Habe mir Viren eingefangen und bekomme sie nicht weg!

Scutulatus · 05.04.2015, 14:17

Ich benutze ein Windows 8 Betriebssystem und habe mir einige Viren eingefangen die ich jetzt nicht weg bekomme. Mein Internetbrowser (Firefox) ist viekl zu langsam und es lassen sich sehr schwer Videos laden... ich bitte um Hilfe... Ich habe bereits eine Hijack Logfileauswertung erstellt, irgendetwas stimmt hier nicht...
HiJackthis Logfile:

Code:

ATTFilter

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 16:20:13, on 5.4.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17267)

FIREFOX: 37.0.1 (x86 de)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\AVG\AVG2015\avgui.exe
C:\WINDOWS\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Yavuz\Downloads\HijackThis.exe
C:\WINDOWS\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://oem.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AtherosSvc - Unknown owner - C:\WINDOWS\system32\AdminService.exe (file missing)
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @oem4.inf,%ViaKaraokeSrv.SvcDesc%;VIA Karaoke digital mixer Service (VIAKaraokeService) - Unknown owner - C:\WINDOWS\system32\viakaraokesrv.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7428 bytes

--- --- ---

schrauber · 05.04.2015, 14:42

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Scutulatus · 05.04.2015, 15:27

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-03-2015
Ran by Yavuz (administrator) on CASPER on 05-04-2015 17:25:37
Running from C:\Users\Yavuz\Downloads
Loaded Profiles: Yavuz & UpdatusUser (Available profiles: Yavuz & UpdatusUser)
Platform: Windows 8 Single Language (X64) OS Language: Türkçe (Türkiye)
Internet Explorer Version 10 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forum

