2014 00:16:16 AM) (Source: DCOM) (User: LIGHTNING)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (04/07/2014 01:58:43 AM) (Source: DCOM) (User: LIGHTNING)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (03/25/2014 00:48:24 AM) (Source: DCOM) (User: LIGHTNING)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (03/25/2014 00:48:24 AM) (Source: DCOM) (User: LIGHTNING)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (03/22/2014 00:11:08 PM) (Source: DCOM) (User: LIGHTNING)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (03/19/2014 06:25:57 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am ‎19.‎03.‎2014 um 17:05:57 unerwartet heruntergefahren.

Error: (03/18/2014 00:24:12 AM) (Source: DCOM) (User: LIGHTNING)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (03/18/2014 00:24:12 AM) (Source: DCOM) (User: LIGHTNING)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}


Microsoft Office Sessions:
=========================
Error: (04/13/2014 03:14:23 PM) (Source: Application Hang)(User: )
Description: Explorer.EXE6.2.9200.16628162001cf56edcadc2de591C:\Windows\Explorer.EXE871776b4-c30d-11e3-bea9-9c2a704f17a0

Error: (04/11/2014 09:39:29 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4

Error: (04/11/2014 09:39:29 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4

Error: (04/11/2014 09:39:29 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4

Error: (04/11/2014 09:37:31 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4

Error: (04/11/2014 09:37:31 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4

Error: (04/11/2014 09:37:31 PM) (Source: SideBySide)(User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4

Error: (04/11/2014 07:05:40 PM) (Source: Application Error)(User: )
Description: FlashPlayerPlugin_11_8_800_94.exe11.8.800.9451c4d74dunknown0.0.0.000000000c000000500fe17e0128801cf55a58eb82f57C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_8_800_94.exeunknown822af12b-c19b-11e3-bea8-9c2a704f17a0

Error: (04/09/2014 11:58:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15625

Error: (04/09/2014 11:58:01 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15625


==================== Memory info =========================== 

Percentage of memory in use: 45%
Total physical RAM: 5939.59 MB
Available physical RAM: 3219.98 MB
Total Pagefile: 8499.59 MB
Available Pagefile: 5423.77 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:677.32 GB) (Free:503.58 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 699 GB) (Disk ID: BFB7A89E)

Partition: GPT Partition Type.

==================== End Of Log ============================

schrauber · 16.04.2014, 19:10

Revo Uninstaller - Download - Filepony
Damit alles deinstallieren was Du in der Additional.txt findest mit dem Zusatz <== ATTENTION

Mit Revo auch Moderat die Reste entfernen lassen.

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

thesavior21 · 16.04.2014, 20:23

Ich habe ComboFix auf den Desktop geschoben, trotzdem steht dort ausgeführt von Downloads. Soll ich Combofix nch einmal ausführen?

Beim Starten wollte AntiVir, trotz Deaktivierung, eine Registry in Quarantäne verschieben, habe es aber einfach ignoriert.

Code:

ATTFilter

ComboFix 14-04-12.01 - Stefan 16.04.2014  21:07:26.2.2 - x64
Microsoft Windows 8  6.2.9200.0.1252.49.1031.18.5940.4425 [GMT 2:00]
ausgeführt von:: c:\users\Stefan\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Avira Desktop *Disabled/Updated* {F665F2B2-DF77-27D1-BDD8-9197742422E4}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((   Dateien erstellt von 2014-03-16 bis 2014-04-16  ))))))))))))))))))))))))))))))
.
.
2014-04-16 19:15 . 2014-04-16 19:15	--------	d-----w-	c:\users\Stefan\AppData\Local\temp
2014-04-16 19:15 . 2014-04-16 19:15	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-04-16 14:21 . 2014-04-16 14:21	--------	d-----w-	c:\programdata\Atheros
2014-04-16 14:21 . 2014-04-16 14:21	--------	d-----w-	c:\users\Stefan\AppData\Roaming\Atheros
2014-04-16 14:14 . 2012-11-09 13:44	135832	----a-w-	c:\windows\system32\drivers\btath_rcp.sys
2014-04-16 14:14 . 2012-11-09 13:44	76952	----a-w-	c:\windows\system32\drivers\btath_lwflt.sys
2014-04-16 14:14 . 2012-11-09 13:44	178840	----a-w-	c:\windows\system32\drivers\btath_hcrp.sys
2014-04-16 14:14 . 2012-11-09 13:44	88728	----a-w-	c:\windows\system32\drivers\btath_flt.sys
2014-04-16 14:14 . 2012-11-09 13:44	344216	----a-w-	c:\windows\system32\drivers\btath_a2dp.sys
2014-04-16 14:14 . 2012-11-09 13:44	114840	----a-w-	c:\windows\system32\drivers\btath_avdt.sys
2014-04-16 14:14 . 2012-11-09 13:44	576152	----a-w-	c:\windows\system32\drivers\btfilter.sys
2014-04-16 14:14 . 2012-11-09 13:44	33944	----a-w-	c:\windows\system32\drivers\btath_bus.sys
2014-04-16 14:13 . 2014-04-16 14:15	--------	d-----w-	c:\program files (x86)\Common Files\QCA_Bluetooth
2014-04-16 14:11 . 2014-04-16 14:11	--------	d-----w-	c:\windows\LastGood.Tmp
2014-04-15 18:44 . 2014-04-15 18:46	--------	d-----w-	C:\FRST
2014-04-13 08:08 . 2014-01-27 03:42	2232664	----a-w-	c:\windows\system32\drivers\tcpip.sys
2014-04-13 08:08 . 2014-01-27 00:31	19752448	----a-w-	c:\windows\system32\shell32.dll
2014-04-13 08:08 . 2014-01-27 03:39	1939288	----a-w-	c:\windows\system32\drivers\ntfs.sys
2014-04-13 08:06 . 2013-10-25 06:19	1084928	----a-w-	c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2014-04-13 08:06 . 2014-03-07 00:08	2648576	----a-w-	c:\windows\system32\iertutil.dll
2014-04-13 08:06 . 2014-03-07 00:08	3959808	----a-w-	c:\windows\system32\jscript9.dll
2014-04-13 08:06 . 2014-03-07 00:47	2877952	----a-w-	c:\windows\SysWow64\jscript9.dll
2014-04-13 08:06 . 2013-04-28 22:30	108032	----a-w-	c:\program files (x86)\Internet Explorer\jsdebuggeride.dll
2014-04-09 16:00 . 2014-04-09 16:00	--------	d-----w-	c:\program files (x86)\Ghostgum
2014-04-09 15:57 . 2014-04-09 15:57	--------	d-----w-	c:\program files (x86)\gs
2014-04-09 14:41 . 2014-02-05 23:41	978432	----a-w-	c:\windows\system32\KernelBase.dll
2014-04-09 14:41 . 2014-02-05 23:41	1257984	----a-w-	c:\windows\system32\kernel32.dll
2014-04-09 14:41 . 2014-02-05 23:26	666112	----a-w-	c:\windows\SysWow64\KernelBase.dll
2014-04-05 07:18 . 2014-04-05 07:18	--------	d-----w-	C:\Yu-Gi-Oh! Power of Chaos Common
2014-04-05 07:16 . 2014-04-05 07:16	--------	d-----w-	C:\yugi
2014-03-30 12:13 . 2014-04-16 11:04	--------	d-----w-	c:\users\Stefan\AppData\Roaming\vlc
2014-03-30 11:05 . 2014-03-30 11:06	--------	d-----w-	c:\users\Stefan\AppData\Local\MetaGeek,_LLC
2014-03-30 11:02 . 2014-03-30 11:02	--------	d-----w-	c:\users\Stefan\AppData\Roaming\Xirrus
2014-03-25 15:50 . 2014-03-25 15:50	--------	d-----w-	c:\users\Stefan\AppData\Local\Skype
2014-03-25 15:50 . 2014-03-25 15:50	--------	d-----w-	c:\program files (x86)\Common Files\Skype
2014-03-25 15:50 . 2014-03-25 15:50	--------	d-----r-	c:\program files (x86)\Skype
2014-03-17 19:46 . 2014-03-17 19:46	--------	d-----w-	c:\users\Stefan\AppData\Roaming\iFunbox_UserCache
2014-03-17 19:46 . 2014-03-17 19:46	--------	d-----w-	c:\program files (x86)\i-Funbox DevTeam
.
.
.
((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-16 14:17 . 2013-06-14 10:10	53284	----a-w-	c:\windows\system32\wpbbin.exe
2014-04-11 19:34 . 2013-09-04 08:47	90655440	----a-w-	c:\windows\system32\MRT.exe
2014-03-31 21:18 . 2013-11-24 11:08	78296	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-03-31 21:18 . 2013-11-24 11:08	694232	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2014-02-08 04:34 . 2014-03-15 18:37	4036608	----a-w-	c:\windows\system32\win32k.sys
2014-02-05 23:41 . 2014-03-15 18:37	595968	----a-w-	c:\windows\system32\qedit.dll
2014-02-05 23:37 . 2014-03-15 18:37	496640	----a-w-	c:\windows\SysWow64\qedit.dll
2014-01-31 00:48 . 2014-03-16 13:25	1339392	----a-w-	c:\windows\SysWow64\WindowsCodecs.dll
2014-01-31 00:06 . 2014-03-16 13:25	1628160	----a-w-	c:\windows\system32\WindowsCodecs.dll
2013-01-10 13:44 . 2013-01-10 13:44	54084	----a-w-	c:\program files\Spieleexplorer.reg
.
.
((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"="c:\dolby pcee4\pcee4.exe" [2012-04-23 508256]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-02-05 43848]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2014-02-20 689744]
"iTunesHelper"="c:\users\Stefan\Documents\Installiert\iTunes\iTunesHelper.exe" [2014-02-06 152392]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"SpUninstallCleanUp"="REG delete HKEY_LOCAL_MACHINE\Software\SearchProtect" [X]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe" [2012-07-26 62976]
.
c:\users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma.lnk - c:\program files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]
Tintenwarnungen überwachen - HP Deskjet 1050 J410 series.lnk - c:\windows\system32\RunDll32.exe "c:\program files\HP\HP Deskjet 1050 J410 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN0BI33N7305HW;CONNECTION=USB;MONITOR=1; [2012-7-26 51712]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\
Acer Backup Manager Tray.lnk - c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe -h -k [2012-8-23 533568]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"DisableCAD"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\System32\drivers\btath_hcrp.sys;c:\windows\SYSNATIVE\drivers\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\System32\drivers\btath_rcp.sys;c:\windows\SYSNATIVE\drivers\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 BthLEEnum;Treiber für energiearme Bluetooth-Geräte;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
R3 DeviceFastLaneService;Device Fast-lane Service;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 NETwNe64;@netwne64.inf,___ %NIC_Service_DispName_WIN7_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETwNe64.sys;c:\windows\SYSNATIVE\DRIVERS\NETwNe64.sys [x]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\System32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
R4 AntiVirWebService;Avira Browser-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [x]
S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys;c:\windows\SYSNATIVE\DRIVERS\avnetflt.sys [x]
S2 CCDMonitorService;CCDMonitorService;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
S2 ETDService;Elan Service;c:\program files\Elantech\ETDService.exe;c:\program files\Elantech\ETDService.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [x]
S2 RfButtonDriverService;Dritek RF Button Command Service;c:\windows\RfBtnSvc64.exe;c:\windows\RfBtnSvc64.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 ZAtheros Wlan Agent;ZAtheros Wlan Agent;c:\program files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe;c:\program files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\System32\drivers\btath_bus.sys;c:\windows\SYSNATIVE\drivers\btath_bus.sys [x]
S3 ePowerSvc;ePower Service;c:\program files\Acer\Acer Power Management\ePowerSvc.exe;c:\program files\Acer\Acer Power Management\ePowerSvc.exe [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 Ps2Kb2Hid;PS/2 Keyboard to HID Driver;c:\windows\System32\drivers\aPs2Kb2Hid.sys;c:\windows\SYSNATIVE\drivers\aPs2Kb2Hid.sys [x]
S3 RSBASTOR;Realtek PCIE CardReader Driver - BA;c:\windows\system32\DRIVERS\RtsBaStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsBaStor.sys [x]
S3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-10-23 171040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-10-23 399392]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-10-23 441888]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-07-31 12936848]
"RtHDVBg_Dolby"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2012-07-31 1214608]
"BtPreLoad"="c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe" [2012-11-09 64640]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP1FE760CD-BFAC-4926-973F-0B278B6686A7&SSPV=
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\
FF - user.js: extensions.delta.tlbrSrchUrl - 
FF - user.js: extensions.delta.id - d02cc8850000000000001e2a704f179f
FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
FF - user.js: extensions.delta.instlDay - 15953
FF - user.js: extensions.delta.vrsn - 1.8.24.6
FF - user.js: extensions.delta.vrsni - 1.8.24.6
FF - user.js: extensions.delta.vrsnTs - 1.8.24.614:38
FF - user.js: extensions.delta.prtnrId - delta
FF - user.js: extensions.delta.prdct - delta
FF - user.js: extensions.delta.aflt - babsst
FF - user.js: extensions.delta.smplGrp - none
FF - user.js: extensions.delta.tlbrId - base
FF - user.js: extensions.delta.instlRef - sst
FF - user.js: extensions.delta.dfltLng - de
FF - user.js: extensions.delta.excTlbr - false
FF - user.js: extensions.delta.ffxUnstlRst - true
FF - user.js: extensions.delta.admin - false
FF - user.js: extensions.delta_i.babTrack - affID=119357&tsp=4996
FF - user.js: extensions.delta_i.babExt - 
FF - user.js: extensions.delta_i.srcExt - ss
FF - user.js: extensions.delta.autoRvrt - false
FF - user.js: extensions.delta.rvrt - false
FF - user.js: extensions.delta.newTab - false
FF - user.js: extensions.iminent.tlbrSrchUrl - hxxp://start.iminent.com/?ref=toolbarm#q=
FF - user.js: extensions.iminent.id - d02cc8850000000000001e2a704f179f
FF - user.js: extensions.iminent.appId - {0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}
FF - user.js: extensions.iminent.instlDay - 16075
FF - user.js: extensions.iminent.vrsn - 1.8.28.3
FF - user.js: extensions.iminent.vrsni - 1.8.28.3
FF - user.js: extensions.iminent.vrsnTs - 1.8.28.320:26
FF - user.js: extensions.iminent.prtnrId - iminent
FF - user.js: extensions.iminent.prdct - iminent
FF - user.js: extensions.iminent.aflt - orgnl
FF - user.js: extensions.iminent.smplGrp - none
FF - user.js: extensions.iminent.tlbrId - YBCPCSTIPO
FF - user.js: extensions.iminent.instlRef - 
FF - user.js: extensions.iminent.dfltLng - 
FF - user.js: extensions.iminent.excTlbr - false
FF - user.js: extensions.iminent.ffxUnstlRst - false
FF - user.js: extensions.iminent.admin - false
FF - user.js: extensions.iminent.autoRvrt - false
FF - user.js: extensions.iminent.rvrt - false
FF - user.js: extensions.iminent.newTab - false
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
BHO-{84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-NextLive - (no file)
Wow6432Node-HKLM-Run-LManager - (no file)
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}]
@Denied: (A) (Everyone)
"Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]
"Key"="ActionsPane"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Zeit der Fertigstellung: 2014-04-16  21:19:16
ComboFix-quarantined-files.txt  2014-04-16 19:19
.
Vor Suchlauf: 16 Verzeichnis(se), 544.988.676.096 Bytes frei
Nach Suchlauf: 19 Verzeichnis(se), 544.837.152.768 Bytes frei
.
- - End Of File - - BB48F830EF7D443C0C31C1E770F37225

schrauber · 17.04.2014, 13:46

Ist das auf dem Desktop vielleicht nur ne Verknüpfung? Bitte richtig auf den Desktop schieben. Einen weiteren Lauf brauchen wir aber nicht.