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Atheros Commnucations) C:\Windows\System32\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\mspaint.exe
(Microsoft Corporation) C:\Windows\System32\mspaint.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Trend Micro Inc.) C:\Users\Yavuz\Downloads\HijackThis.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5264016 2012-08-16] (VIA)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3723728 2015-03-25] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.)
HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7416088 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\...\MountPoints2: {bbdc4e33-cb03-11e4-be7e-806e6f6e6963} - "D:\setup.exe" 
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers: [0WinSecurityProvider] -> {F76FA5C2-3B6A-451E-8CA5-34C8D0AE0637} => C:\ProgramData\Microsoft\Security\Client\SecurityProvider.dll ()
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland ? mit Hotmail Nachfolger Outlook und Messenger Skype
HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Casper
URLSearchHook: [S-1-5-21-1353520422-2430857287-4010623212-1006] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKU\S-1-5-21-1353520422-2430857287-4010623212-1003 -> DefaultScope {09A7A3C1-4B68-4952-8BB1-E9390B6970D9} URL = 
SearchScopes: HKU\S-1-5-21-1353520422-2430857287-4010623212-1003 -> {09A7A3C1-4B68-4952-8BB1-E9390B6970D9} URL = 
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll No File
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Yavuz\AppData\Roaming\Mozilla\Firefox\Profiles\yzl8wo16.default
FF Homepage: Google
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_134.dll [2015-03-17] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_134.dll [2015-03-17] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-10-23] (NVIDIA Corporation)
FF Extension: ShareFlow - C:\Users\Yavuz\AppData\Roaming\Mozilla\Firefox\Profiles\yzl8wo16.default\Extensions\{5498C60E-46B2-3B53-9F76-E670A3A4F4DD} [2015-03-16]
FF Extension: Adblock Plus - C:\Users\Yavuz\AppData\Roaming\Mozilla\Firefox\Profiles\yzl8wo16.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-03-28]
FF Extension: No Name - C:\Users\Yavuz\AppData\Roaming\Mozilla\Firefox\Profiles\yzl8wo16.default\extensions\iobitascsurfingprotection@iobit.com [Not Found]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Windows\system32\AdminService.exe [208384 2012-08-29] (Atheros Commnucations)
R2 avgfws; C:\Program Files (x86)\AVG\AVG2015\avgfws.exe [1516968 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3416016 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [309232 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2585408 2015-04-02] (IObit)
R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [1055008 2015-03-13] (IObit)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2604856 2015-02-25] (AVG Technologies)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-14] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\system32\DRIVERS\avgfwd6a.sys [58136 2014-12-03] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [281056 2015-03-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [203544 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [243480 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [341472 2015-02-03] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [133088 2015-02-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [289248 2015-03-19] (AVG Technologies CZ, s.r.o.)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-04-05] (REALiX(tm))
S3 IntcDAud; C:\Windows\system32\DRIVERS\IntcDAud.sys [342528 2012-06-19] (Intel(R) Corporation) [File not signed]
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2012-10-20] ()
S3 RTL8192Ce; C:\Windows\system32\DRIVERS\rtwlane.sys [1119232 2012-06-30] (Realtek Semiconductor Corporation                           )
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2015-01-13] (TuneUp Software)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-05 17:25 - 2015-04-05 17:26 - 00011636 _____ () C:\Users\Yavuz\Downloads\FRST.txt
2015-04-05 17:25 - 2015-04-05 17:25 - 00000000 ____D () C:\FRST
2015-04-05 17:24 - 2015-04-05 17:25 - 02095616 _____ (Farbar) C:\Users\Yavuz\Downloads\FRST64.exe
2015-04-05 16:20 - 2015-04-05 16:20 - 00007429 _____ () C:\Users\Yavuz\Desktop\hijackthis.log
2015-04-05 16:04 - 2015-04-05 16:04 - 00000292 _____ () C:\Users\Yavuz\Desktop\Yeni Metin Belgesi.txt
2015-04-05 16:03 - 2015-04-05 16:03 - 00388608 _____ (Trend Micro Inc.) C:\Users\Yavuz\Downloads\HijackThis.com.exe
2015-04-05 11:52 - 2015-04-05 11:52 - 00000117 _____ () C:\WINDOWS\system32\netcfg-264304593.txt
2015-04-05 11:46 - 2015-04-05 11:46 - 00000117 _____ () C:\WINDOWS\system32\netcfg-263897312.txt
2015-04-05 11:15 - 2015-04-05 11:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-262071343.txt
2015-04-05 11:06 - 2015-04-05 11:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-261490765.txt
2015-04-05 10:17 - 2015-04-05 10:17 - 00001290 _____ () C:\Users\Public\Desktop\Start Menu 8.lnk
2015-04-05 10:17 - 2015-04-05 10:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu 8
2015-04-05 10:15 - 2015-04-05 10:15 - 00003180 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag4_Startup
2015-04-05 10:15 - 2015-04-05 10:15 - 00003178 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag4_Update
2015-04-05 10:15 - 2015-04-05 10:15 - 00001181 _____ () C:\Users\Public\Desktop\Smart Defrag 4.lnk
2015-04-05 10:15 - 2015-04-05 10:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
2015-04-05 10:15 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2015-04-05 10:15 - 2014-06-04 15:17 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2015-04-05 10:15 - 2014-06-04 15:17 - 00021184 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2015-04-05 10:13 - 2015-04-05 10:13 - 00002392 _____ () C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Yavuz
2015-04-05 10:13 - 2015-04-05 10:13 - 00000292 _____ () C:\WINDOWS\Tasks\Uninstaller_SkipUac_Yavuz.job
2015-04-05 10:13 - 2015-04-05 10:13 - 00000000 ____D () C:\WINDOWS\Tasks\ImCleanDisabled
2015-04-05 10:04 - 2015-04-05 10:13 - 00000000 ____D () C:\ProgramData\ProductData
2015-04-05 10:04 - 2015-04-05 10:04 - 00002870 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Yavuz)
2015-04-05 10:03 - 2015-04-05 10:03 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-04-05 09:58 - 2015-04-05 09:58 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\ProductData
2015-04-05 09:57 - 2015-04-05 10:19 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-04-05 09:57 - 2015-04-05 10:17 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\IObit
2015-04-05 09:57 - 2015-04-05 10:13 - 00000000 ____D () C:\ProgramData\IObit
2015-04-05 09:57 - 2015-04-05 09:57 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\Apple Computer
2015-04-05 09:50 - 2015-04-05 09:57 - 29096360 _____ (IObit ) C:\Users\Yavuz\Downloads\IObit-Malware-Fighter-Setup.exe
2015-04-05 09:46 - 2015-04-05 09:46 - 00000000 ____D () C:\Users\Yavuz\Downloads\backups
2015-04-05 09:41 - 2015-04-05 09:51 - 00007041 _____ () C:\Users\Yavuz\Downloads\hijackthis.log
2015-04-05 09:40 - 2015-04-05 09:40 - 00388608 _____ (Trend Micro Inc.) C:\Users\Yavuz\Downloads\HijackThis.exe
2015-04-05 09:38 - 2015-04-05 09:38 - 00002122 _____ () C:\Users\Yavuz\Desktop\HijackThis - CHIP Downloader.lnk
2015-04-05 09:35 - 2015-04-05 09:37 - 01203488 _____ () C:\Users\Yavuz\Downloads\HijackThis - CHIP-Installer.exe
2015-04-05 09:29 - 2015-04-05 09:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-255702203.txt
2015-04-05 09:29 - 2015-04-05 09:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-255678218.txt
2015-04-05 09:25 - 2015-04-05 09:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-255490812.txt
2015-04-04 23:01 - 2015-04-04 23:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-218028484.txt
2015-04-04 22:52 - 2015-04-04 22:52 - 00000117 _____ () C:\WINDOWS\system32\netcfg-217481421.txt
2015-04-04 22:09 - 2015-04-04 22:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-214903625.txt
2015-04-04 21:54 - 2015-04-04 21:54 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-04 12:19 - 2015-04-04 12:19 - 00001142 _____ () C:\Users\Yavuz\Desktop\Goodgame Empire.lnk
2015-04-04 12:19 - 2015-04-04 12:19 - 00001142 _____ () C:\Users\UpdatusUser\Desktop\Goodgame Empire.lnk
2015-04-04 12:19 - 2015-04-04 12:19 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\dlg
2015-04-04 12:19 - 2015-04-04 12:19 - 00000000 ____D () C:\ProgramData\TEMP
2015-04-04 12:19 - 2015-04-04 12:19 - 00000000 ____D () C:\ProgramData\Licenses
2015-04-04 12:18 - 2015-04-04 12:25 - 20561315 _____ () C:\Users\Yavuz\Downloads\#M.A.P.2.0.4.K#.rar
2015-04-04 12:11 - 2015-04-04 12:11 - 01203488 _____ () C:\Users\Yavuz\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2015-04-04 12:09 - 2015-04-04 12:18 - 35218576 _____ (Simply Super Software ) C:\Users\Yavuz\Downloads\trjsetup692.exe
2015-04-04 12:08 - 2015-04-04 12:08 - 00393096 _____ () C:\Users\Yavuz\Downloads\trjsetup692_CB-DL-Manager.exe
2015-04-04 11:07 - 2015-04-04 11:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-175208125.txt
2015-04-04 11:07 - 2015-04-04 11:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-175181359.txt
2015-04-04 10:33 - 2015-04-04 10:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173174703.txt
2015-04-04 10:33 - 2015-04-04 10:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173142921.txt
2015-04-04 08:48 - 2015-04-04 08:48 - 00000117 _____ () C:\WINDOWS\system32\netcfg-166850796.txt
2015-04-03 23:04 - 2015-04-03 23:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-131842890.txt
2015-04-03 14:53 - 2015-04-03 14:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-102369312.txt
2015-04-03 13:45 - 2015-04-03 13:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-98284359.txt
2015-04-03 10:40 - 2015-04-03 10:40 - 00000117 _____ () C:\WINDOWS\system32\netcfg-87168718.txt
2015-04-03 10:32 - 2015-04-03 10:32 - 00000117 _____ () C:\WINDOWS\system32\netcfg-86724031.txt
2015-04-03 09:58 - 2015-04-03 09:58 - 00000117 _____ () C:\WINDOWS\system32\netcfg-84627718.txt
2015-04-03 09:45 - 2015-04-03 09:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-83882375.txt
2015-04-03 08:20 - 2015-04-03 08:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-78768906.txt
2015-04-02 22:36 - 2015-04-02 22:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-43751234.txt
2015-04-02 13:12 - 2015-04-02 13:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9903265.txt
2015-04-02 12:46 - 2015-04-02 12:46 - 00000117 _____ () C:\WINDOWS\system32\netcfg-8325687.txt
2015-04-02 10:07 - 2015-04-02 10:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6495687.txt
2015-04-02 09:28 - 2015-04-02 09:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-4184468.txt
2015-04-02 07:55 - 2015-04-02 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55346250.txt
2015-04-02 07:55 - 2015-04-02 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55340968.txt
2015-04-02 07:55 - 2015-04-02 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55326734.txt
2015-04-02 07:55 - 2015-04-02 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55319296.txt
2015-04-02 07:49 - 2015-04-02 07:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55001937.txt
2015-04-01 21:15 - 2015-04-01 21:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-16916265.txt
2015-04-01 19:15 - 2015-04-01 19:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9759687.txt
2015-04-01 19:13 - 2015-04-01 19:13 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9642328.txt
2015-04-01 16:29 - 2015-04-02 10:34 - 00000000 ____D () C:\WinPC-NC_USB
2015-04-01 16:29 - 2015-04-02 10:24 - 00013264 _____ () C:\WINDOWS\DPINST.LOG
2015-04-01 16:29 - 2015-04-02 10:24 - 00000660 _____ () C:\Users\Public\Desktop\WinPC-NC USB.lnk
2015-04-01 16:29 - 2015-04-02 10:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPC-NC USB
2015-04-01 16:29 - 2015-04-01 16:29 - 00000000 ___HD () C:\WINDOWS\PIF
2015-04-01 16:29 - 2015-04-01 16:29 - 00000000 ____D () C:\Program Files\DIFX
2015-04-01 16:29 - 2010-02-09 00:29 - 00081920 _____ () C:\WINDOWS\SysWOW64\GkSui20.EXE
2015-04-01 16:29 - 2003-03-17 07:04 - 00685056 _____ (Borland Software Corporation) C:\WINDOWS\SysWOW64\Rtl60.bpl
2015-04-01 16:29 - 2002-02-13 09:00 - 00022016 _____ (Borland Software Corporation) C:\WINDOWS\SysWOW64\borlndmm.dll
2015-04-01 16:29 - 2002-02-13 08:00 - 01497088 _____ (Borland Corporation) C:\WINDOWS\SysWOW64\Cc3260mt.dll
2015-04-01 16:29 - 2002-02-13 08:00 - 01326080 _____ (Borland Software Corporation) C:\WINDOWS\SysWOW64\Vcl60.bpl
2015-04-01 09:55 - 2015-04-01 09:55 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2015-04-01 09:55 - 2015-04-01 09:55 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-04-01 09:51 - 2015-04-01 09:51 - 00000117 _____ () C:\WINDOWS\system32\netcfg-39550281.txt
2015-04-01 09:46 - 2015-04-01 09:46 - 00000117 _____ () C:\WINDOWS\system32\netcfg-39294984.txt
2015-04-01 08:25 - 2015-04-05 16:00 - 00107008 ___SH () C:\Users\Yavuz\Downloads\Thumbs.db
2015-04-01 08:24 - 2015-04-01 08:24 - 00096421 _____ () C:\Users\Yavuz\Downloads\IMG_10404032099064.jpeg
2015-04-01 08:24 - 2015-04-01 08:24 - 00045305 _____ () C:\Users\Yavuz\Downloads\IMG_12914492335053.jpeg
2015-04-01 08:23 - 2015-04-01 08:24 - 00038943 _____ () C:\Users\Yavuz\Downloads\IMG_12855611922053.jpeg
2015-04-01 07:53 - 2015-04-01 07:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32500390.txt
2015-03-31 23:37 - 2015-03-31 23:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-2726109.txt
2015-03-31 18:52 - 2015-03-31 18:52 - 00000117 _____ () C:\WINDOWS\system32\netcfg-122112609.txt
2015-03-31 10:25 - 2015-03-31 10:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-91669046.txt
2015-03-31 09:01 - 2015-03-31 09:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-86666062.txt
2015-03-31 09:01 - 2015-03-31 09:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-86663828.txt
2015-03-30 19:31 - 2015-03-30 19:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-38032750.txt
2015-03-30 18:19 - 2015-03-30 18:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-33711796.txt
2015-03-30 17:48 - 2015-03-30 17:48 - 00000117 _____ () C:\WINDOWS\system32\netcfg-31882750.txt
2015-03-30 17:33 - 2015-03-30 17:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-30963437.txt
2015-03-30 15:42 - 2015-03-30 15:42 - 00001210 _____ () C:\Users\Yavuz\Desktop\Burr Tools 0.6.1..lnk
2015-03-30 15:42 - 2015-03-30 15:42 - 00000000 ____D () C:\Users\Yavuz\Downloads\burrtools-0.6.3-win32
2015-03-30 15:39 - 2015-04-05 10:50 - 00000000 ____D () C:\Users\Yavuz\.thumbnails
2015-03-30 15:36 - 2015-03-30 15:36 - 00001904 _____ () C:\Users\Public\Desktop\Blender.lnk
2015-03-30 15:36 - 2015-03-30 15:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blender Foundation
2015-03-30 15:35 - 2015-03-30 15:35 - 00000000 ____D () C:\Program Files\Blender Foundation
2015-03-30 15:34 - 2015-03-30 15:35 - 64542509 _____ () C:\Users\Yavuz\Downloads\blender-2.73a-windows64.exe
2015-03-30 15:31 - 2015-04-04 10:49 - 00000000 ____D () C:\Users\Yavuz\Desktop\Burrtoolfiles
2015-03-30 15:27 - 2015-03-30 15:28 - 00000100 _____ () C:\Users\Yavuz\Desktop\Spiele Liste.txt
2015-03-30 15:14 - 2015-03-30 15:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-22655765.txt
2015-03-30 14:43 - 2015-03-30 14:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-20775437.txt
2015-03-30 13:17 - 2015-03-30 13:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-15619718.txt
2015-03-30 12:15 - 2015-03-30 12:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-11898937.txt
2015-03-29 20:34 - 2015-03-29 20:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-198470093.txt
2015-03-29 19:04 - 2015-03-29 19:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-193068843.txt
2015-03-29 17:41 - 2015-03-29 17:41 - 00000117 _____ () C:\WINDOWS\system32\netcfg-188059109.txt
2015-03-29 17:34 - 2015-03-29 17:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-187688437.txt
2015-03-29 13:38 - 2015-03-29 13:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173484875.txt
2015-03-29 13:34 - 2015-03-29 13:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173290859.txt
2015-03-29 13:04 - 2015-03-29 13:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-171466968.txt
2015-03-29 13:01 - 2015-03-29 13:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-171255968.txt
2015-03-29 12:30 - 2015-03-29 12:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-169433671.txt
2015-03-29 12:26 - 2015-03-29 12:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-169186593.txt
2015-03-29 10:54 - 2015-03-29 10:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-163685875.txt
2015-03-29 01:10 - 2015-03-29 01:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-128610015.txt
2015-03-28 20:26 - 2015-03-28 20:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-111588640.txt
2015-03-28 19:07 - 2015-03-28 19:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-106833125.txt
2015-03-28 18:31 - 2015-03-28 18:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-104703609.txt
2015-03-28 18:26 - 2015-03-28 18:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-104389640.txt
2015-03-28 17:11 - 2015-03-28 17:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-99892593.txt
2015-03-28 17:10 - 2015-03-28 17:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-99856968.txt
2015-03-28 16:40 - 2015-03-28 16:40 - 00000117 _____ () C:\WINDOWS\system32\netcfg-98032718.txt
2015-03-28 16:27 - 2015-03-28 16:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-97220875.txt
2015-03-28 14:49 - 2015-03-28 14:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-91373718.txt
2015-03-28 14:43 - 2015-03-28 14:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-91020921.txt
2015-03-28 13:30 - 2015-03-28 13:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-86613703.txt
2015-03-28 13:04 - 2015-03-28 13:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-85064250.txt
2015-03-28 11:31 - 2015-03-28 11:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79514671.txt
2015-03-28 11:27 - 2015-03-28 11:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79247375.txt
2015-03-28 10:16 - 2015-03-28 10:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-74960781.txt
2015-03-28 05:12 - 2015-03-28 05:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-56769250.txt
2015-03-28 03:31 - 2015-03-28 03:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-50713796.txt
2015-03-28 03:19 - 2015-03-28 03:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-49999484.txt
2015-03-27 17:14 - 2015-03-27 17:14 - 04197696 _____ (Piriform Ltd) C:\Users\Yavuz\Downloads\ccsetup503_slim.exe
2015-03-27 17:14 - 2015-03-27 17:14 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-03-27 17:14 - 2015-03-27 17:14 - 00000829 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-03-27 17:14 - 2015-03-27 17:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-03-27 17:14 - 2015-03-27 17:14 - 00000000 ____D () C:\Program Files\CCleaner
2015-03-27 09:59 - 2015-03-27 09:59 - 00002762 _____ () C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2015-03-27 09:05 - 2015-03-27 09:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-74943875.txt
2015-03-27 03:38 - 2015-03-27 03:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55304218.txt
2015-03-27 00:13 - 2015-03-27 00:13 - 00002224 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015.lnk
2015-03-27 00:13 - 2015-03-27 00:13 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\AVG
2015-03-27 00:13 - 2015-02-25 10:25 - 00041784 _____ (AVG Technologies) C:\WINDOWS\system32\TURegOpt.exe
2015-03-27 00:13 - 2015-02-25 10:24 - 00030520 _____ (AVG Technologies) C:\WINDOWS\system32\authuitu.dll
2015-03-27 00:13 - 2015-02-25 10:24 - 00025912 _____ (AVG Technologies) C:\WINDOWS\SysWOW64\authuitu.dll
2015-03-27 00:12 - 2015-03-27 00:12 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Avg
2015-03-27 00:11 - 2015-03-27 00:13 - 00000000 ____D () C:\ProgramData\AVG
2015-03-27 00:10 - 2015-03-27 00:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-42852656.txt
2015-03-27 00:03 - 2015-03-27 00:03 - 00000117 _____ () C:\WINDOWS\system32\netcfg-42446968.txt
2015-03-26 23:33 - 2015-03-26 23:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-40619687.txt
2015-03-26 22:27 - 2015-03-26 22:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-36636812.txt
2015-03-26 21:19 - 2015-03-26 21:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32590734.txt
2015-03-26 21:12 - 2015-03-26 21:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32142765.txt
2015-03-26 18:50 - 2015-03-26 18:53 - 113398072 _____ (AVG Technologies) C:\Users\Yavuz\Downloads\avg_tuh_stf_all_2015_403_24c34.exe
2015-03-26 18:27 - 2015-03-26 18:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-22277390.txt
2015-03-26 17:33 - 2015-03-26 17:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-18997312.txt
2015-03-26 15:37 - 2015-03-26 15:37 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\AVG2015
2015-03-26 15:36 - 2015-04-01 09:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-03-26 15:36 - 2015-03-26 15:59 - 00000000 ____D () C:\ProgramData\AVG2015
2015-03-26 15:36 - 2015-03-26 15:36 - 00000250 _____ () C:\WINDOWS\system32\netcfg-12018750.txt
2015-03-26 15:36 - 2015-03-26 15:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-12019234.txt
2015-03-26 15:36 - 2015-03-26 15:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-12019171.txt
2015-03-26 15:36 - 2015-03-26 15:36 - 00000000 ___HD () C:\$AVG
2015-03-26 15:36 - 2015-03-26 15:36 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\TuneUp Software
2015-03-26 15:35 - 2015-03-27 00:12 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-03-26 15:32 - 2015-04-05 16:25 - 00000000 ____D () C:\ProgramData\MFAData
2015-03-26 15:32 - 2015-03-26 18:29 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Avg2015
2015-03-26 15:32 - 2015-03-26 15:32 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\MFAData
2015-03-26 15:28 - 2015-03-26 15:32 - 168343664 _____ (AVG Technologies) C:\Users\Yavuz\Downloads\avg_free_x86_all5856_2015_ltst_222.exe
2015-03-26 14:18 - 2015-03-26 14:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7309828.txt
2015-03-26 14:18 - 2015-03-26 14:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7307484.txt
2015-03-26 14:18 - 2015-03-26 14:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7296984.txt
2015-03-26 14:17 - 2015-03-26 14:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7293968.txt
2015-03-26 14:17 - 2015-03-26 14:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7286046.txt
2015-03-26 14:17 - 2015-03-26 14:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7282000.txt
2015-03-26 14:12 - 2015-03-26 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6965156.txt
2015-03-26 14:12 - 2015-03-26 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6961218.txt
2015-03-26 14:12 - 2015-03-26 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6953000.txt
2015-03-26 14:12 - 2015-03-26 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6949640.txt
2015-03-26 14:12 - 2015-03-26 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6935812.txt
2015-03-26 14:11 - 2015-03-26 14:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6931468.txt
2015-03-26 00:59 - 2015-03-26 00:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-299669781.txt
2015-03-26 00:48 - 2015-03-26 00:48 - 00000117 _____ () C:\WINDOWS\system32\netcfg-299000093.txt
2015-03-25 23:16 - 2015-03-25 23:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-293513312.txt
2015-03-25 23:11 - 2015-03-25 23:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-293217968.txt
2015-03-25 22:24 - 2015-03-25 22:24 - 00000117 _____ () C:\WINDOWS\system32\netcfg-290371312.txt
2015-03-25 22:22 - 2015-03-25 22:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-290258984.txt
2015-03-25 20:38 - 2015-03-25 20:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-284025656.txt
2015-03-25 20:15 - 2015-03-25 20:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-282653015.txt
2015-03-25 19:44 - 2015-03-25 19:44 - 00000117 _____ () C:\WINDOWS\system32\netcfg-280799234.txt
2015-03-25 19:42 - 2015-03-25 19:42 - 00000117 _____ () C:\WINDOWS\system32\netcfg-280635437.txt
2015-03-25 18:41 - 2015-03-25 18:41 - 00000117 _____ () C:\WINDOWS\system32\netcfg-277009312.txt
2015-03-25 18:04 - 2015-03-25 18:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-274777359.txt
2015-03-25 14:49 - 2015-03-25 14:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-263051328.txt
2015-03-25 13:09 - 2015-03-25 13:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257074546.txt
2015-03-25 11:31 - 2015-03-27 10:23 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\wufumok
2015-03-25 11:30 - 2015-03-25 11:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-251140234.txt
2015-03-25 11:21 - 2015-03-25 11:21 - 00281056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys
2015-03-24 22:09 - 2015-03-24 22:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-203050796.txt
2015-03-24 22:07 - 2015-03-24 22:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-202933703.txt
2015-03-24 21:15 - 2015-03-24 21:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-199816843.txt
2015-03-24 13:56 - 2015-03-24 13:56 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173484093.txt
2015-03-24 13:41 - 2015-03-24 13:56 - 00000117 _____ () C:\WINDOWS\system32\netcfg-172602093.txt
2015-03-24 09:25 - 2015-03-24 09:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-157248843.txt
2015-03-23 22:28 - 2015-03-23 22:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-117798578.txt
2015-03-23 22:17 - 2015-03-23 22:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-117170250.txt
2015-03-23 20:43 - 2015-03-23 20:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-111505281.txt
2015-03-23 19:33 - 2015-03-23 19:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-107338203.txt
2015-03-23 19:20 - 2015-03-23 19:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-106518312.txt
2015-03-23 18:49 - 2015-03-23 18:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-104691156.txt
2015-03-23 18:43 - 2015-03-23 18:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-104341109.txt
2015-03-23 18:13 - 2015-03-23 18:13 - 00000117 _____ () C:\WINDOWS\system32\netcfg-102511281.txt
2015-03-23 18:04 - 2015-03-23 18:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-101974906.txt
2015-03-23 17:30 - 2015-03-23 17:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-99910203.txt
2015-03-23 17:15 - 2015-03-23 17:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-99027296.txt
2015-03-23 16:44 - 2015-03-23 16:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-97203812.txt
2015-03-23 16:21 - 2015-03-23 16:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-95768437.txt
2015-03-23 14:28 - 2015-03-23 14:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-89019234.txt
2015-03-23 13:20 - 2015-03-23 13:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-84947468.txt
2015-03-23 11:45 - 2015-03-23 11:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79208421.txt
2015-03-23 00:17 - 2015-03-23 00:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-37985703.txt
2015-03-22 23:09 - 2015-03-22 23:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-33894218.txt
2015-03-22 21:00 - 2015-03-22 21:00 - 00000117 _____ () C:\WINDOWS\system32\netcfg-26131984.txt
2015-03-22 20:07 - 2015-03-22 20:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-22958281.txt
2015-03-22 17:59 - 2015-03-22 17:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-15257328.txt
2015-03-22 16:31 - 2015-03-22 16:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9988187.txt
2015-03-22 16:31 - 2015-03-22 16:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9985250.txt
2015-03-22 10:26 - 2015-03-22 10:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-273137390.txt
2015-03-22 04:50 - 2015-03-22 04:50 - 00000117 _____ () C:\WINDOWS\system32\netcfg-252965359.txt
2015-03-22 03:59 - 2015-03-22 03:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-249923625.txt
2015-03-21 23:13 - 2015-03-21 23:13 - 00000117 _____ () C:\WINDOWS\system32\netcfg-232746000.txt
2015-03-21 13:09 - 2015-03-21 13:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-196499562.txt
2015-03-21 12:30 - 2015-03-21 12:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-194180656.txt
2015-03-21 10:47 - 2015-03-21 10:47 - 00000117 _____ () C:\WINDOWS\system32\netcfg-188003593.txt
2015-03-21 07:32 - 2015-03-21 07:32 - 00000117 _____ () C:\WINDOWS\system32\netcfg-176288140.txt
2015-03-20 18:47 - 2015-03-20 18:47 - 00000117 _____ () C:\WINDOWS\system32\netcfg-130389625.txt
2015-03-20 18:06 - 2015-03-20 18:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-127920640.txt
2015-03-20 14:06 - 2015-03-20 14:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-113556968.txt
2015-03-20 13:25 - 2015-03-20 13:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-111097890.txt
2015-03-20 07:37 - 2015-03-20 07:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-90225265.txt
2015-03-20 07:29 - 2015-03-20 07:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-89735703.txt
2015-03-20 02:06 - 2015-03-20 02:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-70332906.txt
2015-03-20 01:33 - 2015-03-20 01:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-68364218.txt
2015-03-20 00:31 - 2015-03-20 00:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-64614656.txt
2015-03-20 00:16 - 2015-03-20 00:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-63739843.txt
2015-03-19 16:41 - 2015-03-19 16:41 - 00000117 _____ () C:\WINDOWS\system32\netcfg-36442765.txt
2015-03-19 16:09 - 2015-03-19 16:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-34521187.txt
2015-03-19 16:05 - 2015-03-19 16:05 - 00289248 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgwfpa.sys
2015-03-19 14:57 - 2015-03-19 14:57 - 00000117 _____ () C:\WINDOWS\system32\netcfg-30205687.txt
2015-03-19 14:54 - 2015-03-19 14:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-30013015.txt
2015-03-19 04:45 - 2015-03-19 04:45 - 00000000 ____D () C:\cd4c295f4a1b07387b7c80af197a
2015-03-19 01:09 - 2015-04-04 19:44 - 00000147 _____ () C:\Users\Yavuz\Documents\.burrtools.rc
2015-03-19 00:38 - 2015-03-19 00:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-48000625.txt
2015-03-19 00:31 - 2015-03-19 00:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-47578078.txt
2015-03-18 23:54 - 2015-03-18 23:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-45332656.txt
2015-03-18 23:36 - 2015-03-18 23:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-44277453.txt
2015-03-18 20:36 - 2015-03-18 20:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-33452734.txt
2015-03-18 20:27 - 2015-03-18 20:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32941750.txt
2015-03-18 18:55 - 2015-03-18 18:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-27394656.txt
2015-03-18 18:46 - 2015-03-18 18:46 - 00000117 _____ () C:\WINDOWS\system32\netcfg-26855484.txt
2015-03-18 18:07 - 2015-03-18 18:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-24549218.txt
2015-03-18 17:42 - 2015-03-18 17:42 - 00000117 _____ () C:\WINDOWS\system32\netcfg-23064343.txt
2015-03-18 17:04 - 2015-03-18 17:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-20770781.txt
2015-03-18 17:04 - 2015-03-18 17:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-20766281.txt
2015-03-18 17:04 - 2015-03-18 17:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-20757843.txt