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

thesavior21 · 17.04.2014, 17:29

hier sind die ganzen Daten

Danke

mbam.txt

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 17.04.2014
Suchlauf-Zeit: 17:58:02
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.1.1004
Malware Datenbank: v2014.04.17.04
Rootkit Datenbank: v2014.03.27.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Chameleon: Deaktiviert

Betriebssystem: Windows 8
CPU: x64
Dateisystem: NTFS
Benutzer: Stefan

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 262830
Verstrichene Zeit: 32 Min, 43 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Shuriken: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 11
PUP.Optional.Delta.A, HKLM\SOFTWARE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, In Quarantäne, [46baa9574eb2867a8b64d971a161ff01], 
PUP.Optional.Delta.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, In Quarantäne, [46baa9574eb2867a8b64d971a161ff01], 
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{68B81CCD-A80C-4060-8947-5AE69ED01199}, In Quarantäne, [9967d12f9f6107f9e550f3586999b44c], 
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}, In Quarantäne, [13eda65a56aaf40c5fd780cb13efd52b], 
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\BROWSER HELPER OBJECTS\{84FF7BD6-B47F-46F8-9130-01B2696B36CB}, In Quarantäne, [fd038e724ab6a85815b587c3778bfc04], 
PUP.Optional.Iminent.A, HKLM\SOFTWARE\CLASSES\Iminent, In Quarantäne, [18e8ec14b54b669a676f4d5b867dc937], 
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\Iminent, In Quarantäne, [03fdbf4144bc669a27288af4b64c0af6], 
PUP.Optional.Iminent.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\Iminent, In Quarantäne, [5ba518e8728e847caf27872117ecce32], 
PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-1504080521-2891289874-2738731852-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\1ClickDownload, Löschen bei Neustart, [6c94d32df50bd62a34b2d8bc40c39e62], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1504080521-2891289874-2738731852-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, Löschen bei Neustart, [18e825db20e051af2333304de41eb848], 
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1504080521-2891289874-2738731852-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, Löschen bei Neustart, [8080738d000048b81875d2c152b16d93], 

Registrierungswerte: 1
PUP.Optional.InstallCore.A, HKU\S-1-5-21-1504080521-2891289874-2738731852-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 0L1N1H2O1S, Löschen bei Neustart, [8080738d000048b81875d2c152b16d93]

Registrierungsdaten: 1
PUP.Optional.Conduit.A, HKU\S-1-5-21-1504080521-2891289874-2738731852-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|Start Page, hxxp://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP1FE760CD-BFAC-4926-973F-0B278B6686A7&SSPV=, Gut: (hxxp://www.google.com), Schlecht: (hxxp://search.conduit.com/?ctid=CT3314958&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SP1FE760CD-BFAC-4926-973F-0B278B6686A7&SSPV=),Löschen bei Neustart,[5ea2ba46e7194cb431028d90fb0923dd]

Ordner: 3
PUP.Optional.Iminent.A, C:\Program Files (x86)\IminentToolbar, In Quarantäne, [649cc8384bb543bd6e515effa55de51b], 
PUP.Optional.NextLive.A, C:\Users\Stefan\AppData\Roaming\newnext.me, In Quarantäne, [956bde224cb4ae52a7d7520d679bc13f], 
PUP.Optional.NextLive.A, C:\Users\Stefan\AppData\Roaming\newnext.me\cache, In Quarantäne, [956bde224cb4ae52a7d7520d679bc13f], 

Dateien: 31
PUP.Optional.OpenCandy, C:\Users\Stefan\Downloads\FreemakeVideoConverterSetup_4.1.3.5.exe, In Quarantäne, [5ca422de9c64ca36a4c3d038e41d659b], 
PUP.Optional.NextLive.A, C:\Users\Stefan\AppData\Local\genienext\nengine.dll, In Quarantäne, [48b88779ff01e51ba9a3ce819b661de3], 
PUP.Optional.Conduit.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\searchplugins\conduit-search.xml, In Quarantäne, [32ce27d949b79e6249dded8560a220e0], 
PUP.Optional.Iminent.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\searchplugins\iminent.xml, In Quarantäne, [ef11e917e8183bc58dd919595ba7c33d], 
PUP.Optional.NextLive.A, C:\Users\Stefan\AppData\Roaming\newnext.me\nengine.cookie, In Quarantäne, [956bde224cb4ae52a7d7520d679bc13f], 
PUP.Optional.NextLive.A, C:\Users\Stefan\AppData\Roaming\newnext.me\cache\spark.bin, In Quarantäne, [956bde224cb4ae52a7d7520d679bc13f], 
PUP.Optional.CrossRider.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.crossrider.bic", "14363dd4e766de66423f21fe06f7f267");), Ersetzt,[48b859a750b0c040c5e967ea2ed629d7]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.admin", false);), Ersetzt,[6e920af637c930d0a421084961a3629e]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.aflt", "babsst");), Ersetzt,[35cbbd43f50b7090d5f0450ce81c3dc3]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");), Ersetzt,[be42c040d32df40c982da8a94db7b848]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.autoRvrt", "false");), Ersetzt,[17e948b8be42be426f5688c9798ba65a]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.dfltLng", "de");), Ersetzt,[8a7621dff40c0ef28c397ad764a0a45c]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.excTlbr", false);), Ersetzt,[d828a45cb24e35cba91ccc8560a4847c]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.ffxUnstlRst", true);), Ersetzt,[c83803fdaa563fc1547161f02cd8dc24]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.id", "d02cc8850000000000001e2a704f179f");), Ersetzt,[7e828977ec147d8304c1440d50b41ce4]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.instlDay", "15953");), Ersetzt,[b947bf4118e8a8585e678dc4bd47d828]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.instlRef", "sst");), Ersetzt,[ea169d63ce324ab6cafb85cc956f2fd1]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.newTab", false);), Ersetzt,[817fe41cf30de21e0abba2afa75da65a]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.prdct", "delta");), Ersetzt,[de22ba46fc0409f78d38440dd92b21df]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.prtnrId", "delta");), Ersetzt,[d7299070fa06c63adfe6c9886b9926da]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.rvrt", "false");), Ersetzt,[f40cb0507b8531cfeed758f96b99a45c]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.smplGrp", "none");), Ersetzt,[12ee54acad5304fc3b8afb5623e132ce]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.tlbrId", "base");), Ersetzt,[e61acd33d729ae5216af6ce5d3316a96]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.tlbrSrchUrl", "");), Ersetzt,[946cda26c63a4bb5d1f4e869a163bf41]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.vrsn", "1.8.24.6");), Ersetzt,[6799a55b6c94c73965605df429db18e8]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.vrsnTs", "1.8.24.614:38:10");), Ersetzt,[bf41b7497d8347b9586df25f41c3bc44]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta.vrsni", "1.8.24.6");), Ersetzt,[fe027b85e8189b65665fc68b808456aa]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta_i.babExt", "");), Ersetzt,[bb457b859f61b54b9f26fe533aca9b65]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta_i.babTrack", "affID=119357&tsp=4996");), Ersetzt,[14ec8d7397698779e4e16ee3bf454eb2]
PUP.Optional.Delta.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.delta_i.srcExt", "ss");), Ersetzt,[b94741bf12eee61a15b050017b891be5]
PUP.Optional.Iminent.A, C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\user.js, Gut: (), Schlecht: (user_pref("extensions.iminent.tlbrSrchUrl", "hxxp://start.iminent.com/?ref=toolbarm#q=");), Ersetzt,[38c84ab67d83fd03ffb472df679d2dd3]

Physische Sektoren: 0
(No malicious items detected)


(end)

AdwCleanerS1

Code:

ATTFilter

# AdwCleaner v3.023 - Bericht erstellt am 17/04/2014 um 18:08:20
# Aktualisiert 01/04/2014 von Xplode
# Betriebssystem : Windows 8  (64 bits)
# Benutzername : Stefan - LIGHTNING
# Gestartet von : C:\Users\Stefan\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\Windows\SysWOW64\SearchProtect
Ordner Gelöscht : C:\Users\Stefan\AppData\Local\BeamriseUninstall
Ordner Gelöscht : C:\Users\Stefan\AppData\Local\cool_mirage
Ordner Gelöscht : C:\Users\Stefan\AppData\Local\genienext
Ordner Gelöscht : C:\Users\Stefan\AppData\Local\Mobogenie
Ordner Gelöscht : C:\Users\Stefan\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PutLockerDownloader.com
Datei Gelöscht : C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\invalidprefs.js
Datei Gelöscht : C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\user.js

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}

***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Mozilla Firefox v28.0 (de)

[ Datei : C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\prefs.js ]

Zeile gelöscht : user_pref("CT3309350.searchProtector.notifyChanges", "{\"dataType\":\"string\",\"data\":\"false\"}");
Zeile gelöscht : user_pref("extensions.adblockpluspopupaddon.rules", "planetromeo.com;1;ALLOW;WINDOWS,TABS;0|dropbox.com;1;ALLOW;WINDOWS,TABS;0|my.ebay.de;1;ALLOW;WINDOWS,TABS;0|cgi5.ebay.de;1;ALLOW;WINDOWS,TABS;0|pay[...]
Zeile gelöscht : user_pref("extensions.crossrider.bic", "14363dd4e766de66423f21fe06f7f267");
Zeile gelöscht : user_pref("extensions.delta.admin", false);
Zeile gelöscht : user_pref("extensions.delta.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Zeile gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.delta.excTlbr", false);
Zeile gelöscht : user_pref("extensions.delta.ffxUnstlRst", true);
Zeile gelöscht : user_pref("extensions.delta.id", "d02cc8850000000000001e2a704f179f");
Zeile gelöscht : user_pref("extensions.delta.instlDay", "15953");
Zeile gelöscht : user_pref("extensions.delta.instlRef", "sst");
Zeile gelöscht : user_pref("extensions.delta.newTab", false);
Zeile gelöscht : user_pref("extensions.delta.prdct", "delta");
Zeile gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Zeile gelöscht : user_pref("extensions.delta.rvrt", "false");
Zeile gelöscht : user_pref("extensions.delta.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.delta.tlbrId", "base");
Zeile gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Zeile gelöscht : user_pref("extensions.delta.vrsn", "1.8.24.6");
Zeile gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.24.614:38:10");
Zeile gelöscht : user_pref("extensions.delta.vrsni", "1.8.24.6");
Zeile gelöscht : user_pref("extensions.delta_i.babExt", "");
Zeile gelöscht : user_pref("extensions.delta_i.babTrack", "affID=119357&tsp=4996");
Zeile gelöscht : user_pref("extensions.delta_i.srcExt", "ss");
Zeile gelöscht : user_pref("extensions.iminent.admin", false);
Zeile gelöscht : user_pref("extensions.iminent.aflt", "orgnl");
Zeile gelöscht : user_pref("extensions.iminent.appId", "{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}");
Zeile gelöscht : user_pref("extensions.iminent.autoRvrt", "false");
Zeile gelöscht : user_pref("extensions.iminent.dfltLng", "");
Zeile gelöscht : user_pref("extensions.iminent.excTlbr", false);
Zeile gelöscht : user_pref("extensions.iminent.ffxUnstlRst", false);
Zeile gelöscht : user_pref("extensions.iminent.id", "d02cc8850000000000001e2a704f179f");
Zeile gelöscht : user_pref("extensions.iminent.instlDay", "16075");
Zeile gelöscht : user_pref("extensions.iminent.instlRef", "");
Zeile gelöscht : user_pref("extensions.iminent.newTab", false);
Zeile gelöscht : user_pref("extensions.iminent.prdct", "iminent");
Zeile gelöscht : user_pref("extensions.iminent.prtnrId", "iminent");
Zeile gelöscht : user_pref("extensions.iminent.rvrt", "false");
Zeile gelöscht : user_pref("extensions.iminent.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.iminent.tlbrId", "YBCPCSTIPO");
Zeile gelöscht : user_pref("extensions.iminent.tlbrSrchUrl", "hxxp://start.iminent.com/?ref=toolbarm#q=");
Zeile gelöscht : user_pref("extensions.iminent.vrsn", "1.8.28.3");
Zeile gelöscht : user_pref("extensions.iminent.vrsnTs", "1.8.28.320:26:09");
Zeile gelöscht : user_pref("extensions.iminent.vrsni", "1.8.28.3");
Zeile gelöscht : user_pref("iminent.LayoutId", "1");
Zeile gelöscht : user_pref("iminent.enabledAds", "false");
Zeile gelöscht : user_pref("iminent.version", "7.51.3.1");
Zeile gelöscht : user_pref("iminent.versioning", "{\"CurrentVersion\":\"7.51.3.1\",\"InstallEventCTime\":1388949977187,\"InstallEvent\":\"True\"}");