2015-03-18 17:04 - 2015-03-18 17:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-20755359.txt
2015-03-18 17:04 - 2015-03-18 17:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-20741421.txt
2015-03-18 17:04 - 2015-03-18 17:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-20739109.txt
2015-03-18 17:04 - 2015-03-18 17:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-20732906.txt
2015-03-18 17:03 - 2015-03-18 17:03 - 00000117 _____ () C:\WINDOWS\system32\netcfg-20729890.txt
2015-03-18 16:21 - 2015-03-18 16:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-18211625.txt
2015-03-18 15:19 - 2015-03-18 15:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-14466484.txt
2015-03-18 14:39 - 2015-04-05 16:12 - 00417280 ___SH () C:\Users\Yavuz\Desktop\Thumbs.db
2015-03-18 08:05 - 2015-03-18 08:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-22913750.txt
2015-03-18 04:39 - 2015-03-18 04:39 - 00000117 _____ () C:\WINDOWS\system32\netcfg-10530421.txt
2015-03-18 03:59 - 2015-03-18 03:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-8141125.txt
2015-03-18 03:59 - 2015-03-18 03:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-8137984.txt
2015-03-17 10:03 - 2015-03-17 10:03 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Macromedia
2015-03-17 09:59 - 2015-04-05 16:34 - 00000814 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-03-17 09:59 - 2015-03-17 09:59 - 00003702 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-03-17 09:59 - 2015-03-17 09:59 - 00000000 ____D () C:\ProgramData\McAfee
2015-03-17 09:54 - 2015-03-17 09:59 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Adobe
2015-03-17 09:38 - 2015-03-17 09:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-58890484.txt
2015-03-16 22:20 - 2015-03-16 22:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-18189250.txt
2015-03-16 19:32 - 2015-03-16 19:32 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\fltk.org
2015-03-16 19:32 - 2015-03-16 19:32 - 00000000 ____D () C:\ProgramData\fltk.org
2015-03-16 19:31 - 2015-03-16 19:31 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\NVIDIA
2015-03-16 19:17 - 2015-03-16 19:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7232109.txt
2015-03-16 19:17 - 2015-03-16 19:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7230140.txt
2015-03-16 11:04 - 2015-04-05 15:46 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Ijsoft
2015-03-16 11:03 - 2015-04-05 09:27 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Ofics
2015-03-16 11:00 - 2015-04-05 15:52 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\Skype
2015-03-16 11:00 - 2015-03-16 11:00 - 00002705 _____ () C:\Users\Public\Desktop\Skype.lnk
2015-03-16 11:00 - 2015-03-16 11:00 - 00000000 ___RD () C:\Program Files (x86)\Skype
2015-03-16 11:00 - 2015-03-16 11:00 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Skype
2015-03-16 11:00 - 2015-03-16 11:00 - 00000000 ____D () C:\ProgramData\Skype
2015-03-16 11:00 - 2015-03-16 11:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-03-16 10:54 - 2015-03-16 10:55 - 00000000 ____D () C:\Users\Yavuz\Downloads\WinRAR
2015-03-16 10:51 - 2015-03-16 11:08 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\BitTorrent
2015-03-16 10:51 - 2015-03-16 10:51 - 00000877 _____ () C:\Users\Yavuz\Desktop\BitTorrent.lnk
2015-03-16 10:51 - 2015-03-16 10:51 - 00000857 _____ () C:\Users\Yavuz\AppData\Roaming\Microsoft\Windows\Start Menu\BitTorrent.lnk
2015-03-16 10:51 - 2015-03-16 10:51 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\OpenCandy
2015-03-16 10:50 - 2015-03-16 10:50 - 00001137 _____ () C:\Users\Yavuz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Downloads.lnk
2015-03-16 10:49 - 2015-03-16 10:50 - 01744472 _____ (BitTorrent Inc.) C:\Users\Yavuz\Downloads\BitTorrent.exe
2015-03-16 10:48 - 2015-03-16 10:49 - 01563982 _____ () C:\Users\Yavuz\Downloads\burrtools-0.6.3-win32(1).zip
2015-03-16 10:48 - 2015-03-16 10:48 - 01563982 _____ () C:\Users\Yavuz\Downloads\burrtools-0.6.3-win32.zip
2015-03-16 10:47 - 2015-03-16 10:47 - 01610214 _____ () C:\Users\Yavuz\Downloads\burrtools-0.4.1-win32.exe
2015-03-16 10:47 - 2015-03-16 10:47 - 00001018 _____ () C:\Users\Yavuz\Desktop\Burr Tools 0.4.1..lnk
2015-03-16 10:47 - 2015-03-16 10:47 - 00001018 _____ () C:\Users\UpdatusUser\Desktop\Burr Tools.lnk
2015-03-16 10:47 - 2015-03-16 10:47 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Burr Tools
2015-03-16 10:47 - 2015-03-16 10:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Burr Tools
2015-03-16 10:47 - 2015-03-16 10:47 - 00000000 ____D () C:\Program Files (x86)\burrtools
2015-03-16 10:16 - 2015-03-16 10:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9205265.txt
2015-03-16 10:16 - 2015-03-16 10:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-03-16 08:55 - 2015-03-16 10:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-4355593.txt
2015-03-16 04:17 - 2015-03-03 16:17 - 00295552 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-03-16 03:26 - 2015-04-05 16:05 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-16 03:26 - 2015-03-16 03:26 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2015-03-16 03:26 - 2015-03-16 03:26 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Videolarım
2015-03-16 03:26 - 2015-03-16 03:26 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Resimlerim
2015-03-16 03:26 - 2015-03-16 03:26 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Müziğim
2015-03-16 03:26 - 2015-03-16 03:26 - 00000000 _SHDL () C:\Users\UpdatusUser\Belgelerim
2015-03-16 03:26 - 2015-03-16 03:26 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programlar
2015-03-16 03:26 - 2015-03-16 03:26 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-03-16 03:26 - 2015-03-15 19:03 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-16 03:26 - 2015-03-15 18:41 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-16 03:26 - 2012-10-19 23:38 - 00002081 _____ () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2015-03-16 03:26 - 2012-07-26 11:13 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-16 03:26 - 2012-07-26 11:13 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-03-16 03:25 - 2015-03-16 03:26 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-03-16 03:25 - 2015-03-16 03:26 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-03-16 03:25 - 2013-10-23 11:20 - 06669600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-03-16 03:25 - 2013-10-23 11:20 - 03489568 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-03-16 03:25 - 2013-10-23 11:20 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-03-16 03:25 - 2013-10-23 11:20 - 00922912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-03-16 03:25 - 2013-10-23 11:20 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-03-16 03:25 - 2013-10-23 11:20 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-03-15 23:38 - 2015-03-15 23:38 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\Mozilla
2015-03-15 23:38 - 2015-03-15 23:38 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Mozilla
2015-03-15 23:37 - 2015-04-05 15:46 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-03-15 23:37 - 2015-03-15 23:37 - 00001170 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-03-15 23:37 - 2015-03-15 23:37 - 00001158 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-03-15 23:37 - 2015-03-15 23:37 - 00000000 ____D () C:\ProgramData\Mozilla
2015-03-15 23:22 - 2015-03-15 23:22 - 00000135 _____ () C:\WINDOWS\system32\netcfg-86500.txt
2015-03-15 23:22 - 2015-03-15 23:22 - 00000129 _____ () C:\WINDOWS\system32\netcfg-85437.txt
2015-03-15 23:22 - 2015-03-15 23:22 - 00000128 _____ () C:\WINDOWS\system32\netcfg-86593.txt
2015-03-15 23:22 - 2015-03-15 23:22 - 00000127 _____ () C:\WINDOWS\system32\netcfg-86859.txt
2015-03-15 23:22 - 2015-03-15 23:22 - 00000126 _____ () C:\WINDOWS\system32\netcfg-86734.txt
2015-03-15 23:19 - 2015-03-15 23:19 - 00000135 _____ () C:\WINDOWS\system32\netcfg-91031.txt
2015-03-15 23:19 - 2015-03-15 23:19 - 00000129 _____ () C:\WINDOWS\system32\netcfg-89937.txt
2015-03-15 23:19 - 2015-03-15 23:19 - 00000128 _____ () C:\WINDOWS\system32\netcfg-91125.txt
2015-03-15 23:19 - 2015-03-15 23:19 - 00000127 _____ () C:\WINDOWS\system32\netcfg-91375.txt
2015-03-15 23:19 - 2015-03-15 23:19 - 00000126 _____ () C:\WINDOWS\system32\netcfg-91281.txt
2015-03-15 23:18 - 2015-03-15 23:18 - 00281688 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-03-15 22:46 - 2015-03-15 22:46 - 00000135 _____ () C:\WINDOWS\system32\netcfg-80406.txt
2015-03-15 22:46 - 2015-03-15 22:46 - 00000129 _____ () C:\WINDOWS\system32\netcfg-79265.txt
2015-03-15 22:46 - 2015-03-15 22:46 - 00000128 _____ () C:\WINDOWS\system32\netcfg-80500.txt
2015-03-15 22:46 - 2015-03-15 22:46 - 00000127 _____ () C:\WINDOWS\system32\netcfg-80843.txt
2015-03-15 22:46 - 2015-03-15 22:46 - 00000126 _____ () C:\WINDOWS\system32\netcfg-80703.txt
2015-03-15 22:19 - 2015-03-15 22:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-992000.txt
2015-03-15 22:19 - 2015-03-15 22:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-988406.txt
2015-03-15 22:19 - 2015-03-15 22:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-979765.txt
2015-03-15 22:19 - 2015-03-15 22:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-977031.txt
2015-03-15 22:19 - 2015-03-15 22:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1016437.txt
2015-03-15 22:19 - 2015-03-15 22:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1011937.txt
2015-03-15 22:19 - 2015-03-15 22:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1003968.txt
2015-03-15 22:19 - 2015-03-15 22:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-1000531.txt
2015-03-15 21:49 - 2015-03-15 21:49 - 00000135 _____ () C:\WINDOWS\system32\netcfg-194453.txt
2015-03-15 21:49 - 2015-03-15 21:49 - 00000129 _____ () C:\WINDOWS\system32\netcfg-194156.txt
2015-03-15 21:49 - 2015-03-15 21:49 - 00000128 _____ () C:\WINDOWS\system32\netcfg-194578.txt
2015-03-15 21:49 - 2015-03-15 21:49 - 00000127 _____ () C:\WINDOWS\system32\netcfg-194828.txt
2015-03-15 21:49 - 2015-03-15 21:49 - 00000126 _____ () C:\WINDOWS\system32\netcfg-194718.txt
2015-03-15 21:44 - 2015-04-01 08:26 - 00731944 _____ () C:\WINDOWS\system32\perfh019.dat
2015-03-15 21:44 - 2015-04-01 08:26 - 00727582 _____ () C:\WINDOWS\system32\perfh00C.dat
2015-03-15 21:44 - 2015-04-01 08:26 - 00387818 _____ () C:\WINDOWS\system32\perfh001.dat
2015-03-15 21:44 - 2015-04-01 08:26 - 00149848 _____ () C:\WINDOWS\system32\perfc019.dat
2015-03-15 21:44 - 2015-04-01 08:26 - 00137016 _____ () C:\WINDOWS\system32\perfc00C.dat
2015-03-15 21:44 - 2015-04-01 08:26 - 00056648 _____ () C:\WINDOWS\system32\perfc001.dat
2015-03-15 21:44 - 2015-03-15 21:44 - 00000135 _____ () C:\WINDOWS\system32\netcfg-246640.txt
2015-03-15 21:44 - 2015-03-15 21:44 - 00000129 _____ () C:\WINDOWS\system32\netcfg-245921.txt
2015-03-15 21:44 - 2015-03-15 21:44 - 00000128 _____ () C:\WINDOWS\system32\netcfg-246750.txt
2015-03-15 21:44 - 2015-03-15 21:44 - 00000127 _____ () C:\WINDOWS\system32\netcfg-247015.txt
2015-03-15 21:44 - 2015-03-15 21:44 - 00000126 _____ () C:\WINDOWS\system32\netcfg-246921.txt
2015-03-15 21:44 - 2015-03-15 21:31 - 00350772 _____ () C:\WINDOWS\system32\perfi00C.dat
2015-03-15 21:44 - 2015-03-15 21:31 - 00296742 _____ () C:\WINDOWS\system32\perfi001.dat
2015-03-15 21:44 - 2015-03-15 21:31 - 00040528 _____ () C:\WINDOWS\system32\perfd00C.dat
2015-03-15 21:44 - 2015-03-15 21:31 - 00033362 _____ () C:\WINDOWS\system32\perfd001.dat
2015-03-15 21:44 - 2015-03-15 21:28 - 00340542 _____ () C:\WINDOWS\system32\perfi019.dat
2015-03-15 21:44 - 2015-03-15 21:28 - 00041610 _____ () C:\WINDOWS\system32\perfd019.dat
2015-03-15 21:36 - 2015-03-15 21:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\fr
2015-03-15 21:36 - 2015-03-15 21:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Drivers\ar-SA
2015-03-15 21:36 - 2015-03-15 21:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\040C
2015-03-15 21:35 - 2015-03-15 21:35 - 00000000 ____D () C:\WINDOWS\system32\fr
2015-03-15 21:35 - 2015-03-15 21:35 - 00000000 ____D () C:\WINDOWS\system32\Drivers\ar-SA
2015-03-15 21:35 - 2015-03-15 21:35 - 00000000 ____D () C:\WINDOWS\system32\ar
2015-03-15 21:35 - 2015-03-15 21:35 - 00000000 ____D () C:\WINDOWS\system32\040C
2015-03-15 21:35 - 2015-03-15 21:35 - 00000000 ____D () C:\WINDOWS\ar-SA
2015-03-15 21:34 - 2015-03-15 21:34 - 00000000 ____D () C:\WINDOWS\SysWOW64\Drivers\hr-HR
2015-03-15 21:34 - 2015-03-15 21:34 - 00000000 ____D () C:\WINDOWS\system32\hr
2015-03-15 21:34 - 2015-03-15 21:34 - 00000000 ____D () C:\WINDOWS\system32\Drivers\hr-HR
2015-03-15 21:34 - 2015-03-15 21:34 - 00000000 ____D () C:\WINDOWS\hr-HR
2015-03-15 21:32 - 2015-03-15 21:32 - 00000000 ____D () C:\WINDOWS\SysWOW64\ru
2015-03-15 21:32 - 2015-03-15 21:32 - 00000000 ____D () C:\WINDOWS\system32\ru
2015-03-15 19:41 - 2015-02-23 13:52 - 02237952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-03-15 19:41 - 2015-02-23 13:52 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-03-15 19:41 - 2015-02-23 13:51 - 01409024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-03-15 19:41 - 2015-02-23 13:51 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2015-03-15 19:41 - 2015-02-23 13:51 - 00600576 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-03-15 19:41 - 2015-02-23 13:51 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2015-03-15 19:41 - 2015-02-23 13:51 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 19301888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 15410688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 03959296 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 02656256 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesysprep.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-03-15 19:41 - 2015-02-23 13:50 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-03-15 19:41 - 2015-02-23 13:49 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-03-15 19:41 - 2015-02-23 12:17 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-03-15 19:41 - 2015-02-23 12:15 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\INETRES.dll
2015-03-15 19:41 - 2015-02-23 11:51 - 00441856 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-03-15 19:41 - 2015-02-21 08:31 - 01763328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-03-15 19:41 - 2015-02-21 08:31 - 01181696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-03-15 19:41 - 2015-02-21 08:31 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-03-15 19:41 - 2015-02-21 08:31 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 14380544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 13768704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 02864640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 02055680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 00737280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesysprep.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2015-03-15 19:41 - 2015-02-21 08:30 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2015-03-15 19:41 - 2015-02-21 08:29 - 01441280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-03-15 19:41 - 2015-02-21 08:29 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-03-15 19:41 - 2015-02-21 08:29 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-03-15 19:41 - 2015-02-21 08:09 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2015-03-15 19:41 - 2015-02-21 08:07 - 00084480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\INETRES.dll
2015-03-15 19:41 - 2015-02-21 07:42 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-03-15 19:41 - 2015-02-21 06:00 - 00534528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uxtheme.dll
2015-03-15 19:05 - 2015-03-15 19:05 - 00000136 _____ () C:\WINDOWS\system32\netcfg-133093.txt
2015-03-15 19:05 - 2015-03-15 19:05 - 00000134 _____ () C:\WINDOWS\system32\netcfg-132984.txt
2015-03-15 19:05 - 2015-03-15 19:05 - 00000134 _____ () C:\WINDOWS\system32\netcfg-116093.txt
2015-03-15 19:05 - 2015-03-15 19:05 - 00000128 _____ () C:\WINDOWS\system32\netcfg-113765.txt
2015-03-15 19:02 - 2013-10-05 09:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2015-03-15 19:02 - 2013-08-30 08:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2015-03-15 19:02 - 2013-08-30 08:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2015-03-15 19:02 - 2013-08-30 02:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2015-03-15 19:02 - 2013-08-30 02:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2015-03-15 19:01 - 2013-08-30 08:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2015-03-15 19:01 - 2013-08-30 08:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-03-15 19:01 - 2013-08-30 02:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2015-03-15 19:01 - 2013-08-21 09:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2015-03-15 19:01 - 2013-08-10 09:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2015-03-15 19:01 - 2013-07-25 02:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-03-15 19:01 - 2013-07-25 02:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-03-15 19:01 - 2013-07-12 04:38 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-03-15 19:01 - 2013-07-12 04:30 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-03-15 19:01 - 2012-09-20 09:48 - 00062488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2015-03-15 18:57 - 2014-08-30 08:48 - 10115072 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-03-15 18:57 - 2014-08-30 08:47 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2015-03-15 18:57 - 2014-08-30 08:46 - 02306560 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-03-15 18:57 - 2014-08-30 07:05 - 08858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2015-03-15 18:57 - 2014-08-30 07:04 - 02416128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2015-03-15 18:57 - 2014-08-30 07:03 - 02037760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-03-15 18:57 - 2014-06-13 02:34 - 00754176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-03-15 18:57 - 2014-06-13 02:29 - 02146304 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-03-15 18:53 - 2014-07-12 07:41 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRUM.DLL
2015-03-15 18:53 - 2014-07-12 07:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDYAK.DLL
2015-03-15 18:53 - 2014-07-12 07:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDTAT.DLL
2015-03-15 18:53 - 2014-07-12 07:41 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU1.DLL
2015-03-15 18:53 - 2014-07-12 07:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDRU.DLL
2015-03-15 18:53 - 2014-07-12 07:41 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\KBDBASH.DLL
2015-03-15 18:53 - 2014-07-12 07:16 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRUM.DLL
2015-03-15 18:53 - 2014-07-12 07:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDYAK.DLL
2015-03-15 18:53 - 2014-07-12 07:16 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDTAT.DLL
2015-03-15 18:53 - 2014-07-12 07:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU1.DLL
2015-03-15 18:53 - 2014-07-12 07:16 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDRU.DLL
2015-03-15 18:53 - 2014-07-12 07:15 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDBASH.DLL
2015-03-15 18:53 - 2014-07-12 03:02 - 00478352 _____ () C:\WINDOWS\SysWOW64\locale.nls
2015-03-15 18:53 - 2014-07-12 03:00 - 00478352 _____ () C:\WINDOWS\system32\locale.nls
2015-03-15 18:53 - 2014-07-09 01:33 - 00181248 _____ (Microsoft Corp.) C:\WINDOWS\system32\Defrag.exe
2015-03-15 18:53 - 2014-07-09 01:32 - 01539584 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
2015-03-15 18:53 - 2014-07-09 01:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\defragsvc.dll
2015-03-15 18:53 - 2014-07-09 01:30 - 01220608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\storagewmi.dll
2015-03-15 18:53 - 2014-07-07 08:52 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-03-15 18:53 - 2014-07-07 08:52 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-03-15 18:53 - 2014-07-04 13:52 - 00328000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\volsnap.sys
2015-03-15 18:53 - 2014-07-03 04:59 - 01824784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-03-15 18:53 - 2014-07-03 03:30 - 01408952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-03-15 18:53 - 2014-06-28 10:01 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll
2015-03-15 18:53 - 2014-06-28 09:56 - 00117248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll
2015-03-15 18:53 - 2014-06-18 02:27 - 02032640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2015-03-15 18:53 - 2014-06-18 02:23 - 02238464 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2015-03-15 18:53 - 2014-06-11 17:47 - 02842112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMVDECOD.DLL
2015-03-15 18:53 - 2014-06-11 07:40 - 02620928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMVDECOD.DLL
2015-03-15 18:53 - 2014-06-11 01:44 - 01403896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2015-03-15 18:53 - 2014-02-04 13:57 - 01271664 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2015-03-15 18:53 - 2013-05-25 01:09 - 01217352 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2015-03-15 18:53 - 2013-05-25 01:09 - 01093904 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2015-03-15 18:52 - 2014-07-24 16:50 - 00447296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-03-15 18:52 - 2014-07-17 02:28 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sscore.dll
2015-03-15 18:52 - 2014-07-17 01:59 - 00305664 _____ (Microsoft Corporation) C:\WINDOWS\system32\srvsvc.dll
2015-03-15 18:52 - 2014-07-17 01:59 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sscore.dll
2015-03-15 18:52 - 2014-07-12 09:45 - 01549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2015-03-15 18:52 - 2014-07-12 07:36 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2015-03-15 18:52 - 2014-07-12 07:36 - 00211456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2015-03-15 18:52 - 2014-07-12 07:34 - 00404480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2015-03-15 18:52 - 2014-07-12 07:34 - 00250368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2015-03-15 18:52 - 2014-06-28 09:57 - 01341952 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-03-15 18:52 - 2014-06-28 05:23 - 01126400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-03-15 18:52 - 2014-03-01 12:47 - 01258496 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2015-03-15 18:52 - 2014-03-01 12:47 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpedit.dll
2015-03-15 18:52 - 2014-03-01 11:07 - 01075200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpedit.dll
2015-03-15 18:52 - 2014-03-01 09:59 - 00974848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2015-03-15 18:52 - 2014-02-15 07:15 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\IPMIDrv.sys
2015-03-15 18:52 - 2013-11-26 02:17 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2015-03-15 18:51 - 2012-10-10 10:04 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\synceng.dll
2015-03-15 18:51 - 2012-10-10 09:31 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\synceng.dll
2015-03-15 18:50 - 2014-05-29 07:04 - 00094552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-03-15 18:48 - 2014-09-03 05:48 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2015-03-15 18:48 - 2014-09-03 05:21 - 00585728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2015-03-15 18:48 - 2013-10-10 14:53 - 00096600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-03-15 18:48 - 2013-10-10 12:21 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-03-15 18:48 - 2013-10-10 12:20 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-03-15 18:48 - 2013-06-10 22:16 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-03-15 18:48 - 2013-06-10 22:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-03-15 18:48 - 2013-06-10 22:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-03-15 18:48 - 2013-06-10 22:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-03-15 18:36 - 2015-01-31 16:48 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-03-15 18:36 - 2015-01-31 08:55 - 00275712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-03-15 18:29 - 2015-01-24 09:42 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-03-15 18:29 - 2015-01-24 08:00 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2015-03-15 18:29 - 2014-06-13 04:57 - 01453400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2015-03-15 18:29 - 2014-06-13 04:55 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2015-03-15 18:29 - 2013-01-10 04:40 - 00303848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2015-03-15 18:28 - 2014-11-15 09:06 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-03-15 18:28 - 2014-11-15 08:13 - 03286016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-03-15 18:28 - 2014-11-15 08:13 - 01623552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-03-15 18:28 - 2014-11-15 08:13 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-03-15 18:28 - 2014-11-15 08:13 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-03-15 18:28 - 2014-11-15 08:13 - 00144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-03-15 18:28 - 2014-11-15 08:13 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-03-15 18:28 - 2014-11-15 08:13 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-03-15 18:28 - 2014-11-15 08:12 - 00176640 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-03-15 18:28 - 2014-11-15 06:54 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-03-15 18:28 - 2014-11-15 06:53 - 00630272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-03-15 18:28 - 2014-11-15 06:53 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-03-15 18:28 - 2014-11-15 06:53 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-03-15 18:28 - 2014-11-05 09:40 - 00733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2015-03-15 18:28 - 2014-11-05 09:39 - 01024512 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2015-03-15 18:28 - 2014-11-01 09:28 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-03-15 18:28 - 2014-10-30 10:20 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2015-03-15 18:28 - 2014-10-30 08:22 - 01569792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-03-15 18:28 - 2014-10-29 17:21 - 00499008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-03-15 18:28 - 2014-10-28 01:10 - 00390841 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2015-03-15 18:28 - 2014-08-28 09:01 - 00017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2015-03-15 18:28 - 2013-08-16 08:41 - 00058200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-03-15 18:28 - 2013-08-16 08:39 - 02371728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2015-03-15 18:28 - 2013-08-16 08:32 - 00209200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe
2015-03-15 18:28 - 2013-08-16 08:22 - 04917760 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2015-03-15 18:28 - 2013-08-16 08:21 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-03-15 18:28 - 2013-08-16 08:21 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-03-15 18:28 - 2013-08-16 08:21 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2015-03-15 18:28 - 2013-08-16 08:21 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2015-03-15 18:28 - 2013-08-16 08:21 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2015-03-15 18:28 - 2013-08-16 08:21 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2015-03-15 18:28 - 2013-08-16 08:21 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-15 18:28 - 2013-08-16 08:21 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2015-03-15 18:28 - 2013-08-16 08:21 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2015-03-15 18:28 - 2013-08-16 08:20 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-03-15 18:28 - 2013-08-16 01:43 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-03-15 18:28 - 2013-08-16 01:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2015-03-15 18:28 - 2013-08-16 01:43 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2015-03-15 18:28 - 2013-08-16 01:43 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2015-03-15 18:28 - 2013-08-16 01:43 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-15 18:28 - 2013-08-16 01:43 - 00083968 _____ () C:\WINDOWS\SysWOW64\OEMLicense.dll
2015-03-15 18:28 - 2013-08-16 01:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2015-03-15 18:28 - 2013-08-16 01:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2015-03-15 18:28 - 2013-07-06 03:15 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-03-15 18:28 - 2013-07-04 05:13 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-03-15 18:28 - 2013-03-02 05:45 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhost.exe
2015-03-15 18:28 - 2013-03-02 05:45 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostex.exe
2015-03-15 18:28 - 2012-09-20 09:33 - 00110592 _____ () C:\WINDOWS\system32\OEMLicense.dll
2015-03-15 18:27 - 2013-10-19 08:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2015-03-15 18:27 - 2013-10-19 07:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2015-03-15 18:23 - 2015-03-06 10:39 - 00588800 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-03-15 18:23 - 2015-03-06 10:39 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-03-15 18:23 - 2015-03-06 08:48 - 00452608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-03-15 18:23 - 2015-03-06 08:48 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-03-15 18:23 - 2015-02-03 02:18 - 00569712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-03-15 18:23 - 2015-01-15 14:44 - 01043968 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2015-03-15 18:23 - 2015-01-15 14:43 - 01282560 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-03-15 18:23 - 2015-01-15 13:00 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2015-03-15 18:23 - 2015-01-15 12:38 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\adtschema.dll
2015-03-15 18:23 - 2015-01-15 12:09 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\adtschema.dll
2015-03-15 18:22 - 2015-02-26 07:35 - 04063232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-03-15 18:22 - 2014-12-11 09:51 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-03-15 18:22 - 2014-10-09 07:00 - 01519104 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-03-15 18:22 - 2014-10-09 07:00 - 01484288 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-03-15 18:22 - 2014-10-09 07:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-03-15 18:22 - 2014-10-09 06:59 - 01195520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-03-15 18:22 - 2014-10-09 06:59 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-03-15 18:22 - 2014-06-18 02:27 - 01440256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\osk.exe
2015-03-15 18:22 - 2014-06-18 02:24 - 01557504 _____ (Microsoft Corporation) C:\WINDOWS\system32\osk.exe
2015-03-15 18:22 - 2014-06-05 04:12 - 00678600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp120_clr0400.dll
2015-03-15 18:22 - 2014-06-04 02:12 - 00536776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp120_clr0400.dll
2015-03-15 18:22 - 2012-09-20 09:31 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-03-15 18:22 - 2012-09-20 08:53 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-03-15 18:20 - 2015-03-15 18:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-34484.txt
2015-03-15 18:20 - 2015-03-15 18:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-34343.txt