*************************

AdwCleaner[R0].txt - [5984 octets] - [17/04/2014 18:05:54]
AdwCleaner[S0].txt - [5677 octets] - [17/04/2014 18:08:20]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5737 octets] ##########

JRT.txt

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 x64
Ran by Stefan on 17.04.2014 at 18:14:59,64
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Stefan\AppData\Roaming\mozilla\firefox\profiles\c8s78l88.default\minidumps [19 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17.04.2014 at 18:21:41,33
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

und zu guter letzt die FRST.txt -Datei

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-04-2014
Ran by Stefan (administrator) on LIGHTNING on 17-04-2014 18:25:22
Running from C:\Users\Stefan\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Atheros) C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Intel Corporation) C:\Windows\system32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Users\Stefan\Documents\Installiert\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\system32\igfxsrvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Qualcomm Atheros) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\PMMUpdate.exe
(Egis Technology Inc.) C:\Program Files\EgisTec IPS\EgisUpdate.exe
(Farbar) C:\Users\Stefan\Downloads\FRST64(1).exe
() C:\Program Files (x86)\Acer\Live Updater\updater.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-31] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-07-31] (Realtek Semiconductor)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe [64640 2012-11-09] ()
HKLM-x32\...\Run: [Dolby Advanced Audio v2] => C:\Dolby PCEE4\pcee4.exe [508256 2012-04-23] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [iTunesHelper] => C:\Users\Stefan\Documents\Installiert\iTunes\iTunesHelper.exe [152392 2014-02-06] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [IsMyWinLockerReboot] - msiexec.exe /qn /x{voidguid}
Startup: C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Deskjet 1050 J410 series.lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Deskjet 1050 J410 series.lnk -> C:\Program Files\HP\HP Deskjet 1050 J410 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {79D4EDC3-04E6-4D30-8FCA-08C6DFDD353A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM - {79D4EDC3-04E6-4D30-8FCA-08C6DFDD353A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKLM-x32 - {79D4EDC3-04E6-4D30-8FCA-08C6DFDD353A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MAARJS
SearchScopes: HKCU - {79D4EDC3-04E6-4D30-8FCA-08C6DFDD353A} URL = 
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Users\Stefan\Documents\Installiert\Java\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Users\Stefan\Documents\Installiert\Java\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default
FF DefaultSearchEngine: user_pref("browser.search.defaultenginename", "");
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Users\Stefan\Documents\Installiert\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Users\Stefan\Documents\Installiert\Java\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\searchplugins\conduit-search-1.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: No Name - C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\Extensions\trash [2014-03-25]
FF Extension: DownloadHelper - C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-03-25]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Stefan\AppData\Roaming\Mozilla\Firefox\Profiles\c8s78l88.default\Extensions\adblockpopups@jessehakanen.net.xpi [2014-02-12]

==================== Services (Whitelisted) =================

S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2013-09-07] (Adobe Systems)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1017424 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [231040 2012-11-09] (Qualcomm Atheros Commnucations)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-23] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-22] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-22] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [90992 2012-09-17] (ELAN Microelectronics Corp.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-08-23] (NTI Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-06-14] (Dritek System INC.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-10-25] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Qualcomm Atheros\Ath_WlanAgent.exe [81536 2012-11-09] (Atheros)