2015-03-15 18:18 - 2014-09-13 09:24 - 02233152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-03-15 18:18 - 2014-09-03 05:48 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpchttp.dll
2015-03-15 18:18 - 2014-09-03 05:22 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpchttp.dll
2015-03-15 18:18 - 2014-08-29 07:17 - 02043392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmSvc.dll
2015-03-15 18:18 - 2014-08-29 07:17 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WsmWmiPl.dll
2015-03-15 18:18 - 2014-08-29 07:04 - 02837504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2015-03-15 18:18 - 2014-08-29 07:04 - 00309248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmWmiPl.dll
2015-03-15 18:18 - 2014-08-28 09:04 - 00499712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSCOMEX.dll
2015-03-15 18:18 - 2014-08-28 09:04 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FXSAPI.dll
2015-03-15 18:18 - 2014-08-28 08:59 - 00616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSAPI.dll
2015-03-15 18:18 - 2014-08-28 08:59 - 00609280 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSCOMEX.dll
2015-03-15 18:18 - 2014-08-28 08:59 - 00432640 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXSTIFF.dll
2015-03-15 18:18 - 2014-08-28 08:59 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\FXST30.dll
2015-03-15 18:18 - 2014-07-24 16:12 - 00328512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2015-03-15 18:17 - 2015-01-29 11:05 - 01627648 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-03-15 18:17 - 2015-01-29 09:19 - 01339392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-03-15 18:17 - 2014-10-09 06:59 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-03-15 18:17 - 2014-10-09 06:59 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-03-15 18:17 - 2014-10-09 06:58 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-03-15 18:17 - 2014-09-22 08:38 - 00673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2015-03-15 18:17 - 2014-09-22 06:56 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2015-03-15 18:17 - 2013-07-06 01:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys
2015-03-15 18:17 - 2013-07-06 01:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2015-03-15 18:17 - 2013-07-02 01:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2015-03-15 18:17 - 2013-06-29 06:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2015-03-15 18:17 - 2013-06-22 08:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2015-03-15 18:17 - 2013-06-22 08:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2015-03-15 18:17 - 2013-05-04 07:48 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2015-03-15 18:16 - 2015-01-29 11:45 - 06973248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-03-15 18:15 - 2014-12-19 09:48 - 00210432 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-03-15 18:15 - 2014-08-09 11:30 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2015-03-15 18:15 - 2014-08-09 11:29 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2015-03-15 18:13 - 2014-07-07 08:53 - 01125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2015-03-15 18:13 - 2014-07-07 08:52 - 00724992 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2015-03-15 18:13 - 2014-07-07 08:52 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsta.dll
2015-03-15 18:13 - 2014-07-07 08:51 - 05982208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-03-15 18:13 - 2014-07-07 07:01 - 01049600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstsc.exe
2015-03-15 18:13 - 2014-07-07 07:01 - 00233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winsta.dll
2015-03-15 18:13 - 2014-07-07 07:00 - 05095424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-03-15 18:13 - 2014-07-07 06:59 - 00269312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aaclient.dll
2015-03-15 18:11 - 2014-06-03 01:33 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2015-03-15 18:09 - 2012-11-10 07:23 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2015-03-15 18:09 - 2012-11-10 07:22 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDWebAI.dll
2015-03-15 18:09 - 2012-11-10 07:22 - 00122880 _____ (Microsoft Corporation) C:\WINDOWS\system32\VmHostAI.dll
2015-03-15 18:09 - 2012-11-10 07:20 - 00135680 _____ (Microsoft Corporation) C:\WINDOWS\system32\appserverai.dll
2015-03-15 17:43 - 2014-07-24 06:33 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2015-03-15 17:42 - 2014-07-24 06:33 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2015-03-15 17:38 - 2015-01-20 09:41 - 01120256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-03-15 17:38 - 2015-01-20 08:10 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-03-15 17:38 - 2014-10-18 11:44 - 00778240 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-03-15 17:38 - 2014-10-18 10:05 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-03-15 17:38 - 2013-04-24 02:13 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certutil.exe
2015-03-15 17:38 - 2013-04-24 02:12 - 00109056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptnet.dll
2015-03-15 17:38 - 2013-04-24 01:56 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\certutil.exe
2015-03-15 17:38 - 2013-04-24 01:55 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptnet.dll
2015-03-15 17:37 - 2015-03-15 17:38 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-03-15 17:37 - 2015-02-26 22:14 - 122905848 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-03-15 17:37 - 2014-12-08 09:48 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-03-15 17:37 - 2014-12-08 08:04 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-03-15 17:37 - 2014-12-06 10:52 - 00384000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-03-15 17:37 - 2014-12-06 10:52 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-03-15 17:37 - 2014-12-06 10:52 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2015-03-15 17:37 - 2014-12-06 09:09 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlaapi.dll
2015-03-15 17:37 - 2013-03-02 11:22 - 00361984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-03-15 17:37 - 2013-03-02 05:44 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-03-15 17:37 - 2013-02-02 14:19 - 00329960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2015-03-15 17:37 - 2013-02-02 13:54 - 01933544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-03-15 17:37 - 2013-02-02 13:28 - 00993512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-03-15 17:37 - 2013-02-02 11:40 - 00410624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlroamextension.dll
2015-03-15 17:37 - 2013-02-02 11:40 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWanAPI.dll
2015-03-15 17:37 - 2013-02-02 11:40 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-03-15 17:37 - 2013-02-02 11:40 - 00197632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2015-03-15 17:37 - 2013-02-02 11:40 - 00155136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsRasterService.dll
2015-03-15 17:37 - 2013-02-02 11:40 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tasklist.exe
2015-03-15 17:37 - 2013-02-02 11:40 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskkill.exe
2015-03-15 17:37 - 2013-02-02 11:39 - 00157696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2015-03-15 17:37 - 2013-02-02 11:39 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netprofm.dll
2015-03-15 17:37 - 2013-02-02 11:39 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\npmproxy.dll
2015-03-15 17:37 - 2013-02-02 11:39 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmproxy.dll
2015-03-15 17:37 - 2013-02-02 11:39 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nlmsprep.dll
2015-03-15 17:37 - 2013-02-02 11:38 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\duser.dll
2015-03-15 17:37 - 2013-02-02 11:24 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskkill.exe
2015-03-15 17:37 - 2013-02-02 11:24 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\tasklist.exe
2015-03-15 17:37 - 2013-02-02 11:23 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpd_ci.dll
2015-03-15 17:37 - 2013-02-02 11:23 - 00543232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlroamextension.dll
2015-03-15 17:37 - 2013-02-02 11:23 - 00475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-03-15 17:37 - 2013-02-02 11:23 - 00293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2015-03-15 17:37 - 2013-02-02 11:23 - 00228352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsRasterService.dll
2015-03-15 17:37 - 2013-02-02 11:23 - 00105472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdbusenum.dll
2015-03-15 17:37 - 2013-02-02 11:23 - 00087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2015-03-15 17:37 - 2013-02-02 11:22 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-03-15 17:37 - 2013-02-02 11:21 - 00467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2015-03-15 17:37 - 2013-02-02 11:21 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2015-03-15 17:37 - 2013-02-02 11:20 - 00729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2015-03-15 17:37 - 2013-02-02 11:20 - 00260096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hotspotauth.dll
2015-03-15 17:37 - 2013-02-02 10:25 - 00297984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ks.sys
2015-03-15 17:37 - 2013-02-02 10:25 - 00037632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthAvrcpTg.sys
2015-03-15 17:37 - 2012-11-27 06:57 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2015-03-15 17:37 - 2012-11-27 06:55 - 00029952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BthhfHid.sys
2015-03-15 17:37 - 2012-11-20 07:54 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidi2c.sys
2015-03-15 17:37 - 2012-10-06 07:53 - 02893824 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2015-03-15 17:37 - 2012-10-06 07:15 - 02400256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2015-03-15 17:36 - 2014-12-06 10:53 - 00458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-03-15 17:36 - 2014-12-06 10:51 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-03-15 17:36 - 2014-12-06 10:50 - 00783872 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-03-15 17:36 - 2014-12-06 09:10 - 00355840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-03-15 17:36 - 2014-12-06 09:09 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-03-15 17:36 - 2014-10-03 04:21 - 00522728 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-03-15 17:36 - 2014-10-03 01:29 - 00169472 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-03-15 17:36 - 2014-03-11 06:25 - 00100184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecdd.sys
2015-03-15 17:36 - 2014-03-11 03:41 - 00559104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\objsel.dll
2015-03-15 17:36 - 2014-03-11 03:41 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dimsroam.dll
2015-03-15 17:36 - 2014-03-11 03:39 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsass.exe
2015-03-15 17:36 - 2014-03-11 03:38 - 00982016 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2015-03-15 17:36 - 2014-03-11 03:38 - 00684032 _____ (Microsoft Corporation) C:\WINDOWS\system32\objsel.dll
2015-03-15 17:36 - 2014-03-11 03:38 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-03-15 17:36 - 2014-03-11 03:38 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspicli.dll
2015-03-15 17:36 - 2014-03-11 03:38 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll
2015-03-15 17:36 - 2014-03-11 03:38 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\sspisrv.dll
2015-03-15 17:36 - 2014-03-10 06:05 - 00668160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2015-03-15 17:36 - 2014-03-10 04:27 - 00099840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sspicli.dll
2015-03-15 17:36 - 2013-07-09 09:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2015-03-15 17:36 - 2013-07-09 07:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2015-03-15 17:36 - 2013-04-12 01:30 - 01421312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-03-15 17:36 - 2013-04-12 01:22 - 01838080 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-03-15 17:36 - 2013-04-09 08:33 - 00489576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-03-15 17:36 - 2013-04-09 08:33 - 00446792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-03-15 17:36 - 2013-04-09 08:33 - 00253544 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-03-15 17:36 - 2013-04-09 02:37 - 00426024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2015-03-15 17:36 - 2013-04-09 02:37 - 00324368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2015-03-15 17:36 - 2013-02-02 08:41 - 01437184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-03-15 17:36 - 2013-02-02 08:31 - 01690624 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-03-15 17:35 - 2014-12-06 10:53 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-03-15 17:35 - 2014-12-06 10:51 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-03-15 17:35 - 2014-12-06 09:10 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-03-15 17:35 - 2014-07-16 02:03 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-03-15 17:35 - 2014-07-12 05:36 - 01023488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-03-15 17:35 - 2013-07-01 04:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2015-03-15 17:35 - 2013-07-01 04:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2015-03-15 17:35 - 2013-07-01 04:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2015-03-15 17:35 - 2013-07-01 04:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2015-03-15 17:35 - 2013-06-29 06:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2015-03-15 17:35 - 2013-06-29 06:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2015-03-15 17:35 - 2013-03-06 09:31 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2015-03-15 17:35 - 2013-03-06 08:03 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2015-03-15 17:35 - 2013-02-12 03:17 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-03-15 17:35 - 2012-11-20 07:56 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbohci.sys
2015-03-15 17:35 - 2012-11-06 08:00 - 00463768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AUDIOKSE.dll
2015-03-15 17:34 - 2013-10-10 12:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2015-03-15 17:34 - 2013-10-10 12:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2015-03-15 17:34 - 2013-10-10 12:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2015-03-15 17:34 - 2013-10-10 12:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2015-03-15 17:34 - 2013-10-10 12:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2015-03-15 17:34 - 2013-10-10 12:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2015-03-15 17:34 - 2013-10-10 12:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2015-03-15 17:30 - 2013-07-13 09:18 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2015-03-15 17:30 - 2013-07-13 09:16 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2015-03-15 17:30 - 2013-07-13 09:15 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2015-03-15 17:30 - 2013-07-13 09:15 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2015-03-15 17:30 - 2013-07-13 07:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2015-03-15 17:30 - 2013-07-13 07:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2015-03-15 17:30 - 2013-07-13 07:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2015-03-15 17:29 - 2015-01-24 07:31 - 00235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-03-15 17:29 - 2014-12-19 07:35 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-03-15 17:29 - 2014-10-11 10:44 - 03248640 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-03-15 17:29 - 2014-09-25 02:29 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptsslp.dll
2015-03-15 17:29 - 2014-09-25 02:01 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptsslp.dll
2015-03-15 17:29 - 2014-05-30 01:24 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-03-15 17:29 - 2013-11-20 03:15 - 03842560 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2015-03-15 17:29 - 2013-11-20 02:57 - 03288576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2015-03-15 17:29 - 2013-07-02 04:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-03-15 17:29 - 2013-07-02 04:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2015-03-15 17:29 - 2013-03-15 03:17 - 00861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-03-15 17:29 - 2012-11-03 08:26 - 00034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-03-15 17:29 - 2012-11-03 08:26 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-03-15 17:29 - 2012-11-03 08:24 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-03-15 17:29 - 2012-11-03 08:24 - 00375808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-03-15 17:29 - 2012-11-03 08:24 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-03-15 17:29 - 2012-11-03 08:24 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-03-15 17:29 - 2012-11-03 08:24 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-03-15 17:29 - 2012-11-03 08:24 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-03-15 17:29 - 2012-11-03 08:24 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-03-15 17:29 - 2012-11-03 08:24 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-03-15 17:29 - 2012-11-03 08:04 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2015-03-15 17:29 - 2012-11-03 08:04 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2015-03-15 17:29 - 2012-11-03 08:00 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2015-03-15 17:29 - 2012-11-03 08:00 - 00002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2015-03-15 17:29 - 2012-10-12 11:08 - 00027880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpvideominiport.sys
2015-03-15 17:29 - 2012-10-12 09:14 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\rfxvmt.dll
2015-03-15 17:27 - 2015-03-15 17:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-43125.txt
2015-03-15 17:27 - 2015-03-15 17:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-40343.txt
2015-03-15 17:24 - 2015-01-24 09:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-03-15 17:24 - 2015-01-24 08:00 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-03-15 17:24 - 2014-06-06 17:06 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\qedit.dll
2015-03-15 17:24 - 2014-06-06 13:17 - 00497152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\qedit.dll
2015-03-15 17:24 - 2014-06-05 20:56 - 00112984 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2015-03-15 17:24 - 2014-06-05 20:29 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\msihnd.dll
2015-03-15 17:24 - 2014-06-05 16:11 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msihnd.dll
2015-03-15 17:24 - 2013-03-06 09:29 - 00070144 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2015-03-15 17:24 - 2013-03-02 13:39 - 00069864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-03-15 17:23 - 2014-11-08 14:22 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2015-03-15 17:23 - 2014-11-08 09:57 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-03-15 17:23 - 2014-06-20 02:35 - 01312768 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2015-03-15 17:23 - 2014-06-20 01:24 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2015-03-15 17:23 - 2013-09-28 06:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2015-03-15 17:23 - 2013-03-02 12:59 - 00411880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-03-15 17:23 - 2012-10-11 10:02 - 01636672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMALFXGFXDSP.dll
2015-03-15 17:23 - 2012-10-11 08:45 - 00370176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysFxUI.dll
2015-03-15 17:23 - 2012-10-11 08:19 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2015-03-15 17:23 - 2012-10-11 08:18 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2015-03-15 17:22 - 2015-03-15 17:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-43218.txt
2015-03-15 17:22 - 2015-03-15 17:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-41015.txt
2015-03-15 17:21 - 2015-02-17 09:54 - 19777536 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-03-15 17:21 - 2015-02-17 08:13 - 17561600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-03-15 17:21 - 2014-10-23 15:47 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\packager.dll
2015-03-15 17:21 - 2014-10-23 14:04 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\packager.dll
2015-03-15 17:20 - 2014-11-08 14:21 - 00827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-03-15 17:20 - 2014-11-08 09:56 - 00666624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2015-03-15 17:20 - 2014-10-11 11:35 - 00171840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-03-15 17:20 - 2014-10-11 08:41 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\msaudite.dll
2015-03-15 17:20 - 2014-10-11 08:05 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msaudite.dll
2015-03-15 17:20 - 2014-05-30 02:02 - 00439808 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-03-15 17:20 - 2014-04-12 12:10 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-03-15 17:20 - 2014-04-12 12:09 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2015-03-15 17:20 - 2014-04-12 12:09 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2015-03-15 17:20 - 2014-04-12 12:08 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2015-03-15 17:20 - 2014-04-12 12:07 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll
2015-03-15 17:20 - 2014-04-12 10:23 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2015-03-15 17:20 - 2014-04-12 10:23 - 00178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2015-03-15 17:20 - 2014-04-12 10:23 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TSpkg.dll
2015-03-15 17:20 - 2014-04-12 10:22 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\credssp.dll
2015-03-15 17:20 - 2014-04-12 09:58 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\workerdd.dll
2015-03-15 17:17 - 2014-08-22 02:56 - 01418752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-03-15 17:17 - 2014-08-22 02:27 - 01845760 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-03-15 17:17 - 2012-11-01 07:41 - 01802240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-03-15 17:17 - 2012-11-01 07:40 - 02361344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-03-15 17:17 - 2012-11-01 07:21 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2015-03-15 17:17 - 2012-11-01 07:21 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2015-03-15 17:17 - 2012-11-01 07:20 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2015-03-15 17:17 - 2012-11-01 07:20 - 00002048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
2015-03-15 16:47 - 2013-08-16 08:21 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-03-15 16:47 - 2013-08-16 08:21 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-03-15 16:47 - 2013-08-16 01:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-03-15 16:47 - 2012-11-06 07:00 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wushareduxresources.dll
2015-03-15 16:43 - 2015-04-05 16:33 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1353520422-2430857287-4010623212-1003
2015-03-15 16:40 - 2015-03-15 16:40 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\Macromedia
2015-03-15 16:35 - 2015-04-05 09:40 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\VirtualStore
2015-03-15 16:35 - 2015-03-15 17:28 - 00000920 _____ () C:\Users\Yavuz\Desktop\Downloads.lnk
2015-03-15 16:35 - 2015-03-15 16:35 - 00001425 _____ () C:\Users\Yavuz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-03-15 16:35 - 2015-03-15 16:35 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\Adobe
2015-03-15 16:35 - 2015-03-15 16:35 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Packages
2015-03-15 16:34 - 2015-04-05 16:25 - 01145151 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-15 16:34 - 2015-03-30 15:39 - 00000000 ____D () C:\Users\Yavuz
2015-03-15 16:34 - 2015-03-15 16:34 - 00000020 ___SH () C:\Users\Yavuz\ntuser.ini
2015-03-15 16:34 - 2015-03-15 16:34 - 00000000 _SHDL () C:\Users\Yavuz\Documents\Videolarım
2015-03-15 16:34 - 2015-03-15 16:34 - 00000000 _SHDL () C:\Users\Yavuz\Documents\Resimlerim
2015-03-15 16:34 - 2015-03-15 16:34 - 00000000 _SHDL () C:\Users\Yavuz\Documents\Müziğim
2015-03-15 16:34 - 2015-03-15 16:34 - 00000000 _SHDL () C:\Users\Yavuz\Belgelerim
2015-03-15 16:34 - 2015-03-15 16:34 - 00000000 _SHDL () C:\Users\Yavuz\AppData\Roaming\Microsoft\Windows\Start Menu\Programlar
2015-03-15 16:34 - 2012-10-19 23:38 - 00002081 _____ () C:\Users\Yavuz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2015-03-15 16:34 - 2012-07-26 11:13 - 00000000 ___RD () C:\Users\Yavuz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-15 16:34 - 2012-07-26 11:13 - 00000000 ___RD () C:\Users\Yavuz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-15 16:34 - 2012-07-26 11:13 - 00000000 ___RD () C:\Users\Yavuz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-15 16:34 - 2012-07-26 11:13 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-03-15 15:09 - 2015-03-15 15:09 - 00000000 _____ () C:\Recovery.txt
2015-03-15 14:59 - 2015-03-15 14:59 - 00000000 ____D () C:\Fabrikam
2015-03-15 14:12 - 2015-03-15 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-52484.txt
2015-03-15 14:12 - 2015-03-15 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-46796.txt
2015-03-15 14:10 - 2015-03-15 14:10 - 00001136 _____ () C:\WINDOWS\system32\netcfg-41500.txt
2015-03-15 14:10 - 2015-03-15 14:10 - 00001102 _____ () C:\WINDOWS\system32\netcfg-49187.txt
2015-03-15 14:10 - 2015-03-15 14:10 - 00000185 _____ () C:\WINDOWS\system32\netcfg-39812.txt
2015-03-15 14:10 - 2015-03-15 14:10 - 00000163 _____ () C:\WINDOWS\system32\netcfg-49015.txt
2015-03-15 14:10 - 2015-03-15 14:10 - 00000161 _____ () C:\WINDOWS\system32\netcfg-39031.txt
2015-03-15 14:10 - 2015-03-15 14:10 - 00000160 _____ () C:\WINDOWS\system32\netcfg-38843.txt
2015-03-15 14:10 - 2015-03-15 14:10 - 00000160 _____ () C:\WINDOWS\system32\netcfg-38484.txt
2015-03-15 14:10 - 2015-03-15 14:10 - 00000159 _____ () C:\WINDOWS\system32\netcfg-38312.txt
2015-03-15 14:10 - 2015-03-15 14:10 - 00000157 _____ () C:\WINDOWS\system32\netcfg-38656.txt
2015-03-15 14:09 - 2015-03-15 14:09 - 00000164 _____ () C:\WINDOWS\system32\netcfg-37171.txt
2015-03-15 14:09 - 2015-03-15 14:09 - 00000160 _____ () C:\WINDOWS\system32\netcfg-37562.txt
2015-03-15 14:09 - 2015-03-15 14:09 - 00000157 _____ () C:\WINDOWS\system32\netcfg-36125.txt
2015-03-15 14:09 - 2015-03-15 14:09 - 00000150 _____ () C:\WINDOWS\system32\netcfg-36500.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-05 17:00 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-04-05 16:58 - 2012-07-26 10:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-04-05 16:05 - 2012-07-26 10:22 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-04-05 15:51 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\rescache
2015-04-05 15:48 - 2012-07-26 08:26 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-04-05 15:46 - 2012-10-08 19:43 - 00018522 _____ () C:\WINDOWS\PFRO.log
2015-04-02 16:10 - 2012-07-26 08:26 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2015-04-01 08:26 - 2012-07-26 13:04 - 00676646 _____ () C:\WINDOWS\system32\perfh01F.dat
2015-04-01 08:26 - 2012-07-26 13:04 - 00138742 _____ () C:\WINDOWS\system32\perfc01F.dat
2015-04-01 08:26 - 2012-07-26 10:28 - 03796672 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-27 00:16 - 2012-07-26 08:38 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2015-03-26 15:36 - 2012-07-26 11:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP
2015-03-16 20:09 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent
2015-03-16 03:25 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\Help
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ___RD () C:\WINDOWS\ToastData
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\WinStore
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\SysWOW64\tr-TR
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\SysWOW64\hr-HR
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\SysWOW64\ar-SA
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\tr-TR
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\SecureBootUpdates
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\hr-HR
2015-03-15 23:17 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\ar-SA
2015-03-15 23:17 - 2012-07-26 08:38 - 00000000 ____D () C:\WINDOWS\system32\oobe
2015-03-15 21:36 - 2012-07-26 13:06 - 00000000 ____D () C:\Program Files\Windows Journal
2015-03-15 21:36 - 2012-07-26 13:03 - 00000000 ____D () C:\WINDOWS\SysWOW64\winrm
2015-03-15 21:36 - 2012-07-26 13:03 - 00000000 ____D () C:\WINDOWS\SysWOW64\WCN
2015-03-15 21:36 - 2012-07-26 13:03 - 00000000 ____D () C:\WINDOWS\SysWOW64\sysprep
2015-03-15 21:36 - 2012-07-26 13:03 - 00000000 ____D () C:\WINDOWS\SysWOW64\slmgr
2015-03-15 21:36 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\SysWOW64\MUI
2015-03-15 21:36 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\SysWOW64\migwiz
2015-03-15 21:36 - 2012-07-26 11:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-03-15 21:36 - 2012-07-26 11:12 - 00000000 ____D () C:\Program Files\Windows Defender
2015-03-15 21:36 - 2012-07-26 11:12 - 00000000 ____D () C:\Program Files\Common Files\System
2015-03-15 21:36 - 2012-07-26 11:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-03-15 21:36 - 2012-07-26 11:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-03-15 21:36 - 2012-07-26 08:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\oobe
2015-03-15 21:36 - 2012-07-26 08:38 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2015-03-15 21:36 - 2012-07-26 08:37 - 00000000 ____D () C:\WINDOWS\servicing
2015-03-15 21:35 - 2012-07-26 13:03 - 00000000 ____D () C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2015-03-15 21:35 - 2012-07-26 13:03 - 00000000 ____D () C:\WINDOWS\system32\winrm
2015-03-15 21:35 - 2012-07-26 13:03 - 00000000 ____D () C:\WINDOWS\system32\WCN
2015-03-15 21:35 - 2012-07-26 13:03 - 00000000 ____D () C:\WINDOWS\system32\slmgr
2015-03-15 21:35 - 2012-07-26 13:03 - 00000000 ____D () C:\WINDOWS\system32\Printing_Admin_Scripts
2015-03-15 21:35 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\SysWOW64\Com
2015-03-15 21:35 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\SystemResetPlatform
2015-03-15 21:35 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\MUI
2015-03-15 21:35 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\migwiz
2015-03-15 21:35 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\Com
2015-03-15 21:35 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2015-03-15 21:35 - 2012-07-26 08:38 - 00000000 ____D () C:\WINDOWS\system32\Dism
2015-03-15 19:03 - 2012-07-26 11:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-15 19:03 - 2012-07-26 11:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-03-15 19:02 - 2012-07-26 13:03 - 00000000 ____D () C:\WINDOWS\system32\Drivers\tr-TR
2015-03-15 18:41 - 2012-07-26 11:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-15 18:41 - 2012-07-26 11:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-03-15 18:41 - 2012-07-26 11:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-03-15 16:46 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\restore
2015-03-15 15:08 - 2012-07-26 11:13 - 00262144 _____ () C:\WINDOWS\system32\config\BCD-Template
2015-03-15 15:08 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\Recovery
2015-03-15 14:10 - 2012-07-26 11:13 - 00007372 _____ () C:\WINDOWS\DtcInstall.log
2015-03-15 14:09 - 2012-10-19 23:30 - 00000000 ____D () C:\Program Files (x86)\Intel

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-04 09:10

==================== End Of Log ============================

--- --- ---

Scutulatus · 05.04.2015, 15:28

FRST Additions Logfile:

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-03-2015
Ran by Yavuz at 2015-04-05 17:26:21
Running from C:\Users\Yavuz\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: AVG Internet Security 2015 (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2015 (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security 2015 (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.134 - Adobe Systems Incorporated)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.5863 - AVG Technologies)
AVG 2015 (Version: 15.0.4321 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.5863 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.403 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.403 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.403 - AVG Technologies) Hidden
BitTorrent (HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\...\BitTorrent) (Version: 7.9.2.38914 - BitTorrent Inc.)
Blender (HKLM\...\Blender) (Version: 2.73a - Blender Foundation)
Burr Tools (HKLM-x32\...\burrtools) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 37.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 37.0.1 (x86 de)) (Version: 37.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 36.0.1 - Mozilla)
NVIDIA 3D Vision Sürücüsü 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 331.65 - NVIDIA Corporation)
NVIDIA Grafik Sürücüsü 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA Güncelleştirmeleri 1.15.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.15.2 - NVIDIA Corporation)
Platform (x32 Version: 1.39 - VIA Technologies, Inc.) Hidden
Skype™ 7.2 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.2.103 - Skype Technologies S.A.)
Smart Defrag 4 (HKLM-x32\...\Smart Defrag 4_is1) (Version: 4.0 - IObit)
Start Menu 8 (HKLM-x32\...\IObit_StartMenu8_is1) (Version: 2.1.0 - IObit)
VIA Platform Aygıt Yöneticisi (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Windows Live Temel Parçalar (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Sürücü Paketi - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\3134FEF0E1D959EC0CC2E458C94B7057B2AC0CC9) (Version: 10/22/2009 2.06.00 - FTDI)
Windows Sürücü Paketi - FTDI CDM Driver Package (10/22/2009 2.06.00) (HKLM\...\88EB56038379B8B7DCFB4D2448A60F52E064B265) (Version: 10/22/2009 2.06.00 - FTDI)
WinPC-NC USB (HKLM-x32\...\WinPC-NC USB) (Version: 2.00 - Burkhard Lewetz, Hard- und Software)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1353520422-2430857287-4010623212-1003_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()

==================== Restore Points  =========================

01-04-2015 09:02:02 Dil Paketi Kaldırma
02-04-2015 10:53:50 Dil Paketi Kaldırma
05-04-2015 16:43:43 Dil Paketi Kaldırma

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 08:26 - 2012-07-26 08:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {2D4CE015-3CAA-4F56-B53B-CA91F9C43260} - System32\Tasks\SmartDefrag4_Startup => C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe [2015-03-06] (IObit)
Task: {49D2D68F-7202-42B2-85DD-4691595E5E30} - System32\Tasks\Uninstaller_SkipUac_Yavuz => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {5132198E-9E08-467E-812B-9513E5A052B7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-19] (Piriform Ltd)
Task: {7B855F82-641C-4F0C-B83D-75F1726F7048} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-02-26] (Microsoft Corporation)
Task: {B413338C-9751-47F6-9497-7D8824F8D6F4} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-17] (Adobe Systems Incorporated)
Task: {BCDE8083-BC5E-4318-B1CA-7CCB31E2EBDA} - \WPD\SqmUpload_S-1-5-21-1353520422-2430857287-4010623212-1002 No Task File <==== ATTENTION
Task: {BEF2548C-98C3-43A6-9709-D08AF90EED26} - \WPD\SqmUpload_S-1-5-21-1353520422-2430857287-4010623212-1001 No Task File <==== ATTENTION
Task: {C2F107AA-9B05-4B4C-BE98-333D80B2C8C1} - System32\Tasks\SmartDefrag4_Update => C:\Program Files (x86)\IObit\Smart Defrag 4\AutoUpdate.exe [2015-03-03] (IObit)
Task: {CAAC8815-BF45-49CF-B7A5-BBFF9FD2888F} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-02-25] (AVG Technologies)
Task: {CAB7194B-3959-4A14-9C36-F62FDB65E8FF} - System32\Tasks\Driver Booster SkipUAC (Yavuz) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Uninstaller_SkipUac_Yavuz.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Loaded Modules (whitelisted) ==============

2015-03-16 03:25 - 2013-10-23 11:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-02-25 10:25 - 2015-02-25 10:25 - 00712504 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-02-25 10:25 - 2015-02-25 10:25 - 00855864 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-03-16 11:02 - 2015-03-16 11:02 - 04247552 _____ () C:\ProgramData\Microsoft\Security\Client\SecurityProvider.dll
2015-03-16 11:02 - 2015-03-16 11:02 - 02934272 _____ () C:\ProgramData\Microsoft\Security\Client\SecurityHelper.dll
2012-07-26 13:12 - 2012-07-26 13:07 - 00170864 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2015-02-20 00:40 - 2015-02-20 00:40 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-04-05 10:13 - 2014-10-16 10:26 - 00622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2015-04-05 10:15 - 2013-01-15 18:47 - 00893248 _____ () C:\Program Files (x86)\IObit\Smart Defrag 4\webres.dll
2015-04-05 10:17 - 2015-03-13 13:22 - 00348960 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madExcept_.bpl
2015-04-05 10:17 - 2015-03-13 13:22 - 00183584 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madBasic_.bpl
2015-04-05 10:17 - 2015-03-13 13:22 - 00050976 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madDisAsm_.bpl
2015-04-05 10:17 - 2015-03-13 13:22 - 00268920 _____ () C:\Program Files (x86)\IObit\Start Menu 8\sqlite3.dll
2015-04-05 10:17 - 2015-03-13 13:22 - 00053024 _____ () C:\Program Files (x86)\IObit\Start Menu 8\parseAuto.dll
2015-04-05 10:17 - 2015-03-13 13:22 - 00622880 _____ () C:\Program Files (x86)\IObit\Start Menu 8\ProductStatistics.dll
2015-04-05 10:17 - 2015-03-13 13:23 - 00041248 _____ () C:\Program Files (x86)\IObit\Start Menu 8\winkey.dll
2012-10-19 23:31 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\Control Panel\Desktop\\Wallpaper -> 
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Administrator (S-1-5-21-1353520422-2430857287-4010623212-500 - Administrator - Disabled)
Guest (S-1-5-21-1353520422-2430857287-4010623212-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1353520422-2430857287-4010623212-1005 - Limited - Enabled)
UpdatusUser (S-1-5-21-1353520422-2430857287-4010623212-1006 - Limited - Enabled) => C:\Users\UpdatusUser
Yavuz (S-1-5-21-1353520422-2430857287-4010623212-1003 - Administrator - Enabled) => C:\Users\Yavuz

==================== Faulty Device Manager Devices =============

Name: Ağ Denetleyicisi
Description: Ağ Denetleyicisi
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/05/2015 04:44:03 PM) (Source: VSS) (EventID: 12305) (User: )
Description: Birim Gölge Kopyası Hizmeti hatası: Birim/disk bağlı değil ya da bulunamadı.
Hata içeriği: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 000000000000014C,0x00530190,0000000000000000,0,00000090F0441090,4096,[0]).


İşlem:
   Gölge Kopyaları Sorgula

Error: (04/05/2015 10:17:48 AM) (Source: Windows Search Service) (EventID: 3079) (User: )
Description: C:\ biriminin bildirimleri etkin değil. 

Bağlam: Windows Uygulaması

Ayrıntılar:
	Parametre hatalı.  (HRESULT : 0x80070057) (0x80070057)

Error: (04/04/2015 10:58:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: Trjscan.exe, sürüm: 6.9.2.1335, zaman damgası: 0x5516cd1c
Hatalı modül adı: Test.dll, sürüm: 0.0.0.0, zaman damgası: 0x5517ff88
Özel durum kodu: 0xc000041d
Hata uzaklığı 0x000021e7
Hatalı işlem kimliği: 0x1998
Uygulama başlangıç zamanı: 0xTrjscan.exe0
Hatalı uygulama yolu: Trjscan.exe1
Hatalı modül yolu: Trjscan.exe2
Rapor kimliği: Trjscan.exe3
Hatalı paket tam adı: Trjscan.exe4
Hatalı paketle ilgili uygulama kimliği: Trjscan.exe5

Error: (04/04/2015 10:57:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: Trjscan.exe, sürüm: 6.9.2.1335, zaman damgası: 0x5516cd1c
Hatalı modül adı: Test.dll, sürüm: 0.0.0.0, zaman damgası: 0x5517ff88
Özel durum kodu: 0xc0000091
Hata uzaklığı 0x000021e7
Hatalı işlem kimliği: 0x1998
Uygulama başlangıç zamanı: 0xTrjscan.exe0
Hatalı uygulama yolu: Trjscan.exe1
Hatalı modül yolu: Trjscan.exe2
Rapor kimliği: Trjscan.exe3
Hatalı paket tam adı: Trjscan.exe4
Hatalı paketle ilgili uygulama kimliği: Trjscan.exe5

Error: (04/04/2015 10:52:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CASPER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail uygulamasının etkinleştirilmesi şu hatayla başarısız oldu: -2147467263 Ek bilgi için Microsoft-Windows-TWinUI/Operational günlüğüne bakın.

Error: (04/04/2015 10:52:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CASPER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail uygulamasının etkinleştirilmesi şu hatayla başarısız oldu: -2147467263 Ek bilgi için Microsoft-Windows-TWinUI/Operational günlüğüne bakın.

Error: (04/04/2015 10:52:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CASPER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail uygulamasının etkinleştirilmesi şu hatayla başarısız oldu: -2147467263 Ek bilgi için Microsoft-Windows-TWinUI/Operational günlüğüne bakın.

Error: (04/02/2015 11:22:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: Winpcnc.exe, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Hatalı modül adı: Test.dll, sürüm: 0.0.0.0, zaman damgası: 0x5517ff88
Özel durum kodu: 0xc000041d
Hata uzaklığı 0x000021e7
Hatalı işlem kimliği: 0xa6c
Uygulama başlangıç zamanı: 0xWinpcnc.exe0
Hatalı uygulama yolu: Winpcnc.exe1
Hatalı modül yolu: Winpcnc.exe2
Rapor kimliği: Winpcnc.exe3
Hatalı paket tam adı: Winpcnc.exe4
Hatalı paketle ilgili uygulama kimliği: Winpcnc.exe5

Error: (04/02/2015 11:22:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: Winpcnc.exe, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Hatalı modül adı: Test.dll, sürüm: 0.0.0.0, zaman damgası: 0x5517ff88
Özel durum kodu: 0xc0000091
Hata uzaklığı 0x000021e7
Hatalı işlem kimliği: 0xa6c
Uygulama başlangıç zamanı: 0xWinpcnc.exe0
Hatalı uygulama yolu: Winpcnc.exe1
Hatalı modül yolu: Winpcnc.exe2
Rapor kimliği: Winpcnc.exe3
Hatalı paket tam adı: Winpcnc.exe4
Hatalı paketle ilgili uygulama kimliği: Winpcnc.exe5

Error: (04/02/2015 10:33:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Hatalı uygulama adı: Winpcnc.exe, sürüm: 0.0.0.0, zaman damgası: 0x00000000
Hatalı modül adı: Test.dll, sürüm: 0.0.0.0, zaman damgası: 0x5517ff88
Özel durum kodu: 0xc000041d
Hata uzaklığı 0x000021e7
Hatalı işlem kimliği: 0x1b4c
Uygulama başlangıç zamanı: 0xWinpcnc.exe0
Hatalı uygulama yolu: Winpcnc.exe1
Hatalı modül yolu: Winpcnc.exe2
Rapor kimliği: Winpcnc.exe3
Hatalı paket tam adı: Winpcnc.exe4
Hatalı paketle ilgili uygulama kimliği: Winpcnc.exe5


System errors:
=============
Error: (04/05/2015 03:47:16 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: 11:54:47, ‎5.‎4.‎2015 tarihinde gerçekleşen önceki sistem kapanışı beklenmiyordu.

Error: (04/05/2015 10:19:12 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Advanced SystemCare Service 8 hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (04/05/2015 10:13:18 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Advanced SystemCare Service 8 hizmeti, etkileşimli bir hizmet olarak işaretli.  Ancak sistem, etkileşimli hizmetlere izin vermeyecek şekilde yapılandırıldı.  Bu hizmet düzgün çalışmayabilir.

Error: (04/05/2015 10:13:08 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: LiveUpdate hizmeti beklenmeyen bir şekilde sonlandırıldı. Bu durum 1 defa oluştu.

Error: (04/04/2015 11:07:09 AM) (Source: DCOM) (EventID: 10010) (User: CASPER)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (04/02/2015 10:36:36 PM) (Source: DCOM) (EventID: 10010) (User: CASPER)
Description: {0002DF01-0000-0000-C000-000000000046}

Error: (04/02/2015 10:24:59 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Windows Modül Yükleyicisi hizmet şu hata ile sona erdi: 
%%3

Error: (04/02/2015 08:16:50 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Windows Modül Yükleyicisi hizmet şu hata ile sona erdi: 
%%3

Error: (04/01/2015 04:30:40 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Windows Modül Yükleyicisi hizmet şu hata ile sona erdi: 
%%3

Error: (03/31/2015 11:09:33 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Yükleme Hatası: Windows, şu güncelleştirmeyi 0x80070003 hatası ile yükleyemedi: x64 Tabanlı Sistemler İçin Windows 8 Güncelleştirmesi (KB2779768).