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-19] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-22] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\Windows\system32\DRIVERS\avnetflt.sys [84720 2013-12-19] (Avira Operations GmbH & Co. KG)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-11-09] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwNe64.sys [11400192 2012-06-02] (Intel Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-06-14] (Dritek System Inc.)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-17 18:23 - 2014-04-17 18:23 - 00000746 _____ () C:\Users\Stefan\Desktop\JRT1.txt
2014-04-17 18:21 - 2014-04-17 18:21 - 00000746 _____ () C:\Users\Stefan\Desktop\JRT.txt
2014-04-17 18:14 - 2014-04-17 18:14 - 00000000 ____D () C:\Windows\ERUNT
2014-04-17 18:13 - 2014-04-17 18:13 - 02158592 _____ (Farbar) C:\Users\Stefan\Downloads\FRST64(1).exe
2014-04-17 18:13 - 2014-04-17 18:13 - 01146880 _____ (Farbar) C:\Users\Stefan\Downloads\FRST(1).exe
2014-04-17 18:12 - 2014-04-17 18:13 - 01016261 _____ (Thisisu) C:\Users\Stefan\Downloads\JRT.exe
2014-04-17 18:11 - 2014-04-17 18:11 - 00005817 _____ () C:\Users\Stefan\Desktop\AdwCleaner[S0].txt
2014-04-17 18:07 - 2014-04-17 18:07 - 00005984 _____ () C:\Users\Stefan\Desktop\AdwCleaner[R0].txt
2014-04-17 18:05 - 2014-04-17 18:08 - 00000000 ____D () C:\AdwCleaner
2014-04-17 18:05 - 2014-04-17 18:05 - 01426178 _____ () C:\Users\Stefan\Downloads\adwcleaner.exe
2014-04-17 17:57 - 2014-04-17 18:03 - 00010519 _____ () C:\Users\Stefan\Desktop\mbam.txt
2014-04-17 16:29 - 2014-04-17 18:02 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-17 16:29 - 2014-04-17 16:29 - 00001110 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-17 16:29 - 2014-04-17 16:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-17 16:29 - 2014-04-17 16:29 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-04-17 16:29 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-17 16:29 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-17 16:29 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-17 16:28 - 2014-04-17 16:28 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Stefan\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-17 14:34 - 2014-04-17 14:39 - 60954960 _____ () C:\Users\Stefan\Downloads\[Sketchy Sex] Closeted Big Dick.flv
2014-04-17 06:08 - 2014-04-17 06:08 - 00440871 _____ () C:\Users\Stefan\Desktop\ELLIPHANT-COVER-FINAL5.jpeg
2014-04-17 00:07 - 2014-04-17 14:34 - 78750354 _____ () C:\Users\Stefan\Downloads\Hot fuck between friends.flv
2014-04-16 23:53 - 2014-04-17 00:07 - 86629837 _____ () C:\Users\Stefan\Downloads\Sexo al aire libre.flv
2014-04-16 23:47 - 2014-04-16 23:53 - 98481649 _____ () C:\Users\Stefan\Downloads\Denis threesome DP in changing room.flv
2014-04-16 23:42 - 2014-04-16 23:47 - 59358496 _____ () C:\Users\Stefan\Downloads\Chase Coxxx & Colin Black.flv
2014-04-16 23:36 - 2014-04-16 23:42 - 71427640 _____ () C:\Users\Stefan\Downloads\UKNM - Frank Valencia & Aaron Steel - 720p.flv
2014-04-16 23:19 - 2014-04-16 23:28 - 130068874 _____ () C:\Users\Stefan\Downloads\Adam & Vito.flv
2014-04-16 23:17 - 2014-04-16 23:37 - 98632815 _____ () C:\Users\Stefan\Downloads\Falcon Studios - The Guys Next Door, Part 1 - Paul Wagner, Samuel O'Toole - Anal Sex, Athletic.flv
2014-04-16 23:06 - 2014-04-16 23:19 - 80863381 _____ () C:\Users\Stefan\Downloads\Boss Been Bad - downloadgvideos.blogspot.com.flv
2014-04-16 22:59 - 2014-04-16 23:06 - 82139048 _____ () C:\Users\Stefan\Downloads\SeanCody –  scs and p.flv
2014-04-16 22:48 - 2014-04-16 22:59 - 120372896 _____ () C:\Users\Stefan\Downloads\HammerBoys.flv
2014-04-16 22:40 - 2014-04-16 22:48 - 88002528 _____ () C:\Users\Stefan\Downloads\SeanCody – Cameron and Tanner (Bareback).flv
2014-04-16 21:19 - 2014-04-16 21:19 - 00019626 _____ () C:\ComboFix.txt
2014-04-16 20:37 - 2014-04-16 20:37 - 00001166 _____ () C:\Users\Stefan\Desktop\ComboFix - Verknüpfung.lnk
2014-04-16 20:37 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-04-16 20:37 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-04-16 20:37 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-04-16 20:37 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-04-16 20:37 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-04-16 20:37 - 2000-08-31 02:00 - 00212480 _____ (SteelWerX) C:\Windows\SWXCACLS.exe
2014-04-16 20:37 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-04-16 20:37 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-04-16 20:37 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-04-16 20:36 - 2014-04-16 21:19 - 00000000 ____D () C:\Qoobox
2014-04-16 20:36 - 2014-04-16 21:16 - 00000000 ____D () C:\Windows\erdnt
2014-04-16 20:35 - 2014-04-16 20:35 - 05194807 ____R (Swearware) C:\Users\Stefan\Downloads\ComboFix.exe
2014-04-16 20:33 - 2014-04-16 20:33 - 00001232 _____ () C:\Users\Stefan\Desktop\Revo Uninstaller.lnk
2014-04-16 20:31 - 2014-04-16 20:31 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Stefan\Downloads\revosetup95.exe
2014-04-16 17:39 - 2014-04-16 18:50 - 00000000 ____D () C:\Users\Stefan\Desktop\ebay
2014-04-16 16:21 - 2014-04-16 16:21 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Atheros
2014-04-16 16:21 - 2014-04-16 16:21 - 00000000 ____D () C:\ProgramData\Atheros
2014-04-16 16:14 - 2012-11-09 15:44 - 00576152 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys
2014-04-16 16:14 - 2012-11-09 15:44 - 00344216 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_a2dp.sys
2014-04-16 16:14 - 2012-11-09 15:44 - 00178840 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_hcrp.sys
2014-04-16 16:14 - 2012-11-09 15:44 - 00135832 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_rcp.sys
2014-04-16 16:14 - 2012-11-09 15:44 - 00114840 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_avdt.sys
2014-04-16 16:14 - 2012-11-09 15:44 - 00088728 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_flt.sys
2014-04-16 16:14 - 2012-11-09 15:44 - 00076952 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_lwflt.sys
2014-04-16 16:14 - 2012-11-09 15:44 - 00033944 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_bus.sys
2014-04-16 16:11 - 2014-04-16 16:11 - 02257338 _____ () C:\Users\Stefan\Downloads\win81-10.0.0.274-whql.zip
2014-04-16 16:11 - 2014-04-16 16:11 - 00000000 ____D () C:\Windows\LastGood.Tmp
2014-04-16 16:07 - 2014-04-16 16:07 - 00000000 ____D () C:\Users\Stefan\Downloads\wlan_atheros_10.0.0.217_w8x64u_a
2014-04-16 16:06 - 2014-04-16 16:07 - 234996231 _____ () C:\Users\Stefan\Downloads\wlan_atheros_10.0.0.217_w8x64u_a.zip
2014-04-16 12:55 - 2014-04-16 13:07 - 121186158 _____ () C:\Users\Stefan\Downloads\Axl-Bailey.mp4   Ask Gay Tube Free Gay Porn Videos, Movies   Clips.flv
2014-04-16 12:47 - 2014-04-16 12:55 - 71996322 _____ () C:\Users\Stefan\Downloads\BIAGGI BEATDOWN - Videos - MACHOMOE.COM (2).flv
2014-04-16 12:44 - 2014-04-16 12:47 - 38598418 _____ () C:\Users\Stefan\Downloads\esteban fucks america.flv
2014-04-16 12:40 - 2014-04-16 12:44 - 65777751 _____ () C:\Users\Stefan\Downloads\blindfolded bear bottom.mp4
2014-04-16 12:33 - 2014-04-16 12:36 - 58039781 _____ () C:\Users\Stefan\Downloads\Having Sex At The Gym.mp4
2014-04-16 12:30 - 2014-04-16 12:40 - 77789302 _____ () C:\Users\Stefan\Downloads\Black 11ins fat cock.mp4
2014-04-16 12:24 - 2014-04-16 12:30 - 82922265 _____ () C:\Users\Stefan\Downloads\Jimmy Durano and Angelo Marconi.mp4
2014-04-16 12:10 - 2014-04-16 12:11 - 00000000 ____D () C:\Users\Stefan\Desktop\04Elliphant_Look_Like_You_Love_It14
2014-04-16 11:43 - 2014-04-16 11:58 - 58925677 _____ () C:\Users\Stefan\Downloads\04Elliphant_Look_Like_You_Love_It14.zip
2014-04-15 20:46 - 2014-04-15 20:46 - 00028862 _____ () C:\Users\Stefan\Downloads\Addition.txt
2014-04-15 20:45 - 2014-04-17 18:25 - 00013508 _____ () C:\Users\Stefan\Downloads\FRST.txt
2014-04-15 20:44 - 2014-04-15 20:46 - 00000000 ____D () C:\FRST
2014-04-15 20:44 - 2014-04-15 20:44 - 02054144 _____ (Farbar) C:\Users\Stefan\Downloads\FRST64.exe
2014-04-15 20:43 - 2014-04-15 20:43 - 01042944 _____ (Farbar) C:\Users\Stefan\Downloads\FRST.exe
2014-04-15 20:07 - 2014-04-15 20:07 - 03046734 _____ () C:\Users\Stefan\Downloads\WNR1000_V1.0.2.62_60.0.87.zip
2014-04-15 15:34 - 2014-04-15 15:38 - 95321437 _____ () C:\Users\Stefan\Desktop\135698614533hd_clear.flv
2014-04-15 14:29 - 2014-04-15 14:48 - 142986250 _____ () C:\Users\Stefan\Downloads\PsyPass 04 Ger Sub_H264-848x480.mp4
2014-04-15 14:21 - 2014-04-15 14:21 - 01810541 _____ () C:\Users\Stefan\Desktop\mov_500.mp4
2014-04-13 15:09 - 2014-04-13 15:12 - 39276437 _____ () C:\Users\Stefan\Downloads\Dads Slim Boy Use.flv
2014-04-13 14:58 - 2014-04-13 15:09 - 138195017 _____ () C:\Users\Stefan\Downloads\Kyle King & Shay Michaels.flv
2014-04-13 13:40 - 2014-04-13 14:18 - 95349997 _____ () C:\Users\Stefan\Desktop\13569895527hd_clear.flv
2014-04-13 12:41 - 2014-04-13 12:45 - 95328268 _____ () C:\Users\Stefan\Desktop\135105772450hd_clear.flv
2014-04-13 12:23 - 2014-04-13 12:28 - 77584437 _____ () C:\Users\Stefan\Downloads\genial.flv
2014-04-13 12:19 - 2014-04-13 12:23 - 63339896 _____ () C:\Users\Stefan\Downloads\Willing to be used ^^.mp4
2014-04-13 12:14 - 2014-04-13 12:19 - 80197191 _____ () C:\Users\Stefan\Downloads\GPB _ Sexy Tied up Boy Used.mp4
2014-04-13 12:09 - 2014-04-13 12:14 - 82834238 _____ () C:\Users\Stefan\Downloads\#P@ul W@lker&amp; Goran#.mp4
2014-04-13 12:05 - 2014-04-13 12:09 - 58530809 _____ () C:\Users\Stefan\Downloads\CB Mason Gabriel.mp4
2014-04-13 12:00 - 2014-04-13 12:05 - 79791335 _____ () C:\Users\Stefan\Downloads\Austin and Shawn.mp4
2014-04-13 10:08 - 2014-01-27 05:42 - 02232664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-04-13 10:08 - 2014-01-27 05:39 - 01939288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-13 10:08 - 2014-01-27 02:52 - 17561088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-04-13 10:08 - 2014-01-27 02:31 - 19752448 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-04-13 10:07 - 2014-03-07 02:48 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-13 10:07 - 2014-03-07 02:48 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-13 10:07 - 2014-03-07 02:47 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-13 10:07 - 2014-03-07 02:47 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-13 10:07 - 2014-03-07 02:47 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-13 10:07 - 2014-03-07 02:08 - 19273216 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-13 10:07 - 2014-03-07 02:08 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-13 10:07 - 2014-03-07 02:08 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-13 10:07 - 2014-03-07 02:08 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-13 10:07 - 2014-03-07 02:08 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-04-13 10:07 - 2014-03-07 02:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-13 10:07 - 2014-03-07 02:08 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-13 10:07 - 2014-03-07 02:08 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-13 10:07 - 2014-02-04 01:56 - 00332632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-13 10:07 - 2014-02-04 01:56 - 00278872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-13 10:07 - 2014-01-31 05:55 - 00209712 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2014-04-13 10:07 - 2014-01-31 02:48 - 00564736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-04-13 10:07 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2014-04-13 10:07 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2014-04-13 10:07 - 2014-01-31 02:48 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-13 10:07 - 2014-01-31 02:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-04-13 10:07 - 2014-01-31 02:06 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-04-13 10:07 - 2014-01-31 02:06 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-13 10:07 - 2014-01-27 01:17 - 00386722 _____ () C:\Windows\system32\ApnDatabase.xml