Microsoft Office Sessions:
=========================
Error: (04/05/2015 04:44:03 PM) (Source: VSS) (EventID: 12305) (User: )
Description: DeviceIoControl(\\?\GLOBALROOT\Device\HarddiskVolumeShadowCopy1 - 000000000000014C,0x00530190,0000000000000000,0,00000090F0441090,4096,[0])

İşlem:
   Gölge Kopyaları Sorgula

Error: (04/05/2015 10:17:48 AM) (Source: Windows Search Service) (EventID: 3079) (User: )
Description: Bağlam: Windows Uygulaması

Ayrıntılar:
	Parametre hatalı.  (HRESULT : 0x80070057) (0x80070057)
C:\

Error: (04/04/2015 10:58:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Trjscan.exe6.9.2.13355516cd1cTest.dll0.0.0.05517ff88c000041d000021e7199801d06f10f0312f38C:\Program Files (x86)\Trojan Remover\Trjscan.exeC:\Users\Yavuz\AppData\Local\Ijsoft\Test.dlled5231f3-db04-11e4-bec3-dc85de86ec1a

Error: (04/04/2015 10:57:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Trjscan.exe6.9.2.13355516cd1cTest.dll0.0.0.05517ff88c0000091000021e7199801d06f10f0312f38C:\Program Files (x86)\Trojan Remover\Trjscan.exeC:\Users\Yavuz\AppData\Local\Ijsoft\Test.dlle1a39af8-db04-11e4-bec3-dc85de86ec1a

Error: (04/04/2015 10:52:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CASPER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263

Error: (04/04/2015 10:52:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CASPER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263

Error: (04/04/2015 10:52:35 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: CASPER)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263

Error: (04/02/2015 11:22:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Winpcnc.exe0.0.0.000000000Test.dll0.0.0.05517ff88c000041d000021e7a6c01d06d1e2cce0401C:\WinPC-NC_USB\Winpcnc.exeC:\Users\Yavuz\AppData\Local\Ijsoft\Test.dll6ba4997a-d911-11e4-bec3-dc85de86ec1a

Error: (04/02/2015 11:22:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Winpcnc.exe0.0.0.000000000Test.dll0.0.0.05517ff88c0000091000021e7a6c01d06d1e2cce0401C:\WinPC-NC_USB\Winpcnc.exeC:\Users\Yavuz\AppData\Local\Ijsoft\Test.dll6ab62b71-d911-11e4-bec3-dc85de86ec1a

Error: (04/02/2015 10:33:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Winpcnc.exe0.0.0.000000000Test.dll0.0.0.05517ff88c000041d000021e71b4c01d06d174f5bd673C:\WinPC-NC_USB\Winpcnc.exeC:\Users\Yavuz\AppData\Local\Ijsoft\Test.dll8e0ab99c-d90a-11e4-bec3-dc85de86ec1a


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-3770S CPU @ 3.10GHz
Percentage of memory in use: 24%
Total physical RAM: 8156.09 MB
Available physical RAM: 6117.29 MB
Total Pagefile: 9372.09 MB
Available Pagefile: 6747.09 MB
Total Virtual: 8192 MB
Available Virtual: 8191.77 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:901.24 GB) (Free:835.1 GB) NTFS
Drive d: (Lewetz-Soft) (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS
Drive e: (A-DATA UFD) (Removable) (Total:1.88 GB) (Free:0.22 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: AF461FE7)

Partition: GPT Partition Type.

========================================================
Disk: 1 (Size: 1.9 GB) (Disk ID: 04DD5721)
Partition 1: (Active) - (Size=1.9 GB) - (Type=06)

==================== End Of Log ============================

--- --- ---

schrauber · 06.04.2015, 10:24

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Scutulatus · 08.04.2015, 07:43

Hat ein wenig gedauert, aber ich denke ich habe es einigermassen hinbekommen:

Malwarebytes Anti-Malware
Malwarebytes | Free Anti-Malware & Internet Security Software

Suchlauf Datum: 7.4.2015
Suchlauf-Zeit: 08:17:09
Logdatei: mbam2.txt
Administrator: Ja

Version: 2.01.4.1018
Malware Datenbank: v2015.04.06.11
Rootkit Datenbank: v2015.03.31.01
Lizenz: Premium
Malware Schutz: Aktiviert
Bösartiger Webseiten Schutz: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8
CPU: x64
Dateisystem: NTFS
Benutzer: Yavuz

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 373794
Verstrichene Zeit: 7 Min, 7 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(Keine schädliche Elemente gefunden)

Module: 0
(Keine schädliche Elemente gefunden)

Registrierungsschlüssel: 1
Trojan.Sathurbot, HKLM\SOFTWARE\CLASSES\CLSID\{F76FA5C2-3B6A-451E-8CA5-34C8D0AE0637}, In Quarantäne, [c59ea7c2f694d95dccedc8aab64d3bc5],

Registrierungswerte: 0
(Keine schädliche Elemente gefunden)

Registrierungsdaten: 0
(Keine schädliche Elemente gefunden)

Ordner: 2
PUP.Optional.OpenCandy, C:\Users\Yavuz\AppData\Roaming\OpenCandy, In Quarantäne, [342f0564fe8c82b4471f354d34cf837d],
PUP.Optional.OpenCandy, C:\Users\Yavuz\AppData\Roaming\OpenCandy\OpenCandy_705B090176A34E3182B4F245DB6507E7, In Quarantäne, [342f0564fe8c82b4471f354d34cf837d],

Dateien: 1
PUP.Optional.OpenCandy, C:\Users\Yavuz\AppData\Roaming\OpenCandy\OpenCandy_705B090176A34E3182B4F245DB6507E7\dyesubd1_p3v0.exe, In Quarantäne, [342f0564fe8c82b4471f354d34cf837d],

Physische Sektoren: 0
(Keine schädliche Elemente gefunden)

(end)

# AdwCleaner v4.200 - Log-dosyasi olusturuldu 07/04/2015 at 15:38:15
# Güncellendi 29/03/2015 by Xplode
# Veritabani : 2015-04-06.3 [Server]
# Isletim Sistemi : Windows 8 Single Language (x64)
# Kullanici adi : Yavuz - CASPER
# Running from : C:\Users\Yavuz\Downloads\AdwCleaner_4.200.exe
# Secenek : Temizleniyor

***** [ Servis ] *****

***** [ Dosyalar / Klasörler ] *****

Dosya Silindi : C:\Users\UpdatusUser\Desktop\Goodgame Empire.lnk
Dosya Silindi : C:\Users\Yavuz\Desktop\Goodgame Empire.lnk

***** [ Zamanlanmis görevler ] *****

***** [ Kisayollar ] *****JRT Logfile:

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.5.2 (04.06.2015:1)
OS: Windows 8 Single Language x64
Ran by Yavuz on €ar 08.04.2015 at  9:28:46,56
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] C:\WINDOWS\prefetch\DRIVER BOOSTER.TMP-79C0C992.pf
Successfully deleted: [File] C:\WINDOWS\prefetch\DRIVERBOOSTER.EXE-D5205666.pf



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Yavuz\AppData\Roaming\mozilla\firefox\profiles\yzl8wo16.default\minidumps [1 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on €ar 08.04.2015 at  9:34:32,68
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

--- --- ---

schrauber · 08.04.2015, 15:58

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

Scutulatus · 22.04.2015, 16:38

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=4fce2010b8c71742a39dc0d7fad620fe
# engine=23510
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-04-22 03:28:31
# local_time=2015-04-22 06:28:31 (+0200, Türkiye Yaz Saati)
# country="Turkey"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1='AVG AntiVirus Free Edition 2015'
# compatibility_mode=1055 16777213 100 100 20560 116854095 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 2343082 7036407 0 0
# scanned=266411
# found=9
# cleaned=0
# scan_time=2165
sh=47A3A32CE25101D2CF9114A2D2A4F5A38FA19E7F ft=1 fh=411f3298b0bdac8d vn="Win32/Boaxxe.BR Trojaner" ac=I fn="C:\ProgramData\Microsoft\Security\Client\temp\tmp32A9.exe"
sh=C459EC90ADB444E0D8BFB5B6F791CB96335D361E ft=1 fh=38439d8c5af570dd vn="Variante von Win32/Injector.BYEP Trojaner" ac=I fn="C:\ProgramData\Microsoft\Security\Client\temp\tmp9731.exe"
sh=97E2DC71CDD1B9D2BA4336D57077A85F01600228 ft=1 fh=d23138a0e3855439 vn="Win32/Boaxxe.BR Trojaner" ac=I fn="C:\ProgramData\Microsoft\Security\Client\temp\tmpA3A3.exe"
sh=47A3A32CE25101D2CF9114A2D2A4F5A38FA19E7F ft=1 fh=411f3298b0bdac8d vn="Win32/Boaxxe.BR Trojaner" ac=I fn="C:\Users\All Users\Microsoft\Security\Client\temp\tmp32A9.exe"
sh=C459EC90ADB444E0D8BFB5B6F791CB96335D361E ft=1 fh=38439d8c5af570dd vn="Variante von Win32/Injector.BYEP Trojaner" ac=I fn="C:\Users\All Users\Microsoft\Security\Client\temp\tmp9731.exe"
sh=97E2DC71CDD1B9D2BA4336D57077A85F01600228 ft=1 fh=d23138a0e3855439 vn="Win32/Boaxxe.BR Trojaner" ac=I fn="C:\Users\All Users\Microsoft\Security\Client\temp\tmpA3A3.exe"
sh=C443892C0DDDFB51D3780AAD075CDD2EEE5AD5A9 ft=1 fh=41583cce6ff714a5 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Yavuz\Downloads\HijackThis - CHIP-Installer.exe"
sh=A0891BBD967ECCE9AE8DB8B3FE09C749555A045D ft=1 fh=a7590e5c62574721 vn="Win32/MyPCBackup.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Yavuz\Downloads\IObit-Malware-Fighter-Setup.exe"
sh=55EF07C781BEF4B3BE45A2F31663EF17BE06EDC7 ft=1 fh=f197f9d80400518b vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Yavuz\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe"