2014-04-13 10:07 - 2014-01-16 01:42 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-04-13 10:07 - 2014-01-11 08:48 - 05979648 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-04-13 10:07 - 2014-01-11 07:06 - 05092352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-04-13 10:07 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-04-13 10:07 - 2014-01-03 01:32 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-04-13 10:07 - 2013-05-16 00:37 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-04-13 10:07 - 2013-05-16 00:35 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-04-13 10:07 - 2013-05-14 15:14 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-13 10:07 - 2013-05-14 11:23 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-13 10:07 - 2013-02-21 12:29 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-04-13 10:07 - 2013-02-21 12:29 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-13 10:07 - 2013-02-21 12:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-13 10:07 - 2013-02-21 12:29 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-13 10:07 - 2013-02-21 12:14 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-04-13 10:07 - 2013-02-21 12:14 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-13 10:07 - 2013-02-19 11:53 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-04-13 10:07 - 2012-11-08 06:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-13 10:07 - 2012-11-08 06:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-13 10:07 - 2012-07-26 05:06 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-13 10:06 - 2014-03-07 02:47 - 14357504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-13 10:06 - 2014-03-07 02:47 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-13 10:06 - 2014-03-07 02:47 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-13 10:06 - 2014-03-07 02:47 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-04-13 10:06 - 2014-03-07 02:08 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-13 10:06 - 2014-03-07 02:08 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-13 09:58 - 2014-04-17 06:07 - 00000000 ____D () C:\Users\Stefan\Desktop\Neuer Ordner (2)
2014-04-09 18:00 - 2014-04-09 18:00 - 00011191 _____ () C:\Users\Stefan\gsview32.ini
2014-04-09 18:00 - 2014-04-09 18:00 - 00000000 ____D () C:\Program Files (x86)\Ghostgum
2014-04-09 17:59 - 2014-04-09 17:59 - 04176190 _____ () C:\Users\Stefan\Downloads\gsview50.zip
2014-04-09 17:59 - 2014-04-09 17:59 - 00000000 ____D () C:\Users\Stefan\Downloads\gsview50
2014-04-09 17:57 - 2014-04-09 17:57 - 13044626 _____ () C:\Users\Stefan\Downloads\gs914w32.exe
2014-04-09 17:57 - 2014-04-09 17:57 - 00000000 ____D () C:\Program Files (x86)\gs
2014-04-09 16:53 - 2014-04-09 16:53 - 00076208 _____ () C:\Users\Stefan\Desktop\miete.prn
2014-04-09 16:41 - 2014-02-06 01:41 - 01257984 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 16:41 - 2014-02-06 01:41 - 00978432 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-04-09 16:41 - 2014-02-06 01:26 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-04-09 16:41 - 2014-02-06 01:19 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-09 12:41 - 2014-04-09 12:41 - 00007334 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu) (3).odt
2014-04-09 12:41 - 2014-04-09 12:41 - 00000098 ____H () C:\Users\Stefan\Desktop\.~lock.OpenDocument Text (neu) (3).odt#
2014-04-06 17:36 - 2014-04-06 17:39 - 51140818 _____ () C:\Users\Stefan\Downloads\Dad and Guy.mp4
2014-04-06 17:19 - 2014-04-06 17:24 - 81006868 _____ () C:\Users\Stefan\Downloads\Deviantsxxx.mp4
2014-04-06 17:16 - 2014-04-06 17:43 - 82438930 _____ () C:\Users\Stefan\Downloads\Threesome.mp4
2014-04-06 17:05 - 2014-04-06 17:36 - 311953970 _____ () C:\Users\Stefan\Downloads\Thank You, Daddy!.mp4
2014-04-06 17:02 - 2014-04-06 17:05 - 58687702 _____ () C:\Users\Stefan\Downloads\JOHNNY HAZZARD &amp; DIESEL O'GREEN.mp4
2014-04-06 17:00 - 2014-04-06 17:02 - 35155744 _____ () C:\Users\Stefan\Downloads\Gay boys having sex on boat.mp4
2014-04-06 16:53 - 2014-04-06 16:59 - 76968621 _____ () C:\Users\Stefan\Downloads\[portalvideogay.net].flv
2014-04-06 16:46 - 2014-04-06 16:53 - 82099943 _____ () C:\Users\Stefan\Downloads\240P 400k 24992732.flv
2014-04-06 16:40 - 2014-04-06 16:46 - 74922578 _____ () C:\Users\Stefan\Downloads\240P 400k 25021702.flv
2014-04-06 16:35 - 2014-04-06 16:40 - 55822622 _____ () C:\Users\Stefan\Downloads\240P 400k 25053892.flv
2014-04-06 16:28 - 2014-04-06 16:35 - 58838294 _____ () C:\Users\Stefan\Downloads\240P 400k 25069262.flv
2014-04-06 16:23 - 2014-04-06 16:28 - 60170431 _____ () C:\Users\Stefan\Downloads\240P 400K 16592262.flv
2014-04-06 16:17 - 2014-04-06 16:23 - 58621356 _____ () C:\Users\Stefan\Downloads\240P 400k 24966592.flv
2014-04-06 11:56 - 2014-04-06 11:56 - 03527317 _____ () C:\Users\Stefan\Downloads\cashcrawler_setup.zip
2014-04-05 09:18 - 2014-04-05 09:18 - 00000000 ____D () C:\Yu-Gi-Oh! Power of Chaos Common
2014-04-05 09:16 - 2014-04-05 09:16 - 00000000 ____D () C:\yugi
2014-04-05 00:34 - 2014-04-05 00:36 - 109153033 _____ () C:\Users\Stefan\Downloads\la_24_ANIME-LOADS.ORG.mp4
2014-04-05 00:32 - 2014-04-05 00:34 - 98857824 _____ () C:\Users\Stefan\Downloads\la_23_ANIME-LOADS.ORG.mp4
2014-04-05 00:30 - 2014-04-05 00:32 - 197368861 _____ () C:\Users\Stefan\Downloads\la_22_ANIME-LOADS.ORG.mp4
2014-04-05 00:28 - 2014-04-05 00:30 - 227391257 _____ () C:\Users\Stefan\Downloads\kill_21_ANIME-LOADS.ORG.mp4
2014-04-05 00:26 - 2014-04-05 00:28 - 198722878 _____ () C:\Users\Stefan\Downloads\kill_20_ANIME-LOADS.ORG.mp4
2014-04-05 00:24 - 2014-04-05 00:26 - 212855469 _____ () C:\Users\Stefan\Downloads\la_19_ANIME-LOADS.ORG.mp4
2014-04-05 00:22 - 2014-04-05 00:24 - 268818214 _____ () C:\Users\Stefan\Downloads\la_18_ANIME-LOADS.ORG.mp4
2014-04-05 00:18 - 2014-04-05 00:22 - 176924567 _____ () C:\Users\Stefan\Downloads\la_17_ANIME-LOADS.ORG.mp4
2014-04-05 00:16 - 2014-04-05 00:18 - 236623469 _____ () C:\Users\Stefan\Downloads\la_15_ANIME-LOADS.ORG.mp4
2014-04-05 00:11 - 2014-04-05 00:16 - 242038633 _____ () C:\Users\Stefan\Downloads\la_14_ANIME-LOADS.ORG.mp4
2014-04-05 00:07 - 2014-04-05 00:11 - 170633354 _____ () C:\Users\Stefan\Downloads\la_13_ANIME-LOADS.ORG.mp4
2014-04-05 00:04 - 2014-04-05 00:07 - 272570427 _____ () C:\Users\Stefan\Downloads\la_12_ANIME-LOADS.ORG.mp4
2014-04-05 00:03 - 2014-04-05 00:04 - 94882418 _____ () C:\Users\Stefan\Downloads\la_11_ANIME-LOADS.ORG.mp4
2014-04-05 00:01 - 2014-04-05 00:03 - 242048198 _____ () C:\Users\Stefan\Downloads\la_10_ANIME-LOADS.ORG.mp4
2014-04-04 23:58 - 2014-04-05 00:01 - 251061640 _____ () C:\Users\Stefan\Downloads\la_09_ANIME-LOADS.ORG.mp4
2014-04-04 23:52 - 2014-04-04 23:58 - 198262154 _____ () C:\Users\Stefan\Downloads\la_08_ANIME-LOADS.ORG.mp4
2014-04-04 23:47 - 2014-04-04 23:52 - 197997489 _____ () C:\Users\Stefan\Downloads\la_07_ANIME-LOADS.ORG.mp4
2014-04-04 23:45 - 2014-04-04 23:47 - 240718098 _____ () C:\Users\Stefan\Downloads\la_06_ANIME-LOADS.ORG.mp4
2014-04-04 23:43 - 2014-04-04 23:45 - 169121121 _____ () C:\Users\Stefan\Downloads\la_05_ANIME-LOADS.ORG.mp4
2014-04-04 23:41 - 2014-04-04 23:43 - 225000802 _____ () C:\Users\Stefan\Downloads\la_04_ANIME-LOADS.ORG.mp4
2014-04-04 23:35 - 2014-04-04 23:41 - 239386829 _____ () C:\Users\Stefan\Downloads\la_03_ANIME-LOADS.ORG.mp4
2014-04-04 23:30 - 2014-04-04 23:35 - 207420956 _____ () C:\Users\Stefan\Downloads\la_02_ANIME-LOADS.ORG.mp4
2014-04-04 22:46 - 2014-04-04 22:52 - 90500039 _____ () C:\Users\Stefan\Downloads\CB - Colby Keller & Gabriel Clark Flip-Fuck!.mp4
2014-04-04 22:43 - 2014-04-04 22:46 - 47771675 _____ () C:\Users\Stefan\Downloads\Abxxxxxxxxxxxxxxxxxxxxxxxxxxx.mp4
2014-04-04 22:33 - 2014-04-04 22:43 - 162089139 _____ () C:\Users\Stefan\Downloads\The professional escort.mp4
2014-04-04 22:27 - 2014-04-04 22:33 - 87261913 _____ () C:\Users\Stefan\Downloads\A special massage.mp4
2014-04-04 22:22 - 2014-04-04 22:27 - 73377774 _____ () C:\Users\Stefan\Downloads\white muscle guy will do anything.mp4
2014-04-04 22:17 - 2014-04-04 22:22 - 81006543 _____ () C:\Users\Stefan\Downloads\2 Big Black Cocks 1 Sore White Ass.mp4
2014-04-04 22:11 - 2014-04-04 22:17 - 79485926 _____ () C:\Users\Stefan\Downloads\Jake Bass.flv
2014-04-04 22:01 - 2014-04-04 22:07 - 62042671 _____ () C:\Users\Stefan\Downloads\Peto Coast.flv
2014-04-04 21:57 - 2014-04-04 22:11 - 61173211 _____ () C:\Users\Stefan\Downloads\Santiago F.U Marko.flv
2014-04-04 21:50 - 2014-04-04 21:57 - 101715234 _____ () C:\Users\Stefan\Downloads\wrestling team tryouts.flv
2014-04-04 21:44 - 2014-04-04 21:50 - 93182147 _____ () C:\Users\Stefan\Downloads\Sean Cody - Rich & Miles bareback.flv
2014-04-04 21:39 - 2014-04-04 21:44 - 46274203 _____ () C:\Users\Stefan\Downloads\Ð±ÐµÐ»Ñ‹Ð¹ Ð´Ð¾Ñ…Ð¾Ð´ÑÐ³Ñƒ.flv
2014-04-04 21:37 - 2014-04-04 21:39 - 249588980 _____ () C:\Users\Stefan\Downloads\la_01_ANIME-LOADS.ORG.mp4
2014-04-04 21:03 - 2014-04-04 21:03 - 15932928 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_OVA.mp4
2014-04-04 21:02 - 2014-04-04 21:03 - 42781558 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_26.mp4
2014-04-04 21:01 - 2014-04-04 21:02 - 59494147 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_19.mp4
2014-04-04 21:00 - 2014-04-04 21:01 - 53542596 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_25.mp4
2014-04-04 20:59 - 2014-04-04 21:00 - 48024856 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_24.mp4
2014-04-04 20:58 - 2014-04-04 20:59 - 46934129 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_23.mp4
2014-04-04 20:57 - 2014-04-04 20:58 - 67205641 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_22.mp4
2014-04-04 20:57 - 2014-04-04 20:57 - 47486263 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_21.mp4
2014-04-04 20:56 - 2014-04-04 20:56 - 50337302 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_20.mp4
2014-04-04 20:53 - 2014-04-04 21:01 - 52215706 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_18.mp4
2014-04-04 20:52 - 2014-04-04 20:53 - 59042638 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_17.mp4
2014-04-04 20:49 - 2014-04-04 20:57 - 52288979 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_16.mp4
2014-04-04 20:49 - 2014-04-04 20:49 - 54138304 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_15.mp4
2014-04-04 20:47 - 2014-04-04 20:47 - 43341448 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_14.mp4
2014-04-04 20:46 - 2014-04-04 20:47 - 56997308 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_13.mp4
2014-04-04 20:45 - 2014-04-04 20:46 - 55056221 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_12.mp4
2014-04-04 20:44 - 2014-04-04 20:45 - 53971435 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_11.mp4
2014-04-04 20:42 - 2014-04-04 20:43 - 52695135 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_10.mp4
2014-04-04 20:40 - 2014-04-04 20:48 - 47698577 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_09.mp4
2014-04-04 20:39 - 2014-04-04 20:40 - 67202748 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_08.mp4
2014-04-04 20:37 - 2014-04-04 20:39 - 55910929 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_07.mp4
2014-04-04 20:36 - 2014-04-04 20:37 - 58605266 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_06.mp4
2014-04-04 20:35 - 2014-04-04 20:36 - 70959028 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_05.mp4
2014-04-04 20:33 - 2014-04-04 20:34 - 63107850 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_04.mp4
2014-04-04 20:32 - 2014-04-04 20:33 - 62683692 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_03.mp4
2014-04-04 20:30 - 2014-04-04 20:31 - 75171280 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_02.mp4
2014-04-04 20:26 - 2014-04-04 20:27 - 56830933 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_01.mp4
2014-04-04 20:17 - 2014-04-04 20:19 - 198030510 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 12 Ger Sub.mp4
2014-04-04 20:15 - 2014-04-04 20:17 - 198029176 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 11 Ger Sub.mp4
2014-04-04 20:13 - 2014-04-04 20:15 - 198044013 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 10 Ger Sub.mp4
2014-04-04 20:09 - 2014-04-04 20:13 - 213350854 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 09 Ger Sub.mp4
2014-04-04 20:07 - 2014-04-04 20:08 - 197925149 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 08 Ger Sub.mp4
2014-04-04 20:05 - 2014-04-04 20:07 - 222108559 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 07 Ger Sub.mp4
2014-04-04 20:02 - 2014-04-04 20:05 - 198139195 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 06 Ger Sub.mp4
2014-04-04 20:00 - 2014-04-04 20:02 - 198032147 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 05 Ger Sub.mp4
2014-04-04 19:59 - 2014-04-04 20:00 - 198107051 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 04 Ger Sub.mp4
2014-04-04 19:57 - 2014-04-04 19:59 - 198059388 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 03 Ger Sub.mp4
2014-04-04 19:55 - 2014-04-04 19:57 - 213320605 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 02 Ger Sub.mp4
2014-04-04 19:53 - 2014-04-04 19:55 - 197908446 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 01 Ger Sub.mp4
2014-04-04 19:38 - 2014-04-04 20:41 - 00011467 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu) (2).odt
2014-04-03 10:55 - 2014-04-03 11:07 - 00013128 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu).odt
2014-04-02 21:07 - 2014-04-02 21:14 - 110170843 _____ () C:\Users\Stefan\Downloads\[LS] Allen King & Antonio Aguilera - 1080p.flv
2014-04-02 20:51 - 2014-04-02 21:35 - 167517812 _____ () C:\Users\Stefan\Downloads\BG - Jan 16 2014 - Trenton Ducati and Tyler Sweet (34604).flv
2014-04-02 20:42 - 2014-04-02 20:51 - 95292049 _____ () C:\Users\Stefan\Downloads\sh@y mich@3l5 @nd justin d3@n.flv
2014-04-02 20:38 - 2014-04-02 20:42 - 55705449 _____ () C:\Users\Stefan\Downloads\Johnny Rapid's jailhouse fuck.flv
2014-04-02 20:29 - 2014-04-02 20:38 - 104728142 _____ () C:\Users\Stefan\Downloads\BEST FUCK.flv
2014-04-02 20:22 - 2014-04-02 20:29 - 55087997 _____ () C:\Users\Stefan\Downloads\Breno Lopez & Jay Roberts.flv
2014-04-02 20:17 - 2014-04-02 20:22 - 87164810 _____ () C:\Users\Stefan\Downloads\[SeanCody] SC-1757 Joey & Cameron - 1080p.flv
2014-04-02 20:04 - 2014-04-02 20:17 - 153005814 _____ () C:\Users\Stefan\Downloads\No Means Yes 2.flv.part
2014-04-02 20:00 - 2014-04-02 20:04 - 50483340 _____ () C:\Users\Stefan\Downloads\Tim Kruger and Thierry Lamasse.flv
2014-04-02 19:51 - 2014-04-02 20:00 - 94319703 _____ () C:\Users\Stefan\Downloads\Gabriel Vand.flv
2014-04-02 19:46 - 2014-04-02 19:51 - 74211215 _____ () C:\Users\Stefan\Downloads\Colby Keller &amp; Levi Michaels.mp4
2014-04-02 19:42 - 2014-04-02 19:59 - 260862333 _____ () C:\Users\Stefan\Downloads\Daddy's Reform School Playmate..mp4
2014-04-02 19:40 - 2014-04-02 19:46 - 90674646 _____ () C:\Users\Stefan\Downloads\Closing the deal.mp4
2014-04-02 19:38 - 2014-04-02 19:42 - 43978172 _____ () C:\Users\Stefan\Downloads\Pizza Delivery 2.mp4
2014-04-02 19:34 - 2014-04-02 19:40 - 94744773 _____ () C:\Users\Stefan\Downloads\kline1.mp4
2014-04-02 19:26 - 2014-04-02 19:38 - 180028035 _____ () C:\Users\Stefan\Downloads\gay francais.mp4
2014-04-02 19:26 - 2014-04-02 19:34 - 115866361 _____ () C:\Users\Stefan\Downloads\landon and jimmy.mp4
2014-03-30 21:52 - 2014-03-30 21:54 - 53818840 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_37__Xvid_ger.sub__CC196300_.mp4
2014-03-30 21:50 - 2014-03-30 21:52 - 56107566 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_36__Xvid_ger.sub__160A759B_.mp4
2014-03-30 21:47 - 2014-03-30 21:57 - 51457649 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_35__Xvid_ger.sub__EFD333FF_.mp4
2014-03-30 21:46 - 2014-03-30 21:47 - 47480120 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_34__Xvid_ger.sub__20F56A17_.mp4
2014-03-30 21:43 - 2014-03-30 21:45 - 55497507 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_33__Xvid_ger.sub__6EC902BC_.mp4
2014-03-30 21:41 - 2014-03-30 21:43 - 50877129 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_32v2__Xvid_ger.sub__B5979266_.mp4
2014-03-30 21:39 - 2014-03-30 21:41 - 58621991 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_31__Xvid_ger.sub__FB5341BC_.mp4
2014-03-30 21:32 - 2014-03-30 21:34 - 49729717 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_30__Xvid_ger.sub__8784B483_.mp4
2014-03-30 21:30 - 2014-03-30 21:32 - 50228073 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_29__Xvid_ger.sub__A5FEBEF3_.mp4
2014-03-30 21:29 - 2014-04-16 16:14 - 00000351 _____ () C:\Windows\setupact.log
2014-03-30 21:29 - 2014-03-30 21:29 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-30 21:23 - 2014-03-30 21:56 - 52560329 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_28__Xvid_ger.sub__3DFB4CFB_.mp4
2014-03-30 21:19 - 2014-03-30 21:20 - 46465729 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_27__Xvid_ger.sub__4E12E180_.mp4
2014-03-30 21:17 - 2014-03-30 21:19 - 57991189 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_26__Xvid_ger.sub__890BD73F_.mp4
2014-03-30 21:15 - 2014-03-30 21:16 - 54767747 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_25__Xvid_ger.sub__7B9C8288_.mp4
2014-03-30 21:13 - 2014-03-30 21:14 - 51281361 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_24__Xvid_ger.sub__6A054AD4_.mp4
2014-03-30 21:11 - 2014-03-30 21:12 - 53139643 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_23__Xvid_ger.sub__1CC51FF8_.mp4
2014-03-30 21:09 - 2014-03-30 21:10 - 48853068 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_22__Xvid_ger.sub__E157E8E2_.mp4
2014-03-30 20:41 - 2014-03-30 20:42 - 47274937 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_21__Xvid_ger.sub__BCAF2C6C_.mp4
2014-03-30 20:17 - 2014-03-30 20:18 - 48435266 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_19__Xvid_ger.sub__0C17CC8A_.mp4
2014-03-30 20:17 - 2014-03-30 20:17 - 47074196 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_18__Xvid_ger.sub__BC1F662A_.mp4
2014-03-30 20:16 - 2014-03-30 20:16 - 50328767 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_17__Xvid_ger.sub__70D96388_.mp4
2014-03-30 20:15 - 2014-03-30 20:15 - 45455700 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_16__Xvid_ger.sub__25932D6D_.mp4
2014-03-30 20:14 - 2014-03-30 20:15 - 49896156 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_20__Xvid_ger.sub__5C1D4E77_.mp4
2014-03-30 20:11 - 2014-03-30 20:12 - 50106472 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_15__Xvid_ger.sub__5CAFAE3F_.mp4
2014-03-30 20:10 - 2014-03-30 20:11 - 44393400 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_14__Xvid_ger.sub__44C3B507_.mp4
2014-03-30 20:09 - 2014-03-30 20:10 - 48393856 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_13__Xvid_ger.sub__DB87559C_.mp4
2014-03-30 20:09 - 2014-03-30 20:09 - 46515515 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_12__Xvid_ger.sub__A3E9AD43_.mp4
2014-03-30 20:08 - 2014-03-30 20:08 - 49817493 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_11__Xvid_ger.sub__3AB75B0F_.mp4
2014-03-30 20:02 - 2014-03-30 20:02 - 53459302 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_10__Xvid_ger.sub__5F0FD77F_.mp4
2014-03-30 20:01 - 2014-03-30 20:01 - 50216117 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_09__Xvid_ger.sub__028F875C_.mp4
2014-03-30 20:00 - 2014-03-30 20:00 - 51101370 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_08__Xvid_ger.sub__E37D1B4E_.mp4
2014-03-30 19:59 - 2014-03-30 20:00 - 50559248 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_07__Xvid_ger.sub__1E1C37D8_.mp4
2014-03-30 19:58 - 2014-03-30 19:59 - 55140980 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_06__Xvid_ger.sub__E98F7EB1_.mp4
2014-03-30 14:49 - 2014-03-30 14:50 - 43169315 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_05__Xvid_ger.sub__44F1A26E_.mp4
2014-03-30 14:48 - 2014-03-30 14:49 - 46135178 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_04__Xvid_ger.sub__BD57706F_.mp4
2014-03-30 14:39 - 2014-03-30 14:48 - 46173032 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_03__Xvid_ger.sub__5E0781B4_.mp4
2014-03-30 14:36 - 2014-03-30 14:37 - 52949996 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_02__Xvid_ger.sub__477CE0D8_.mp4
2014-03-30 14:13 - 2014-04-17 15:14 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\vlc
2014-03-30 14:13 - 2014-03-30 14:13 - 00001074 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-03-30 14:11 - 2014-03-30 14:11 - 24677393 _____ () C:\Users\Stefan\Downloads\vlc-2.1.3-win32.exe
2014-03-30 13:59 - 2014-03-30 13:59 - 00130707 _____ () C:\Users\Stefan\Downloads\_subs4u_Death_Note_01_37_Xvid_ger.sub_.torrent
2014-03-30 13:57 - 2014-03-30 14:07 - 51847442 _____ () C:\Users\Stefan\Downloads\139461862337hd.flv
2014-03-30 13:57 - 2014-03-30 13:57 - 02079653 _____ () C:\Users\Stefan\Downloads\83a65757-e807-4c8d-90ef-bc7b1d36e4a7.mp4
2014-03-30 13:39 - 2014-03-30 13:39 - 06639616 _____ () C:\Users\Stefan\Downloads\inSSIDer-installer.msi
2014-03-30 13:05 - 2014-03-30 13:06 - 00000000 ____D () C:\Users\Stefan\AppData\Local\MetaGeek,_LLC
2014-03-30 13:04 - 2014-03-30 13:04 - 00002491 _____ () C:\Users\Public\Desktop\inSSIDer Home.lnk
2014-03-30 13:03 - 2014-03-30 13:03 - 00001405 _____ () C:\Users\Public\Desktop\Xirrus Wi-Fi Inspector.lnk
2014-03-30 13:02 - 2014-03-30 13:02 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Xirrus
2014-03-30 13:01 - 2014-03-30 13:01 - 04767744 _____ () C:\Users\Stefan\Downloads\inSSIDer31-installer.msi
2014-03-30 13:00 - 2014-03-30 13:00 - 22224144 _____ (Xirrus) C:\Users\Stefan\Downloads\WiFiInspector-Setup-1.2.1.4.exe
2014-03-30 12:30 - 2014-03-30 12:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 00:00 - 2014-03-29 00:00 - 00000000 ____D () C:\Users\Stefan\Documents\CyberLink
2014-03-25 17:50 - 2014-03-25 17:50 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-25 17:50 - 2014-03-25 17:50 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-25 17:50 - 2014-03-25 17:50 - 00000000 ____D () C:\Users\Stefan\AppData\Local\Skype
2014-03-19 18:20 - 2014-03-19 18:21 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Schiffbruch
2014-03-19 18:18 - 2014-03-19 18:18 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-03-18 09:56 - 2014-03-18 09:56 - 00308560 _____ () C:\Windows\system32\FNTCACHE.DAT