Results of screen317's Security Check version 1.00
x64 (UAC is enabled)
Internet Explorer 10 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Windows Defender
AVG AntiVirus Free Edition 2015
Antivirus up to date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
AVG PC TuneUp 2015
AVG PC TuneUp 2015 (de-DE)
AVG PC TuneUp 2015
Adobe Flash Player 17.0.0.169
Mozilla Firefox (37.0.2)
````````Process Check: objlist.exe by Laurent````````
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbam.exe
AVG avgwdsvc.exe
Malwarebytes Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 22-04-2015
Ran by Yavuz (administrator) on CASPER on 22-04-2015 18:37:13
Running from C:\Users\Yavuz\Downloads
Loaded Profiles: Yavuz & UpdatusUser (Available profiles: Yavuz & UpdatusUser)
Platform: Windows 8 Single Language (X64) OS Language: Türkçe (Türkiye)
Internet Explorer Version 10 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Geeks to Go Forum

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgcsrva.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Atheros Commnucations) C:\Windows\System32\AdminService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(VIA Technologies, Inc.) C:\Windows\System32\ViakaraokeSrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\LogonUI.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(IObit) C:\Program Files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
() C:\Program Files (x86)\Mozilla Firefox\updated\firefox.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Program Files (x86)\burrtools\burrGui.exe
() C:\Program Files (x86)\burrtools\burrGui.exe
(Farbar) C:\Users\Yavuz\Downloads\FRST64(1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [5264016 2012-08-16] (VIA)
HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3723728 2015-03-25] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31344744 2015-02-26] (Skype Technologies S.A.)
HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7416088 2015-02-19] (Piriform Ltd)
HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\...\MountPoints2: {bbdc4e33-cb03-11e4-be7e-806e6f6e6963} - "D:\setup.exe" 
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers: [0WinSecurityProvider] -> {F76FA5C2-3B6A-451E-8CA5-34C8D0AE0637} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland ? mit Hotmail Nachfolger Outlook und Messenger Skype
HKU\S-1-5-21-1353520422-2430857287-4010623212-1003\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = Casper
URLSearchHook: [S-1-5-21-1353520422-2430857287-4010623212-1006] ATTENTION ==> Default URLSearchHook is missing.
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1353520422-2430857287-4010623212-1003 -> {09A7A3C1-4B68-4952-8BB1-E9390B6970D9} URL = 
SearchScopes: HKU\S-1-5-21-1353520422-2430857287-4010623212-1006 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Yavuz\AppData\Roaming\Mozilla\Firefox\Profiles\yzl8wo16.default
FF Homepage: Google
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-10-23] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-10-23] (NVIDIA Corporation)
FF Extension: ShareFlow - C:\Users\Yavuz\AppData\Roaming\Mozilla\Firefox\Profiles\yzl8wo16.default\Extensions\{5498C60E-46B2-3B53-9F76-E670A3A4F4DD} [2015-03-16]
FF Extension: ZenMate Security, Privacy & Unblock VPN - C:\Users\Yavuz\AppData\Roaming\Mozilla\Firefox\Profiles\yzl8wo16.default\Extensions\firefox@zenmate.com.xpi [2015-04-06]
FF Extension: Adblock Plus - C:\Users\Yavuz\AppData\Roaming\Mozilla\Firefox\Profiles\yzl8wo16.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-03-28]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Windows\system32\AdminService.exe [208384 2012-08-29] (Atheros Commnucations)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3416016 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [309232 2015-03-25] (AVG Technologies CZ, s.r.o.)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2585408 2015-04-02] (IObit)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-03-17] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [1055008 2015-03-13] (IObit)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2604856 2015-02-25] (AVG Technologies)
R2 VIAKaraokeService; C:\Windows\system32\viakaraokesrv.exe [27792 2012-08-14] (VIA Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [20496 2013-09-04] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [281056 2015-03-25] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [203544 2014-11-18] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [243480 2014-08-28] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [341472 2015-02-03] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [133088 2015-02-05] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-18] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [289248 2015-03-19] (AVG Technologies CZ, s.r.o.)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-04-05] (REALiX(tm))
S3 IntcDAud; C:\Windows\system32\DRIVERS\IntcDAud.sys [342528 2012-06-19] (Intel(R) Corporation) [File not signed]
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [136408 2015-04-22] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-03-17] (Malwarebytes Corporation)
S3 pmxdrv; C:\Windows\system32\drivers\pmxdrv.sys [31152 2012-10-20] ()
S3 RTL8192Ce; C:\Windows\system32\DRIVERS\rtwlane.sys [1119232 2012-06-30] (Realtek Semiconductor Corporation                           )
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2015-01-13] (TuneUp Software)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-22 18:36 - 2015-04-22 18:36 - 02099712 _____ (Farbar) C:\Users\Yavuz\Downloads\FRST64(1).exe
2015-04-22 17:40 - 2015-04-22 17:41 - 02347384 _____ (ESET) C:\Users\Yavuz\Downloads\esetsmartinstaller_deu.exe
2015-04-22 17:40 - 2015-04-22 17:41 - 00852616 _____ () C:\Users\Yavuz\Downloads\SecurityCheck.exe
2015-04-22 14:37 - 2015-04-22 14:37 - 00000000 _____ () C:\Users\Yavuz\Desktop\Yeni Metin Belgesi (3).txt
2015-04-22 12:41 - 2015-04-22 12:41 - 00000117 _____ () C:\WINDOWS\system32\netcfg-95717390.txt
2015-04-22 01:11 - 2015-04-22 01:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-54322984.txt
2015-04-22 00:38 - 2015-04-22 00:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-52350125.txt
2015-04-21 20:43 - 2015-04-21 20:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-38241046.txt
2015-04-21 20:42 - 2015-04-21 20:42 - 00000117 _____ () C:\WINDOWS\system32\netcfg-38210500.txt
2015-04-21 20:42 - 2015-04-21 20:42 - 00000117 _____ () C:\WINDOWS\system32\netcfg-38210296.txt
2015-04-21 20:04 - 2015-04-21 20:04 - 00000753 _____ () C:\Users\Yavuz\Desktop\ççç.xmpuzzle
2015-04-21 10:52 - 2015-04-21 19:29 - 00003286 _____ () C:\Users\Yavuz\Desktop\Mintaka.xmpuzzle
2015-04-21 10:33 - 2015-04-21 10:37 - 00001109 _____ () C:\Users\Yavuz\Desktop\Twelve Board Box.xmpuzzle
2015-04-21 10:33 - 2015-04-21 10:33 - 00002602 _____ () C:\Users\Yavuz\Desktop\Twelve Board Box2.xmpuzzle
2015-04-21 10:32 - 2015-04-21 10:32 - 00001010 _____ () C:\Users\Yavuz\Desktop\Nine Board Box.xmpuzzle
2015-04-21 10:22 - 2015-04-21 10:22 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-04-21 08:51 - 2015-04-21 08:52 - 00000000 ____D () C:\Users\Yavuz\Desktop\Yeni klasör
2015-04-21 08:26 - 2015-04-21 08:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-516017421.txt
2015-04-21 08:26 - 2015-04-21 08:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-516014671.txt
2015-04-20 21:23 - 2015-04-20 21:23 - 00000156 _____ () C:\WINDOWS\system32\netcfg-476231656.txt
2015-04-20 21:23 - 2015-04-20 21:23 - 00000156 _____ () C:\WINDOWS\system32\netcfg-476206109.txt
2015-04-20 17:07 - 2015-04-20 17:07 - 00072583 _____ () C:\Users\Yavuz\Desktop\voxbox.xmpuzzle
2015-04-20 14:48 - 2015-04-20 14:48 - 00000117 _____ () C:\WINDOWS\system32\netcfg-452510750.txt
2015-04-20 09:37 - 2015-04-20 09:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-433888031.txt
2015-04-20 08:51 - 2015-04-20 08:51 - 00000117 _____ () C:\WINDOWS\system32\netcfg-431090812.txt
2015-04-20 03:00 - 2015-04-20 03:00 - 00000117 _____ () C:\WINDOWS\system32\netcfg-410034765.txt
2015-04-20 02:59 - 2015-04-20 02:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-409999812.txt
2015-04-20 01:42 - 2015-04-20 01:42 - 00000117 _____ () C:\WINDOWS\system32\netcfg-405381781.txt
2015-04-20 00:44 - 2015-04-20 00:44 - 00000117 _____ () C:\WINDOWS\system32\netcfg-401880312.txt
2015-04-20 00:44 - 2015-04-20 00:44 - 00000117 _____ () C:\WINDOWS\system32\netcfg-401877343.txt
2015-04-20 00:43 - 2015-04-20 00:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-401862140.txt
2015-04-20 00:43 - 2015-04-20 00:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-401859265.txt
2015-04-20 00:43 - 2015-04-20 00:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-401845968.txt
2015-04-16 18:07 - 2015-04-16 18:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-118877484.txt
2015-04-16 16:03 - 2015-04-16 16:17 - 00000630 _____ () C:\Users\Yavuz\Desktop\Trichromat2.xmpuzzle
2015-04-16 15:53 - 2015-04-16 15:53 - 00001080 _____ () C:\Users\Yavuz\Desktop\Trichromat.xmpuzzle
2015-04-16 10:19 - 2015-04-16 10:19 - 00000436 _____ () C:\Users\Yavuz\Desktop\pento.xmpuzzle
2015-04-16 10:09 - 2015-04-16 10:09 - 00151499 _____ () C:\Users\Yavuz\Desktop\Tourelle2.xmpuzzle
2015-04-16 09:49 - 2015-04-16 09:49 - 00000789 _____ () C:\Users\Yavuz\Desktop\Tourelle.xmpuzzle
2015-04-16 09:46 - 2015-04-16 09:46 - 00000448 _____ () C:\Users\Yavuz\Desktop\puzzz.xmpuzzle
2015-04-16 09:10 - 2015-04-16 09:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-86684921.txt
2015-04-16 03:17 - 2015-04-16 03:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-65498328.txt
2015-04-16 02:59 - 2015-04-16 02:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-64403312.txt
2015-04-16 00:31 - 2015-04-16 00:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55528656.txt
2015-04-15 18:32 - 2015-04-15 18:41 - 00001309 _____ () C:\Users\Yavuz\Desktop\Yeni Metin Belgesi (2).txt
2015-04-15 18:29 - 2015-04-15 18:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-33781687.txt
2015-04-15 18:29 - 2015-04-15 18:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-33779578.txt
2015-04-15 09:08 - 2015-04-15 09:52 - 00000561 _____ () C:\Users\Yavuz\Desktop\puzzl.xmpuzzle
2015-04-14 08:14 - 2015-04-14 08:14 - 00000117 _____ () C:\WINDOWS\system32\netcfg-218085937.txt
2015-04-14 08:14 - 2015-04-14 08:14 - 00000117 _____ () C:\WINDOWS\system32\netcfg-218084078.txt
2015-04-13 20:07 - 2015-04-13 20:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174476484.txt
2015-04-13 20:07 - 2015-04-13 20:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174475453.txt
2015-04-13 20:07 - 2015-04-13 20:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174467437.txt
2015-04-13 20:07 - 2015-04-13 20:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174463718.txt
2015-04-13 20:07 - 2015-04-13 20:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174454109.txt
2015-04-13 20:07 - 2015-04-13 20:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174450125.txt
2015-04-13 20:07 - 2015-04-13 20:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174442203.txt
2015-04-13 20:07 - 2015-04-13 20:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174438796.txt
2015-04-13 20:07 - 2015-04-13 20:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174431812.txt
2015-04-13 20:06 - 2015-04-13 20:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174427937.txt
2015-04-13 20:06 - 2015-04-13 20:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174418859.txt
2015-04-13 20:06 - 2015-04-13 20:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174416265.txt
2015-04-13 20:06 - 2015-04-13 20:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174402265.txt
2015-04-13 20:06 - 2015-04-13 20:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-174377906.txt
2015-04-13 14:32 - 2015-04-13 14:40 - 00001142 _____ () C:\Users\Yavuz\Desktop\şşşşşşyeni.xmpuzzle
2015-04-13 08:39 - 2015-04-13 08:39 - 00005982 _____ () C:\Users\Yavuz\Desktop\şşşşşş4.xmpuzzle
2015-04-13 08:10 - 2015-04-13 08:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-131436437.txt
2015-04-12 23:08 - 2015-04-12 23:08 - 00000117 _____ () C:\WINDOWS\system32\netcfg-98894296.txt
2015-04-12 20:25 - 2015-04-13 12:07 - 00005060 _____ () C:\Users\Yavuz\Desktop\şşşşşş3.xmpuzzle
2015-04-12 12:55 - 2015-04-12 12:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-62121218.txt
2015-04-12 00:30 - 2015-04-12 00:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-17468906.txt
2015-04-11 20:47 - 2015-04-11 20:58 - 00072614 _____ () C:\Users\Yavuz\Desktop\şşşşşş2.xmpuzzle
2015-04-11 20:04 - 2015-04-11 20:21 - 00001121 _____ () C:\Users\Yavuz\Desktop\şşşşşş.xmpuzzle
2015-04-11 16:01 - 2015-04-11 16:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-339272687.txt
2015-04-10 15:49 - 2015-04-10 15:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-252196390.txt
2015-04-10 15:39 - 2015-04-10 15:39 - 00000117 _____ () C:\WINDOWS\system32\netcfg-251555812.txt
2015-04-10 15:05 - 2015-04-10 15:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-249571578.txt
2015-04-10 11:18 - 2015-04-10 11:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-235899734.txt
2015-04-10 11:17 - 2015-04-10 11:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-235896593.txt
2015-04-10 11:17 - 2015-04-10 11:17 - 00000278 _____ () C:\WINDOWS\system32\netcfg-235896203.txt
2015-04-10 11:13 - 2015-04-10 11:14 - 00000117 _____ () C:\WINDOWS\system32\netcfg-235658671.txt
2015-04-10 09:04 - 2015-04-10 09:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-227876296.txt
2015-04-10 07:35 - 2015-04-10 07:35 - 00000117 _____ () C:\WINDOWS\system32\netcfg-222527312.txt
2015-04-09 22:39 - 2015-04-09 22:39 - 00000117 _____ () C:\WINDOWS\system32\netcfg-190368234.txt
2015-04-09 20:47 - 2015-04-09 20:47 - 00000117 _____ () C:\WINDOWS\system32\netcfg-183663406.txt
2015-04-09 17:51 - 2015-04-09 17:51 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173092062.txt
2015-04-09 10:45 - 2015-04-09 10:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-147563796.txt
2015-04-09 09:45 - 2015-04-09 09:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-143929828.txt
2015-04-09 08:50 - 2015-04-09 08:50 - 00000117 _____ () C:\WINDOWS\system32\netcfg-140678593.txt
2015-04-08 23:44 - 2015-04-09 08:50 - 00000117 _____ () C:\WINDOWS\system32\netcfg-107888218.txt
2015-04-08 23:20 - 2015-04-08 23:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-106435671.txt
2015-04-08 20:14 - 2015-04-08 20:14 - 00000117 _____ () C:\WINDOWS\system32\netcfg-95271546.txt
2015-04-08 09:34 - 2015-04-08 09:34 - 00000930 _____ () C:\Users\Yavuz\Desktop\JRT.txt
2015-04-08 08:54 - 2015-04-08 08:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-54499187.txt
2015-04-07 23:37 - 2015-04-07 23:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-21053640.txt
2015-04-07 22:41 - 2015-04-07 22:41 - 00001014 _____ () C:\Users\Yavuz\Desktop\AdwCleaner[S0].txt
2015-04-07 22:35 - 2015-04-07 22:35 - 00000117 _____ () C:\WINDOWS\system32\netcfg-17375671.txt
2015-04-07 20:17 - 2015-04-07 20:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9084375.txt
2015-04-07 19:22 - 2015-04-07 19:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-5787687.txt
2015-04-07 19:16 - 2015-04-07 19:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-5441671.txt
2015-04-07 15:19 - 2015-04-07 15:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-24448171.txt
2015-04-07 15:06 - 2015-04-07 15:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-23679390.txt
2015-04-07 14:23 - 2015-04-07 14:23 - 00000117 _____ () C:\WINDOWS\system32\netcfg-21072687.txt
2015-04-07 13:38 - 2015-04-07 13:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-18416031.txt
2015-04-07 11:35 - 2015-04-07 11:35 - 00001673 _____ () C:\Users\Yavuz\Desktop\mbam2.txt
2015-04-07 11:34 - 2015-04-07 15:35 - 00001186 _____ () C:\Users\Yavuz\Desktop\mbam.txt
2015-04-07 11:18 - 2015-04-07 11:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-10026125.txt
2015-04-07 11:18 - 2015-04-07 11:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-10023671.txt
2015-04-07 07:55 - 2015-04-07 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-143449187.txt
2015-04-07 07:55 - 2015-04-07 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-143447468.txt
2015-04-06 18:55 - 2015-04-06 18:55 - 00000207 _____ () C:\WINDOWS\tweaking.com-regbackup-CASPER-Windows-8-Single-Language-(64-bit).dat
2015-04-06 18:54 - 2015-04-07 15:38 - 00000000 ____D () C:\AdwCleaner
2015-04-06 18:54 - 2015-04-06 18:54 - 00000000 ____D () C:\RegBackup
2015-04-06 18:47 - 2015-04-22 16:29 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-04-06 18:47 - 2015-04-06 18:47 - 00001113 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-04-06 18:47 - 2015-04-06 18:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-04-06 18:47 - 2015-04-06 18:47 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-04-06 18:47 - 2015-04-06 18:47 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-04-06 18:47 - 2015-03-17 06:15 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-04-06 18:47 - 2015-03-17 06:15 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-04-06 18:47 - 2015-03-17 06:15 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-04-06 17:41 - 2015-04-06 17:41 - 00000117 _____ () C:\WINDOWS\system32\netcfg-92184515.txt
2015-04-06 16:09 - 2015-04-06 16:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-86678671.txt
2015-04-06 14:15 - 2015-04-06 14:15 - 02691312 _____ (Thisisu) C:\Users\Yavuz\Downloads\JRT.exe
2015-04-06 14:14 - 2015-04-06 14:15 - 02208768 _____ () C:\Users\Yavuz\Downloads\AdwCleaner_4.200.exe
2015-04-06 14:13 - 2015-04-06 14:18 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Yavuz\Downloads\mbam-setup-2.1.4.1018.exe
2015-04-06 10:23 - 2015-04-06 10:23 - 00000117 _____ () C:\WINDOWS\system32\netcfg-65923687.txt
2015-04-06 08:45 - 2015-04-06 08:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-60014062.txt
2015-04-06 07:50 - 2015-04-06 07:50 - 00000117 _____ () C:\WINDOWS\system32\netcfg-56752015.txt
2015-04-05 22:21 - 2015-04-05 22:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-22578515.txt
2015-04-05 20:00 - 2015-04-05 20:00 - 00000117 _____ () C:\WINDOWS\system32\netcfg-14118031.txt
2015-04-05 19:49 - 2015-04-05 19:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-13500625.txt
2015-04-05 18:45 - 2015-04-05 18:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9639046.txt
2015-04-05 18:39 - 2015-04-05 18:39 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9254203.txt
2015-04-05 17:26 - 2015-04-05 17:26 - 00022380 _____ () C:\Users\Yavuz\Downloads\Addition.txt
2015-04-05 17:25 - 2015-04-22 18:37 - 00012284 _____ () C:\Users\Yavuz\Downloads\FRST.txt
2015-04-05 17:25 - 2015-04-22 18:37 - 00000000 ____D () C:\FRST
2015-04-05 17:24 - 2015-04-05 17:25 - 02095616 _____ (Farbar) C:\Users\Yavuz\Downloads\FRST64.exe
2015-04-05 16:20 - 2015-04-05 16:20 - 00007429 _____ () C:\Users\Yavuz\Desktop\hijackthis.log
2015-04-05 16:04 - 2015-04-05 16:04 - 00000292 _____ () C:\Users\Yavuz\Desktop\Yeni Metin Belgesi.txt
2015-04-05 16:03 - 2015-04-05 16:03 - 00388608 _____ (Trend Micro Inc.) C:\Users\Yavuz\Downloads\HijackThis.com.exe
2015-04-05 11:52 - 2015-04-05 11:52 - 00000117 _____ () C:\WINDOWS\system32\netcfg-264304593.txt
2015-04-05 11:46 - 2015-04-05 11:46 - 00000117 _____ () C:\WINDOWS\system32\netcfg-263897312.txt
2015-04-05 11:15 - 2015-04-05 11:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-262071343.txt
2015-04-05 11:06 - 2015-04-05 11:06 - 00000117 _____ () C:\WINDOWS\system32\netcfg-261490765.txt
2015-04-05 10:17 - 2015-04-05 10:17 - 00001290 _____ () C:\Users\Public\Desktop\Start Menu 8.lnk
2015-04-05 10:17 - 2015-04-05 10:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Start Menu 8
2015-04-05 10:15 - 2015-04-05 10:15 - 00003180 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag4_Startup
2015-04-05 10:15 - 2015-04-05 10:15 - 00003178 _____ () C:\WINDOWS\System32\Tasks\SmartDefrag4_Update
2015-04-05 10:15 - 2015-04-05 10:15 - 00001181 _____ () C:\Users\Public\Desktop\Smart Defrag 4.lnk
2015-04-05 10:15 - 2015-04-05 10:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 4
2015-04-05 10:15 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2015-04-05 10:15 - 2014-06-04 15:17 - 00034080 _____ (IObit) C:\WINDOWS\system32\SmartDefragBootTime.exe
2015-04-05 10:15 - 2014-06-04 15:17 - 00021184 _____ (IObit) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
2015-04-05 10:13 - 2015-04-05 10:13 - 00002392 _____ () C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_Yavuz
2015-04-05 10:13 - 2015-04-05 10:13 - 00000000 ____D () C:\WINDOWS\Tasks\ImCleanDisabled
2015-04-05 10:04 - 2015-04-21 10:20 - 00000000 ____D () C:\ProgramData\ProductData
2015-04-05 10:04 - 2015-04-05 10:04 - 00002870 _____ () C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (Yavuz)
2015-04-05 10:03 - 2015-04-05 10:03 - 00026528 _____ (REALiX(tm)) C:\WINDOWS\SysWOW64\Drivers\HWiNFO64A.SYS
2015-04-05 09:58 - 2015-04-05 09:58 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\ProductData
2015-04-05 09:57 - 2015-04-05 10:19 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-04-05 09:57 - 2015-04-05 10:17 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\IObit
2015-04-05 09:57 - 2015-04-05 10:13 - 00000000 ____D () C:\ProgramData\IObit
2015-04-05 09:57 - 2015-04-05 09:57 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\Apple Computer
2015-04-05 09:50 - 2015-04-05 09:57 - 29096360 _____ (IObit ) C:\Users\Yavuz\Downloads\IObit-Malware-Fighter-Setup.exe
2015-04-05 09:46 - 2015-04-05 09:46 - 00000000 ____D () C:\Users\Yavuz\Downloads\backups
2015-04-05 09:41 - 2015-04-05 09:51 - 00007041 _____ () C:\Users\Yavuz\Downloads\hijackthis.log
2015-04-05 09:40 - 2015-04-05 09:40 - 00388608 _____ (Trend Micro Inc.) C:\Users\Yavuz\Downloads\HijackThis.exe
2015-04-05 09:38 - 2015-04-05 09:38 - 00002122 _____ () C:\Users\Yavuz\Desktop\HijackThis - CHIP Downloader.lnk
2015-04-05 09:35 - 2015-04-05 09:37 - 01203488 _____ () C:\Users\Yavuz\Downloads\HijackThis - CHIP-Installer.exe
2015-04-05 09:29 - 2015-04-05 09:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-255702203.txt
2015-04-05 09:29 - 2015-04-05 09:29 - 00000117 _____ () C:\WINDOWS\system32\netcfg-255678218.txt
2015-04-05 09:25 - 2015-04-05 09:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-255490812.txt
2015-04-04 23:01 - 2015-04-04 23:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-218028484.txt
2015-04-04 22:52 - 2015-04-04 22:52 - 00000117 _____ () C:\WINDOWS\system32\netcfg-217481421.txt
2015-04-04 22:09 - 2015-04-04 22:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-214903625.txt
2015-04-04 12:19 - 2015-04-04 12:19 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\dlg
2015-04-04 12:19 - 2015-04-04 12:19 - 00000000 ____D () C:\ProgramData\TEMP
2015-04-04 12:19 - 2015-04-04 12:19 - 00000000 ____D () C:\ProgramData\Licenses
2015-04-04 12:18 - 2015-04-04 12:25 - 20561315 _____ () C:\Users\Yavuz\Downloads\#M.A.P.2.0.4.K#.rar
2015-04-04 12:11 - 2015-04-04 12:11 - 01203488 _____ () C:\Users\Yavuz\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2015-04-04 12:09 - 2015-04-04 12:18 - 35218576 _____ (Simply Super Software ) C:\Users\Yavuz\Downloads\trjsetup692.exe
2015-04-04 11:07 - 2015-04-04 11:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-175208125.txt
2015-04-04 11:07 - 2015-04-04 11:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-175181359.txt
2015-04-04 10:33 - 2015-04-04 10:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173174703.txt
2015-04-04 10:33 - 2015-04-04 10:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173142921.txt