==================== One Month Modified Files and Folders =======

2014-04-17 18:25 - 2014-04-15 20:45 - 00013508 _____ () C:\Users\Stefan\Downloads\FRST.txt
2014-04-17 18:25 - 2014-04-15 20:44 - 00000000 ____D () C:\FRST
2014-04-17 18:23 - 2014-04-17 18:23 - 00000746 _____ () C:\Users\Stefan\Desktop\JRT1.txt
2014-04-17 18:21 - 2014-04-17 18:21 - 00000746 _____ () C:\Users\Stefan\Desktop\JRT.txt
2014-04-17 18:14 - 2014-04-17 18:14 - 00000000 ____D () C:\Windows\ERUNT
2014-04-17 18:13 - 2014-04-17 18:13 - 02158592 _____ (Farbar) C:\Users\Stefan\Downloads\FRST64(1).exe
2014-04-17 18:13 - 2014-04-17 18:13 - 01146880 _____ (Farbar) C:\Users\Stefan\Downloads\FRST(1).exe
2014-04-17 18:13 - 2014-04-17 18:12 - 01016261 _____ (Thisisu) C:\Users\Stefan\Downloads\JRT.exe
2014-04-17 18:11 - 2014-04-17 18:11 - 00005817 _____ () C:\Users\Stefan\Desktop\AdwCleaner[S0].txt
2014-04-17 18:10 - 2014-02-12 15:18 - 02092845 _____ () C:\Windows\WindowsUpdate.log
2014-04-17 18:09 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-17 18:08 - 2014-04-17 18:05 - 00000000 ____D () C:\AdwCleaner
2014-04-17 18:08 - 2013-06-14 12:10 - 00053284 _____ () C:\Windows\system32\wpbbin.exe
2014-04-17 18:07 - 2014-04-17 18:07 - 00005984 _____ () C:\Users\Stefan\Desktop\AdwCleaner[R0].txt
2014-04-17 18:05 - 2014-04-17 18:05 - 01426178 _____ () C:\Users\Stefan\Downloads\adwcleaner.exe
2014-04-17 18:03 - 2014-04-17 17:57 - 00010519 _____ () C:\Users\Stefan\Desktop\mbam.txt
2014-04-17 18:02 - 2014-04-17 16:29 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-17 17:59 - 2014-02-12 00:51 - 00010506 _____ () C:\Windows\PFRO.log
2014-04-17 17:59 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-04-17 17:22 - 2013-06-14 21:47 - 00753134 _____ () C:\Windows\system32\perfh007.dat
2014-04-17 17:22 - 2013-06-14 21:47 - 00155826 _____ () C:\Windows\system32\perfc007.dat
2014-04-17 17:22 - 2012-07-26 09:28 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-17 17:00 - 2013-09-13 21:33 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Skype
2014-04-17 17:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\sru
2014-04-17 16:29 - 2014-04-17 16:29 - 00001110 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-17 16:29 - 2014-04-17 16:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-17 16:29 - 2014-04-17 16:29 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-04-17 16:28 - 2014-04-17 16:28 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Stefan\Downloads\mbam-setup-2.0.1.1004.exe
2014-04-17 15:14 - 2014-03-30 14:13 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\vlc
2014-04-17 15:10 - 2014-02-12 14:34 - 00000000 ____D () C:\Users\Stefan\Documents\Bluetooth Folder
2014-04-17 15:04 - 2013-09-08 11:58 - 02956800 ___SH () C:\Users\Stefan\Desktop\Thumbs.db
2014-04-17 14:39 - 2014-04-17 14:34 - 60954960 _____ () C:\Users\Stefan\Downloads\[Sketchy Sex] Closeted Big Dick.flv
2014-04-17 14:34 - 2014-04-17 00:07 - 78750354 _____ () C:\Users\Stefan\Downloads\Hot fuck between friends.flv
2014-04-17 14:04 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-04-17 06:08 - 2014-04-17 06:08 - 00440871 _____ () C:\Users\Stefan\Desktop\ELLIPHANT-COVER-FINAL5.jpeg
2014-04-17 06:07 - 2014-04-13 09:58 - 00000000 ____D () C:\Users\Stefan\Desktop\Neuer Ordner (2)
2014-04-17 00:07 - 2014-04-16 23:53 - 86629837 _____ () C:\Users\Stefan\Downloads\Sexo al aire libre.flv
2014-04-16 23:53 - 2014-04-16 23:47 - 98481649 _____ () C:\Users\Stefan\Downloads\Denis threesome DP in changing room.flv
2014-04-16 23:47 - 2014-04-16 23:42 - 59358496 _____ () C:\Users\Stefan\Downloads\Chase Coxxx & Colin Black.flv
2014-04-16 23:42 - 2014-04-16 23:36 - 71427640 _____ () C:\Users\Stefan\Downloads\UKNM - Frank Valencia & Aaron Steel - 720p.flv
2014-04-16 23:37 - 2014-04-16 23:17 - 98632815 _____ () C:\Users\Stefan\Downloads\Falcon Studios - The Guys Next Door, Part 1 - Paul Wagner, Samuel O'Toole - Anal Sex, Athletic.flv
2014-04-16 23:35 - 2014-02-11 14:50 - 00001772 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2014-04-16 23:35 - 2014-02-11 14:49 - 00000870 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-04-16 23:28 - 2014-04-16 23:19 - 130068874 _____ () C:\Users\Stefan\Downloads\Adam & Vito.flv
2014-04-16 23:19 - 2014-04-16 23:06 - 80863381 _____ () C:\Users\Stefan\Downloads\Boss Been Bad - downloadgvideos.blogspot.com.flv
2014-04-16 23:06 - 2014-04-16 22:59 - 82139048 _____ () C:\Users\Stefan\Downloads\SeanCody –  scs and p.flv
2014-04-16 22:59 - 2014-04-16 22:48 - 120372896 _____ () C:\Users\Stefan\Downloads\HammerBoys.flv
2014-04-16 22:48 - 2014-04-16 22:40 - 88002528 _____ () C:\Users\Stefan\Downloads\SeanCody – Cameron and Tanner (Bareback).flv
2014-04-16 21:19 - 2014-04-16 21:19 - 00019626 _____ () C:\ComboFix.txt
2014-04-16 21:19 - 2014-04-16 20:36 - 00000000 ____D () C:\Qoobox
2014-04-16 21:19 - 2012-07-26 07:37 - 00000000 __RHD () C:\Users\Default
2014-04-16 21:16 - 2014-04-16 20:36 - 00000000 ____D () C:\Windows\erdnt
2014-04-16 21:15 - 2012-07-26 07:26 - 00000215 _____ () C:\Windows\system.ini
2014-04-16 20:37 - 2014-04-16 20:37 - 00001166 _____ () C:\Users\Stefan\Desktop\ComboFix - Verknüpfung.lnk
2014-04-16 20:35 - 2014-04-16 20:35 - 05194807 ____R (Swearware) C:\Users\Stefan\Downloads\ComboFix.exe
2014-04-16 20:33 - 2014-04-16 20:33 - 00001232 _____ () C:\Users\Stefan\Desktop\Revo Uninstaller.lnk
2014-04-16 20:33 - 2013-08-30 20:41 - 00000000 ____D () C:\Users\Stefan\Documents\Installiert
2014-04-16 20:31 - 2014-04-16 20:31 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Stefan\Downloads\revosetup95.exe
2014-04-16 18:50 - 2014-04-16 17:39 - 00000000 ____D () C:\Users\Stefan\Desktop\ebay
2014-04-16 16:21 - 2014-04-16 16:21 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Atheros
2014-04-16 16:21 - 2014-04-16 16:21 - 00000000 ____D () C:\ProgramData\Atheros
2014-04-16 16:16 - 2013-06-14 12:39 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros
2014-04-16 16:14 - 2014-03-30 21:29 - 00000351 _____ () C:\Windows\setupact.log
2014-04-16 16:11 - 2014-04-16 16:11 - 02257338 _____ () C:\Users\Stefan\Downloads\win81-10.0.0.274-whql.zip
2014-04-16 16:11 - 2014-04-16 16:11 - 00000000 ____D () C:\Windows\LastGood.Tmp
2014-04-16 16:08 - 2013-06-14 12:39 - 00000000 ____D () C:\ProgramData\Qualcomm Atheros
2014-04-16 16:07 - 2014-04-16 16:07 - 00000000 ____D () C:\Users\Stefan\Downloads\wlan_atheros_10.0.0.217_w8x64u_a
2014-04-16 16:07 - 2014-04-16 16:06 - 234996231 _____ () C:\Users\Stefan\Downloads\wlan_atheros_10.0.0.217_w8x64u_a.zip
2014-04-16 15:05 - 2013-09-01 17:42 - 00000000 ____D () C:\Users\Stefan\AppData\Local\Last.fm
2014-04-16 13:10 - 2013-09-04 11:39 - 00000000 ____D () C:\Users\Stefan\AppData\Local\CrashDumps
2014-04-16 13:07 - 2014-04-16 12:55 - 121186158 _____ () C:\Users\Stefan\Downloads\Axl-Bailey.mp4   Ask Gay Tube Free Gay Porn Videos, Movies   Clips.flv
2014-04-16 12:55 - 2014-04-16 12:47 - 71996322 _____ () C:\Users\Stefan\Downloads\BIAGGI BEATDOWN - Videos - MACHOMOE.COM (2).flv
2014-04-16 12:47 - 2014-04-16 12:44 - 38598418 _____ () C:\Users\Stefan\Downloads\esteban fucks america.flv
2014-04-16 12:47 - 2013-09-04 14:11 - 02820608 ___SH () C:\Users\Stefan\Downloads\Thumbs.db
2014-04-16 12:44 - 2014-04-16 12:40 - 65777751 _____ () C:\Users\Stefan\Downloads\blindfolded bear bottom.mp4
2014-04-16 12:40 - 2014-04-16 12:30 - 77789302 _____ () C:\Users\Stefan\Downloads\Black 11ins fat cock.mp4
2014-04-16 12:36 - 2014-04-16 12:33 - 58039781 _____ () C:\Users\Stefan\Downloads\Having Sex At The Gym.mp4
2014-04-16 12:30 - 2014-04-16 12:24 - 82922265 _____ () C:\Users\Stefan\Downloads\Jimmy Durano and Angelo Marconi.mp4
2014-04-16 12:11 - 2014-04-16 12:10 - 00000000 ____D () C:\Users\Stefan\Desktop\04Elliphant_Look_Like_You_Love_It14
2014-04-16 11:58 - 2014-04-16 11:43 - 58925677 _____ () C:\Users\Stefan\Downloads\04Elliphant_Look_Like_You_Love_It14.zip
2014-04-16 11:36 - 2013-08-28 20:46 - 00000000 ___RD () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-16 11:36 - 2013-08-28 20:46 - 00000000 ___RD () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-04-16 11:32 - 2012-07-26 10:12 - 00000000 ___RD () C:\Windows\ToastData
2014-04-16 11:31 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\WinStore
2014-04-15 20:46 - 2014-04-15 20:46 - 00028862 _____ () C:\Users\Stefan\Downloads\Addition.txt
2014-04-15 20:44 - 2014-04-15 20:44 - 02054144 _____ (Farbar) C:\Users\Stefan\Downloads\FRST64.exe
2014-04-15 20:43 - 2014-04-15 20:43 - 01042944 _____ (Farbar) C:\Users\Stefan\Downloads\FRST.exe
2014-04-15 20:07 - 2014-04-15 20:07 - 03046734 _____ () C:\Users\Stefan\Downloads\WNR1000_V1.0.2.62_60.0.87.zip
2014-04-15 15:38 - 2014-04-15 15:34 - 95321437 _____ () C:\Users\Stefan\Desktop\135698614533hd_clear.flv
2014-04-15 14:48 - 2014-04-15 14:29 - 142986250 _____ () C:\Users\Stefan\Downloads\PsyPass 04 Ger Sub_H264-848x480.mp4
2014-04-15 14:21 - 2014-04-15 14:21 - 01810541 _____ () C:\Users\Stefan\Desktop\mov_500.mp4
2014-04-13 15:12 - 2014-04-13 15:09 - 39276437 _____ () C:\Users\Stefan\Downloads\Dads Slim Boy Use.flv
2014-04-13 15:09 - 2014-04-13 14:58 - 138195017 _____ () C:\Users\Stefan\Downloads\Kyle King & Shay Michaels.flv
2014-04-13 14:18 - 2014-04-13 13:40 - 95349997 _____ () C:\Users\Stefan\Desktop\13569895527hd_clear.flv
2014-04-13 12:45 - 2014-04-13 12:41 - 95328268 _____ () C:\Users\Stefan\Desktop\135105772450hd_clear.flv
2014-04-13 12:28 - 2014-04-13 12:23 - 77584437 _____ () C:\Users\Stefan\Downloads\genial.flv
2014-04-13 12:23 - 2014-04-13 12:19 - 63339896 _____ () C:\Users\Stefan\Downloads\Willing to be used ^^.mp4
2014-04-13 12:19 - 2014-04-13 12:14 - 80197191 _____ () C:\Users\Stefan\Downloads\GPB _ Sexy Tied up Boy Used.mp4
2014-04-13 12:14 - 2014-04-13 12:09 - 82834238 _____ () C:\Users\Stefan\Downloads\#P@ul W@lker&amp; Goran#.mp4
2014-04-13 12:09 - 2014-04-13 12:05 - 58530809 _____ () C:\Users\Stefan\Downloads\CB Mason Gabriel.mp4
2014-04-13 12:05 - 2014-04-13 12:00 - 79791335 _____ () C:\Users\Stefan\Downloads\Austin and Shawn.mp4
2014-04-12 22:49 - 2013-08-28 20:59 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-04-11 21:38 - 2013-09-04 10:47 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-11 21:34 - 2013-09-04 10:47 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-09 23:57 - 2013-11-24 13:12 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\BitTorrent
2014-04-09 18:00 - 2014-04-09 18:00 - 00011191 _____ () C:\Users\Stefan\gsview32.ini
2014-04-09 18:00 - 2014-04-09 18:00 - 00000000 ____D () C:\Program Files (x86)\Ghostgum
2014-04-09 18:00 - 2013-10-24 20:35 - 00400384 ___SH () C:\Users\Stefan\Documents\Thumbs.db
2014-04-09 18:00 - 2013-08-28 20:44 - 00000000 ____D () C:\Users\Stefan
2014-04-09 17:59 - 2014-04-09 17:59 - 04176190 _____ () C:\Users\Stefan\Downloads\gsview50.zip
2014-04-09 17:59 - 2014-04-09 17:59 - 00000000 ____D () C:\Users\Stefan\Downloads\gsview50
2014-04-09 17:58 - 2013-08-28 20:45 - 00000000 ____D () C:\Users\Stefan\AppData\Local\VirtualStore
2014-04-09 17:57 - 2014-04-09 17:57 - 13044626 _____ () C:\Users\Stefan\Downloads\gs914w32.exe
2014-04-09 17:57 - 2014-04-09 17:57 - 00000000 ____D () C:\Program Files (x86)\gs
2014-04-09 16:53 - 2014-04-09 16:53 - 00076208 _____ () C:\Users\Stefan\Desktop\miete.prn
2014-04-09 12:41 - 2014-04-09 12:41 - 00007334 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu) (3).odt
2014-04-09 12:41 - 2014-04-09 12:41 - 00000098 ____H () C:\Users\Stefan\Desktop\.~lock.OpenDocument Text (neu) (3).odt#
2014-04-06 17:43 - 2014-04-06 17:16 - 82438930 _____ () C:\Users\Stefan\Downloads\Threesome.mp4
2014-04-06 17:39 - 2014-04-06 17:36 - 51140818 _____ () C:\Users\Stefan\Downloads\Dad and Guy.mp4
2014-04-06 17:36 - 2014-04-06 17:05 - 311953970 _____ () C:\Users\Stefan\Downloads\Thank You, Daddy!.mp4
2014-04-06 17:24 - 2014-04-06 17:19 - 81006868 _____ () C:\Users\Stefan\Downloads\Deviantsxxx.mp4
2014-04-06 17:05 - 2014-04-06 17:02 - 58687702 _____ () C:\Users\Stefan\Downloads\JOHNNY HAZZARD &amp; DIESEL O'GREEN.mp4
2014-04-06 17:02 - 2014-04-06 17:00 - 35155744 _____ () C:\Users\Stefan\Downloads\Gay boys having sex on boat.mp4
2014-04-06 16:59 - 2014-04-06 16:53 - 76968621 _____ () C:\Users\Stefan\Downloads\[portalvideogay.net].flv
2014-04-06 16:53 - 2014-04-06 16:46 - 82099943 _____ () C:\Users\Stefan\Downloads\240P 400k 24992732.flv
2014-04-06 16:46 - 2014-04-06 16:40 - 74922578 _____ () C:\Users\Stefan\Downloads\240P 400k 25021702.flv
2014-04-06 16:40 - 2014-04-06 16:35 - 55822622 _____ () C:\Users\Stefan\Downloads\240P 400k 25053892.flv
2014-04-06 16:35 - 2014-04-06 16:28 - 58838294 _____ () C:\Users\Stefan\Downloads\240P 400k 25069262.flv
2014-04-06 16:28 - 2014-04-06 16:23 - 60170431 _____ () C:\Users\Stefan\Downloads\240P 400K 16592262.flv
2014-04-06 16:23 - 2014-04-06 16:17 - 58621356 _____ () C:\Users\Stefan\Downloads\240P 400k 24966592.flv
2014-04-06 11:56 - 2014-04-06 11:56 - 03527317 _____ () C:\Users\Stefan\Downloads\cashcrawler_setup.zip
2014-04-05 09:18 - 2014-04-05 09:18 - 00000000 ____D () C:\Yu-Gi-Oh! Power of Chaos Common
2014-04-05 09:16 - 2014-04-05 09:16 - 00000000 ____D () C:\yugi
2014-04-05 00:36 - 2014-04-05 00:34 - 109153033 _____ () C:\Users\Stefan\Downloads\la_24_ANIME-LOADS.ORG.mp4
2014-04-05 00:34 - 2014-04-05 00:32 - 98857824 _____ () C:\Users\Stefan\Downloads\la_23_ANIME-LOADS.ORG.mp4
2014-04-05 00:32 - 2014-04-05 00:30 - 197368861 _____ () C:\Users\Stefan\Downloads\la_22_ANIME-LOADS.ORG.mp4
2014-04-05 00:30 - 2014-04-05 00:28 - 227391257 _____ () C:\Users\Stefan\Downloads\kill_21_ANIME-LOADS.ORG.mp4
2014-04-05 00:28 - 2014-04-05 00:26 - 198722878 _____ () C:\Users\Stefan\Downloads\kill_20_ANIME-LOADS.ORG.mp4
2014-04-05 00:26 - 2014-04-05 00:24 - 212855469 _____ () C:\Users\Stefan\Downloads\la_19_ANIME-LOADS.ORG.mp4
2014-04-05 00:24 - 2014-04-05 00:22 - 268818214 _____ () C:\Users\Stefan\Downloads\la_18_ANIME-LOADS.ORG.mp4
2014-04-05 00:22 - 2014-04-05 00:18 - 176924567 _____ () C:\Users\Stefan\Downloads\la_17_ANIME-LOADS.ORG.mp4
2014-04-05 00:18 - 2014-04-05 00:16 - 236623469 _____ () C:\Users\Stefan\Downloads\la_15_ANIME-LOADS.ORG.mp4
2014-04-05 00:16 - 2014-04-05 00:11 - 242038633 _____ () C:\Users\Stefan\Downloads\la_14_ANIME-LOADS.ORG.mp4
2014-04-05 00:11 - 2014-04-05 00:07 - 170633354 _____ () C:\Users\Stefan\Downloads\la_13_ANIME-LOADS.ORG.mp4
2014-04-05 00:07 - 2014-04-05 00:04 - 272570427 _____ () C:\Users\Stefan\Downloads\la_12_ANIME-LOADS.ORG.mp4
2014-04-05 00:04 - 2014-04-05 00:03 - 94882418 _____ () C:\Users\Stefan\Downloads\la_11_ANIME-LOADS.ORG.mp4
2014-04-05 00:03 - 2014-04-05 00:01 - 242048198 _____ () C:\Users\Stefan\Downloads\la_10_ANIME-LOADS.ORG.mp4
2014-04-05 00:01 - 2014-04-04 23:58 - 251061640 _____ () C:\Users\Stefan\Downloads\la_09_ANIME-LOADS.ORG.mp4
2014-04-04 23:58 - 2014-04-04 23:52 - 198262154 _____ () C:\Users\Stefan\Downloads\la_08_ANIME-LOADS.ORG.mp4
2014-04-04 23:52 - 2014-04-04 23:47 - 197997489 _____ () C:\Users\Stefan\Downloads\la_07_ANIME-LOADS.ORG.mp4
2014-04-04 23:47 - 2014-04-04 23:45 - 240718098 _____ () C:\Users\Stefan\Downloads\la_06_ANIME-LOADS.ORG.mp4
2014-04-04 23:45 - 2014-04-04 23:43 - 169121121 _____ () C:\Users\Stefan\Downloads\la_05_ANIME-LOADS.ORG.mp4
2014-04-04 23:43 - 2014-04-04 23:41 - 225000802 _____ () C:\Users\Stefan\Downloads\la_04_ANIME-LOADS.ORG.mp4
2014-04-04 23:41 - 2014-04-04 23:35 - 239386829 _____ () C:\Users\Stefan\Downloads\la_03_ANIME-LOADS.ORG.mp4
2014-04-04 23:35 - 2014-04-04 23:30 - 207420956 _____ () C:\Users\Stefan\Downloads\la_02_ANIME-LOADS.ORG.mp4
2014-04-04 22:52 - 2014-04-04 22:46 - 90500039 _____ () C:\Users\Stefan\Downloads\CB - Colby Keller & Gabriel Clark Flip-Fuck!.mp4
2014-04-04 22:46 - 2014-04-04 22:43 - 47771675 _____ () C:\Users\Stefan\Downloads\Abxxxxxxxxxxxxxxxxxxxxxxxxxxx.mp4
2014-04-04 22:43 - 2014-04-04 22:33 - 162089139 _____ () C:\Users\Stefan\Downloads\The professional escort.mp4
2014-04-04 22:33 - 2014-04-04 22:27 - 87261913 _____ () C:\Users\Stefan\Downloads\A special massage.mp4
2014-04-04 22:27 - 2014-04-04 22:22 - 73377774 _____ () C:\Users\Stefan\Downloads\white muscle guy will do anything.mp4
2014-04-04 22:22 - 2014-04-04 22:17 - 81006543 _____ () C:\Users\Stefan\Downloads\2 Big Black Cocks 1 Sore White Ass.mp4
2014-04-04 22:17 - 2014-04-04 22:11 - 79485926 _____ () C:\Users\Stefan\Downloads\Jake Bass.flv
2014-04-04 22:11 - 2014-04-04 21:57 - 61173211 _____ () C:\Users\Stefan\Downloads\Santiago F.U Marko.flv
2014-04-04 22:07 - 2014-04-04 22:01 - 62042671 _____ () C:\Users\Stefan\Downloads\Peto Coast.flv
2014-04-04 21:57 - 2014-04-04 21:50 - 101715234 _____ () C:\Users\Stefan\Downloads\wrestling team tryouts.flv
2014-04-04 21:50 - 2014-04-04 21:44 - 93182147 _____ () C:\Users\Stefan\Downloads\Sean Cody - Rich & Miles bareback.flv
2014-04-04 21:44 - 2014-04-04 21:39 - 46274203 _____ () C:\Users\Stefan\Downloads\Ð±ÐµÐ»Ñ‹Ð¹ Ð´Ð¾Ñ…Ð¾Ð´ÑÐ³Ñƒ.flv
2014-04-04 21:39 - 2014-04-04 21:37 - 249588980 _____ () C:\Users\Stefan\Downloads\la_01_ANIME-LOADS.ORG.mp4
2014-04-04 21:03 - 2014-04-04 21:03 - 15932928 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_OVA.mp4
2014-04-04 21:03 - 2014-04-04 21:02 - 42781558 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_26.mp4
2014-04-04 21:02 - 2014-04-04 21:01 - 59494147 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_19.mp4
2014-04-04 21:01 - 2014-04-04 21:00 - 53542596 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_25.mp4
2014-04-04 21:01 - 2014-04-04 20:53 - 52215706 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_18.mp4
2014-04-04 21:00 - 2014-04-04 20:59 - 48024856 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_24.mp4
2014-04-04 20:59 - 2014-04-04 20:58 - 46934129 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_23.mp4
2014-04-04 20:58 - 2014-04-04 20:57 - 67205641 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_22.mp4
2014-04-04 20:57 - 2014-04-04 20:57 - 47486263 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_21.mp4
2014-04-04 20:57 - 2014-04-04 20:49 - 52288979 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_16.mp4
2014-04-04 20:56 - 2014-04-04 20:56 - 50337302 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_20.mp4
2014-04-04 20:53 - 2014-04-04 20:52 - 59042638 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_17.mp4
2014-04-04 20:49 - 2014-04-04 20:49 - 54138304 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_15.mp4
2014-04-04 20:48 - 2014-04-04 20:40 - 47698577 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_09.mp4
2014-04-04 20:47 - 2014-04-04 20:47 - 43341448 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_14.mp4
2014-04-04 20:47 - 2014-04-04 20:46 - 56997308 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_13.mp4
2014-04-04 20:46 - 2014-04-04 20:45 - 55056221 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_12.mp4
2014-04-04 20:45 - 2014-04-04 20:44 - 53971435 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_11.mp4
2014-04-04 20:43 - 2014-04-04 20:42 - 52695135 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_10.mp4
2014-04-04 20:41 - 2014-04-04 19:38 - 00011467 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu) (2).odt
2014-04-04 20:40 - 2014-04-04 20:39 - 67202748 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_08.mp4
2014-04-04 20:39 - 2014-04-04 20:37 - 55910929 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_07.mp4
2014-04-04 20:37 - 2014-04-04 20:36 - 58605266 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_06.mp4
2014-04-04 20:36 - 2014-04-04 20:35 - 70959028 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_05.mp4
2014-04-04 20:34 - 2014-04-04 20:33 - 63107850 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_04.mp4
2014-04-04 20:33 - 2014-04-04 20:32 - 62683692 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_03.mp4
2014-04-04 20:31 - 2014-04-04 20:30 - 75171280 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_02.mp4
2014-04-04 20:27 - 2014-04-04 20:26 - 56830933 _____ () C:\Users\Stefan\Downloads\Mirrai_Nikki_01.mp4
2014-04-04 20:19 - 2014-04-04 20:17 - 198030510 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 12 Ger Sub.mp4
2014-04-04 20:17 - 2014-04-04 20:15 - 198029176 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 11 Ger Sub.mp4
2014-04-04 20:15 - 2014-04-04 20:13 - 198044013 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 10 Ger Sub.mp4
2014-04-04 20:13 - 2014-04-04 20:09 - 213350854 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 09 Ger Sub.mp4
2014-04-04 20:08 - 2014-04-04 20:07 - 197925149 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 08 Ger Sub.mp4
2014-04-04 20:07 - 2014-04-04 20:05 - 222108559 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 07 Ger Sub.mp4
2014-04-04 20:05 - 2014-04-04 20:02 - 198139195 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 06 Ger Sub.mp4
2014-04-04 20:02 - 2014-04-04 20:00 - 198032147 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 05 Ger Sub.mp4
2014-04-04 20:00 - 2014-04-04 19:59 - 198107051 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 04 Ger Sub.mp4
2014-04-04 19:59 - 2014-04-04 19:57 - 198059388 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 03 Ger Sub.mp4
2014-04-04 19:57 - 2014-04-04 19:55 - 213320605 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 02 Ger Sub.mp4
2014-04-04 19:55 - 2014-04-04 19:53 - 197908446 _____ () C:\Users\Stefan\Downloads\[Pure-Anime.biz] Date a Live 01 Ger Sub.mp4
2014-04-03 11:07 - 2014-04-03 10:55 - 00013128 _____ () C:\Users\Stefan\Desktop\OpenDocument Text (neu).odt
2014-04-03 09:51 - 2014-04-17 16:29 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-17 16:29 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-17 16:29 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-02 21:35 - 2014-04-02 20:51 - 167517812 _____ () C:\Users\Stefan\Downloads\BG - Jan 16 2014 - Trenton Ducati and Tyler Sweet (34604).flv
2014-04-02 21:14 - 2014-04-02 21:07 - 110170843 _____ () C:\Users\Stefan\Downloads\[LS] Allen King & Antonio Aguilera - 1080p.flv
2014-04-02 20:51 - 2014-04-02 20:42 - 95292049 _____ () C:\Users\Stefan\Downloads\sh@y mich@3l5 @nd justin d3@n.flv
2014-04-02 20:42 - 2014-04-02 20:38 - 55705449 _____ () C:\Users\Stefan\Downloads\Johnny Rapid's jailhouse fuck.flv
2014-04-02 20:38 - 2014-04-02 20:29 - 104728142 _____ () C:\Users\Stefan\Downloads\BEST FUCK.flv
2014-04-02 20:29 - 2014-04-02 20:22 - 55087997 _____ () C:\Users\Stefan\Downloads\Breno Lopez & Jay Roberts.flv
2014-04-02 20:22 - 2014-04-02 20:17 - 87164810 _____ () C:\Users\Stefan\Downloads\[SeanCody] SC-1757 Joey & Cameron - 1080p.flv
2014-04-02 20:17 - 2014-04-02 20:04 - 153005814 _____ () C:\Users\Stefan\Downloads\No Means Yes 2.flv.part
2014-04-02 20:04 - 2014-04-02 20:00 - 50483340 _____ () C:\Users\Stefan\Downloads\Tim Kruger and Thierry Lamasse.flv
2014-04-02 20:00 - 2014-04-02 19:51 - 94319703 _____ () C:\Users\Stefan\Downloads\Gabriel Vand.flv
2014-04-02 19:59 - 2014-04-02 19:42 - 260862333 _____ () C:\Users\Stefan\Downloads\Daddy's Reform School Playmate..mp4
2014-04-02 19:51 - 2014-04-02 19:46 - 74211215 _____ () C:\Users\Stefan\Downloads\Colby Keller &amp; Levi Michaels.mp4
2014-04-02 19:46 - 2014-04-02 19:40 - 90674646 _____ () C:\Users\Stefan\Downloads\Closing the deal.mp4
2014-04-02 19:42 - 2014-04-02 19:38 - 43978172 _____ () C:\Users\Stefan\Downloads\Pizza Delivery 2.mp4
2014-04-02 19:40 - 2014-04-02 19:34 - 94744773 _____ () C:\Users\Stefan\Downloads\kline1.mp4
2014-04-02 19:38 - 2014-04-02 19:26 - 180028035 _____ () C:\Users\Stefan\Downloads\gay francais.mp4
2014-04-02 19:34 - 2014-04-02 19:26 - 115866361 _____ () C:\Users\Stefan\Downloads\landon and jimmy.mp4
2014-03-31 23:18 - 2013-11-24 13:08 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-31 23:18 - 2013-11-24 13:08 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-30 21:57 - 2014-03-30 21:47 - 51457649 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_35__Xvid_ger.sub__EFD333FF_.mp4
2014-03-30 21:56 - 2014-03-30 21:23 - 52560329 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_28__Xvid_ger.sub__3DFB4CFB_.mp4
2014-03-30 21:54 - 2014-03-30 21:52 - 53818840 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_37__Xvid_ger.sub__CC196300_.mp4
2014-03-30 21:52 - 2014-03-30 21:50 - 56107566 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_36__Xvid_ger.sub__160A759B_.mp4
2014-03-30 21:47 - 2014-03-30 21:46 - 47480120 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_34__Xvid_ger.sub__20F56A17_.mp4
2014-03-30 21:45 - 2014-03-30 21:43 - 55497507 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_33__Xvid_ger.sub__6EC902BC_.mp4
2014-03-30 21:43 - 2014-03-30 21:41 - 50877129 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_32v2__Xvid_ger.sub__B5979266_.mp4
2014-03-30 21:41 - 2014-03-30 21:39 - 58621991 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_31__Xvid_ger.sub__FB5341BC_.mp4
2014-03-30 21:34 - 2014-03-30 21:32 - 49729717 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_30__Xvid_ger.sub__8784B483_.mp4
2014-03-30 21:32 - 2014-03-30 21:30 - 50228073 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_29__Xvid_ger.sub__A5FEBEF3_.mp4
2014-03-30 21:29 - 2014-03-30 21:29 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-30 21:20 - 2014-03-30 21:19 - 46465729 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_27__Xvid_ger.sub__4E12E180_.mp4
2014-03-30 21:19 - 2014-03-30 21:17 - 57991189 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_26__Xvid_ger.sub__890BD73F_.mp4
2014-03-30 21:16 - 2014-03-30 21:15 - 54767747 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_25__Xvid_ger.sub__7B9C8288_.mp4
2014-03-30 21:14 - 2014-03-30 21:13 - 51281361 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_24__Xvid_ger.sub__6A054AD4_.mp4
2014-03-30 21:12 - 2014-03-30 21:11 - 53139643 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_23__Xvid_ger.sub__1CC51FF8_.mp4
2014-03-30 21:10 - 2014-03-30 21:09 - 48853068 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_22__Xvid_ger.sub__E157E8E2_.mp4
2014-03-30 20:42 - 2014-03-30 20:41 - 47274937 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_21__Xvid_ger.sub__BCAF2C6C_.mp4
2014-03-30 20:18 - 2014-03-30 20:17 - 48435266 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_19__Xvid_ger.sub__0C17CC8A_.mp4
2014-03-30 20:17 - 2014-03-30 20:17 - 47074196 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_18__Xvid_ger.sub__BC1F662A_.mp4
2014-03-30 20:16 - 2014-03-30 20:16 - 50328767 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_17__Xvid_ger.sub__70D96388_.mp4
2014-03-30 20:15 - 2014-03-30 20:15 - 45455700 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_16__Xvid_ger.sub__25932D6D_.mp4
2014-03-30 20:15 - 2014-03-30 20:14 - 49896156 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_20__Xvid_ger.sub__5C1D4E77_.mp4
2014-03-30 20:12 - 2014-03-30 20:11 - 50106472 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_15__Xvid_ger.sub__5CAFAE3F_.mp4
2014-03-30 20:11 - 2014-03-30 20:10 - 44393400 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_14__Xvid_ger.sub__44C3B507_.mp4
2014-03-30 20:10 - 2014-03-30 20:09 - 48393856 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_13__Xvid_ger.sub__DB87559C_.mp4
2014-03-30 20:09 - 2014-03-30 20:09 - 46515515 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_12__Xvid_ger.sub__A3E9AD43_.mp4
2014-03-30 20:08 - 2014-03-30 20:08 - 49817493 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_11__Xvid_ger.sub__3AB75B0F_.mp4
2014-03-30 20:02 - 2014-03-30 20:02 - 53459302 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_10__Xvid_ger.sub__5F0FD77F_.mp4
2014-03-30 20:01 - 2014-03-30 20:01 - 50216117 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_09__Xvid_ger.sub__028F875C_.mp4
2014-03-30 20:00 - 2014-03-30 20:00 - 51101370 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_08__Xvid_ger.sub__E37D1B4E_.mp4
2014-03-30 20:00 - 2014-03-30 19:59 - 50559248 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_07__Xvid_ger.sub__1E1C37D8_.mp4
2014-03-30 19:59 - 2014-03-30 19:58 - 55140980 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_06__Xvid_ger.sub__E98F7EB1_.mp4
2014-03-30 14:50 - 2014-03-30 14:49 - 43169315 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_05__Xvid_ger.sub__44F1A26E_.mp4
2014-03-30 14:49 - 2014-03-30 14:48 - 46135178 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_04__Xvid_ger.sub__BD57706F_.mp4
2014-03-30 14:48 - 2014-03-30 14:39 - 46173032 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_03__Xvid_ger.sub__5E0781B4_.mp4
2014-03-30 14:37 - 2014-03-30 14:36 - 52949996 _____ () C:\Users\Stefan\Downloads\_subs4u__DeathNote_02__Xvid_ger.sub__477CE0D8_.mp4
2014-03-30 14:13 - 2014-03-30 14:13 - 00001074 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-03-30 14:12 - 2014-01-05 21:18 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-03-30 14:11 - 2014-03-30 14:11 - 24677393 _____ () C:\Users\Stefan\Downloads\vlc-2.1.3-win32.exe
2014-03-30 14:07 - 2014-03-30 13:57 - 51847442 _____ () C:\Users\Stefan\Downloads\139461862337hd.flv
2014-03-30 13:59 - 2014-03-30 13:59 - 00130707 _____ () C:\Users\Stefan\Downloads\_subs4u_Death_Note_01_37_Xvid_ger.sub_.torrent
2014-03-30 13:57 - 2014-03-30 13:57 - 02079653 _____ () C:\Users\Stefan\Downloads\83a65757-e807-4c8d-90ef-bc7b1d36e4a7.mp4
2014-03-30 13:39 - 2014-03-30 13:39 - 06639616 _____ () C:\Users\Stefan\Downloads\inSSIDer-installer.msi
2014-03-30 13:06 - 2014-03-30 13:05 - 00000000 ____D () C:\Users\Stefan\AppData\Local\MetaGeek,_LLC
2014-03-30 13:04 - 2014-03-30 13:04 - 00002491 _____ () C:\Users\Public\Desktop\inSSIDer Home.lnk
2014-03-30 13:03 - 2014-03-30 13:03 - 00001405 _____ () C:\Users\Public\Desktop\Xirrus Wi-Fi Inspector.lnk
2014-03-30 13:02 - 2014-03-30 13:02 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Xirrus
2014-03-30 13:01 - 2014-03-30 13:01 - 04767744 _____ () C:\Users\Stefan\Downloads\inSSIDer31-installer.msi
2014-03-30 13:00 - 2014-03-30 13:00 - 22224144 _____ (Xirrus) C:\Users\Stefan\Downloads\WiFiInspector-Setup-1.2.1.4.exe
2014-03-30 12:30 - 2014-03-30 12:30 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-29 00:00 - 2014-03-29 00:00 - 00000000 ____D () C:\Users\Stefan\Documents\CyberLink
2014-03-25 17:50 - 2014-03-25 17:50 - 00002699 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-03-25 17:50 - 2014-03-25 17:50 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-25 17:50 - 2014-03-25 17:50 - 00000000 ____D () C:\Users\Stefan\AppData\Local\Skype
2014-03-25 17:50 - 2013-09-13 21:33 - 00000000 ____D () C:\ProgramData\Skype
2014-03-20 23:06 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-03-19 18:21 - 2014-03-19 18:20 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Schiffbruch
2014-03-19 18:18 - 2014-03-19 18:18 - 00000000 ____D () C:\Users\Stefan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JoWooD
2014-03-18 09:56 - 2014-03-18 09:56 - 00308560 _____ () C:\Windows\system32\FNTCACHE.DAT

Some content of TEMP:
====================
C:\Users\Stefan\AppData\Local\temp\avgnt.exe
C:\Users\Stefan\AppData\Local\temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-17 13:59

==================== End Of Log ============================

--- --- ---

schrauber · 18.04.2014, 16:20

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

Internet wird unterbrochen

Plagegeister aller Art und deren Bekämpfung: Internet wird unterbrochen