2015-04-04 08:48 - 2015-04-04 08:48 - 00000117 _____ () C:\WINDOWS\system32\netcfg-166850796.txt
2015-04-03 23:04 - 2015-04-03 23:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-131842890.txt
2015-04-03 14:53 - 2015-04-03 14:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-102369312.txt
2015-04-03 13:45 - 2015-04-03 13:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-98284359.txt
2015-04-03 10:40 - 2015-04-03 10:40 - 00000117 _____ () C:\WINDOWS\system32\netcfg-87168718.txt
2015-04-03 10:32 - 2015-04-03 10:32 - 00000117 _____ () C:\WINDOWS\system32\netcfg-86724031.txt
2015-04-03 09:58 - 2015-04-03 09:58 - 00000117 _____ () C:\WINDOWS\system32\netcfg-84627718.txt
2015-04-03 09:45 - 2015-04-03 09:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-83882375.txt
2015-04-03 08:20 - 2015-04-03 08:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-78768906.txt
2015-04-02 22:36 - 2015-04-02 22:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-43751234.txt
2015-04-02 13:12 - 2015-04-02 13:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9903265.txt
2015-04-02 12:46 - 2015-04-02 12:46 - 00000117 _____ () C:\WINDOWS\system32\netcfg-8325687.txt
2015-04-02 10:07 - 2015-04-02 10:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6495687.txt
2015-04-02 09:28 - 2015-04-02 09:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-4184468.txt
2015-04-02 07:55 - 2015-04-02 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55346250.txt
2015-04-02 07:55 - 2015-04-02 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55340968.txt
2015-04-02 07:55 - 2015-04-02 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55326734.txt
2015-04-02 07:55 - 2015-04-02 07:55 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55319296.txt
2015-04-02 07:49 - 2015-04-02 07:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55001937.txt
2015-04-01 21:15 - 2015-04-01 21:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-16916265.txt
2015-04-01 19:15 - 2015-04-01 19:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9759687.txt
2015-04-01 19:13 - 2015-04-01 19:13 - 00000117 _____ () C:\WINDOWS\system32\netcfg-9642328.txt
2015-04-01 16:29 - 2015-04-02 10:34 - 00000000 ____D () C:\WinPC-NC_USB
2015-04-01 16:29 - 2015-04-02 10:24 - 00013264 _____ () C:\WINDOWS\DPINST.LOG
2015-04-01 16:29 - 2015-04-02 10:24 - 00000660 _____ () C:\Users\Public\Desktop\WinPC-NC USB.lnk
2015-04-01 16:29 - 2015-04-02 10:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPC-NC USB
2015-04-01 16:29 - 2015-04-01 16:29 - 00000000 ___HD () C:\WINDOWS\PIF
2015-04-01 16:29 - 2015-04-01 16:29 - 00000000 ____D () C:\Program Files\DIFX
2015-04-01 16:29 - 2010-02-09 00:29 - 00081920 _____ () C:\WINDOWS\SysWOW64\GkSui20.EXE
2015-04-01 16:29 - 2003-03-17 07:04 - 00685056 _____ (Borland Software Corporation) C:\WINDOWS\SysWOW64\Rtl60.bpl
2015-04-01 16:29 - 2002-02-13 09:00 - 00022016 _____ (Borland Software Corporation) C:\WINDOWS\SysWOW64\borlndmm.dll
2015-04-01 16:29 - 2002-02-13 08:00 - 01497088 _____ (Borland Corporation) C:\WINDOWS\SysWOW64\Cc3260mt.dll
2015-04-01 16:29 - 2002-02-13 08:00 - 01326080 _____ (Borland Software Corporation) C:\WINDOWS\SysWOW64\Vcl60.bpl
2015-04-01 09:55 - 2015-04-01 09:55 - 00000000 ____D () C:\Users\Default\AppData\Roaming\TuneUp Software
2015-04-01 09:55 - 2015-04-01 09:55 - 00000000 ____D () C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-04-01 09:51 - 2015-04-01 09:51 - 00000117 _____ () C:\WINDOWS\system32\netcfg-39550281.txt
2015-04-01 09:46 - 2015-04-01 09:46 - 00000117 _____ () C:\WINDOWS\system32\netcfg-39294984.txt
2015-04-01 08:25 - 2015-04-22 15:40 - 00145920 ___SH () C:\Users\Yavuz\Downloads\Thumbs.db
2015-04-01 07:53 - 2015-04-01 07:53 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32500390.txt
2015-03-31 23:37 - 2015-03-31 23:37 - 00000117 _____ () C:\WINDOWS\system32\netcfg-2726109.txt
2015-03-31 18:52 - 2015-03-31 18:52 - 00000117 _____ () C:\WINDOWS\system32\netcfg-122112609.txt
2015-03-31 10:25 - 2015-03-31 10:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-91669046.txt
2015-03-31 09:01 - 2015-03-31 09:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-86666062.txt
2015-03-31 09:01 - 2015-03-31 09:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-86663828.txt
2015-03-30 19:31 - 2015-03-30 19:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-38032750.txt
2015-03-30 18:19 - 2015-03-30 18:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-33711796.txt
2015-03-30 17:48 - 2015-03-30 17:48 - 00000117 _____ () C:\WINDOWS\system32\netcfg-31882750.txt
2015-03-30 17:33 - 2015-03-30 17:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-30963437.txt
2015-03-30 15:42 - 2015-03-30 15:42 - 00001210 _____ () C:\Users\Yavuz\Desktop\Burr Tools 0.6.1..lnk
2015-03-30 15:42 - 2015-03-30 15:42 - 00000000 ____D () C:\Users\Yavuz\Downloads\burrtools-0.6.3-win32
2015-03-30 15:39 - 2015-04-05 10:50 - 00000000 ____D () C:\Users\Yavuz\.thumbnails
2015-03-30 15:36 - 2015-03-30 15:36 - 00001904 _____ () C:\Users\Public\Desktop\Blender.lnk
2015-03-30 15:36 - 2015-03-30 15:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blender Foundation
2015-03-30 15:35 - 2015-03-30 15:35 - 00000000 ____D () C:\Program Files\Blender Foundation
2015-03-30 15:34 - 2015-03-30 15:35 - 64542509 _____ () C:\Users\Yavuz\Downloads\blender-2.73a-windows64.exe
2015-03-30 15:31 - 2015-04-13 15:04 - 00000000 ____D () C:\Users\Yavuz\Desktop\Burrtoolfiles
2015-03-30 15:27 - 2015-03-30 15:28 - 00000100 _____ () C:\Users\Yavuz\Desktop\Spiele Liste.txt
2015-03-30 15:14 - 2015-03-30 15:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-22655765.txt
2015-03-30 14:43 - 2015-03-30 14:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-20775437.txt
2015-03-30 13:17 - 2015-03-30 13:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-15619718.txt
2015-03-30 12:15 - 2015-03-30 12:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-11898937.txt
2015-03-29 20:34 - 2015-03-29 20:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-198470093.txt
2015-03-29 19:04 - 2015-03-29 19:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-193068843.txt
2015-03-29 17:41 - 2015-03-29 17:41 - 00000117 _____ () C:\WINDOWS\system32\netcfg-188059109.txt
2015-03-29 17:34 - 2015-03-29 17:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-187688437.txt
2015-03-29 13:38 - 2015-03-29 13:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173484875.txt
2015-03-29 13:34 - 2015-03-29 13:34 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173290859.txt
2015-03-29 13:04 - 2015-03-29 13:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-171466968.txt
2015-03-29 13:01 - 2015-03-29 13:01 - 00000117 _____ () C:\WINDOWS\system32\netcfg-171255968.txt
2015-03-29 12:30 - 2015-03-29 12:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-169433671.txt
2015-03-29 12:26 - 2015-03-29 12:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-169186593.txt
2015-03-29 10:54 - 2015-03-29 10:54 - 00000117 _____ () C:\WINDOWS\system32\netcfg-163685875.txt
2015-03-29 01:10 - 2015-03-29 01:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-128610015.txt
2015-03-28 20:26 - 2015-03-28 20:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-111588640.txt
2015-03-28 19:07 - 2015-03-28 19:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-106833125.txt
2015-03-28 18:31 - 2015-03-28 18:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-104703609.txt
2015-03-28 18:26 - 2015-03-28 18:26 - 00000117 _____ () C:\WINDOWS\system32\netcfg-104389640.txt
2015-03-28 17:11 - 2015-03-28 17:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-99892593.txt
2015-03-28 17:10 - 2015-03-28 17:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-99856968.txt
2015-03-28 16:40 - 2015-03-28 16:40 - 00000117 _____ () C:\WINDOWS\system32\netcfg-98032718.txt
2015-03-28 16:27 - 2015-03-28 16:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-97220875.txt
2015-03-28 14:49 - 2015-03-28 14:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-91373718.txt
2015-03-28 14:43 - 2015-03-28 14:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-91020921.txt
2015-03-28 13:30 - 2015-03-28 13:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-86613703.txt
2015-03-28 13:04 - 2015-03-28 13:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-85064250.txt
2015-03-28 11:31 - 2015-03-28 11:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79514671.txt
2015-03-28 11:27 - 2015-03-28 11:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79247375.txt
2015-03-28 10:16 - 2015-03-28 10:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-74960781.txt
2015-03-28 05:12 - 2015-03-28 05:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-56769250.txt
2015-03-28 03:31 - 2015-03-28 03:31 - 00000117 _____ () C:\WINDOWS\system32\netcfg-50713796.txt
2015-03-28 03:19 - 2015-03-28 03:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-49999484.txt
2015-03-27 17:14 - 2015-03-27 17:14 - 04197696 _____ (Piriform Ltd) C:\Users\Yavuz\Downloads\ccsetup503_slim.exe
2015-03-27 17:14 - 2015-03-27 17:14 - 00002772 _____ () C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2015-03-27 17:14 - 2015-03-27 17:14 - 00000829 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-03-27 17:14 - 2015-03-27 17:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-03-27 17:14 - 2015-03-27 17:14 - 00000000 ____D () C:\Program Files\CCleaner
2015-03-27 09:59 - 2015-03-27 09:59 - 00002762 _____ () C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2015-03-27 09:05 - 2015-03-27 09:05 - 00000117 _____ () C:\WINDOWS\system32\netcfg-74943875.txt
2015-03-27 03:38 - 2015-03-27 03:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-55304218.txt
2015-03-27 00:13 - 2015-03-27 00:13 - 00002224 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp 2015.lnk
2015-03-27 00:13 - 2015-03-27 00:13 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\AVG
2015-03-27 00:13 - 2015-02-25 10:25 - 00041784 _____ (AVG Technologies) C:\WINDOWS\system32\TURegOpt.exe
2015-03-27 00:13 - 2015-02-25 10:24 - 00030520 _____ (AVG Technologies) C:\WINDOWS\system32\authuitu.dll
2015-03-27 00:13 - 2015-02-25 10:24 - 00025912 _____ (AVG Technologies) C:\WINDOWS\SysWOW64\authuitu.dll
2015-03-27 00:12 - 2015-03-27 00:12 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Avg
2015-03-27 00:11 - 2015-03-27 00:13 - 00000000 ____D () C:\ProgramData\AVG
2015-03-27 00:10 - 2015-03-27 00:10 - 00000117 _____ () C:\WINDOWS\system32\netcfg-42852656.txt
2015-03-27 00:03 - 2015-03-27 00:03 - 00000117 _____ () C:\WINDOWS\system32\netcfg-42446968.txt
2015-03-26 23:33 - 2015-03-26 23:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-40619687.txt
2015-03-26 22:27 - 2015-03-26 22:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-36636812.txt
2015-03-26 21:19 - 2015-03-26 21:19 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32590734.txt
2015-03-26 21:12 - 2015-03-26 21:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-32142765.txt
2015-03-26 18:50 - 2015-03-26 18:53 - 113398072 _____ (AVG Technologies) C:\Users\Yavuz\Downloads\avg_tuh_stf_all_2015_403_24c34.exe
2015-03-26 18:27 - 2015-03-26 18:27 - 00000117 _____ () C:\WINDOWS\system32\netcfg-22277390.txt
2015-03-26 17:33 - 2015-03-26 17:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-18997312.txt
2015-03-26 15:37 - 2015-03-26 15:37 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\AVG2015
2015-03-26 15:36 - 2015-04-10 11:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-03-26 15:36 - 2015-03-26 15:59 - 00000000 ____D () C:\ProgramData\AVG2015
2015-03-26 15:36 - 2015-03-26 15:36 - 00000250 _____ () C:\WINDOWS\system32\netcfg-12018750.txt
2015-03-26 15:36 - 2015-03-26 15:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-12019234.txt
2015-03-26 15:36 - 2015-03-26 15:36 - 00000117 _____ () C:\WINDOWS\system32\netcfg-12019171.txt
2015-03-26 15:36 - 2015-03-26 15:36 - 00000000 ___HD () C:\$AVG
2015-03-26 15:36 - 2015-03-26 15:36 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\TuneUp Software
2015-03-26 15:35 - 2015-03-27 00:12 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-03-26 15:32 - 2015-04-22 12:46 - 00000000 ____D () C:\ProgramData\MFAData
2015-03-26 15:32 - 2015-03-26 18:29 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Avg2015
2015-03-26 15:32 - 2015-03-26 15:32 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\MFAData
2015-03-26 15:28 - 2015-03-26 15:32 - 168343664 _____ (AVG Technologies) C:\Users\Yavuz\Downloads\avg_free_x86_all5856_2015_ltst_222.exe
2015-03-26 14:18 - 2015-03-26 14:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7309828.txt
2015-03-26 14:18 - 2015-03-26 14:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7307484.txt
2015-03-26 14:18 - 2015-03-26 14:18 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7296984.txt
2015-03-26 14:17 - 2015-03-26 14:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7293968.txt
2015-03-26 14:17 - 2015-03-26 14:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7286046.txt
2015-03-26 14:17 - 2015-03-26 14:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-7282000.txt
2015-03-26 14:12 - 2015-03-26 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6965156.txt
2015-03-26 14:12 - 2015-03-26 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6961218.txt
2015-03-26 14:12 - 2015-03-26 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6953000.txt
2015-03-26 14:12 - 2015-03-26 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6949640.txt
2015-03-26 14:12 - 2015-03-26 14:12 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6935812.txt
2015-03-26 14:11 - 2015-03-26 14:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-6931468.txt
2015-03-26 00:59 - 2015-03-26 00:59 - 00000117 _____ () C:\WINDOWS\system32\netcfg-299669781.txt
2015-03-26 00:48 - 2015-03-26 00:48 - 00000117 _____ () C:\WINDOWS\system32\netcfg-299000093.txt
2015-03-25 23:16 - 2015-03-25 23:16 - 00000117 _____ () C:\WINDOWS\system32\netcfg-293513312.txt
2015-03-25 23:11 - 2015-03-25 23:11 - 00000117 _____ () C:\WINDOWS\system32\netcfg-293217968.txt
2015-03-25 22:24 - 2015-03-25 22:24 - 00000117 _____ () C:\WINDOWS\system32\netcfg-290371312.txt
2015-03-25 22:22 - 2015-03-25 22:22 - 00000117 _____ () C:\WINDOWS\system32\netcfg-290258984.txt
2015-03-25 20:38 - 2015-03-25 20:38 - 00000117 _____ () C:\WINDOWS\system32\netcfg-284025656.txt
2015-03-25 20:15 - 2015-03-25 20:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-282653015.txt
2015-03-25 19:44 - 2015-03-25 19:44 - 00000117 _____ () C:\WINDOWS\system32\netcfg-280799234.txt
2015-03-25 19:42 - 2015-03-25 19:42 - 00000117 _____ () C:\WINDOWS\system32\netcfg-280635437.txt
2015-03-25 18:41 - 2015-03-25 18:41 - 00000117 _____ () C:\WINDOWS\system32\netcfg-277009312.txt
2015-03-25 18:04 - 2015-03-25 18:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-274777359.txt
2015-03-25 14:49 - 2015-03-25 14:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-263051328.txt
2015-03-25 13:09 - 2015-03-25 13:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-257074546.txt
2015-03-25 11:31 - 2015-03-27 10:23 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\wufumok
2015-03-25 11:30 - 2015-03-25 11:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-251140234.txt
2015-03-25 11:21 - 2015-03-25 11:21 - 00281056 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsdrivera.sys
2015-03-24 22:09 - 2015-03-24 22:09 - 00000117 _____ () C:\WINDOWS\system32\netcfg-203050796.txt
2015-03-24 22:07 - 2015-03-24 22:07 - 00000117 _____ () C:\WINDOWS\system32\netcfg-202933703.txt
2015-03-24 21:15 - 2015-03-24 21:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-199816843.txt
2015-03-24 13:56 - 2015-03-24 13:56 - 00000117 _____ () C:\WINDOWS\system32\netcfg-173484093.txt
2015-03-24 13:41 - 2015-03-24 13:56 - 00000117 _____ () C:\WINDOWS\system32\netcfg-172602093.txt
2015-03-24 09:25 - 2015-03-24 09:25 - 00000117 _____ () C:\WINDOWS\system32\netcfg-157248843.txt
2015-03-23 22:28 - 2015-03-23 22:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-117798578.txt
2015-03-23 22:17 - 2015-03-23 22:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-117170250.txt
2015-03-23 20:43 - 2015-03-23 20:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-111505281.txt
2015-03-23 19:33 - 2015-03-23 19:33 - 00000117 _____ () C:\WINDOWS\system32\netcfg-107338203.txt
2015-03-23 19:20 - 2015-03-23 19:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-106518312.txt
2015-03-23 18:49 - 2015-03-23 18:49 - 00000117 _____ () C:\WINDOWS\system32\netcfg-104691156.txt
2015-03-23 18:43 - 2015-03-23 18:43 - 00000117 _____ () C:\WINDOWS\system32\netcfg-104341109.txt
2015-03-23 18:13 - 2015-03-23 18:13 - 00000117 _____ () C:\WINDOWS\system32\netcfg-102511281.txt
2015-03-23 18:04 - 2015-03-23 18:04 - 00000117 _____ () C:\WINDOWS\system32\netcfg-101974906.txt
2015-03-23 17:30 - 2015-03-23 17:30 - 00000117 _____ () C:\WINDOWS\system32\netcfg-99910203.txt
2015-03-23 17:15 - 2015-03-23 17:15 - 00000117 _____ () C:\WINDOWS\system32\netcfg-99027296.txt
2015-03-23 16:44 - 2015-03-23 16:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-97203812.txt
2015-03-23 16:21 - 2015-03-23 16:21 - 00000117 _____ () C:\WINDOWS\system32\netcfg-95768437.txt
2015-03-23 14:28 - 2015-03-23 14:28 - 00000117 _____ () C:\WINDOWS\system32\netcfg-89019234.txt
2015-03-23 13:20 - 2015-03-23 13:20 - 00000117 _____ () C:\WINDOWS\system32\netcfg-84947468.txt
2015-03-23 11:45 - 2015-03-23 11:45 - 00000117 _____ () C:\WINDOWS\system32\netcfg-79208421.txt
2015-03-23 00:17 - 2015-03-23 00:17 - 00000117 _____ () C:\WINDOWS\system32\netcfg-37985703.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-22 18:34 - 2015-03-17 09:59 - 00000814 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-04-22 18:21 - 2015-03-19 01:09 - 00000144 _____ () C:\Users\Yavuz\Documents\.burrtools.rc
2015-04-22 18:00 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\system32\sru
2015-04-22 16:18 - 2015-03-18 14:39 - 00694272 ___SH () C:\Users\Yavuz\Desktop\Thumbs.db
2015-04-22 13:02 - 2015-03-15 16:34 - 01956380 _____ () C:\WINDOWS\WindowsUpdate.log
2015-04-22 12:54 - 2015-03-15 16:43 - 00003600 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1353520422-2430857287-4010623212-1003
2015-04-22 00:41 - 2015-03-15 23:37 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-04-21 11:36 - 2012-07-26 10:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2015-04-21 10:08 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\rescache
2015-04-21 10:06 - 2015-03-16 03:26 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-04-21 10:06 - 2012-07-26 10:22 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-04-21 10:05 - 2012-07-26 08:26 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2015-04-20 00:46 - 2012-07-26 08:26 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2015-04-20 00:44 - 2015-03-16 11:00 - 00000000 ____D () C:\Users\Yavuz\AppData\Roaming\Skype
2015-04-14 23:26 - 2012-10-08 19:43 - 00024604 _____ () C:\WINDOWS\PFRO.log
2015-04-14 19:36 - 2015-03-17 09:59 - 00003702 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-04-14 13:19 - 2012-07-26 11:12 - 00000000 ____D () C:\WINDOWS\AUInstallAgent
2015-04-05 15:46 - 2015-03-16 11:04 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Ijsoft
2015-04-05 09:40 - 2015-03-15 16:35 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\VirtualStore
2015-04-05 09:27 - 2015-03-16 11:03 - 00000000 ____D () C:\Users\Yavuz\AppData\Local\Ofics
2015-04-01 08:26 - 2015-03-15 21:44 - 00731944 _____ () C:\WINDOWS\system32\perfh019.dat
2015-04-01 08:26 - 2015-03-15 21:44 - 00727582 _____ () C:\WINDOWS\system32\perfh00C.dat
2015-04-01 08:26 - 2015-03-15 21:44 - 00387818 _____ () C:\WINDOWS\system32\perfh001.dat
2015-04-01 08:26 - 2015-03-15 21:44 - 00149848 _____ () C:\WINDOWS\system32\perfc019.dat
2015-04-01 08:26 - 2015-03-15 21:44 - 00137016 _____ () C:\WINDOWS\system32\perfc00C.dat
2015-04-01 08:26 - 2015-03-15 21:44 - 00056648 _____ () C:\WINDOWS\system32\perfc001.dat
2015-04-01 08:26 - 2012-07-26 13:04 - 00676646 _____ () C:\WINDOWS\system32\perfh01F.dat
2015-04-01 08:26 - 2012-07-26 13:04 - 00138742 _____ () C:\WINDOWS\system32\perfc01F.dat
2015-04-01 08:26 - 2012-07-26 10:28 - 03796672 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-30 15:39 - 2015-03-15 16:34 - 00000000 ____D () C:\Users\Yavuz
2015-03-27 00:16 - 2012-07-26 08:38 - 00000000 ____D () C:\WINDOWS\system32\Sysprep
2015-03-26 15:36 - 2012-07-26 11:12 - 00000000 ___HD () C:\WINDOWS\ELAMBKUP

Some content of TEMP:
====================
C:\Users\Yavuz\AppData\Local\Temp\Quarantine.exe
C:\Users\Yavuz\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-13 08:58

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

schrauber · 23.04.2015, 11:21

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

C:\ProgramData\Microsoft\Security\Client

C:\ProgramData\Microsoft\Security\Client\temp\tmp9731.exe

C:\ProgramData\Microsoft\Security\Client\temp\tmpA3A3.exe

C:\Users\All Users\Microsoft\Security\Client\temp\tmp32A9.exe

C:\Users\All Users\Microsoft\Security\Client\temp\tmp9731.exe

C:\Users\All Users\Microsoft\Security\Client\temp\tmpA3A3.exe

C:\Users\Yavuz\Downloads\HijackThis - CHIP-Installer.exe

C:\Users\Yavuz\Downloads\IObit-Malware-Fighter-Setup.exe

C:\Users\Yavuz\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
Emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Downloadverhalten überdenken:
CHIP-Installer - was ist das? - Anleitungen

Noch Probleme?

Scutulatus · 23.04.2015, 13:14

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 22-04-2015
Ran by Yavuz at 2015-04-23 13:46:45 Run:1
Running from C:\Users\Yavuz\Downloads
Loaded Profiles: Yavuz & UpdatusUser (Available profiles: Yavuz & UpdatusUser)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\ProgramData\Microsoft\Security\Client

C:\ProgramData\Microsoft\Security\Client\temp\tmp9731.exe

C:\ProgramData\Microsoft\Security\Client\temp\tmpA3A3.exe

C:\Users\All Users\Microsoft\Security\Client\temp\tmp32A9.exe

C:\Users\All Users\Microsoft\Security\Client\temp\tmp9731.exe

C:\Users\All Users\Microsoft\Security\Client\temp\tmpA3A3.exe

C:\Users\Yavuz\Downloads\HijackThis - CHIP-Installer.exe

C:\Users\Yavuz\Downloads\IObit-Malware-Fighter-Setup.exe

C:\Users\Yavuz\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
Emptytemp:

*****************

C:\ProgramData\Microsoft\Security\Client => Moved successfully.
"C:\ProgramData\Microsoft\Security\Client\temp\tmp9731.exe" => File/Directory not found.
"C:\ProgramData\Microsoft\Security\Client\temp\tmpA3A3.exe" => File/Directory not found.
"C:\Users\All Users\Microsoft\Security\Client\temp\tmp32A9.exe" => File/Directory not found.
"C:\Users\All Users\Microsoft\Security\Client\temp\tmp9731.exe" => File/Directory not found.
"C:\Users\All Users\Microsoft\Security\Client\temp\tmpA3A3.exe" => File/Directory not found.
C:\Users\Yavuz\Downloads\HijackThis - CHIP-Installer.exe => Moved successfully.
C:\Users\Yavuz\Downloads\IObit-Malware-Fighter-Setup.exe => Moved successfully.
C:\Users\Yavuz\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe => Moved successfully.
EmptyTemp: => Removed 404.5 MB temporary data.

The system needed a reboot.

==== End of Fixlog 13:47:00 ====

schrauber · 24.04.2015, 07:51

Bestehen aktuell noch Probleme mit dem Rechner?

24.04.2015, 07:51	#11
schrauber /// the machine /// TB-Ausbilder	Habe mir Viren eingefangen und bekomme sie nicht weg! Bestehen aktuell noch Probleme mit dem Rechner? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Habe mir Viren eingefangen und bekomme sie nicht weg!

Log-Analyse und Auswertung: Habe mir Viren eingefangen und bekomme sie nicht weg!